This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/OUhIXcYKuJwX-1gGqSyC-ytysk8.roa File: OUhIXcYKuJwX-1gGqSyC-ytysk8.roa (raw, json) Hash identifier: SNKMZI12Bd30LXMDKulFyeiCL2F4p+Ej66EZURTKN18= Subject key identifier: 39:48:48:5D:C6:0A:B8:9C:17:FB:58:06:A9:2C:82:FB:2B:72:B2:4F Certificate issuer: /CN=5cd379cedcdc20f0875c4b08b94b41161b3e8c03 Certificate serial: 019B7BA4F5B14A7430B13C7AE33AD1E25DE3 Authority key identifier: 5C:D3:79:CE:DC:DC:20:F0:87:5C:4B:08:B9:4B:41:16:1B:3E:8C:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XNN5ztzcIPCHXEsIuUtBFhs-jAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/OUhIXcYKuJwX-1gGqSyC-ytysk8.roa Signing time: Thu 01 Jan 2026 22:19:26 +0000 ROA not before: Thu 01 Jan 2026 22:19:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42936 IP address blocks: 91.193.64.0/22 maxlen: 22 2001:67c:13c8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft rsync://rpki.ripe.net/repository/DEFAULT/XNN5ztzcIPCHXEsIuUtBFhs-jAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:f5:b1:4a:74:30:b1:3c:7a:e3:3a:d1:e2:5d:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5cd379cedcdc20f0875c4b08b94b41161b3e8c03 Validity Not Before: Jan 1 22:19:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3948485dc60ab89c17fb5806a92c82fb2b72b24f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:de:3c:db:1f:15:74:1f:dd:af:d8:05:12:5a: 07:5e:08:72:0e:94:ba:46:08:c3:3b:34:12:66:bf: fb:5a:02:e1:dc:7c:08:0c:ab:73:0b:ae:7a:a0:cc: 0a:40:b6:43:7a:c8:6c:b6:ee:80:85:6b:74:08:70: bd:7d:c8:6c:15:55:47:a0:de:af:a7:2f:36:e2:f4: bb:38:fa:dc:6e:a7:74:5a:ad:ba:57:77:b6:7e:ba: fa:26:d4:66:d0:6b:65:cd:56:58:62:6e:d5:35:b7: aa:0d:7c:80:71:60:66:6a:d1:08:6c:c9:6c:64:0a: 63:31:48:05:0a:d4:6c:8b:42:71:71:a8:48:2b:2b: 02:e0:5c:69:cd:41:da:13:af:2f:48:d8:cd:80:9b: 7a:85:cc:4f:74:91:a0:a0:94:a9:89:9e:cf:c4:9a: 33:0c:c2:39:f6:2d:ea:91:cb:00:80:90:87:d5:b9: 0a:43:17:2f:b2:c5:d9:3f:d0:c5:9a:9f:86:13:fb: 60:79:39:d3:f0:52:86:1d:11:06:2c:e2:7e:a4:1d: 3b:7c:ee:e7:59:c7:af:55:a3:1d:38:d5:c6:4d:6e: fe:50:13:4d:73:db:89:88:c2:de:45:8b:b6:4a:47: 76:8f:26:9f:74:ff:6c:05:a3:e1:93:de:5c:32:2f: 20:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:48:48:5D:C6:0A:B8:9C:17:FB:58:06:A9:2C:82:FB:2B:72:B2:4F X509v3 Authority Key Identifier: keyid:5C:D3:79:CE:DC:DC:20:F0:87:5C:4B:08:B9:4B:41:16:1B:3E:8C:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XNN5ztzcIPCHXEsIuUtBFhs-jAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/OUhIXcYKuJwX-1gGqSyC-ytysk8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.193.64.0/22 IPv6: 