This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/ae175a-1c00-4091-a061-9ba4ec31cb6b/1/OFBo8WU6Gs7COuii4ORJNULUJs0.roa File: OFBo8WU6Gs7COuii4ORJNULUJs0.roa (raw, json) Hash identifier: oPB/MfmYFXGfvZ50KFNdFr2Mb2PYVu+UQptAAX9J79Y= Subject key identifier: 38:50:68:F1:65:3A:1A:CE:C2:3A:E8:A2:E0:E4:49:35:42:D4:26:CD Certificate issuer: /CN=f589823ba14758007cde873af4bf47fd9c39737b Certificate serial: 019B7758CA0EB08576624F1755325F9FF43F Authority key identifier: F5:89:82:3B:A1:47:58:00:7C:DE:87:3A:F4:BF:47:FD:9C:39:73:7B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9YmCO6FHWAB83oc69L9H_Zw5c3s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/ae175a-1c00-4091-a061-9ba4ec31cb6b/1/OFBo8WU6Gs7COuii4ORJNULUJs0.roa Signing time: Thu 01 Jan 2026 02:17:46 +0000 ROA not before: Thu 01 Jan 2026 02:17:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6782 IP address blocks: 195.196.30.0/24 maxlen: 24 2a00:ff40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/ae175a-1c00-4091-a061-9ba4ec31cb6b/1/9YmCO6FHWAB83oc69L9H_Zw5c3s.crl rsync://rpki.ripe.net/repository/DEFAULT/c4/ae175a-1c00-4091-a061-9ba4ec31cb6b/1/9YmCO6FHWAB83oc69L9H_Zw5c3s.mft rsync://rpki.ripe.net/repository/DEFAULT/9YmCO6FHWAB83oc69L9H_Zw5c3s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:ca:0e:b0:85:76:62:4f:17:55:32:5f:9f:f4:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f589823ba14758007cde873af4bf47fd9c39737b Validity Not Before: Jan 1 02:17:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=385068f1653a1acec23ae8a2e0e4493542d426cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f7:72:b8:45:14:7c:73:ad:aa:0a:d0:38:ea: 0d:b7:86:c6:57:63:24:1c:9d:b3:44:dd:2d:e1:87: 3f:06:6e:9d:2b:b3:a5:ef:56:85:9d:fa:b0:6f:b5: c7:b9:9b:20:ca:03:b5:18:4f:c8:e3:ae:63:b8:6b: 56:6b:70:96:d4:9d:bf:35:a0:b5:df:c1:f1:f0:c1: 41:cd:17:a7:cb:0c:73:48:c6:68:42:bd:76:99:d4: 52:d6:cc:bd:74:82:44:fe:ce:a9:81:57:a1:e1:9c: ac:1f:72:24:21:1d:a9:77:ba:d2:9b:51:02:31:e1: 13:85:71:37:38:ef:08:a5:e7:2a:d1:30:db:39:8d: 42:c0:27:a1:83:4c:9a:f8:f2:84:61:27:7b:d1:14: 7d:c3:30:13:1b:fd:e8:2c:1a:51:af:0c:c7:d3:b9: 04:9a:88:2a:08:fc:cf:48:21:7c:62:f8:87:6c:94: 1f:eb:91:c0:4d:8f:9a:4e:c5:88:49:98:f9:3a:ad: 8a:ce:12:e5:90:46:04:e8:2e:72:1f:d2:3c:54:5a: 28:10:69:07:98:2a:bd:3a:3a:0e:96:d9:bb:53:9f: 5c:64:10:74:4b:6d:ab:14:fd:fb:07:91:b3:14:cf: 3d:e6:c9:55:52:a4:85:1f:fb:10:ea:52:f5:4b:2f: 3e:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:50:68:F1:65:3A:1A:CE:C2:3A:E8:A2:E0:E4:49:35:42:D4:26:CD X509v3 Authority Key Identifier: keyid:F5:89:82:3B:A1:47:58:00:7C:DE:87:3A:F4:BF:47:FD:9C:39:73:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9YmCO6FHWAB83oc69L9H_Zw5c3s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ae175a-1c00-4091-a061-9ba4ec31cb6b/1/OFBo8WU6Gs7COuii4ORJNULUJs0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ae175a-1c00-4091-a061-9ba4ec31cb6b/1/9YmCO6FHWAB83oc69L9H_Zw5c3s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.196.30.0/24 