This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/OmEoVv1hXlPAq7CNGemEHtoyCq8.roa File: OmEoVv1hXlPAq7CNGemEHtoyCq8.roa (raw, json) Hash identifier: 6Oxl07RE77xSOspyGrQX/nCyx5aobEqs28whvRim2nM= Subject key identifier: 3A:61:28:56:FD:61:5E:53:C0:AB:B0:8D:19:E9:84:1E:DA:32:0A:AF Certificate issuer: /CN=ff31492473a78c6fe9f539f9fa7d2252560a2b7e Certificate serial: 019B79ECF9FC3C36F99AA3C809B2BC8481A9 Authority key identifier: FF:31:49:24:73:A7:8C:6F:E9:F5:39:F9:FA:7D:22:52:56:0A:2B:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_zFJJHOnjG_p9Tn5-n0iUlYKK34.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/OmEoVv1hXlPAq7CNGemEHtoyCq8.roa Signing time: Thu 01 Jan 2026 14:18:52 +0000 ROA not before: Thu 01 Jan 2026 14:18:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206813 IP address blocks: 2001:bf7:170::/44 maxlen: 48 2001:bf7:1310::/44 maxlen: 48 2001:bf7:1310::/48 maxlen: 48 2001:bf7:1311::/48 maxlen: 48 2001:bf7:1314::/48 maxlen: 48 2001:bf7:1315::/48 maxlen: 48 2001:bf7:1320::/44 maxlen: 48 2001:bf7:1322::/48 maxlen: 48 2001:bf7:1350::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/_zFJJHOnjG_p9Tn5-n0iUlYKK34.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/_zFJJHOnjG_p9Tn5-n0iUlYKK34.mft rsync://rpki.ripe.net/repository/DEFAULT/_zFJJHOnjG_p9Tn5-n0iUlYKK34.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:f9:fc:3c:36:f9:9a:a3:c8:09:b2:bc:84:81:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ff31492473a78c6fe9f539f9fa7d2252560a2b7e Validity Not Before: Jan 1 14:18:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3a612856fd615e53c0abb08d19e9841eda320aaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:07:ca:fb:ef:c4:ae:87:32:83:44:dd:2e:05: 20:af:ad:3b:8a:d9:86:a3:e1:b3:47:64:bb:30:5c: 9c:79:bf:1c:1f:86:d7:26:16:9e:79:0a:4e:0e:52: b2:85:2d:59:1f:33:a0:63:6b:56:5d:7a:54:91:f9: 12:2c:9f:84:ef:b4:dc:71:38:de:28:0c:f8:81:4c: 35:99:9f:29:e9:1a:68:9a:fd:41:d2:e8:9e:39:0d: bd:bf:a6:fe:d6:76:dc:98:bc:72:79:97:ea:f5:5e: aa:dc:98:01:30:38:fa:2a:d2:e2:a9:6c:90:72:b7: 87:bb:b5:38:b8:8c:dc:30:83:0b:fc:26:df:33:06: e7:d3:25:2d:1a:7f:af:5a:35:4c:42:ed:c6:f0:69: e3:31:4d:c6:88:9c:4a:3c:52:e2:d1:d8:e9:12:ac: d6:0d:af:1c:22:e7:f9:5f:b6:49:32:94:96:70:df: 70:a8:80:71:e2:5e:58:40:86:73:31:70:15:4b:9e: 26:8f:75:f6:17:63:21:22:e2:b9:ef:57:55:c5:81: 7a:27:4c:81:48:ad:f1:0e:9c:14:3f:3c:28:6c:8b: 2e:73:24:ed:e2:67:3a:54:f4:1c:6c:32:f6:48:cf: a2:30:42:ff:d4:37:de:3d:28:75:93:1e:68:1a:f6: 86:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:61:28:56:FD:61:5E:53:C0:AB:B0:8D:19:E9:84:1E:DA:32:0A:AF X509v3 Authority Key Identifier: keyid:FF:31:49:24:73:A7:8C:6F:E9:F5:39:F9:FA:7D:22:52:56:0A:2B:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_zFJJHOnjG_p9Tn5-n0iUlYKK34.