This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/845e76-9c2d-4aff-92af-4935b3f5c209/1/oHEmOWvbStvmXg2LD_oqbDWil3o.roa File: oHEmOWvbStvmXg2LD_oqbDWil3o.roa (raw, json) Hash identifier: 0Raa8F6IlDnkK8IyOP/5NEY/cQcjmmbqoE7t0YULRgs= Subject key identifier: A0:71:26:39:6B:DB:4A:DB:E6:5E:0D:8B:0F:FA:2A:6C:35:A2:97:7A Certificate issuer: /CN=7ba2be98438b98ee68a0d1b8c4144520bd0a623d Certificate serial: 019B7D5CC1997072C5D84920FA95D285389A Authority key identifier: 7B:A2:BE:98:43:8B:98:EE:68:A0:D1:B8:C4:14:45:20:BD:0A:62:3D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e6K-mEOLmO5ooNG4xBRFIL0KYj0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/845e76-9c2d-4aff-92af-4935b3f5c209/1/oHEmOWvbStvmXg2LD_oqbDWil3o.roa Signing time: Fri 02 Jan 2026 06:19:49 +0000 ROA not before: Fri 02 Jan 2026 06:19:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208830 IP address blocks: 45.82.236.0/22 maxlen: 22 2a0e:7580::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/845e76-9c2d-4aff-92af-4935b3f5c209/1/e6K-mEOLmO5ooNG4xBRFIL0KYj0.crl rsync://rpki.ripe.net/repository/DEFAULT/e4/845e76-9c2d-4aff-92af-4935b3f5c209/1/e6K-mEOLmO5ooNG4xBRFIL0KYj0.mft rsync://rpki.ripe.net/repository/DEFAULT/e6K-mEOLmO5ooNG4xBRFIL0KYj0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 15:01:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:c1:99:70:72:c5:d8:49:20:fa:95:d2:85:38:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7ba2be98438b98ee68a0d1b8c4144520bd0a623d Validity Not Before: Jan 2 06:19:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a07126396bdb4adbe65e0d8b0ffa2a6c35a2977a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:27:d4:fd:82:cd:22:5e:88:a1:db:ab:9b:58: 59:b7:a3:4e:d9:86:7c:cd:4a:1f:49:58:0e:ee:c2: 65:f6:d2:58:8d:b8:e7:82:bc:c9:af:83:06:d3:9c: 86:72:ff:e0:2d:c5:81:eb:17:67:2e:27:ba:21:ad: 86:5f:fa:55:c0:bd:bf:c3:58:ee:2b:63:71:17:11: d3:0c:0f:d6:a5:26:fb:6f:8d:e9:5b:61:67:16:a0: c5:e7:df:fc:ba:37:43:52:35:52:c5:b0:e4:87:e0: 4b:e5:1f:c8:09:52:76:9e:38:43:ad:29:45:e7:64: 81:dc:6c:d6:d0:61:6b:74:2c:d2:84:f8:de:0c:08: 36:5c:b2:b6:98:0a:09:9d:c2:6e:a0:b0:6a:d9:dc: e6:9a:cb:e2:d6:52:c2:ef:a6:af:7d:39:53:d2:44: 4a:60:28:ef:3a:3c:8b:0a:98:ab:72:c7:35:67:7e: 15:d6:66:2f:5b:86:0b:22:dd:2a:58:80:df:45:fd: ad:de:f7:2f:2d:4a:dd:33:a6:45:8c:17:ae:5d:a6: 91:19:63:5d:30:bc:00:6d:2d:96:f9:3d:d2:a1:fc: d7:1b:a5:bd:37:c7:1b:04:04:d6:e0:3f:0d:43:d8: 25:60:1e:ea:37:76:e0:a2:4e:9b:ff:51:70:58:83: 60:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:71:26:39:6B:DB:4A:DB:E6:5E:0D:8B:0F:FA:2A:6C:35:A2:97:7A X509v3 Authority Key Identifier: