This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/opvih5xxd1A3a7secRqTbCxccI4.roa File: opvih5xxd1A3a7secRqTbCxccI4.roa (raw, json) Hash identifier: JJj7osBgzvQYD1FDJBv3PuuwK/WNsWoujvTBrwDuoEU= Subject key identifier: A2:9B:E2:87:9C:71:77:50:37:6B:BB:1E:71:1A:93:6C:2C:5C:70:8E Certificate issuer: /CN=b05d28d16626bc5dcabf2e915435782b96e14071 Certificate serial: 019B7E38A541C37F5026A5DF2675884759B7 Authority key identifier: B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/opvih5xxd1A3a7secRqTbCxccI4.roa Signing time: Fri 02 Jan 2026 10:19:59 +0000 ROA not before: Fri 02 Jan 2026 10:19:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208153 IP address blocks: 147.181.62.0/23 maxlen: 24 2a04:9a00:1110::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.mft rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 19:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:a5:41:c3:7f:50:26:a5:df:26:75:88:47:59:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b05d28d16626bc5dcabf2e915435782b96e14071 Validity Not Before: Jan 2 10:19:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a29be2879c717750376bbb1e711a936c2c5c708e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:67:53:07:e8:a7:d1:ce:2c:23:e4:15:22:55: 03:cf:55:a5:29:33:dd:5e:40:3d:24:71:7d:71:d1: ee:17:f3:53:eb:be:23:da:44:83:7c:4c:e0:9d:ac: 24:56:2b:ad:0a:8e:00:4a:d4:2b:b8:89:b5:d2:fd: 4d:99:15:07:d2:17:72:a0:6a:67:7d:d4:77:bc:f6: bb:9f:1e:49:1f:20:2c:d8:64:aa:af:b7:c8:6e:60: c6:ed:de:2c:a1:4d:82:c1:c7:c1:24:6c:e7:3d:34: 71:ff:75:c3:6b:b2:20:25:09:0a:b9:b5:0b:c0:77: 26:f3:77:e7:78:27:1e:45:93:46:c7:01:72:69:fb: d8:f8:0a:94:7c:62:78:59:eb:20:61:ff:b8:98:97: 5c:67:d1:a2:38:be:6a:0a:ce:54:43:4e:f7:a0:ab: 8f:2b:a7:e9:2c:07:35:58:aa:73:da:fd:59:ff:b7: f5:81:86:35:db:66:39:03:4c:7c:c9:9a:e6:1d:94: 74:13:ad:38:e6:9b:7e:b7:57:c3:53:06:a5:da:ea: a8:c7:14:67:ef:29:57:11:b0:bf:22:c1:a1:bb:f1: 72:80:67:a9:8d:91:24:0d:eb:d1:ba:39:0e:ad:fa: cd:d2:76:a2:88:66:95:92:23:b6:28:76:f6:32:64: f2:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:9B:E2:87:9C:71:77:50:37:6B:BB:1E:71:1A:93:6C:2C:5C:70:8E X509v3 Authority Key Identifier: keyid:B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/opvih5xxd1A3a7secRqTbCxccI4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.181.62.0/23 IPv6: 2a04:9a00:1110::/46 Signature Algorithm: sha256WithRSAEncryption 68:69:ae:1c:df:4b:aa:3f:40:55:d6:08:f1:69:f0:ca:19:21: 