This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/f1af90-355c-484b-b923-d31d4cb1b129/1/oEJd0BVsW2fwuqjY3Y6ze5isQfE.roa File: oEJd0BVsW2fwuqjY3Y6ze5isQfE.roa (raw, json) Hash identifier: +n+CDK7Y745a+xc3pPOkB9KVNRlgLlgagHreMZ7nr2k= Subject key identifier: A0:42:5D:D0:15:6C:5B:67:F0:BA:A8:D8:DD:8E:B3:7B:98:AC:41:F1 Certificate issuer: /CN=30309941a6d84fa4dbddaf0f4ecd99f9f043cfdc Certificate serial: 019B7EA47F4B1D4DEC53950CCAEB3C7681CC Authority key identifier: 30:30:99:41:A6:D8:4F:A4:DB:DD:AF:0F:4E:CD:99:F9:F0:43:CF:DC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MDCZQabYT6Tb3a8PTs2Z-fBDz9w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/f1af90-355c-484b-b923-d31d4cb1b129/1/oEJd0BVsW2fwuqjY3Y6ze5isQfE.roa Signing time: Fri 02 Jan 2026 12:17:48 +0000 ROA not before: Fri 02 Jan 2026 12:17:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209011 IP address blocks: 94.177.128.0/24 maxlen: 24 194.28.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/f1af90-355c-484b-b923-d31d4cb1b129/1/MDCZQabYT6Tb3a8PTs2Z-fBDz9w.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/f1af90-355c-484b-b923-d31d4cb1b129/1/MDCZQabYT6Tb3a8PTs2Z-fBDz9w.mft rsync://rpki.ripe.net/repository/DEFAULT/MDCZQabYT6Tb3a8PTs2Z-fBDz9w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a4:7f:4b:1d:4d:ec:53:95:0c:ca:eb:3c:76:81:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30309941a6d84fa4dbddaf0f4ecd99f9f043cfdc Validity Not Before: Jan 2 12:17:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a0425dd0156c5b67f0baa8d8dd8eb37b98ac41f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:14:9f:51:cd:de:be:86:22:dc:c1:6e:73:99: 44:80:7b:89:6e:cf:6b:74:6d:0a:cc:c0:cf:9e:3d: c5:8b:ce:be:c9:c1:bc:b3:85:f1:c9:45:ca:68:b7: 1a:05:0f:77:4c:ce:7c:50:b5:79:9a:c4:dd:ca:6c: 62:bf:07:9d:1a:57:2e:06:cd:94:28:8e:b6:49:d5: 7e:04:19:8e:89:93:32:65:83:ef:42:19:78:b6:62: 62:f5:b7:f1:57:00:b5:66:19:79:0e:66:92:fe:ef: c9:99:17:fd:b3:ab:59:72:00:3c:cf:96:97:27:cd: 8b:b5:91:8a:48:e1:ba:4a:be:88:d9:36:f3:f0:6b: ea:c0:70:81:26:69:b6:fc:a8:1b:0a:af:c9:ea:6e: d8:34:e0:ca:2d:0b:ae:33:8a:3c:20:f2:d0:f3:bf: c6:c8:78:22:c2:e8:04:8a:f5:4b:d5:0a:c9:76:1a: b8:7c:72:ed:da:2a:09:c7:61:bd:e4:af:d3:9a:3b: 45:3c:ce:67:cc:49:68:ef:00:51:f6:1f:9d:f2:30: 1a:62:c5:aa:49:b1:3d:64:4d:c8:ed:1a:01:eb:c7: d9:b7:2a:7d:94:95:9e:5e:c1:58:49:2e:de:c2:ac: f2:11:a0:f5:2e:78:92:5c:6c:52:25:d2:e4:bd:69: 15:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:42:5D:D0:15:6C:5B:67:F0:BA:A8:D8:DD:8E:B3:7B:98:AC:41:F1 X509v3 Authority Key Identifier: keyid:30:30:99:41:A6:D8:4F:A4:DB:DD:AF:0F:4E:CD:99:F9:F0:43:CF:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MDCZQabYT6Tb3a8PTs2Z-fBDz9w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/f1af90-355c-484b-b923-d31d4cb1b129/1/oEJd0BVsW2fwuqjY3Y6ze5isQfE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/f1af90-355c-484b-b923-d31d4cb1b129/1/MDCZQabYT6Tb3a8PTs2Z-fBDz9w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.177.128.0/24 