This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/o2zKTEKdkma_CEqLLr3-nWa-bTg.roa File: o2zKTEKdkma_CEqLLr3-nWa-bTg.roa (raw, json) Hash identifier: K00xY1oGfH9hHVRaGcI7b3OeCoea9X65r82JQ/DAkQ4= Subject key identifier: A3:6C:CA:4C:42:9D:92:66:BF:08:4A:8B:2E:BD:FE:9D:66:BE:6D:38 Certificate issuer: /CN=ae7f747df5f24353154dc4d4bf70d2ddcb53e900 Certificate serial: 019B7E383A02691C237D9AA61BD7D0E6206F Authority key identifier: AE:7F:74:7D:F5:F2:43:53:15:4D:C4:D4:BF:70:D2:DD:CB:53:E9:00 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/o2zKTEKdkma_CEqLLr3-nWa-bTg.roa Signing time: Fri 02 Jan 2026 10:19:32 +0000 ROA not before: Fri 02 Jan 2026 10:19:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60980 IP address blocks: 109.226.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:3a:02:69:1c:23:7d:9a:a6:1b:d7:d0:e6:20:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ae7f747df5f24353154dc4d4bf70d2ddcb53e900 Validity Not Before: Jan 2 10:19:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a36cca4c429d9266bf084a8b2ebdfe9d66be6d38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:69:12:f4:96:fd:0f:62:3f:90:b0:b7:64:d4: 46:29:d4:b9:63:0a:e1:f1:f0:88:cf:6e:1b:f8:f6: 92:2a:93:1c:60:e0:d7:16:8e:a1:58:f4:5e:d3:0d: 07:db:ee:85:ba:b4:1f:d3:a6:4f:74:39:e7:30:f2: 57:b8:ab:6e:b2:e6:22:7c:e2:4a:cd:53:87:ae:da: 5b:e3:d2:9c:7d:f5:7e:c6:98:61:38:49:26:a8:15: fe:75:6a:61:9b:47:58:25:c5:02:ed:dc:89:1a:4a: 7d:ff:ea:a1:ff:7f:81:38:c6:bd:9c:f0:0b:5d:49: 86:9b:88:5f:39:50:64:81:42:26:23:69:41:cf:65: 48:d4:56:2a:7d:2e:2a:ff:de:b3:48:64:eb:4a:71: c5:e1:95:dc:f4:f2:0e:ee:b0:9e:4d:d8:ae:27:43: 2b:df:89:03:66:be:1c:6f:43:f7:57:93:57:61:28: c5:54:18:0d:07:f2:0d:48:72:d5:06:0e:ce:8e:5d: eb:6a:54:25:9e:08:5b:d1:eb:a2:51:4c:e1:48:87: 93:88:1e:a1:40:28:80:36:6d:e9:3b:79:24:46:14: 94:1c:ed:d7:b5:ee:e7:27:c3:6e:b6:ff:5a:05:0a: c0:c0:fc:62:ea:fe:d1:61:1f:1d:44:31:5b:3f:82: 50:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:6C:CA:4C:42:9D:92:66:BF:08:4A:8B:2E:BD:FE:9D:66:BE:6D:38 X509v3 Authority Key Identifier: keyid:AE:7F:74:7D:F5:F2:43:53:15:4D:C4:D4:BF:70:D2:DD:CB:53:E9:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/o2zKTEKdkma_CEqLLr3-nWa-bTg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.226.247.0/24 Signature Algorithm: sha256WithRSAEncryption 16:c1:2a:03:a3:dc:b8:e4:d0:66:dc:4e:42:11:5f:5e:98:36: 6d:7a:4c:82:2f:37:c3:a2:d5:f7:05:2e:ac:a8:13:a5:0b:e5: 