This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/OfxjuwiEKWgdwrg-K1K-c5_VgLQ.roa File: OfxjuwiEKWgdwrg-K1K-c5_VgLQ.roa (raw, json) Hash identifier: UWtmb6ZbxoAUabXWP2QO5S1E8N0sWVkGkKY+3/ZZOw8= Subject key identifier: 39:FC:63:BB:08:84:29:68:1D:C2:B8:3E:2B:52:BE:73:9F:D5:80:B4 Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10 Certificate serial: 019B7F84E85BFB947FC7499D79FEF6731876 Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/OfxjuwiEKWgdwrg-K1K-c5_VgLQ.roa Signing time: Fri 02 Jan 2026 16:22:55 +0000 ROA not before: Fri 02 Jan 2026 16:22:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197248 IP address blocks: 92.52.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.mft rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 15:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:e8:5b:fb:94:7f:c7:49:9d:79:fe:f6:73:18:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10 Validity Not Before: Jan 2 16:22:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=39fc63bb088429681dc2b83e2b52be739fd580b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:24:e0:bb:d3:f1:bc:fc:9a:4d:a6:21:c6:f5: 41:ec:10:4d:e8:f3:5e:b9:c7:3c:e6:6d:d2:d9:8c: b2:f2:a5:63:20:a1:96:6f:37:aa:ca:3c:50:fe:1b: b5:df:2a:16:35:ce:19:25:80:23:33:5f:88:41:48: 4b:cf:d9:ba:fb:b7:f9:79:95:fa:99:e2:92:40:68: b5:21:55:4b:7b:94:66:47:3a:40:67:b4:f1:9d:cc: 9f:fd:8f:70:c6:61:c4:0b:c0:02:36:e0:ad:fa:49: db:1d:04:62:5d:5e:e7:2c:d5:ef:36:67:d6:41:10: b0:60:be:ce:61:03:de:4b:c2:10:41:f9:85:d8:a7: 68:0e:05:88:54:6b:a2:a5:4c:fb:b6:c3:a9:67:b4: ea:31:ec:61:66:ff:78:75:f1:e2:de:81:61:d7:f2: 9b:a1:89:74:32:ee:09:1a:5c:5d:41:55:65:a0:78: 7a:39:44:13:d9:a9:67:51:3a:eb:c7:5a:a8:94:ae: ac:7b:6c:66:49:11:5f:7f:42:43:14:38:af:ad:e0: 66:05:d6:e4:63:79:a3:1b:ab:9d:5a:08:7b:91:65: 7a:1c:a5:bd:18:df:ba:a3:b9:65:62:95:b6:a6:ad: 15:27:0b:39:9e:23:f1:6f:f4:37:8f:2f:c4:c4:4f: b9:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:FC:63:BB:08:84:29:68:1D:C2:B8:3E:2B:52:BE:73:9F:D5:80:B4 X509v3 Authority Key Identifier: keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/OfxjuwiEKWgdwrg-K1K-c5_VgLQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 92.52.223.0/24 Signature Algorithm: sha256WithRSAEncryption 23:9a:b1:31:72:49:f0:60:5f:f6:60:f2:09:81:bb:86:04:10: c0:2f:70:42:71:eb:a0:c2:2f:d3:9f:dc:8a:b7:b3:43:7f:9b: 7e:af:fe:b4:30:93:1c:50:04:5b:38:97:0f:df:5a:c0:4f:08: 7d:6a:94:0e:62:c0:13:1b:dd:db:67:d7:b1:1d:2f:c6:b8:0c: 1d:c1:10:28:f9:e6:1f:6d:ed:72:9a:8c:c8:3a:85:af:2e:b7: 9e:e2:b2:4a:4b:4d:78:12:af:50:ff:78:6a:f7:21:d3:ac:7c: fd:74:da:01:5d:80:c3:f2:8e:06:43:c9:54:3e:e2:cc:59:ba: 53:6d:17:7e:b5:da:d6:41:ff:0b:7e:e0:42:36:b8:d2:c6:c3: 2d:78:a2:ec:a9:1a:2b:c2:2f:0b:38:ce:5f:f0:17:f2:97:76: 9b:ca:bd:88:30:03:77:dc:5b:3e:fe:e8:de:55:ec:7b:3e:93: 40:82:23:29:e0:fa:18:ef:5b:e1:d0:6a:04:e4:85:3d:79:09: 6b:b6:e3:5e:df:86:94:78:3b:41:59:2a:8f:02:5c:5d:13:f6: c6:f1:69:1e:a9:e2:ff:8a:14:6b:44:4f:a8:41:d7:da:7f:9b: 82:ac:30:c2:37:b0:1f:d7:11:8c:e9:2d:ff:e5:a3:a2:ff:34: 98:fb:f5:86 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hOhb+5R/x0mdef72cxh2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkYWFhMGUwODIzNjAzNjBhY2RhMzQ3NjY0ZWI4MzE0ZWIx MWRhMTAwHhcNMjYwMTAyMTYyMjU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzOWZjNjNiYjA4ODQyOTY4MWRjMmI4M2UyYjUyYmU3MzlmZDU4MGI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtiTgu9PxvPyaTaYhxvVB7BBN6PNe ucc85m3S2Yyy8qVjIKGWbzeqyjxQ/hu13yoWNc4ZJYAjM1+IQUhLz9m6+7f5eZX6 meKSQGi1IVVLe5RmRzpAZ7Txncyf/Y9wxmHEC8ACNuCt+knbHQRiXV7nLNXvNmfW QRCwYL7OYQPeS8IQQfmF2KdoDgWIVGuipUz7tsOpZ7TqMexhZv94dfHi3oFh1/Kb oYl0Mu4JGlxdQVVloHh6OUQT2alnUTrrx1qolK6se2xmSRFff0JDFDivreBmBdbk Y3mjG6udWgh7kWV6HKW9GN+6o7llYpW2pq0VJws5niPxb/Q3jy/ExE+5jwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDn8Y7sIhCloHcK4PitSvnOf1YC0MB8GA1UdIwQY MBaAFM2qoOCCNgNgrNo0dmTrgxTrEdoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2Mt N2U0ZDZmNmY2ZTY2LzEvT2Z4anV3aUVLV2dkd3JnLUsxSy1jNV9WZ0xRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2MtN2U0ZDZmNmY2ZTY2 LzEvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXDTfMA0G CSqGSIb3DQEBCwUAA4IBAQAjmrExcknwYF/2YPIJgbuGBBDAL3BCceugwi/Tn9yK t7NDf5t+r/60MJMcUARbOJcP31rATwh9apQOYsATG93bZ9exHS/GuAwdwRAo+eYf be1ymozIOoWvLree4rJKS014Eq9Q/3hq9yHTrHz9dNoBXYDD8o4GQ8lUPuLMWbpT bRd+tdrWQf8LfuBCNrjSxsMteKLsqRorwi8LOM5f8Bfyl3abyr2IMAN33Fs+/uje Vex7PpNAgiMp4PoY71vh0GoE5IU9eQlrtuNe34aUeDtBWSqPAlxdE/bG8WkeqeL/ ihRrRE+oQdfaf5uCrDDCN7Af1xGM6S3/5aOi/zSY+/WG -----END CERTIFICATE-----Generated at Mon Jan 19 20:01:40 2026 by rpki-client