194.28.44.0/24 Signature Algorithm: sha256WithRSAEncryption aa:1f:cc:3f:4f:c0:76:50:05:e3:45:0f:d6:1d:fe:a2:2d:80: b5:73:ae:16:ef:8a:3c:ad:32:f9:a7:a0:3b:b4:35:22:f3:fa: 1a:4e:fb:d3:b9:a6:1b:1a:b8:00:13:72:6c:10:24:1d:0b:74: bd:1a:14:57:d7:92:b5:15:a2:86:1d:b7:b8:ba:0e:68:ad:92: f0:72:9e:a9:64:62:ce:91:51:40:59:93:fb:ea:a3:4c:8f:60: c2:88:0f:14:80:39:48:fa:31:f0:e5:4d:d1:e9:b9:72:0e:15: 7a:1e:56:67:e0:96:72:88:44:9f:81:8d:89:78:45:60:8c:23: dc:56:63:37:db:d9:fc:d2:c6:97:3f:e9:2b:a5:37:46:1e:0d: c7:6e:f9:09:be:3a:19:96:34:f9:57:18:0e:71:f1:20:ae:f2: 00:7a:e6:8f:7c:ac:de:5c:44:b8:33:a2:a6:cc:a9:2f:4f:88: dd:7a:3c:38:2c:0f:b5:59:ce:a1:a9:26:a0:dd:8f:c4:1c:1b: 66:6d:ec:43:97:63:57:ed:76:01:9b:c3:66:1d:99:7c:d4:07: 31:41:8a:46:91:1e:4e:a5:0e:ab:bc:2e:71:da:8d:cb:ff:c1: d9:e8:c2:35:e4:d3:c7:1a:c7:fa:36:bc:fd:3c:5c:9f:83:59: a1:1d:57:cb -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+pH9LHU3sU5UMyus8doHMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwMzA5OTQxYTZkODRmYTRkYmRkYWYwZjRlY2Q5OWY5ZjA0 M2NmZGMwHhcNMjYwMTAyMTIxNzQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMDQyNWRkMDE1NmM1YjY3ZjBiYWE4ZDhkZDhlYjM3Yjk4YWM0MWYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyBSfUc3evoYi3MFuc5lEgHuJbs9r dG0KzMDPnj3Fi86+ycG8s4XxyUXKaLcaBQ93TM58ULV5msTdymxivwedGlcuBs2U KI62SdV+BBmOiZMyZYPvQhl4tmJi9bfxVwC1Zhl5DmaS/u/JmRf9s6tZcgA8z5aX J82LtZGKSOG6Sr6I2Tbz8GvqwHCBJmm2/KgbCq/J6m7YNODKLQuuM4o8IPLQ87/G yHgiwugEivVL1QrJdhq4fHLt2ioJx2G95K/TmjtFPM5nzElo7wBR9h+d8jAaYsWq SbE9ZE3I7RoB68fZtyp9lJWeXsFYSS7ewqzyEaD1LniSXGxSJdLkvWkV8QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFKBCXdAVbFtn8Lqo2N2Os3uYrEHxMB8GA1UdIwQY MBaAFDAwmUGm2E+k292vD07NmfnwQ8/cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTURDWlFhYllUNlRiM2E4UFRzMlotZkJEejl3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9mMWFmOTAtMzU1Yy00ODRiLWI5MjMt ZDMxZDRjYjFiMTI5LzEvb0VKZDBCVnNXMmZ3dXFqWTNZNnplNWlzUWZFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi9mMWFmOTAtMzU1Yy00ODRiLWI5MjMtZDMxZDRjYjFiMTI5 LzEvTURDWlFhYllUNlRiM2E4UFRzMlotZkJEejl3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAXrGAAwQA whwsMA0GCSqGSIb3DQEBCwUAA4IBAQCqH8w/T8B2UAXjRQ/WHf6iLYC1c64W74o8 rTL5p6A7tDUi8/oaTvvTuaYbGrgAE3JsECQdC3S9GhRX15K1FaKGHbe4ug5orZLw cp6pZGLOkVFAWZP76qNMj2DCiA8UgDlI+jHw5U3R6blyDhV6HlZn4JZyiESfgY2J eEVgjCPcVmM329n80saXP+krpTdGHg3HbvkJvjoZljT5VxgOcfEgrvIAeuaPfKze XES4M6KmzKkvT4jdejw4LA+1Wc6hqSag3Y/EHBtmbexDl2NX7XYBm8NmHZl81Acx QYpGkR5OpQ6rvC5x2o3L/8HZ6MI15NPHGsf6Nrz9PFyfg1mhHVfL -----END CERTIFICATE-----Generated at Mon Feb 9 21:25:13 2026 by rpki-client