This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/9841ff-c886-4da0-957a-f2f0955da1ad/1/OJEw4xygRnoY9I40M3lWZLH3FOc.roa File: OJEw4xygRnoY9I40M3lWZLH3FOc.roa (raw, json) Hash identifier: Thdz97AqBbMGUqAUgckdCUPrt8BiP6jjTT4Frfdq4dA= Subject key identifier: 38:91:30:E3:1C:A0:46:7A:18:F4:8E:34:33:79:56:64:B1:F7:14:E7 Certificate issuer: /CN=9c6ffcb5b5e2de4551acf9b45af242db94584e5a Certificate serial: 019B7BA5372EE78BDC00E0263F9D5FCBE752 Authority key identifier: 9C:6F:FC:B5:B5:E2:DE:45:51:AC:F9:B4:5A:F2:42:DB:94:58:4E:5A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nG_8tbXi3kVRrPm0WvJC25RYTlo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/9841ff-c886-4da0-957a-f2f0955da1ad/1/OJEw4xygRnoY9I40M3lWZLH3FOc.roa Signing time: Thu 01 Jan 2026 22:19:43 +0000 ROA not before: Thu 01 Jan 2026 22:19:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 24940 IP address blocks: 195.248.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/9841ff-c886-4da0-957a-f2f0955da1ad/1/nG_8tbXi3kVRrPm0WvJC25RYTlo.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/9841ff-c886-4da0-957a-f2f0955da1ad/1/nG_8tbXi3kVRrPm0WvJC25RYTlo.mft rsync://rpki.ripe.net/repository/DEFAULT/nG_8tbXi3kVRrPm0WvJC25RYTlo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:37:2e:e7:8b:dc:00:e0:26:3f:9d:5f:cb:e7:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9c6ffcb5b5e2de4551acf9b45af242db94584e5a Validity Not Before: Jan 1 22:19:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=389130e31ca0467a18f48e3433795664b1f714e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:cd:09:20:55:f2:6a:a5:18:e0:62:be:e3:c6: 78:3f:ff:8e:48:c7:a1:4f:ea:49:8a:a5:37:1e:99: 82:2c:36:1c:93:29:b4:be:3c:11:7c:aa:f7:56:ed: 20:28:a9:d3:7d:b4:91:de:df:1a:aa:39:de:28:86: 81:01:9b:b7:57:58:aa:2c:51:dd:ba:98:c5:1c:f4: 33:94:9c:15:01:24:84:7c:de:99:20:4d:93:2b:91: f9:3f:d2:53:16:f9:17:62:fd:27:24:a6:2d:e9:14: ad:28:cf:8e:42:b0:11:02:85:b4:82:bb:59:73:6d: 03:bc:cb:32:49:23:fb:4c:70:ce:ff:ba:a0:2c:fa: b7:a9:09:e8:a8:f2:0e:cb:23:ce:a8:05:a6:cb:bd: 33:bf:9b:44:51:45:32:f4:e8:77:b9:ab:75:60:f0: 83:05:16:0c:a8:12:3c:c4:30:b8:68:23:eb:c1:f7: 8f:04:ed:b9:bf:da:cb:62:f0:97:6f:81:39:bc:1a: 53:98:88:69:ca:da:2f:a3:41:b7:c0:54:48:7e:55: 91:87:42:d7:73:5c:9f:9b:4c:f7:5b:09:d7:6e:a1: b6:8c:6f:e0:b9:cc:ee:64:32:93:ef:48:b2:9e:2c: 8a:72:df:eb:cc:7b:5a:85:0b:99:72:ec:f0:4e:ee: ad:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:91:30:E3:1C:A0:46:7A:18:F4:8E:34:33:79:56:64:B1:F7:14:E7 X509v3 Authority Key Identifier: keyid:9C:6F:FC:B5:B5:E2:DE:45:51:AC:F9:B4:5A:F2:42:DB:94:58:4E:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nG_8tbXi3kVRrPm0WvJC25RYTlo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/9841ff-c886-4da0-957a-f2f0955da1ad/1/OJEw4xygRnoY9I40M3lWZLH3FOc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/9841ff-c886-4da0-957a-f2f0955da1ad/1/nG_8tbXi3kVRrPm0WvJC25RYTlo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.248.224.