This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/IOO3IGbg3gm00rI1vRsCU8sKWe8.roa File: IOO3IGbg3gm00rI1vRsCU8sKWe8.roa (raw, json) Hash identifier: 0AcGRGmbErLkr9vaJN/WU2nLbROdp3GeVVZZ5PGFvPU= Subject key identifier: 20:E3:B7:20:66:E0:DE:09:B4:D2:B2:35:BD:1B:02:53:CB:0A:59:EF Certificate issuer: /CN=a0a154441df9623eeb5a196138d21bef5824b441 Certificate serial: 019B7F842CA7ACD7BCBFCDB9C6C6EB4BAAE1 Authority key identifier: A0:A1:54:44:1D:F9:62:3E:EB:5A:19:61:38:D2:1B:EF:58:24:B4:41 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKFURB35Yj7rWhlhONIb71gktEE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/IOO3IGbg3gm00rI1vRsCU8sKWe8.roa Signing time: Fri 02 Jan 2026 16:22:07 +0000 ROA not before: Fri 02 Jan 2026 16:22:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35613 IP address blocks: 176.74.128.0/19 maxlen: 19 193.200.244.0/24 maxlen: 24 193.200.246.0/24 maxlen: 24 193.200.251.0/24 maxlen: 24 193.200.252.0/24 maxlen: 24 2a00:9c80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.crl rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.mft rsync://rpki.ripe.net/repository/DEFAULT/oKFURB35Yj7rWhlhONIb71gktEE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:2c:a7:ac:d7:bc:bf:cd:b9:c6:c6:eb:4b:aa:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0a154441df9623eeb5a196138d21bef5824b441 Validity Not Before: Jan 2 16:22:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=20e3b72066e0de09b4d2b235bd1b0253cb0a59ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:91:ea:0c:98:29:5f:ab:f7:36:72:27:16:d4: 32:34:b4:bc:dc:dc:b8:46:f2:66:56:d4:70:21:8e: e5:8c:84:a3:98:0f:6e:db:81:55:18:a7:92:d0:ce: 6f:cf:03:64:53:17:67:72:b1:2d:35:35:3b:98:05: 23:ae:1a:60:0e:09:8f:74:58:b0:a4:30:d6:d5:33: 83:70:5f:bc:2a:39:02:5d:26:9b:88:0a:6d:7b:3c: e6:87:6a:ca:de:d3:45:46:69:dc:04:40:10:8e:3f: 0a:b9:96:69:d5:cd:e2:38:b1:15:ed:68:d4:be:83: 0a:63:97:ed:c5:62:a5:57:ba:c2:11:b2:aa:84:b2: 2f:31:b5:10:2c:72:d7:36:2c:38:db:c8:5a:31:be: f4:41:ff:f2:cf:31:dd:51:c3:0a:79:93:c7:0f:3d: 5d:87:76:5a:35:c2:26:ba:61:e6:ad:89:07:f4:9f: 42:ea:8e:dc:e5:ad:3a:ed:2b:9f:64:9f:cb:b2:77: ca:42:37:5b:f7:01:35:e9:5e:ef:00:e7:e8:5a:96: 0e:57:73:61:7b:8b:a1:2d:7b:23:22:07:9b:98:d8: a0:53:ba:fc:db:fb:6f:5f:dc:91:d0:c5:ba:61:b5: 73:92:41:a5:33:7d:7b:6e:37:45:08:d2:cd:7e:27: 03:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:E3:B7:20:66:E0:DE:09:B4:D2:B2:35:BD:1B:02:53:CB:0A:59:EF X509v3 Authority Key Identifier: keyid:A0:A1:54:44:1D:F9:62:3E:EB:5A:19:61:38:D2:1B:EF:58:24:B4:41 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKFURB35Yj7rWhlhONIb71gktEE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/IOO3IGbg3gm00rI1vRsCU8sKWe8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.74.128.0/19 