This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/O2OJ3t6MeqBUOLrqcqvjb5iXA0o.roa File: O2OJ3t6MeqBUOLrqcqvjb5iXA0o.roa (raw, json) Hash identifier: juwmeIUpdvT19Vy7e7M0nGB6sx/8sNLDPiHMWAyfnds= Subject key identifier: 3B:63:89:DE:DE:8C:7A:A0:54:38:BA:EA:72:AB:E3:6F:98:97:03:4A Certificate issuer: /CN=641975583b250362c8150f63adb30a0f6a0c6fc3 Certificate serial: 019B7C8054B657B2FB06AD3F64CA44DF5B9B Authority key identifier: 64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/O2OJ3t6MeqBUOLrqcqvjb5iXA0o.roa Signing time: Fri 02 Jan 2026 02:19:03 +0000 ROA not before: Fri 02 Jan 2026 02:19:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 33652 IP address blocks: 45.147.159.0/24 maxlen: 24 77.111.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.mft rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 15:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:54:b6:57:b2:fb:06:ad:3f:64:ca:44:df:5b:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=641975583b250362c8150f63adb30a0f6a0c6fc3 Validity Not Before: Jan 2 02:19:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3b6389dede8c7aa05438baea72abe36f9897034a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:3e:50:91:ad:a3:08:a7:70:de:fc:04:59:d2: 84:59:87:9e:0d:de:39:93:e3:a9:04:b3:5f:83:00: b2:75:c5:45:9f:77:7e:15:3c:c1:bb:8d:96:22:74: d0:77:db:3f:48:cf:1e:62:7b:ac:9c:0f:3b:6f:ec: 6f:96:c7:d5:a5:5b:af:fb:b5:7c:75:c0:a3:84:0f: cc:fb:5a:e9:75:81:24:5f:d7:12:e6:04:71:f1:1e: 5e:a2:b6:5c:2c:0f:fe:92:76:41:fc:5e:c7:b8:98: a5:12:55:9a:db:b3:98:9b:41:b8:01:15:be:42:e2: d5:2b:f7:83:c2:23:db:7c:25:db:85:55:e8:6b:70: e7:de:68:a0:b5:6a:aa:ff:c2:ee:c2:88:04:55:ce: 5e:e8:cc:ba:20:8e:18:32:a4:c4:81:63:78:ff:28: fa:69:4c:05:59:45:2b:c7:f9:7a:fd:c5:2b:53:3c: cb:0d:fe:67:3b:93:2e:a4:7e:94:37:58:e2:9b:cd: 6b:45:cc:b7:7c:37:76:58:fb:ec:31:cd:fb:a7:51: e0:65:0d:1f:27:78:4b:fe:e8:40:20:9e:3a:65:69: 62:ce:73:f5:f3:f5:d7:0c:ae:ad:f6:58:6d:54:ee: 97:94:98:12:fb:3a:49:ef:66:be:e6:e8:f7:34:00: 8b:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:63:89:DE:DE:8C:7A:A0:54:38:BA:EA:72:AB:E3:6F:98:97:03:4A X509v3 Authority Key Identifier: keyid:64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/O2OJ3t6MeqBUOLrqcqvjb5iXA0o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.147.159.0/24 77.111.118.