This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/oK58pFhfnLO3eVdrDTtGCDvGNFg.roa File: oK58pFhfnLO3eVdrDTtGCDvGNFg.roa (raw, json) Hash identifier: ACsaP0wYF3KWsMzuKUurhwT/9j9cqeM4fZqjDioMqp4= Subject key identifier: A0:AE:7C:A4:58:5F:9C:B3:B7:79:57:6B:0D:3B:46:08:3B:C6:34:58 Certificate issuer: /CN=bdfad23e11cf0d24a477594eba09f99acc6f1fff Certificate serial: 019B76EB301F27F56307A5EE762EFDA1CC77 Authority key identifier: BD:FA:D2:3E:11:CF:0D:24:A4:77:59:4E:BA:09:F9:9A:CC:6F:1F:FF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vfrSPhHPDSSkd1lOugn5msxvH_8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/oK58pFhfnLO3eVdrDTtGCDvGNFg.roa Signing time: Thu 01 Jan 2026 00:18:03 +0000 ROA not before: Thu 01 Jan 2026 00:18:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35295 IP address blocks: 77.222.45.0/24 maxlen: 24 80.93.48.0/21 maxlen: 24 2a02:408:8093::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/vfrSPhHPDSSkd1lOugn5msxvH_8.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/vfrSPhHPDSSkd1lOugn5msxvH_8.mft rsync://rpki.ripe.net/repository/DEFAULT/vfrSPhHPDSSkd1lOugn5msxvH_8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 15:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:30:1f:27:f5:63:07:a5:ee:76:2e:fd:a1:cc:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bdfad23e11cf0d24a477594eba09f99acc6f1fff Validity Not Before: Jan 1 00:18:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a0ae7ca4585f9cb3b779576b0d3b46083bc63458 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:f0:f3:9e:e4:56:a7:b4:34:49:58:ba:43:c7: 89:ce:90:3f:4d:52:7c:05:41:a3:5d:eb:7d:da:f3: 0e:6e:68:6f:52:f0:04:42:51:e6:87:25:fa:bd:6b: 38:bd:5e:5b:b4:f1:a5:d7:62:3c:88:bb:d0:df:de: ac:dc:73:fa:79:70:bb:8f:91:3b:3f:4f:64:6e:81: 29:b4:09:2e:c3:9d:b5:5e:04:f6:99:74:cc:bf:d8: 7f:6f:85:dd:78:14:53:51:30:35:9c:ac:ef:7e:37: 21:f6:5c:7c:9a:b1:c1:0b:0a:e0:67:47:ee:6d:46: f6:82:fe:b7:c3:55:46:80:d9:46:12:08:53:fc:9b: 12:88:f2:5a:c5:97:74:19:61:b3:0b:ac:2c:a3:e3: 03:2b:7a:f1:ea:c5:cb:1c:61:62:b5:96:cd:e4:7c: e9:a9:3e:5a:c3:40:5c:d9:dd:22:ee:20:a5:75:f2: f1:7d:b6:2f:4f:ba:de:39:62:22:5b:f6:6c:c5:29: 2f:92:0a:e8:93:39:1f:68:8e:2d:a1:a0:a1:13:56: 45:c2:d0:4a:56:24:47:88:71:d1:76:32:02:d9:cb: 7b:68:9e:fc:b3:8e:5e:c0:a1:27:48:3d:49:fb:73: 80:e4:b3:52:67:69:26:dd:02:f8:0b:26:30:a5:c5: 4e:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:AE:7C:A4:58:5F:9C:B3:B7:79:57:6B:0D:3B:46:08:3B:C6:34:58 X509v3 Authority Key Identifier: keyid:BD:FA:D2:3E:11:CF:0D:24:A4:77:59:4E:BA:09:F9:9A:CC:6F:1F:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vfrSPhHPDSSkd1lOugn5msxvH_8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/oK58pFhfnLO3eVdrDTtGCDvGNFg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/vfrSPhHPDSSkd1lOugn5msxvH_8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.222.45.0/24 