This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/o09lL4OudMDTh_jmHHeTIRn2L5s.roa File: o09lL4OudMDTh_jmHHeTIRn2L5s.roa (raw, json) Hash identifier: ctwy00D7K53oO1gqUQQpnsVurkNSXddz4U1vX79+KpM= Subject key identifier: A3:4F:65:2F:83:AE:74:C0:D3:87:F8:E6:1C:77:93:21:19:F6:2F:9B Certificate issuer: /CN=d9fc0bec60d0bace1889677bd9bb90190cc4fd22 Certificate serial: 019B7F835657C64C64E99A76F1F5CE9BE112 Authority key identifier: D9:FC:0B:EC:60:D0:BA:CE:18:89:67:7B:D9:BB:90:19:0C:C4:FD:22 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fwL7GDQus4YiWd72buQGQzE_SI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/o09lL4OudMDTh_jmHHeTIRn2L5s.roa Signing time: Fri 02 Jan 2026 16:21:12 +0000 ROA not before: Fri 02 Jan 2026 16:21:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50327 IP address blocks: 185.60.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.crl rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.mft rsync://rpki.ripe.net/repository/DEFAULT/2fwL7GDQus4YiWd72buQGQzE_SI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 Jan 2026 13:01:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:56:57:c6:4c:64:e9:9a:76:f1:f5:ce:9b:e1:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d9fc0bec60d0bace1889677bd9bb90190cc4fd22 Validity Not Before: Jan 2 16:21:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a34f652f83ae74c0d387f8e61c77932119f62f9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:31:b5:2a:35:12:03:05:06:32:9d:89:da:81: d9:30:de:45:8d:41:ba:d1:9a:7f:77:01:66:16:1a: 58:ec:ca:a1:4f:df:a8:ad:c7:f0:cc:70:14:5b:ed: 21:5b:67:4f:40:87:74:fe:28:5a:6d:35:de:22:68: c6:3a:03:88:b5:ea:1b:3c:2e:df:fd:ff:54:bd:50: c9:48:67:99:56:ec:51:e8:c7:78:24:6e:25:f7:4e: 3c:94:67:9f:38:d7:b9:9b:7d:3c:5c:eb:0b:4e:ab: 91:8c:4e:22:fd:69:ea:0e:bb:1c:0a:99:84:0b:57: 58:54:32:30:5e:75:64:aa:79:71:a4:cf:3b:0c:67: f5:67:79:6c:b5:90:99:14:8e:aa:8f:22:6d:44:17: 0c:c8:26:c6:dd:76:b8:62:ab:71:bd:a0:0d:05:5d: 2d:3a:8b:b3:e4:6f:54:e3:04:eb:65:93:1a:c3:ac: 1d:ed:13:68:6e:6a:e5:e9:0c:64:70:84:9f:f6:ed: a3:67:29:63:92:18:32:d2:df:f6:b4:f4:1a:d2:f1: ac:07:a4:cb:8c:ee:11:bf:25:fc:16:5e:a9:63:55: 5f:1c:bb:b5:d0:6a:8c:d3:1d:d7:16:b1:14:da:43: b4:f9:d1:13:6a:80:4d:45:00:4d:9d:d0:e2:a4:a8: 15:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:4F:65:2F:83:AE:74:C0:D3:87:F8:E6:1C:77:93:21:19:F6:2F:9B X509v3 Authority Key Identifier: keyid:D9:FC:0B:EC:60:D0:BA:CE:18:89:67:7B:D9:BB:90:19:0C:C4:FD:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fwL7GDQus4YiWd72buQGQzE_SI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/o09lL4OudMDTh_jmHHeTIRn2L5s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.60.52.0/24 