7f:bc:d6:5e:4f:f2:4c:50:cd:6f:cd:06:29:61:6d:55:a7:bd: 2c:ca:cd:57:49:6b:8c:42:30:82:4d:54:77:8d:b6:87:96:f0: ab:9a:87:bd:8a:df:f6:92:d1:ba:f4:30:c6:1b:f6:1f:b3:02: e0:fa:df:b4:38:17:ff:d2:6b:a6:2b:d0:5b:ba:66:1f:e2:75: 8b:09:7c:2c:16:8b:1b:e8:96:a6:6b:2e:11:a9:cd:40:06:5e: 6c:34:ed:9a:f9:39:74:47:56:c3:70:9c:a3:fd:06:d7:2e:46: 98:0d:fe:5b:1f:1a:6f:ba:d2:ad:66:5f:93:6d:71:00:70:f2: 59:c9:de:62:8d:5e:a1:c2:ae:78:8c:9b:e8:fa:20:a5:ff:d2: a0:97:63:de:3a:61:ee:03:0b:ac:bb:b1:e0:31:74:41:4e:d5: 47:cb:ec:9f:3b:71:29:6e:b1:34:ec:85:c5:fa:43:ff:69:b6: 1a:78:e8:cf:96:21:24:f2:97:56:85:50:88:49:28:1a:49:14: 44:28:f2:0b:f8:8f:ee:3e:1d:f7:75:03:5a:4d:65:ac:74:aa: dc:2b:8b:56 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+ODoCaRwjfZqmG9fQ5iBvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlN2Y3NDdkZjVmMjQzNTMxNTRkYzRkNGJmNzBkMmRkY2I1 M2U5MDAwHhcNMjYwMTAyMTAxOTMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMzZjY2E0YzQyOWQ5MjY2YmYwODRhOGIyZWJkZmU5ZDY2YmU2ZDM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtmkS9Jb9D2I/kLC3ZNRGKdS5Ywrh 8fCIz24b+PaSKpMcYODXFo6hWPRe0w0H2+6FurQf06ZPdDnnMPJXuKtusuYifOJK zVOHrtpb49KcffV+xphhOEkmqBX+dWphm0dYJcUC7dyJGkp9/+qh/3+BOMa9nPAL XUmGm4hfOVBkgUImI2lBz2VI1FYqfS4q/96zSGTrSnHF4ZXc9PIO7rCeTdiuJ0Mr 34kDZr4cb0P3V5NXYSjFVBgNB/INSHLVBg7Ojl3ralQlnghb0euiUUzhSIeTiB6h QCiANm3pO3kkRhSUHO3Xte7nJ8Nutv9aBQrAwPxi6v7RYR8dRDFbP4JQpQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKNsykxCnZJmvwhKiy69/p1mvm04MB8GA1UdIwQY MBaAFK5/dH318kNTFU3E1L9w0t3LU+kAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcm45MGZmWHlRMU1WVGNUVXYzRFMzY3RUNlFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi81OGFmMjQtYzQ1NC00NGIwLWE3Y2Et YzZmMWU2YWM5YmE5LzEvbzJ6S1RFS2RrbWFfQ0VxTExyMy1uV2EtYlRnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi81OGFmMjQtYzQ1NC00NGIwLWE3Y2EtYzZmMWU2YWM5YmE5 LzEvcm45MGZmWHlRMU1WVGNUVXYzRFMzY3RUNlFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbeL3MA0G CSqGSIb3DQEBCwUAA4IBAQAWwSoDo9y45NBm3E5CEV9emDZtekyCLzfDotX3BS6s qBOlC+V/vNZeT/JMUM1vzQYpYW1Vp70sys1XSWuMQjCCTVR3jbaHlvCrmoe9it/2 ktG69DDGG/YfswLg+t+0OBf/0mumK9BbumYf4nWLCXwsFosb6Jamay4Rqc1ABl5s NO2a+Tl0R1bDcJyj/QbXLkaYDf5bHxpvutKtZl+TbXEAcPJZyd5ijV6hwq54jJvo +iCl/9Kgl2PeOmHuAwusu7HgMXRBTtVHy+yfO3EpbrE07IXF+kP/abYaeOjPliEk 8pdWhVCISSgaSRREKPIL+I/uPh33dQNaTWWsdKrcK4tW -----END CERTIFICATE-----Generated at Mon Feb 9 19:54:31 2026 by rpki-client