This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/oSJ76RTJAM4Rkm0VytsagsICSMI.roa File: oSJ76RTJAM4Rkm0VytsagsICSMI.roa (raw, json) Hash identifier: 5KF6cvuY3cWzSG6wpKOaFIJmUmHSua9Uf0BUoXvpF6w= Subject key identifier: A1:22:7B:E9:14:C9:00:CE:11:92:6D:15:CA:DB:1A:82:C2:02:48:C2 Certificate issuer: /CN=7ca643bb399c6d87adc4c7cba5d2b72fbd00d046 Certificate serial: 019B7B364DF3B8E6A464A438903FA8A76B97 Authority key identifier: 7C:A6:43:BB:39:9C:6D:87:AD:C4:C7:CB:A5:D2:B7:2F:BD:00:D0:46 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKZDuzmcbYetxMfLpdK3L70A0EY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/oSJ76RTJAM4Rkm0VytsagsICSMI.roa Signing time: Thu 01 Jan 2026 20:18:35 +0000 ROA not before: Thu 01 Jan 2026 20:18:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 262287 IP address blocks: 5.182.124.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/fKZDuzmcbYetxMfLpdK3L70A0EY.crl rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/fKZDuzmcbYetxMfLpdK3L70A0EY.mft rsync://rpki.ripe.net/repository/DEFAULT/fKZDuzmcbYetxMfLpdK3L70A0EY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:4d:f3:b8:e6:a4:64:a4:38:90:3f:a8:a7:6b:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7ca643bb399c6d87adc4c7cba5d2b72fbd00d046 Validity Not Before: Jan 1 20:18:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a1227be914c900ce11926d15cadb1a82c20248c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:80:6c:c1:e7:9d:af:3d:0d:fa:94:5a:28:8d: 77:2d:ae:23:38:a5:4b:54:8b:c8:02:0d:81:d4:61: 60:4b:8a:d6:09:0b:76:62:1f:8c:f9:66:4e:ad:02: 0c:a1:3b:73:61:7e:be:46:eb:f6:fa:26:3e:6b:08: 5a:dc:ab:73:3a:83:1c:c2:a3:76:6b:b1:33:23:f9: 7d:4f:6a:97:1f:40:4d:76:71:17:e1:1e:15:6e:f6: 10:7a:03:f0:20:67:91:22:8e:a0:ec:88:a7:f3:ba: ce:7d:83:53:b9:60:fe:bc:97:96:f3:88:d2:42:09: f1:7b:c4:e1:03:ec:0e:27:71:6e:a5:36:e1:9a:97: 39:4b:14:d4:e7:a6:ab:58:9b:4a:96:81:8f:50:78: 0c:de:e2:6c:24:dd:4f:f5:3a:4d:9e:87:07:a1:c3: ea:96:e7:65:ec:a8:5c:46:b5:fb:d1:5d:81:02:71: 2b:0f:61:75:7a:d7:8c:67:64:aa:11:30:31:ec:86: 1e:f5:22:1f:9d:45:01:aa:1a:19:22:01:30:a6:c7: 5a:4e:8a:cb:2b:01:97:b1:0d:da:36:ac:ae:b6:f7: f8:dc:de:0d:84:df:0e:6a:30:96:93:0b:be:34:b8: 2a:7b:06:c2:32:26:18:15:08:8a:4c:e1:e4:65:79: d2:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:22:7B:E9:14:C9:00:CE:11:92:6D:15:CA:DB:1A:82:C2:02:48:C2 X509v3 Authority Key Identifier: keyid:7C:A6:43:BB:39:9C:6D:87:AD:C4:C7:CB:A5:D2:B7:2F:BD:00:D0:46 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKZDuzmcbYetxMfLpdK3L70A0EY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/oSJ76RTJAM4Rkm0VytsagsICSMI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/fKZDuzmcbYetxMfLpdK3L70A0EY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.182.124.0/22 