This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/65398a-0faa-4b64-bd09-09886c0c46a0/1/O4YiRIWBlabnpHM7xKFcaOrOaKI.roa File: O4YiRIWBlabnpHM7xKFcaOrOaKI.roa (raw, json) Hash identifier: ayodsdmBoAdUSEjYUyXeYrwcQDz8Nad0uAG3lrZysIY= Subject key identifier: 3B:86:22:44:85:81:95:A6:E7:A4:73:3B:C4:A1:5C:68:EA:CE:68:A2 Certificate issuer: /CN=e2e7af73c07a5782af24834ebddb74a9c897c4ff Certificate serial: 019B7AC7B09D4121518BF2D084D680EB5A56 Authority key identifier: E2:E7:AF:73:C0:7A:57:82:AF:24:83:4E:BD:DB:74:A9:C8:97:C4:FF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4uevc8B6V4KvJINOvdt0qciXxP8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/65398a-0faa-4b64-bd09-09886c0c46a0/1/O4YiRIWBlabnpHM7xKFcaOrOaKI.roa Signing time: Thu 01 Jan 2026 18:17:45 +0000 ROA not before: Thu 01 Jan 2026 18:17:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 553 IP address blocks: 141.31.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/65398a-0faa-4b64-bd09-09886c0c46a0/1/4uevc8B6V4KvJINOvdt0qciXxP8.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/65398a-0faa-4b64-bd09-09886c0c46a0/1/4uevc8B6V4KvJINOvdt0qciXxP8.mft rsync://rpki.ripe.net/repository/DEFAULT/4uevc8B6V4KvJINOvdt0qciXxP8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:b0:9d:41:21:51:8b:f2:d0:84:d6:80:eb:5a:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e2e7af73c07a5782af24834ebddb74a9c897c4ff Validity Not Before: Jan 1 18:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3b862244858195a6e7a4733bc4a15c68eace68a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:33:01:fc:ee:8a:40:ba:30:7b:19:94:dc:30: ca:7e:2b:c1:67:49:8e:a6:88:72:22:e5:7b:b6:0a: 02:1c:79:63:cc:b7:58:e1:87:83:40:c8:dd:4d:69: fc:2c:c0:77:05:28:0e:5d:a2:00:14:1f:22:2c:28: 17:38:5c:93:9a:46:74:7b:92:b2:fb:12:72:e2:fb: 72:9b:f2:53:59:26:64:59:24:b9:93:da:76:40:3e: e3:d4:96:4a:f5:1b:4d:eb:2d:4f:5d:1f:86:ab:a2: a9:c8:ad:fb:7c:ec:e4:81:ae:92:f9:09:1b:bd:3b: 84:ff:f3:bb:39:5b:81:3b:1a:bd:48:a1:0d:22:66: 25:1a:69:45:4a:6d:63:2b:b4:ac:da:29:b1:67:69: 19:ed:98:65:d4:fc:1c:66:67:dd:fc:6b:2e:2b:d3: 13:63:25:62:26:47:c2:17:16:1f:2a:8b:63:e5:01: 94:77:22:87:93:43:55:62:85:7a:ff:41:36:3f:6f: e4:9e:65:53:4b:e0:d5:0b:48:25:f8:fc:47:29:fd: 23:49:b5:9b:48:48:89:61:df:9b:f3:ab:cf:1a:fd: 2f:e4:87:6d:de:68:25:3d:c1:d9:b1:e9:92:66:43: d7:e1:fc:c8:c2:dc:df:a4:72:84:b3:81:3e:ef:9d: 6f:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:86:22:44:85:81:95:A6:E7:A4:73:3B:C4:A1:5C:68:EA:CE:68:A2 X509v3 Authority Key Identifier: keyid:E2:E7:AF:73:C0:7A:57:82:AF:24:83:4E:BD:DB:74:A9:C8:97:C4:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4uevc8B6V4KvJINOvdt0qciXxP8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/65398a-0faa-4b64-bd09-09886c0c46a0/1/O4YiRIWBlabnpHM7xKFcaOrOaKI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/65398a-0faa-4b64-bd09-09886c0c46a0/1/4uevc8B6V4KvJINOvdt0qciXxP8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 