Signature Algorithm: sha256WithRSAEncryption 17:74:58:fa:b6:de:81:ab:cf:09:60:aa:be:b3:28:c8:b6:45: 97:7c:d5:a0:1b:d7:eb:b3:26:55:e5:3c:c9:2c:f9:fb:e4:9e: 18:64:46:98:7d:4c:02:93:0b:2b:7f:0b:09:10:f8:7a:34:cf: 7f:15:83:3d:8d:57:75:7f:55:8f:84:28:37:16:7a:11:3c:47: fa:77:47:65:75:02:e1:45:0a:7d:c0:84:11:6c:27:44:4e:a8: 65:fb:5b:05:ca:c8:b8:69:44:7b:4a:d4:fc:2f:ca:8c:33:c6: 53:99:1c:4d:17:06:53:62:af:d2:13:a9:8a:af:04:c6:6b:12: 22:32:dc:84:1e:3e:89:a9:f5:70:00:10:39:8e:5b:b5:96:b4: 89:de:49:a4:3b:e7:e6:41:80:fa:6d:20:d8:9c:c1:ae:78:20: 0a:ba:1f:b8:57:e1:1f:91:b2:b3:ab:12:fa:82:cb:a9:53:06: f6:81:13:27:64:62:fb:31:7e:03:4c:2c:13:66:a6:c9:e8:a9: 1a:b3:89:73:68:e4:2c:44:d2:5c:46:43:df:cd:3d:88:34:2e: 71:7c:21:90:aa:5d:26:6f:16:65:b0:f7:ef:b9:39:64:ed:cd: e0:48:1c:8c:f1:4d:45:32:65:68:8d:91:98:bf:fc:6d:25:2f: 67:ff:ff:ce -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/g1ZXxkxk6Zp28fXOm+ESMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5ZmMwYmVjNjBkMGJhY2UxODg5Njc3YmQ5YmI5MDE5MGNj NGZkMjIwHhcNMjYwMTAyMTYyMTEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMzRmNjUyZjgzYWU3NGMwZDM4N2Y4ZTYxYzc3OTMyMTE5ZjYyZjliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyDG1KjUSAwUGMp2J2oHZMN5FjUG6 0Zp/dwFmFhpY7MqhT9+orcfwzHAUW+0hW2dPQId0/ihabTXeImjGOgOIteobPC7f /f9UvVDJSGeZVuxR6Md4JG4l9048lGefONe5m308XOsLTquRjE4i/WnqDrscCpmE C1dYVDIwXnVkqnlxpM87DGf1Z3lstZCZFI6qjyJtRBcMyCbG3Xa4YqtxvaANBV0t Oouz5G9U4wTrZZMaw6wd7RNobmrl6QxkcISf9u2jZyljkhgy0t/2tPQa0vGsB6TL jO4RvyX8Fl6pY1VfHLu10GqM0x3XFrEU2kO0+dETaoBNRQBNndDipKgVDwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKNPZS+DrnTA04f45hx3kyEZ9i+bMB8GA1UdIwQY MBaAFNn8C+xg0LrOGIlne9m7kBkMxP0iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmZ3TDdHRFF1czRZaVdkNzJidVFHUXpFX1NJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS9iMGQ2ZTYtMmVkNy00OTI4LWFkNjkt MzQ2OTAzNGZhNDQxLzEvbzA5bEw0T3VkTURUaF9qbUhIZVRJUm4yTDVzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYS9iMGQ2ZTYtMmVkNy00OTI4LWFkNjktMzQ2OTAzNGZhNDQx LzEvMmZ3TDdHRFF1czRZaVdkNzJidVFHUXpFX1NJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuTw0MA0G CSqGSIb3DQEBCwUAA4IBAQAXdFj6tt6Bq88JYKq+syjItkWXfNWgG9frsyZV5TzJ LPn75J4YZEaYfUwCkwsrfwsJEPh6NM9/FYM9jVd1f1WPhCg3FnoRPEf6d0dldQLh RQp9wIQRbCdETqhl+1sFysi4aUR7StT8L8qMM8ZTmRxNFwZTYq/SE6mKrwTGaxIi MtyEHj6JqfVwABA5jlu1lrSJ3kmkO+fmQYD6bSDYnMGueCAKuh+4V+EfkbKzqxL6 gsupUwb2gRMnZGL7MX4DTCwTZqbJ6Kkas4lzaOQsRNJcRkPfzT2INC5xfCGQql0m bxZlsPfvuTlk7c3gSByM8U1FMmVojZGYv/xtJS9n///O -----END CERTIFICATE-----Generated at Sat Jan 10 22:32:29 2026 by rpki-client