keyid:7B:A2:BE:98:43:8B:98:EE:68:A0:D1:B8:C4:14:45:20:BD:0A:62:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6K-mEOLmO5ooNG4xBRFIL0KYj0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/845e76-9c2d-4aff-92af-4935b3f5c209/1/oHEmOWvbStvmXg2LD_oqbDWil3o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/845e76-9c2d-4aff-92af-4935b3f5c209/1/e6K-mEOLmO5ooNG4xBRFIL0KYj0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.82.236.0/22 IPv6: 2a0e:7580::/29 Signature Algorithm: sha256WithRSAEncryption 3c:70:6d:08:5a:5f:10:23:03:53:61:74:68:1b:5c:37:ef:32: bf:bf:b2:76:d9:76:51:d4:c1:85:c2:4e:25:e2:40:37:c4:ab: ed:f1:fe:4e:ee:f8:a5:1f:57:7e:6e:e9:fc:7c:7d:ee:91:f5: 4a:bc:e7:d8:9c:c7:41:17:e1:f8:f7:b7:46:8e:25:ab:1b:20: 8f:ee:9a:31:72:23:a8:40:e2:b0:d0:c0:bc:cc:72:0d:0c:d4: 5f:0b:b0:69:e6:b1:80:08:56:fd:97:c9:bc:6c:4f:96:2c:1a: 68:ef:41:94:bf:16:ee:cc:ab:16:9c:db:c6:64:9c:21:e2:fd: 89:8b:bd:e3:3d:0d:2c:4c:42:4d:6a:66:ba:9c:a8:6e:1f:b9: d0:e1:30:bc:17:1f:d3:15:92:52:1c:25:f0:d9:4d:e5:4a:ca: b9:53:6c:d6:d4:26:b8:62:53:ec:78:78:57:4d:d3:8a:31:72: b7:ff:4d:c5:0c:1a:59:f8:ca:93:12:f6:52:bb:db:55:67:48: 93:02:dd:e6:87:23:32:c8:70:02:f7:d5:88:7b:c1:f5:eb:22: e2:e7:12:05:ff:bc:17:04:e5:89:35:d7:48:fb:d1:c7:eb:57: 3e:db:fd:98:1f:f5:a7:68:01:be:1a:a7:76:e1:ed:6a:50:f4: bf:3b:ec:a4 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt9XMGZcHLF2Ekg+pXShTiaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdiYTJiZTk4NDM4Yjk4ZWU2OGEwZDFiOGM0MTQ0NTIwYmQw YTYyM2QwHhcNMjYwMTAyMDYxOTQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMDcxMjYzOTZiZGI0YWRiZTY1ZTBkOGIwZmZhMmE2YzM1YTI5NzdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAryfU/YLNIl6Iodurm1hZt6NO2YZ8 zUofSVgO7sJl9tJYjbjngrzJr4MG05yGcv/gLcWB6xdnLie6Ia2GX/pVwL2/w1ju K2NxFxHTDA/WpSb7b43pW2FnFqDF59/8ujdDUjVSxbDkh+BL5R/ICVJ2njhDrSlF 52SB3GzW0GFrdCzShPjeDAg2XLK2mAoJncJuoLBq2dzmmsvi1lLC76avfTlT0kRK YCjvOjyLCpircsc1Z34V1mYvW4YLIt0qWIDfRf2t3vcvLUrdM6ZFjBeuXaaRGWNd MLwAbS2W+T3SofzXG6W9N8cbBATW4D8NQ9glYB7qN3bgok6b/1FwWINg8wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFKBxJjlr20rb5l4Niw/6Kmw1opd6MB8GA1UdIwQY MBaAFHuivphDi5juaKDRuMQURSC9CmI9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZTZLLW1FT0xtTzVvb05HNHhCUkZJTDBLWWowLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC84NDVlNzYtOWMyZC00YWZmLTkyYWYt NDkzNWIzZjVjMjA5LzEvb0hFbU9XdmJTdHZtWGcyTERfb3FiRFdpbDNvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNC84NDVlNzYtOWMyZC00YWZmLTkyYWYtNDkzNWIzZjVjMjA5 LzEvZTZLLW1FT0xtTzVvb05HNHhCUkZJTDBLWWowLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCLVLsMA0E AgACMAcDBQMqDnWAMA0GCSqGSIb3DQEBCwUAA4IBAQA8cG0IWl8QIwNTYXRoG1w3 7zK/v7J22XZR1MGFwk4l4kA3xKvt8f5O7vilH1d+bun8fH3ukfVKvOfYnMdBF+H4 97dGjiWrGyCP7poxciOoQOKw0MC8zHINDNRfC7Bp5rGACFb9l8m8bE+WLBpo70GU vxbuzKsWnNvGZJwh4v2Ji73jPQ0sTEJNama6nKhuH7nQ4TC8Fx/TFZJSHCXw2U3l Ssq5U2zW1Ca4YlPseHhXTdOKMXK3/03FDBpZ+MqTEvZSu9tVZ0iTAt3mhyMyyHAC 99WIe8H16yLi5xIF/7wXBOWJNddI+9HH61c+2/2YH/WnaAG+Gqd24e1qUPS/O+yk -----END CERTIFICATE-----Generated at Mon Jan 12 00:14:48 2026 by rpki-client