IPv6: 2a00:ff40::/32 Signature Algorithm: sha256WithRSAEncryption 1a:30:9d:f9:85:7d:72:48:b9:1a:cc:45:fc:b4:37:50:bf:9b: 9c:74:14:27:de:14:c4:46:97:d6:0c:f8:69:1a:ba:6c:e4:07: f7:3a:03:92:e3:b8:fb:95:49:e2:a7:04:d8:82:e2:1f:dc:8c: 3e:03:9d:4a:1e:28:e0:d6:d2:8d:2b:71:91:92:38:49:7d:fd: 49:11:c6:ab:3d:ba:46:28:16:f7:86:b1:0f:4d:9f:61:43:76: b3:5b:ef:33:bd:c2:52:a8:c8:78:e8:a3:83:ad:b1:b8:a0:56: 1c:ba:fe:e4:22:7b:2c:95:9b:05:be:8d:a4:f4:aa:3b:45:b7: 17:9a:68:f9:88:84:d7:fd:41:05:b8:70:70:ed:44:ce:3f:3c: be:10:fc:86:0d:29:ba:34:be:8b:67:91:f7:a6:c3:af:5c:e0: 92:8f:bf:0d:04:74:07:3c:21:7d:1e:1d:a1:7a:47:d3:14:ea: 6b:8f:63:56:a4:b0:fc:72:cc:9b:c2:71:a2:73:45:4a:5b:ee: c4:f4:7a:0d:14:f6:c1:b7:26:3b:9b:30:7c:d1:da:63:bf:47: f3:ad:14:d7:59:6f:e7:6b:07:93:94:6f:18:a8:ca:ea:75:e5: 30:e0:b9:18:0c:84:49:d7:4c:cc:9c:a1:20:21:26:eb:1e:44: e5:a4:9c:53 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt3WMoOsIV2Yk8XVTJfn/Q/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY1ODk4MjNiYTE0NzU4MDA3Y2RlODczYWY0YmY0N2ZkOWMz OTczN2IwHhcNMjYwMTAxMDIxNzQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzODUwNjhmMTY1M2ExYWNlYzIzYWU4YTJlMGU0NDkzNTQyZDQyNmNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtvdyuEUUfHOtqgrQOOoNt4bGV2Mk HJ2zRN0t4Yc/Bm6dK7Ol71aFnfqwb7XHuZsgygO1GE/I465juGtWa3CW1J2/NaC1 38Hx8MFBzRenywxzSMZoQr12mdRS1sy9dIJE/s6pgVeh4ZysH3IkIR2pd7rSm1EC MeEThXE3OO8Ipecq0TDbOY1CwCehg0ya+PKEYSd70RR9wzATG/3oLBpRrwzH07kE mogqCPzPSCF8YviHbJQf65HATY+aTsWISZj5Oq2KzhLlkEYE6C5yH9I8VFooEGkH mCq9OjoOltm7U59cZBB0S22rFP37B5GzFM895slVUqSFH/sQ6lL1Sy8+MQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFDhQaPFlOhrOwjroouDkSTVC1CbNMB8GA1UdIwQY MBaAFPWJgjuhR1gAfN6HOvS/R/2cOXN7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOVltQ082RkhXQUI4M29jNjlMOUhfWnc1YzNzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC9hZTE3NWEtMWMwMC00MDkxLWEwNjEt OWJhNGVjMzFjYjZiLzEvT0ZCbzhXVTZHczdDT3VpaTRPUkpOVUxVSnMwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNC9hZTE3NWEtMWMwMC00MDkxLWEwNjEtOWJhNGVjMzFjYjZi LzEvOVltQ082RkhXQUI4M29jNjlMOUhfWnc1YzNzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAw8QeMA0E AgACMAcDBQAqAP9AMA0GCSqGSIb3DQEBCwUAA4IBAQAaMJ35hX1ySLkazEX8tDdQ v5ucdBQn3hTERpfWDPhpGrps5Af3OgOS47j7lUnipwTYguIf3Iw+A51KHijg1tKN K3GRkjhJff1JEcarPbpGKBb3hrEPTZ9hQ3azW+8zvcJSqMh46KODrbG4oFYcuv7k InsslZsFvo2k9Ko7RbcXmmj5iITX/UEFuHBw7UTOPzy+EPyGDSm6NL6LZ5H3psOv XOCSj78NBHQHPCF9Hh2hekfTFOprj2NWpLD8csybwnGic0VKW+7E9HoNFPbBtyY7 mzB80dpjv0fzrRTXWW/naweTlG8YqMrqdeUw4LkYDIRJ10zMnKEgISbrHkTlpJxT -----END CERTIFICATE-----Generated at Mon Feb 9 21:23:38 2026 by rpki-client