This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/ODrvOm-dJuUN_AAYKVaZFOpeRWo.roa File: ODrvOm-dJuUN_AAYKVaZFOpeRWo.roa (raw, json) Hash identifier: BwrM7AQ3z89UNZnD9zdl+nzTro1rSz8r7mTAINtQABE= Subject key identifier: 38:3A:EF:3A:6F:9D:26:E5:0D:FC:00:18:29:56:99:14:EA:5E:45:6A Certificate issuer: /CN=5659b0ba8407be11cfc911bd31ed140cd1c6046c Certificate serial: 019B78352C6458914CE713433A4435300497 Authority key identifier: 56:59:B0:BA:84:07:BE:11:CF:C9:11:BD:31:ED:14:0C:D1:C6:04:6C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VlmwuoQHvhHPyRG9Me0UDNHGBGw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/ODrvOm-dJuUN_AAYKVaZFOpeRWo.roa Signing time: Thu 01 Jan 2026 06:18:29 +0000 ROA not before: Thu 01 Jan 2026 06:18:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 0 IP address blocks: 185.0.0.0/24 maxlen: 24 2001:7f8:133::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/VlmwuoQHvhHPyRG9Me0UDNHGBGw.crl rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/VlmwuoQHvhHPyRG9Me0UDNHGBGw.mft rsync://rpki.ripe.net/repository/DEFAULT/VlmwuoQHvhHPyRG9Me0UDNHGBGw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:2c:64:58:91:4c:e7:13:43:3a:44:35:30:04:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5659b0ba8407be11cfc911bd31ed140cd1c6046c Validity Not Before: Jan 1 06:18:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=383aef3a6f9d26e50dfc001829569914ea5e456a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:82:0a:16:e6:16:4c:2d:0b:ae:d7:05:e0:99: fa:1c:65:38:27:8a:49:74:ac:09:23:13:f0:5c:84: 64:fe:84:79:b1:81:99:72:d5:d6:5f:91:58:8d:65: db:eb:83:f1:c2:7e:58:69:b4:95:4c:ce:05:28:28: 2d:19:59:48:c3:23:12:01:b9:5b:62:27:7c:f9:ac: 30:06:22:ae:dc:9e:6a:8a:cf:b5:4b:37:37:f7:c4: 38:ac:82:d6:79:44:9c:9b:c2:01:63:0b:2d:e8:09: 51:06:3f:fb:6c:d8:0d:4d:0a:59:1a:ac:31:11:9e: 52:9c:ba:3d:ce:e4:ed:0f:a3:41:8c:d6:de:71:c1: 7c:3d:1b:42:19:e7:b9:6c:a0:04:03:dc:0a:7e:9f: 6c:81:a9:a0:c7:55:7b:4a:9f:ed:be:f9:52:91:bd: 2a:7d:8c:40:5b:0c:95:43:af:2c:fa:6c:cf:94:fb: 2d:46:5d:55:01:76:b6:2c:fb:40:08:4b:75:ac:ab: ad:4a:76:92:6e:a1:eb:9f:11:b4:df:e6:92:4d:74: 52:32:5c:a7:6f:bb:e5:ae:d1:22:9b:d9:c8:5a:fe: 43:67:fb:e2:04:aa:0d:e6:cf:f9:92:2d:d2:23:8c: 37:9a:1f:e6:bd:3a:7e:bb:69:64:13:0a:65:0f:22: e2:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:3A:EF:3A:6F:9D:26:E5:0D:FC:00:18:29:56:99:14:EA:5E:45:6A X509v3 Authority Key Identifier: keyid:56:59:B0:BA:84:07:BE:11:CF:C9:11:BD:31:ED:14:0C:D1:C6:04:6C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VlmwuoQHvhHPyRG9Me0UDNHGBGw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/ODrvOm-dJuUN_AAYKVaZFOpeRWo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/VlmwuoQHvhHPyRG9Me0UDNHGBGw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.0.0.0/24 