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:99:a8:c8:34:ce:80:6d:82:2a:64:49:23:61:76:83:4d:39: 5a:1b:79:2a:08:1e:44:1c:e5:1c:5d:d3:fc:7f:9f:30:1f:fd: 8f:bb:51:07:08:69:4c:08:db:ee:88:b2:75:0d:23:0d:8f:75: f5:1d:98:70:0b:d5:8a:23:8c:ed:3c:32:3b:63:4f:d6:a6:8f: 72:2e:88:c6:b4:a5:95:ca:e2:ac:f3:42:c7:2c:2c:62:f1:b1: 45:54:e2:30:6b:39:c2:f8:41:bf:40:0a:e6:bb:e7:b6:72:1c: e4:f6:87:a4:e0:69:42:d5:e0:aa:87:42:93:06:a4:0b:71:05: 73:fb:a5:6f:61:39:32:76:65:cb:ae:9f:9e:3a:13:de:b9:b0: 30:9d:2c:d4:a8:c8:be:9d:8d:a0:5e:94:8d:1b:53:ef:fc:d3: 16:a6:1f:a4:e4:1e:16:60:3e:d2:55:05:6d:c9:14:a1:2d:12: ce:8c:72:cb:b5:b1:fe:9c:3c:3b:e6:0d:aa:2c:25:1a:d9:3c: dd:48:00:ac:f3:de:30:9f:a2:81:ec:30:9b:a1:a9:3d:ee:4d: 16:1a:21:9b:15:40:be:39:53:e9:3a:d5:4d:cc:ec:f6:5c:bb: aa:f9:cf:ba:f6:02:da:14:18:59:99:28:95:47:96:dd:7f:03: 68:fa:a6:4e -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8gFS2V7L7Bq0/ZMpE31ubMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY0MTk3NTU4M2IyNTAzNjJjODE1MGY2M2FkYjMwYTBmNmEw YzZmYzMwHhcNMjYwMTAyMDIxOTAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYjYzODlkZWRlOGM3YWEwNTQzOGJhZWE3MmFiZTM2Zjk4OTcwMzRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxD5Qka2jCKdw3vwEWdKEWYeeDd45 k+OpBLNfgwCydcVFn3d+FTzBu42WInTQd9s/SM8eYnusnA87b+xvlsfVpVuv+7V8 dcCjhA/M+1rpdYEkX9cS5gRx8R5eorZcLA/+knZB/F7HuJilElWa27OYm0G4ARW+ QuLVK/eDwiPbfCXbhVXoa3Dn3migtWqq/8LuwogEVc5e6My6II4YMqTEgWN4/yj6 aUwFWUUrx/l6/cUrUzzLDf5nO5MupH6UN1jim81rRcy3fDd2WPvsMc37p1HgZQ0f J3hL/uhAIJ46ZWliznP18/XXDK6t9lhtVO6XlJgS+zpJ72a+5uj3NACLZQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFDtjid7ejHqgVDi66nKr42+YlwNKMB8GA1UdIwQY MBaAFGQZdVg7JQNiyBUPY62zCg9qDG/DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWkJsMVdEc2xBMkxJRlE5anJiTUtEMm9NYjhNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC85OGE1ZWQtOTA1ZS00YmZhLTkxNTQt ZjFjMzNhYTJmZDUwLzEvTzJPSjN0Nk1lcUJVT0xycWNxdmpiNWlYQTBvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC85OGE1ZWQtOTA1ZS00YmZhLTkxNTQtZjFjMzNhYTJmZDUw LzEvWkJsMVdEc2xBMkxJRlE5anJiTUtEMm9NYjhNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALZOfAwQA TW92MA0GCSqGSIb3DQEBCwUAA4IBAQCdmajINM6AbYIqZEkjYXaDTTlaG3kqCB5E HOUcXdP8f58wH/2Pu1EHCGlMCNvuiLJ1DSMNj3X1HZhwC9WKI4ztPDI7Y0/Wpo9y LojGtKWVyuKs80LHLCxi8bFFVOIwaznC+EG/QArmu+e2chzk9oek4GlC1eCqh0KT BqQLcQVz+6VvYTkydmXLrp+eOhPeubAwnSzUqMi+nY2gXpSNG1Pv/NMWph+k5B4W YD7SVQVtyRShLRLOjHLLtbH+nDw75g2qLCUa2TzdSACs894wn6KB7DCboak97k0W GiGbFUC+OVPpOtVNzOz2XLuq+c+69gLaFBhZmSiVR5bdfwNo+qZO -----END CERTIFICATE-----Generated at Tue Jan 20 22:47:40 2026 by rpki-client