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/OmEoVv1hXlPAq7CNGemEHtoyCq8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/_zFJJHOnjG_p9Tn5-n0iUlYKK34.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:bf7:170::/44 2001:bf7:1310::-2001:bf7:132f:ffff:ffff:ffff:ffff:ffff 2001:bf7:1350::/44 Signature Algorithm: sha256WithRSAEncryption 7d:f0:62:cb:af:99:26:96:ac:0e:d7:e4:2c:22:dd:70:8a:50: 5b:d4:82:6a:1c:75:d1:83:39:33:88:c0:d3:30:36:b5:1e:8d: c9:24:86:8b:1b:2c:41:9a:9f:75:4f:87:74:07:79:06:39:8b: 91:31:f7:1f:1e:d1:74:a7:e5:3a:0a:7a:13:4f:1a:58:a1:3e: aa:5f:2a:43:55:27:49:39:d5:05:80:ac:45:92:8d:ec:2b:26: b3:26:ec:a9:ae:3e:e8:0b:da:af:43:35:11:a1:43:50:a7:68: 2c:88:47:ce:53:6c:c1:8a:ef:ba:8d:08:72:8e:07:a6:3e:06: ef:a0:89:cc:51:7f:75:06:d8:3b:d1:30:da:f2:6d:ab:a6:a1: 5d:2b:f5:b9:2b:0c:32:a0:68:71:91:ef:56:34:8e:c3:61:d3: 94:41:c0:d7:6c:ea:ec:3c:d3:0c:ff:ab:6e:14:81:92:b9:36: 69:3a:7c:f1:09:7f:bd:ab:7c:25:1b:88:d6:a5:6b:c9:44:dc: 6c:01:5c:02:4a:72:ee:bc:a3:f2:84:c8:c0:f1:b9:d6:c6:0a: 6f:f1:59:af:71:0d:e9:9b:31:79:51:94:2c:15:7f:d3:5a:aa: cc:5b:c1:0d:04:d0:2d:23:ea:91:8f:45:ad:8c:1c:d7:01:82: c4:6d:2f:72 -----BEGIN CERTIFICATE----- MIIFHTCCBAWgAwIBAgISAZt57Pn8PDb5mqPICbK8hIGpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZmMzE0OTI0NzNhNzhjNmZlOWY1MzlmOWZhN2QyMjUyNTYw YTJiN2UwHhcNMjYwMTAxMTQxODUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYTYxMjg1NmZkNjE1ZTUzYzBhYmIwOGQxOWU5ODQxZWRhMzIwYWFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqQfK++/Erocyg0TdLgUgr607itmG o+GzR2S7MFyceb8cH4bXJhaeeQpODlKyhS1ZHzOgY2tWXXpUkfkSLJ+E77TccTje KAz4gUw1mZ8p6Rpomv1B0uieOQ29v6b+1nbcmLxyeZfq9V6q3JgBMDj6KtLiqWyQ creHu7U4uIzcMIML/CbfMwbn0yUtGn+vWjVMQu3G8GnjMU3GiJxKPFLi0djpEqzW Da8cIuf5X7ZJMpSWcN9wqIBx4l5YQIZzMXAVS54mj3X2F2MhIuK571dVxYF6J0yB SK3xDpwUPzwobIsucyTt4mc6VPQcbDL2SM+iMEL/1DfePSh1kx5oGvaGvwIDAQAB o4ICKTCCAiUwHQYDVR0OBBYEFDphKFb9YV5TwKuwjRnphB7aMgqvMB8GA1UdIwQY MBaAFP8xSSRzp4xv6fU5+fp9IlJWCit+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX3pGSkpIT25qR19wOVRuNS1uMGlVbFlLSzM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8xYjQxMDUtMzQ3MS00NTkyLWJmMDct NzNmZDNiYzE5YWE3LzEvT21Fb1Z2MWhYbFBBcTdDTkdlbUVIdG95Q3E4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8xYjQxMDUtMzQ3MS00NTkyLWJmMDctNzNmZDNiYzE5YWE3 LzEvX3pGSkpIT25qR19wOVRuNS1uMGlVbFlLSzM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD8GCCsGAQUFBwEHAQH/BDAwLjAsBAIAAjAmAwcEIAEL9wFw MBIDBwQgAQv3ExADBwQgAQv3EyADBwQgAQv3E1AwDQYJKoZIhvcNAQELBQADggEB AH3wYsuvmSaWrA7X5Cwi3XCKUFvUgmocddGDOTOIwNMwNrUejckkhosbLEGan3VP h3QHeQY5i5Ex9x8e0XSn5ToKehNPGlihPqpfKkNVJ0k51QWArEWSjewrJrMm7Kmu PugL2q9DNRGhQ1CnaCyIR85TbMGK77qNCHKOB6Y+Bu+gicxRf3UG2DvRMNrybaum oV0r9bkrDDKgaHGR71Y0jsNh05RBwNds6uw80wz/q24UgZK5Nmk6fPEJf72rfCUb iNala8lE3GwBXAJKcu68o/KEyMDxudbGCm/xWa9xDembMXlRlCwVf9NaqsxbwQ0E 0C0j6pGPRa2MHNcBgsRtL3I= -----END CERTIFICATE-----Generated at Mon Jan 26 22:27:28 2026 by rpki-client