IPv6: 2001:7f8:133::/48 Signature Algorithm: sha256WithRSAEncryption 71:43:34:c2:9f:a9:20:29:49:8e:ea:f6:bd:81:bd:91:96:b8: 73:d7:be:5b:ce:a8:60:9b:c9:10:72:51:ca:d1:af:70:81:aa: 8e:5b:8d:11:21:12:78:7e:0c:a7:63:9f:5a:3e:f7:99:b0:c5: 9f:50:5a:0a:ef:a3:f7:64:26:a9:29:2c:e0:74:44:4f:73:d3: 59:d0:87:96:5c:a8:89:31:12:58:66:fd:c8:4b:27:b6:79:8a: 85:82:75:79:78:b9:6e:2d:01:28:76:48:94:51:4e:d0:87:0c: 4b:ba:11:4a:d5:7b:8a:e8:da:a3:17:47:b0:13:69:b9:fa:ce: d8:4e:29:91:6e:db:0d:da:9d:50:3a:20:76:72:52:e4:70:72: 2d:c5:a3:27:59:ae:6e:76:a9:bf:9e:1f:1e:9d:42:73:29:e5: 8c:b7:1c:f7:8c:12:57:f0:77:bf:fc:7a:84:85:e1:dd:41:7a: ad:27:d4:d4:24:59:b9:9e:7a:70:e8:6b:fe:3c:ad:0f:32:84: 99:49:95:15:83:d8:74:96:02:dd:e1:fe:fe:fe:60:5d:f5:61: 9f:cf:56:7c:2b:a2:c5:cb:3c:d1:d9:e3:21:d1:9f:4d:7b:45: ec:64:54:9c:45:46:e5:e4:06:72:1e:29:a2:48:31:53:28:c6: 8b:05:a6:8d -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt4NSxkWJFM5xNDOkQ1MASXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU2NTliMGJhODQwN2JlMTFjZmM5MTFiZDMxZWQxNDBjZDFj NjA0NmMwHhcNMjYwMTAxMDYxODI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzODNhZWYzYTZmOWQyNmU1MGRmYzAwMTgyOTU2OTkxNGVhNWU0NTZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn4IKFuYWTC0LrtcF4Jn6HGU4J4pJ dKwJIxPwXIRk/oR5sYGZctXWX5FYjWXb64Pxwn5YabSVTM4FKCgtGVlIwyMSAblb Yid8+awwBiKu3J5qis+1Szc398Q4rILWeUScm8IBYwst6AlRBj/7bNgNTQpZGqwx EZ5SnLo9zuTtD6NBjNbeccF8PRtCGee5bKAEA9wKfp9sgamgx1V7Sp/tvvlSkb0q fYxAWwyVQ68s+mzPlPstRl1VAXa2LPtACEt1rKutSnaSbqHrnxG03+aSTXRSMlyn b7vlrtEim9nIWv5DZ/viBKoN5s/5ki3SI4w3mh/mvTp+u2lkEwplDyLiswIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFDg67zpvnSblDfwAGClWmRTqXkVqMB8GA1UdIwQY MBaAFFZZsLqEB74Rz8kRvTHtFAzRxgRsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVmxtd3VvUUh2aEhQeVJHOU1lMFVETkhHQkd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi9kZDhlMzEtMDBiNS00MjEyLTllMDEt MjM5NGM2NjAwMDIyLzEvT0Rydk9tLWRKdVVOX0FBWUtWYVpGT3BlUldvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYi9kZDhlMzEtMDBiNS00MjEyLTllMDEtMjM5NGM2NjAwMDIy LzEvVmxtd3VvUUh2aEhQeVJHOU1lMFVETkhHQkd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAuQAAMA8E AgACMAkDBwAgAQf4ATMwDQYJKoZIhvcNAQELBQADggEBAHFDNMKfqSApSY7q9r2B vZGWuHPXvlvOqGCbyRByUcrRr3CBqo5bjREhEnh+DKdjn1o+95mwxZ9QWgrvo/dk JqkpLOB0RE9z01nQh5ZcqIkxElhm/chLJ7Z5ioWCdXl4uW4tASh2SJRRTtCHDEu6 EUrVe4ro2qMXR7ATabn6zthOKZFu2w3anVA6IHZyUuRwci3FoydZrm52qb+eHx6d QnMp5Yy3HPeMElfwd7/8eoSF4d1Beq0n1NQkWbmeenDoa/48rQ8yhJlJlRWD2HSW At3h/v7+YF31YZ/PVnwrosXLPNHZ4yHRn017RexkVJxFRuXkBnIeKaJIMVMoxosF po0= -----END CERTIFICATE-----Generated at Wed Jan 7 23:51:46 2026 by rpki-client