80.93.48.0/21 IPv6: 2a02:408:8093::/48 Signature Algorithm: sha256WithRSAEncryption 36:af:35:0a:ca:5d:d2:fa:70:f5:77:61:52:f3:8c:80:a5:2c: 87:0e:fb:b9:4b:bc:ce:83:83:81:36:3b:81:92:24:f6:9b:1c: a7:98:7d:53:99:87:c9:fd:98:ec:49:42:49:40:80:8b:0a:8e: e2:9f:18:f3:56:92:fe:6e:be:94:7c:a6:d8:2b:aa:93:cb:85: 4e:33:03:ef:ee:da:26:47:57:ec:12:92:13:9f:1e:72:bd:94: 29:2d:91:03:a5:3c:aa:01:a2:10:45:5a:1a:d2:14:94:56:e7: e6:e6:6c:98:04:4e:60:bf:77:25:7b:de:57:e2:2b:3e:48:ca: 3c:c4:29:4d:59:35:82:18:ad:e5:eb:d8:7b:e1:84:96:da:d4: bc:74:d8:40:ce:86:5a:69:b0:e7:1f:da:21:95:06:41:79:f9: 40:92:d1:62:0a:81:e1:32:34:d1:6e:de:3b:a9:45:df:bd:0e: 34:15:7a:dc:fe:cf:90:aa:51:c4:c4:b3:fe:f7:fe:66:fd:56: 0d:6f:3f:91:f0:4a:ef:0e:60:30:04:43:84:b0:61:04:58:a8: d6:67:0f:80:bc:47:be:fb:a6:d2:b4:37:1f:07:6d:24:1c:e6: 4f:af:e7:1a:fe:fe:8a:23:d5:16:2c:b5:6f:f5:a9:ed:1e:62: 0b:38:a8:12 -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgISAZt26zAfJ/VjB6Xudi79ocx3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkZmFkMjNlMTFjZjBkMjRhNDc3NTk0ZWJhMDlmOTlhY2M2 ZjFmZmYwHhcNMjYwMTAxMDAxODAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMGFlN2NhNDU4NWY5Y2IzYjc3OTU3NmIwZDNiNDYwODNiYzYzNDU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz/DznuRWp7Q0SVi6Q8eJzpA/TVJ8 BUGjXet92vMObmhvUvAEQlHmhyX6vWs4vV5btPGl12I8iLvQ396s3HP6eXC7j5E7 P09kboEptAkuw521XgT2mXTMv9h/b4XdeBRTUTA1nKzvfjch9lx8mrHBCwrgZ0fu bUb2gv63w1VGgNlGEghT/JsSiPJaxZd0GWGzC6wso+MDK3rx6sXLHGFitZbN5Hzp qT5aw0Bc2d0i7iCldfLxfbYvT7reOWIiW/ZsxSkvkgrokzkfaI4toaChE1ZFwtBK ViRHiHHRdjIC2ct7aJ78s45ewKEnSD1J+3OA5LNSZ2km3QL4CyYwpcVOSwIDAQAB o4ICIDCCAhwwHQYDVR0OBBYEFKCufKRYX5yzt3lXaw07Rgg7xjRYMB8GA1UdIwQY MBaAFL360j4Rzw0kpHdZTroJ+ZrMbx//MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmZyU1BoSFBEU1NrZDFsT3VnbjVtc3h2SF84LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9lMjUyMzktNmFiMC00OTE5LWE3NmEt NGY0ZTcxZTMyMDg0LzEvb0s1OHBGaGZuTE8zZVZkckRUdEdDRHZHTkZnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy9lMjUyMzktNmFiMC00OTE5LWE3NmEtNGY0ZTcxZTMyMDg0 LzEvdmZyU1BoSFBEU1NrZDFsT3VnbjVtc3h2SF84LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTASBAIAATAMAwQATd4tAwQD UF0wMA8EAgACMAkDBwAqAgQIgJMwDQYJKoZIhvcNAQELBQADggEBADavNQrKXdL6 cPV3YVLzjIClLIcO+7lLvM6Dg4E2O4GSJPabHKeYfVOZh8n9mOxJQklAgIsKjuKf GPNWkv5uvpR8ptgrqpPLhU4zA+/u2iZHV+wSkhOfHnK9lCktkQOlPKoBohBFWhrS FJRW5+bmbJgETmC/dyV73lfiKz5IyjzEKU1ZNYIYreXr2HvhhJba1Lx02EDOhlpp sOcf2iGVBkF5+UCS0WIKgeEyNNFu3jupRd+9DjQVetz+z5CqUcTEs/73/mb9Vg1v P5HwSu8OYDAEQ4SwYQRYqNZnD4C8R777ptK0Nx8HbSQc5k+v5xr+/ooj1RYstW/1 qe0eYgs4qBI= -----END CERTIFICATE-----Generated at Tue Jan 27 19:15:43 2026 by rpki-client