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:b4:7b:21:78:65:f8:98:66:39:ed:68:1b:2a:98:98:46:10: 17:2b:ca:af:a7:f9:3a:63:58:e2:a5:c7:a4:0c:f3:3c:86:f8: 2b:13:7d:35:1f:e0:5e:c3:93:c7:bc:c2:e9:bf:46:28:30:33: db:d1:8e:03:7b:ac:f6:90:15:2c:12:81:32:ab:fe:a1:2d:b8: 63:5b:9a:c5:e5:d0:37:c4:98:3b:88:46:c8:2c:27:7a:e8:1f: 1a:95:4f:4b:f4:3b:1b:df:ed:98:60:68:92:6d:5e:e0:01:f9: 36:35:93:3c:0b:82:b8:18:fc:cd:64:17:35:61:1d:07:a6:e5: ef:03:c4:9f:0c:65:a2:b5:53:d7:89:b3:68:2f:af:ac:dd:58: f4:3c:c6:75:46:88:c1:c6:85:fa:a7:58:fb:d1:da:50:6a:5f: 75:01:6c:04:7e:d7:c5:be:2c:b1:75:11:4a:fc:fd:01:3e:73: e4:8d:df:44:4e:ed:59:af:be:3f:6b:77:c2:62:d0:5a:39:dd: 0c:fc:d3:07:a4:9c:4f:3f:a4:77:79:bb:fd:32:ea:ed:67:b9: 62:b7:65:8b:17:b1:50:6b:52:f6:70:fc:0e:06:b9:27:cc:87: df:20:55:aa:46:81:41:60:35:b5:6e:b4:f2:f2:6e:ed:4d:02: f8:51:9a:b2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7pTcu54vcAOAmP51fy+dSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDljNmZmY2I1YjVlMmRlNDU1MWFjZjliNDVhZjI0MmRiOTQ1 ODRlNWEwHhcNMjYwMTAxMjIxOTQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzODkxMzBlMzFjYTA0NjdhMThmNDhlMzQzMzc5NTY2NGIxZjcxNGU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxs0JIFXyaqUY4GK+48Z4P/+OSMeh T+pJiqU3HpmCLDYckym0vjwRfKr3Vu0gKKnTfbSR3t8aqjneKIaBAZu3V1iqLFHd upjFHPQzlJwVASSEfN6ZIE2TK5H5P9JTFvkXYv0nJKYt6RStKM+OQrARAoW0grtZ c20DvMsySSP7THDO/7qgLPq3qQnoqPIOyyPOqAWmy70zv5tEUUUy9Oh3uat1YPCD BRYMqBI8xDC4aCPrwfePBO25v9rLYvCXb4E5vBpTmIhpytovo0G3wFRIflWRh0LX c1yfm0z3WwnXbqG2jG/guczuZDKT70iyniyKct/rzHtahQuZcuzwTu6towIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDiRMOMcoEZ6GPSONDN5VmSx9xTnMB8GA1UdIwQY MBaAFJxv/LW14t5FUaz5tFryQtuUWE5aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbkdfOHRiWGkza1ZSclBtMFd2SkMyNVJZVGxvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi85ODQxZmYtYzg4Ni00ZGEwLTk1N2Et ZjJmMDk1NWRhMWFkLzEvT0pFdzR4eWdSbm9ZOUk0ME0zbFdaTEgzRk9jLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi85ODQxZmYtYzg4Ni00ZGEwLTk1N2EtZjJmMDk1NWRhMWFk LzEvbkdfOHRiWGkza1ZSclBtMFd2SkMyNVJZVGxvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw/jgMA0G CSqGSIb3DQEBCwUAA4IBAQAetHsheGX4mGY57WgbKpiYRhAXK8qvp/k6Y1jipcek DPM8hvgrE301H+Bew5PHvMLpv0YoMDPb0Y4De6z2kBUsEoEyq/6hLbhjW5rF5dA3 xJg7iEbILCd66B8alU9L9Dsb3+2YYGiSbV7gAfk2NZM8C4K4GPzNZBc1YR0HpuXv A8SfDGWitVPXibNoL6+s3Vj0PMZ1RojBxoX6p1j70dpQal91AWwEftfFviyxdRFK /P0BPnPkjd9ETu1Zr74/a3fCYtBaOd0M/NMHpJxPP6R3ebv9MurtZ7lit2WLF7FQ a1L2cPwOBrknzIffIFWqRoFBYDW1brTy8m7tTQL4UZqy -----END CERTIFICATE-----Generated at Tue Jan 20 12:27:16 2026 by rpki-client