This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/OdnVKb0rU5wibfGZNXcFESHehGU.roa File: OdnVKb0rU5wibfGZNXcFESHehGU.roa (raw, json) Hash identifier: DTovXUCXrFtAKBNSP90GuDXDcAi9hLoQ159kq+hxJJ0= Subject key identifier: 39:D9:D5:29:BD:2B:53:9C:22:6D:F1:99:35:77:05:11:21:DE:84:65 Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Certificate serial: 019B7C1393DF880DFE131198832C13D8DC0C Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/OdnVKb0rU5wibfGZNXcFESHehGU.roa Signing time: Fri 02 Jan 2026 00:20:16 +0000 ROA not before: Fri 02 Jan 2026 00:20:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211484 IP address blocks: 194.147.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.mft rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 19:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:93:df:88:0d:fe:13:11:98:83:2c:13:d8:dc:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Validity Not Before: Jan 2 00:20:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=39d9d529bd2b539c226df1993577051121de8465 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:56:b0:b0:29:e7:c0:96:2a:c3:c1:21:a7:6b: 2d:15:61:5c:da:66:af:c7:de:f4:5a:61:6b:03:9d: e4:f9:66:3d:fa:82:23:2f:ca:cf:6a:8d:dd:02:f9: e8:38:8d:42:08:26:93:04:60:83:1b:7c:23:0f:d1: 23:0b:dc:02:f0:c6:be:31:60:cb:36:3a:f2:e5:71: 94:37:f9:c2:a7:d9:ca:53:f3:e2:cc:68:25:d8:51: 62:3a:da:b3:3e:59:93:e1:9e:15:7d:03:a2:44:78: e0:f3:74:41:a3:9c:c0:c4:ab:e4:12:c3:93:e9:8d: 87:b1:ed:28:4c:14:72:35:86:17:bb:05:fc:5b:2f: e7:88:20:72:78:c3:ce:f4:c3:df:73:b0:03:c0:cd: 21:63:70:ab:6b:27:dc:c2:07:68:5b:7f:89:24:2b: f0:c2:70:28:a7:49:e5:33:d4:2a:09:d8:1b:3f:84: 64:8a:b2:ce:7d:74:49:1d:37:83:fb:fb:37:2e:7e: e7:6b:f1:1f:ce:67:93:a6:9b:f8:85:e3:1e:14:a8: c5:60:da:18:ca:58:12:fd:be:a8:1b:e3:3b:68:93: 4c:8c:25:b1:a2:50:1c:a8:7d:af:23:92:c0:1d:61: 1f:2f:a2:48:7c:06:ec:9b:58:72:ae:36:32:d4:28: a6:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:D9:D5:29:BD:2B:53:9C:22:6D:F1:99:35:77:05:11:21:DE:84:65 X509v3 Authority Key Identifier: keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/OdnVKb0rU5wibfGZNXcFESHehGU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.147.17.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:0f:55:24:ae:52:85:a4:ca:bd:f2:68:e7:df:39:e4:ca:12: 87:18:31:bc:3e:1f:2b:00:69:94:a8:4d:af:a8:1c:38:f8:be: 5f:5a:01:41:c2:75:e0:6f:c9:98:30:7b:ea:bd:1a:3d:74:9b: 66:2f:68:13:f3:76:e0:be:db:56:21:12:51:74:b7:ee:27:76: fa:54:b0:34:3d:50:ea:d9:81:6e:5d:fa:42:2c:fb:c8:67:3c: 6c:72:30:90:f2:41:c6:7b:96:65:21:83:0e:cb:96:70:c0:e8: fe:c5:02:a0:3e:35:73:34:9c:c3:58:8d:21:26:d9:7a:b1:46: ad:8d:b1:1f:3f:04:ce:1f:e1:45:d6:95:db:90:56:f8:85:43: 5e:2e:91:e1:90:40:32:f7:9a:78:22:ba:bf:6f:bb:62:75:59: 38:ad:45:27:29:ae:1c:6a:2e:a6:45:85:2b:3a:81:4b:40:19: 94:d3:09:0c:64:0d:60:99:6b:c2:ac:a2:e2:ea:f2:e5:1b:0f: 92:61:48:57:cb:b0:ad:fc:d7:e3:8e:dd:0f:1e:8e:47:3f:41: cd:0b:a6:97:a9:fd:81:97:90:a6:e9:74:4f:c3:f4:06:d8:a7: 8e:5f:3c:de:d4:50:f2:fa:34:cd:1e:e0:2e:1a:ad:74:b7:1f: 7e:19:40:ae -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8E5PfiA3+ExGYgywT2NwMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx MTRjYWYwHhcNMjYwMTAyMDAyMDE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzOWQ5ZDUyOWJkMmI1MzljMjI2ZGYxOTkzNTc3MDUxMTIxZGU4NDY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmFawsCnnwJYqw8Ehp2stFWFc2mav x970WmFrA53k+WY9+oIjL8rPao3dAvnoOI1CCCaTBGCDG3wjD9EjC9wC8Ma+MWDL Njry5XGUN/nCp9nKU/PizGgl2FFiOtqzPlmT4Z4VfQOiRHjg83RBo5zAxKvkEsOT 6Y2Hse0oTBRyNYYXuwX8Wy/niCByeMPO9MPfc7ADwM0hY3CrayfcwgdoW3+JJCvw wnAop0nlM9QqCdgbP4RkirLOfXRJHTeD+/s3Ln7na/EfzmeTppv4heMeFKjFYNoY ylgS/b6oG+M7aJNMjCWxolAcqH2vI5LAHWEfL6JIfAbsm1hyrjYy1CimbwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDnZ1Sm9K1OcIm3xmTV3BREh3oRlMB8GA1UdIwQY MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt YjQzNDJiYTkxYWJjLzEvT2RuVktiMHJVNXdpYmZHWk5YY0ZFU0hlaEdVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwpMRMA0G CSqGSIb3DQEBCwUAA4IBAQBaD1UkrlKFpMq98mjn3znkyhKHGDG8Ph8rAGmUqE2v qBw4+L5fWgFBwnXgb8mYMHvqvRo9dJtmL2gT83bgvttWIRJRdLfuJ3b6VLA0PVDq 2YFuXfpCLPvIZzxscjCQ8kHGe5ZlIYMOy5ZwwOj+xQKgPjVzNJzDWI0hJtl6sUat jbEfPwTOH+FF1pXbkFb4hUNeLpHhkEAy95p4Irq/b7tidVk4rUUnKa4cai6mRYUr OoFLQBmU0wkMZA1gmWvCrKLi6vLlGw+SYUhXy7Ct/Nfjjt0PHo5HP0HNC6aXqf2B l5Cm6XRPw/QG2KeOXzze1FDy+jTNHuAuGq10tx9+GUCu -----END CERTIFICATE-----Generated at Fri Jan 2 23:47:29 2026 by rpki-client