4e:c3:40:ef:9e:e6:78:1c:a4:c2:f3:18:12:aa:a4:41:47:72: d1:66:8c:f9:b0:99:67:5f:c4:d5:6d:90:92:39:f9:8f:bb:83: 31:a0:36:aa:68:a9:4c:41:32:f5:ae:91:c8:ab:29:0f:35:98: 7c:39:3f:25:f2:f8:07:5e:e0:94:6a:81:6c:43:34:85:cf:a2: 7b:c9:83:3b:a6:50:87:9e:44:d2:23:41:d0:ab:31:a5:97:95: 9c:50:53:f9:ad:92:49:81:47:3e:15:8d:02:23:98:32:57:8c: f5:9c:c0:b3:c5:ca:99:77:64:9c:5a:82:f3:c6:b2:c7:42:87: 22:52:07:2f:45:80:82:5c:f7:2c:e1:c8:fa:ba:e6:4c:8c:1c: 6a:4e:fa:a9:77:d7:b6:8e:67:96:f8:b0:0d:65:49:61:77:5f: 81:90:7f:06:3d:02:a2:ca:73:78:9f:6d:90:84:c9:b0:b2:73: 12:83:dc:0a:f6:b9:c9:f8:e7:36:aa:ea:b6:7f:8f:04:02:cb: c3:1c:12:ed:c8:21:46:dd:e2:b2:30:85:d2:84:19:62:2d:09: 7b:a2:7f:bf:6a:fc:8a:a9:52:60:a4:b0:f6:e6:3e:42:35:31: ec:8b:a0:26 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt+OKVBw39QJqXfJnWIR1m3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwNWQyOGQxNjYyNmJjNWRjYWJmMmU5MTU0MzU3ODJiOTZl MTQwNzEwHhcNMjYwMTAyMTAxOTU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMjliZTI4NzljNzE3NzUwMzc2YmJiMWU3MTFhOTM2YzJjNWM3MDhlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtWdTB+in0c4sI+QVIlUDz1WlKTPd XkA9JHF9cdHuF/NT674j2kSDfEzgnawkViutCo4AStQruIm10v1NmRUH0hdyoGpn fdR3vPa7nx5JHyAs2GSqr7fIbmDG7d4soU2CwcfBJGznPTRx/3XDa7IgJQkKubUL wHcm83fneCceRZNGxwFyafvY+AqUfGJ4WesgYf+4mJdcZ9GiOL5qCs5UQ073oKuP K6fpLAc1WKpz2v1Z/7f1gYY122Y5A0x8yZrmHZR0E6045pt+t1fDUwal2uqoxxRn 7ylXEbC/IsGhu/FygGepjZEkDevRujkOrfrN0naiiGaVkiO2KHb2MmTyAwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFKKb4oeccXdQN2u7HnEak2wsXHCOMB8GA1UdIwQY MBaAFLBdKNFmJrxdyr8ukVQ1eCuW4UBxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0YwbzBXWW12RjNLdnk2UlZEVjRLNWJoUUhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy9iYmE5NzMtN2M5Zi00YjExLWI2MTEt YWQ1NzU1MjJiMzY1LzEvb3B2aWg1eHhkMUEzYTdzZWNScVRiQ3hjY0k0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy9iYmE5NzMtN2M5Zi00YjExLWI2MTEtYWQ1NzU1MjJiMzY1 LzEvc0YwbzBXWW12RjNLdnk2UlZEVjRLNWJoUUhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBk7U+MA8E AgACMAkDBwIqBJoAERAwDQYJKoZIhvcNAQELBQADggEBAGhprhzfS6o/QFXWCPFp 8MoZIU7DQO+e5ngcpMLzGBKqpEFHctFmjPmwmWdfxNVtkJI5+Y+7gzGgNqpoqUxB MvWukcirKQ81mHw5PyXy+Ade4JRqgWxDNIXPonvJgzumUIeeRNIjQdCrMaWXlZxQ U/mtkkmBRz4VjQIjmDJXjPWcwLPFypl3ZJxagvPGssdChyJSBy9FgIJc9yzhyPq6 5kyMHGpO+ql317aOZ5b4sA1lSWF3X4GQfwY9AqLKc3ifbZCEybCycxKD3Ar2ucn4 5zaq6rZ/jwQCy8McEu3IIUbd4rIwhdKEGWItCXuif79q/IqpUmCksPbmPkI1MeyL oCY= -----END CERTIFICATE-----Generated at Tue Jan 20 04:47:44 2026 by rpki-client