141.31.0.0/16 Signature Algorithm: sha256WithRSAEncryption 98:56:bd:5b:61:bb:7a:f9:00:92:c4:49:d0:8c:6a:cf:59:7d: e8:1c:d9:1e:9f:25:bd:e0:0e:69:98:c6:46:83:82:56:c9:d9: 37:aa:54:fe:2f:c2:95:f3:57:92:f7:13:70:f5:d7:e0:b4:d5: 50:6d:7a:82:64:12:9e:01:83:d5:5a:6d:88:06:f1:e1:a0:9b: 9e:58:0c:83:52:0f:98:dd:af:b2:f7:10:7e:42:33:a4:4a:c0: d7:45:64:fc:8b:28:fe:3a:0f:15:0c:55:c0:dc:d0:31:bb:37: de:a3:5c:6a:b6:45:09:48:61:76:15:95:2f:c1:ff:bb:47:31: 00:14:b6:2e:4f:0c:43:1e:11:00:e7:a8:83:55:ef:68:0e:7e: 51:b9:0a:47:fd:bb:7c:6d:f4:80:ff:0d:b9:5b:54:86:f1:84: cb:d3:0d:3e:71:77:35:ec:78:5c:74:c2:41:98:be:40:e2:da: f4:d1:1c:ac:0b:f9:e3:c0:08:41:eb:d1:63:55:d3:af:5e:35: 9e:a8:ab:b0:35:e1:bf:7b:89:16:70:fd:44:e8:35:b5:99:f2: 59:3e:34:c3:b3:3e:1e:52:52:b7:79:4a:6c:84:c1:e8:dc:d3: 44:43:96:11:1d:ec:65:76:f0:07:63:4d:63:a8:f6:90:3c:d9: 2c:7c:98:a8 -----BEGIN CERTIFICATE----- MIIE/DCCA+SgAwIBAgISAZt6x7CdQSFRi/LQhNaA61pWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUyZTdhZjczYzA3YTU3ODJhZjI0ODM0ZWJkZGI3NGE5Yzg5 N2M0ZmYwHhcNMjYwMTAxMTgxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYjg2MjI0NDg1ODE5NWE2ZTdhNDczM2JjNGExNWM2OGVhY2U2OGEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArDMB/O6KQLowexmU3DDKfivBZ0mO pohyIuV7tgoCHHljzLdY4YeDQMjdTWn8LMB3BSgOXaIAFB8iLCgXOFyTmkZ0e5Ky +xJy4vtym/JTWSZkWSS5k9p2QD7j1JZK9RtN6y1PXR+Gq6KpyK37fOzkga6S+Qkb vTuE//O7OVuBOxq9SKENImYlGmlFSm1jK7Ss2imxZ2kZ7Zhl1PwcZmfd/GsuK9MT YyViJkfCFxYfKotj5QGUdyKHk0NVYoV6/0E2P2/knmVTS+DVC0gl+PxHKf0jSbWb SEiJYd+b86vPGv0v5Idt3mglPcHZsemSZkPX4fzIwtzfpHKEs4E+751vWQIDAQAB o4ICCDCCAgQwHQYDVR0OBBYEFDuGIkSFgZWm56RzO8ShXGjqzmiiMB8GA1UdIwQY MBaAFOLnr3PAeleCrySDTr3bdKnIl8T/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNHVldmM4QjZWNEt2SklOT3ZkdDBxY2lYeFA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS82NTM5OGEtMGZhYS00YjY0LWJkMDkt MDk4ODZjMGM0NmEwLzEvTzRZaVJJV0JsYWJucEhNN3hLRmNhT3JPYUtJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS82NTM5OGEtMGZhYS00YjY0LWJkMDktMDk4ODZjMGM0NmEw LzEvNHVldmM4QjZWNEt2SklOT3ZkdDBxY2lYeFA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjR8wDQYJ KoZIhvcNAQELBQADggEBAJhWvVthu3r5AJLESdCMas9Zfegc2R6fJb3gDmmYxkaD glbJ2TeqVP4vwpXzV5L3E3D11+C01VBteoJkEp4Bg9VabYgG8eGgm55YDINSD5jd r7L3EH5CM6RKwNdFZPyLKP46DxUMVcDc0DG7N96jXGq2RQlIYXYVlS/B/7tHMQAU ti5PDEMeEQDnqINV72gOflG5Ckf9u3xt9ID/DblbVIbxhMvTDT5xdzXseFx0wkGY vkDi2vTRHKwL+ePACEHr0WNV069eNZ6oq7A14b97iRZw/UToNbWZ8lk+NMOzPh5S Urd5SmyEwejc00RDlhEd7GV28AdjTWOo9pA82Sx8mKg= -----END CERTIFICATE-----Generated at Mon Feb 2 08:06:40 2026 by rpki-client