2001:67c:13c8::/48 Signature Algorithm: sha256WithRSAEncryption 8a:06:27:0e:55:23:c9:1c:30:68:cd:c4:c3:8d:df:8b:69:2e: ee:e7:39:a8:fb:a0:13:13:6f:55:ec:57:f9:6f:73:30:0d:9c: 2e:6a:c6:87:cb:84:7a:5b:3d:1d:57:6f:1d:fb:33:59:f4:be: 57:33:5b:b7:11:21:45:75:c7:87:38:a9:32:6e:b3:ea:e0:dd: e1:d0:bb:99:a2:10:a7:a9:22:4a:db:b2:22:18:b8:fd:75:05: 67:ab:3c:93:ac:1c:47:57:4d:6d:71:05:9e:79:53:20:1b:a3: c1:6f:c1:61:c3:e1:a4:02:2b:d6:5d:ca:25:87:48:d3:00:d2: 1c:2b:0f:c2:47:83:4a:9a:c0:8f:7d:47:c0:53:4a:d5:47:e1: a9:32:4d:04:a4:3d:e2:1a:90:f5:01:63:6b:3a:18:c6:2c:bc: 2a:88:56:ab:47:fd:ef:53:6a:65:9f:1a:81:84:65:f3:08:d7: 5f:76:51:21:72:49:dd:5d:87:97:59:11:8f:53:98:27:48:59: 93:41:bb:7c:ca:ac:d8:3d:cd:00:4b:1e:f2:4e:93:66:8a:36: ea:ab:ac:56:4f:b2:d7:b1:34:24:90:c1:61:92:e8:1a:1b:59: fd:11:16:ba:fd:b4:04:14:70:23:91:dd:14:21:08:4b:81:94: 21:9b:ba:f8 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt7pPWxSnQwsTx64zrR4l3jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjZDM3OWNlZGNkYzIwZjA4NzVjNGIwOGI5NGI0MTE2MWIz ZThjMDMwHhcNMjYwMTAxMjIxOTI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzOTQ4NDg1ZGM2MGFiODljMTdmYjU4MDZhOTJjODJmYjJiNzJiMjRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqN482x8VdB/dr9gFEloHXghyDpS6 RgjDOzQSZr/7WgLh3HwIDKtzC656oMwKQLZDeshstu6AhWt0CHC9fchsFVVHoN6v py824vS7OPrcbqd0Wq26V3e2frr6JtRm0GtlzVZYYm7VNbeqDXyAcWBmatEIbMls ZApjMUgFCtRsi0JxcahIKysC4FxpzUHaE68vSNjNgJt6hcxPdJGgoJSpiZ7PxJoz DMI59i3qkcsAgJCH1bkKQxcvssXZP9DFmp+GE/tgeTnT8FKGHREGLOJ+pB07fO7n WcevVaMdONXGTW7+UBNNc9uJiMLeRYu2Skd2jyafdP9sBaPhk95cMi8gZwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFDlISF3GCricF/tYBqksgvsrcrJPMB8GA1UdIwQY MBaAFFzTec7c3CDwh1xLCLlLQRYbPowDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWE5ONXp0emNJUENIWEVzSXVVdEJGaHMtakFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9mM2NjYTQtZjZiZi00NzM0LWFiYmQt MDk2NDQ2NGMxNzUxLzEvT1VoSVhjWUt1SndYLTFnR3FTeUMteXR5c2s4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS9mM2NjYTQtZjZiZi00NzM0LWFiYmQtMDk2NDQ2NGMxNzUx LzEvWE5ONXp0emNJUENIWEVzSXVVdEJGaHMtakFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQCW8FAMA8E AgACMAkDBwAgAQZ8E8gwDQYJKoZIhvcNAQELBQADggEBAIoGJw5VI8kcMGjNxMON 34tpLu7nOaj7oBMTb1XsV/lvczANnC5qxofLhHpbPR1Xbx37M1n0vlczW7cRIUV1 x4c4qTJus+rg3eHQu5miEKepIkrbsiIYuP11BWerPJOsHEdXTW1xBZ55UyAbo8Fv wWHD4aQCK9ZdyiWHSNMA0hwrD8JHg0qawI99R8BTStVH4akyTQSkPeIakPUBY2s6 GMYsvCqIVqtH/e9TamWfGoGEZfMI1192USFySd1dh5dZEY9TmCdIWZNBu3zKrNg9 zQBLHvJOk2aKNuqrrFZPstexNCSQwWGS6BobWf0RFrr9tAQUcCOR3RQhCEuBlCGb uvg= -----END CERTIFICATE-----Generated at Tue Feb 10 01:28:16 2026 by rpki-client