Signature Algorithm: sha256WithRSAEncryption 55:ac:5a:f4:78:b9:d3:2d:58:ba:fe:1a:3c:c7:12:0d:15:58: ff:f9:80:3c:ce:9e:57:7f:b1:d3:6a:d4:9c:42:00:8e:e5:97: e7:28:71:32:ee:99:1b:9a:1f:4a:b2:57:3b:4c:74:49:c6:48: cb:61:8c:03:0b:c1:56:91:30:a8:e7:a4:7f:44:63:fa:39:87: 7a:6d:c1:49:a8:08:29:82:2b:22:6c:19:c4:85:87:0f:41:5d: e6:16:de:85:53:09:c5:7e:aa:42:2b:6c:c2:f0:bc:8c:76:83: 0b:ab:a4:50:66:27:32:d5:5e:79:5b:4d:4f:a1:35:4e:a4:e3: db:51:d2:c4:49:3f:84:e6:58:17:ee:53:53:ab:a4:1d:d8:77: 8c:82:4e:07:9f:a4:17:f8:7f:3e:04:d6:a1:3e:02:3a:21:c8: b8:54:d8:46:0e:65:50:6d:4d:bc:30:08:68:e4:d7:86:5a:3e: 75:d8:6f:53:32:57:ea:c1:ba:79:4e:1c:08:58:3b:ca:18:46: 37:23:bf:f0:81:ea:e0:c5:4a:a5:d6:ce:1b:a7:de:40:59:e6: 18:a4:c5:3e:9e:f9:60:c9:e5:96:e4:a5:e4:14:d8:e3:99:3e: 53:8d:bf:1d:7b:20:12:25:36:98:0c:91:fe:89:56:e4:fc:a0: 8a:95:a0:c2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7Nk3zuOakZKQ4kD+op2uXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdjYTY0M2JiMzk5YzZkODdhZGM0YzdjYmE1ZDJiNzJmYmQw MGQwNDYwHhcNMjYwMTAxMjAxODM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMTIyN2JlOTE0YzkwMGNlMTE5MjZkMTVjYWRiMWE4MmMyMDI0OGMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2IBsweedrz0N+pRaKI13La4jOKVL VIvIAg2B1GFgS4rWCQt2Yh+M+WZOrQIMoTtzYX6+Ruv2+iY+awha3KtzOoMcwqN2 a7EzI/l9T2qXH0BNdnEX4R4VbvYQegPwIGeRIo6g7Iin87rOfYNTuWD+vJeW84jS Qgnxe8ThA+wOJ3FupTbhmpc5SxTU56arWJtKloGPUHgM3uJsJN1P9TpNnocHocPq ludl7KhcRrX70V2BAnErD2F1eteMZ2SqETAx7IYe9SIfnUUBqhoZIgEwpsdaTorL KwGXsQ3aNqyutvf43N4NhN8OajCWkwu+NLgqewbCMiYYFQiKTOHkZXnSPQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKEie+kUyQDOEZJtFcrbGoLCAkjCMB8GA1UdIwQY MBaAFHymQ7s5nG2HrcTHy6XSty+9ANBGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZktaRHV6bWNiWWV0eE1mTHBkSzNMNzBBMEVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi9jMDMwMWQtNTgwMS00YWM2LWI1MDMt NDRlYTY0NzIxYzllLzEvb1NKNzZSVEpBTTRSa20wVnl0c2Fnc0lDU01JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNi9jMDMwMWQtNTgwMS00YWM2LWI1MDMtNDRlYTY0NzIxYzll LzEvZktaRHV6bWNiWWV0eE1mTHBkSzNMNzBBMEVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCBbZ8MA0G CSqGSIb3DQEBCwUAA4IBAQBVrFr0eLnTLVi6/ho8xxINFVj/+YA8zp5Xf7HTatSc QgCO5ZfnKHEy7pkbmh9Kslc7THRJxkjLYYwDC8FWkTCo56R/RGP6OYd6bcFJqAgp gisibBnEhYcPQV3mFt6FUwnFfqpCK2zC8LyMdoMLq6RQZicy1V55W01PoTVOpOPb UdLEST+E5lgX7lNTq6Qd2HeMgk4Hn6QX+H8+BNahPgI6Ici4VNhGDmVQbU28MAho 5NeGWj512G9TMlfqwbp5ThwIWDvKGEY3I7/wgergxUql1s4bp95AWeYYpMU+nvlg yeWW5KXkFNjjmT5Tjb8deyASJTaYDJH+iVbk/KCKlaDC -----END CERTIFICATE-----Generated at Mon Jan 19 16:50:39 2026 by rpki-client