193.200.244.0/24 193.200.246.0/24 193.200.251.0-193.200.252.255 IPv6: 2a00:9c80::/32 Signature Algorithm: sha256WithRSAEncryption 10:14:8b:96:63:f0:15:df:09:41:b3:7a:fa:0e:31:74:75:19: e6:40:fa:4b:1e:fc:7c:d6:2b:bf:b3:29:0c:23:56:42:9d:75: 7f:83:6b:b3:5c:63:20:37:ac:38:98:86:37:3d:63:83:34:43: 47:44:7e:af:a3:05:8f:2d:aa:31:1b:9c:4a:c7:b3:0c:3d:69: e4:6b:2b:b3:94:2a:bf:55:45:18:de:73:ab:08:c4:bd:d0:46: cb:7e:3f:36:30:f0:b1:90:41:69:12:71:ef:c5:c4:ac:55:f3: d8:1a:7d:50:17:94:b3:9c:91:72:42:93:cb:91:87:45:cd:f0: ae:ad:5a:73:d5:2a:64:4d:50:7e:ea:69:5a:07:b0:9a:5f:e0: 7d:f9:ad:40:d6:53:43:6f:40:b7:ac:ce:9a:36:44:2a:3c:fc: e3:07:06:36:e3:d7:7f:cd:76:03:42:9a:1b:83:9c:e0:d5:68: 48:1d:49:5b:21:f2:f6:4e:61:e1:5b:68:a8:2f:a4:3e:2d:65: f0:13:18:75:0f:a3:ce:f6:63:23:3b:64:69:30:61:00:40:a5: 67:01:2b:ea:97:26:b3:81:ae:a1:bb:76:f6:f1:9a:1a:e3:0d: a6:e0:ba:20:59:c3:ab:57:a4:9f:f2:53:ea:95:d2:70:f6:c1: 18:42:4f:ea -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgISAZt/hCynrNe8v825xsbrS6rhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwYTE1NDQ0MWRmOTYyM2VlYjVhMTk2MTM4ZDIxYmVmNTgy NGI0NDEwHhcNMjYwMTAyMTYyMjA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMGUzYjcyMDY2ZTBkZTA5YjRkMmIyMzViZDFiMDI1M2NiMGE1OWVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmZHqDJgpX6v3NnInFtQyNLS83Ny4 RvJmVtRwIY7ljISjmA9u24FVGKeS0M5vzwNkUxdncrEtNTU7mAUjrhpgDgmPdFiw pDDW1TODcF+8KjkCXSabiAptezzmh2rK3tNFRmncBEAQjj8KuZZp1c3iOLEV7WjU voMKY5ftxWKlV7rCEbKqhLIvMbUQLHLXNiw428haMb70Qf/yzzHdUcMKeZPHDz1d h3ZaNcImumHmrYkH9J9C6o7c5a067SufZJ/LsnfKQjdb9wE16V7vAOfoWpYOV3Nh e4uhLXsjIgebmNigU7r82/tvX9yR0MW6YbVzkkGlM317bjdFCNLNficDkQIDAQAB o4ICMjCCAi4wHQYDVR0OBBYEFCDjtyBm4N4JtNKyNb0bAlPLClnvMB8GA1UdIwQY MBaAFKChVEQd+WI+61oZYTjSG+9YJLRBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0tGVVJCMzVZajdyV2hsaE9OSWI3MWdrdEVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC81YjNkNmQtZTZmMS00N2FkLWI1MmIt OWQ5NDM2NzFhOGEzLzEvSU9PM0lHYmczZ20wMHJJMXZSc0NVOHNLV2U4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNC81YjNkNmQtZTZmMS00N2FkLWI1MmItOWQ5NDM2NzFhOGEz LzEvb0tGVVJCMzVZajdyV2hsaE9OSWI3MWdrdEVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEgGCCsGAQUFBwEHAQH/BDkwNzAmBAIAATAgAwQFsEqAAwQA wcj0AwQAwcj2MAwDBADByPsDBADByPwwDQQCAAIwBwMFACoAnIAwDQYJKoZIhvcN AQELBQADggEBABAUi5Zj8BXfCUGzevoOMXR1GeZA+kse/HzWK7+zKQwjVkKddX+D a7NcYyA3rDiYhjc9Y4M0Q0dEfq+jBY8tqjEbnErHsww9aeRrK7OUKr9VRRjec6sI xL3QRst+PzYw8LGQQWkSce/FxKxV89gafVAXlLOckXJCk8uRh0XN8K6tWnPVKmRN UH7qaVoHsJpf4H35rUDWU0NvQLeszpo2RCo8/OMHBjbj13/NdgNCmhuDnODVaEgd SVsh8vZOYeFbaKgvpD4tZfATGHUPo872YyM7ZGkwYQBApWcBK+qXJrOBrqG7dvbx mhrjDabguiBZw6tXpJ/yU+qV0nD2wRhCT+o= -----END CERTIFICATE-----Generated at Tue Jan 27 05:32:46 2026 by rpki-client