This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/o11PYbJBpHt2QD8aP50cnaIP_04.roa File: o11PYbJBpHt2QD8aP50cnaIP_04.roa (raw, json) Hash identifier: H1LNbj1fgg72IfhiQy+nQ2zyaJ2+S6w+DWXgJAkHuew= Subject key identifier: A3:5D:4F:61:B2:41:A4:7B:76:40:3F:1A:3F:9D:1C:9D:A2:0F:FF:4E Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722 Certificate serial: 019B7B36DABE35937C1AC8320898BC04C6E4 Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/o11PYbJBpHt2QD8aP50cnaIP_04.roa Signing time: Thu 01 Jan 2026 20:19:11 +0000 ROA not before: Thu 01 Jan 2026 20:19:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 32159 IP address blocks: 213.145.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.mft rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 11:02:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:da:be:35:93:7c:1a:c8:32:08:98:bc:04:c6:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722 Validity Not Before: Jan 1 20:19:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a35d4f61b241a47b76403f1a3f9d1c9da20fff4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:9e:dc:34:27:aa:eb:0c:5e:77:2a:11:ac:89: f2:dd:d7:76:cc:3d:da:ba:25:e9:ac:7f:b5:cd:10: 1c:dc:dc:26:aa:7e:bf:f7:34:0c:a7:c4:79:23:58: 8c:18:e3:91:4d:18:b0:b0:a6:f4:36:14:5b:f4:64: e1:97:0a:f4:80:6c:95:38:02:6a:b2:60:17:98:55: 29:80:1d:4c:2d:f3:00:65:7c:c9:3a:6d:f1:b8:f5: 7b:35:d2:f6:43:42:0f:79:d5:b1:00:fd:d6:93:03: bd:46:82:fb:70:48:13:7d:5e:ba:c6:2c:e9:4c:8e: bf:de:3a:0b:9d:d0:bd:7b:76:0b:9f:92:bc:4f:3b: d0:40:89:f3:2e:61:93:2e:f4:3b:0f:25:f8:fb:03: dc:2c:a4:87:c6:32:4f:57:1f:fa:b0:3c:33:7e:a0: 46:a9:2b:df:a8:14:bd:fd:fe:9d:44:56:58:c0:fd: f1:f8:b2:bc:20:81:97:0f:20:51:a3:66:dc:7a:4f: 7b:e1:e5:3b:c7:c7:49:9f:2a:e4:d8:df:01:83:92: d0:83:73:74:cc:42:f1:65:67:d5:87:27:dd:5b:62: ec:13:22:bf:36:8c:63:5a:3b:e5:db:50:22:da:18: fc:b6:d0:7a:13:c7:4d:5d:38:38:8c:d6:33:a1:a8: dd:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:5D:4F:61:B2:41:A4:7B:76:40:3F:1A:3F:9D:1C:9D:A2:0F:FF:4E X509v3 Authority Key Identifier: keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/o11PYbJBpHt2QD8aP50cnaIP_04.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.145.87.0/24 Signature Algorithm: sha256WithRSAEncryption ad:5d:2a:9a:e6:39:da:6a:4c:40:2d:ae:29:58:d5:6f:fb:79: 2f:2a:9d:9a:2d:0c:72:46:3e:ab:ea:9c:54:ab:11:ba:bd:43: 9c:ae:75:09:83:dd:4f:df:de:9a:f8:11:23:1b:31:a1:b8:fb: e5:dc:e6:c3:bf:93:4c:9f:46:3b:79:ee:54:31:1e:0f:b8:4f: e4:21:b9:c5:d2:26:f2:72:90:61:7e:63:a5:05:ba:35:bf:9e: f9:d4:a3:f5:3f:0e:1d:6d:fd:e2:68:18:0c:6a:29:58:0c:13: a3:ae:5c:ff:3c:87:ba:2f:43:d3:45:a1:bf:09:0a:00:da:68: 70:6e:37:bd:46:ba:f5:ee:6f:18:93:8b:4b:08:55:0d:72:21: 2f:f9:03:a9:29:ad:ac:63:4c:19:86:06:58:43:ad:7e:6e:a3: b1:a4:dc:7c:9d:d0:37:cc:8d:8d:1e:71:97:c2:11:aa:6e:72: 13:b5:a6:be:c8:2c:ab:25:ef:e6:f7:a6:01:c2:c2:7d:4c:87: 4a:77:59:82:cc:5f:0f:8f:d8:f4:00:57:54:de:36:7f:39:c4: 65:9e:d8:86:e7:a3:02:cf:7a:3b:99:52:5d:9f:8e:f9:09:62: 7b:e0:ea:b5:69:0d:4c:f3:64:ad:3e:1e:6d:60:6b:a5:ca:28: 24:41:3c:cc -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7Ntq+NZN8GsgyCJi8BMbkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJmYTE2YWIwNjAyMDA2Nzc0MGE0YzFmYjQ3YTkxMjYyMmYx ZDA3MjIwHhcNMjYwMTAxMjAxOTExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMzVkNGY2MWIyNDFhNDdiNzY0MDNmMWEzZjlkMWM5ZGEyMGZmZjRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxp7cNCeq6wxedyoRrIny3dd2zD3a uiXprH+1zRAc3Nwmqn6/9zQMp8R5I1iMGOORTRiwsKb0NhRb9GThlwr0gGyVOAJq smAXmFUpgB1MLfMAZXzJOm3xuPV7NdL2Q0IPedWxAP3WkwO9RoL7cEgTfV66xizp TI6/3joLndC9e3YLn5K8TzvQQInzLmGTLvQ7DyX4+wPcLKSHxjJPVx/6sDwzfqBG qSvfqBS9/f6dRFZYwP3x+LK8IIGXDyBRo2bcek974eU7x8dJnyrk2N8Bg5LQg3N0 zELxZWfVhyfdW2LsEyK/NoxjWjvl21Ai2hj8ttB6E8dNXTg4jNYzoajdHwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKNdT2GyQaR7dkA/Gj+dHJ2iD/9OMB8GA1UdIwQY MBaAFC+harBgIAZ3QKTB+0epEmIvHQciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUt ZDI0MmI2ZjNhOGExLzEvbzExUFliSkJwSHQyUUQ4YVA1MGNuYUlQXzA0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUtZDI0MmI2ZjNhOGEx LzEvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1ZFXMA0G CSqGSIb3DQEBCwUAA4IBAQCtXSqa5jnaakxALa4pWNVv+3kvKp2aLQxyRj6r6pxU qxG6vUOcrnUJg91P396a+BEjGzGhuPvl3ObDv5NMn0Y7ee5UMR4PuE/kIbnF0iby cpBhfmOlBbo1v5751KP1Pw4dbf3iaBgMailYDBOjrlz/PIe6L0PTRaG/CQoA2mhw bje9Rrr17m8Yk4tLCFUNciEv+QOpKa2sY0wZhgZYQ61+bqOxpNx8ndA3zI2NHnGX whGqbnITtaa+yCyrJe/m96YBwsJ9TIdKd1mCzF8Pj9j0AFdU3jZ/OcRlntiG56MC z3o7mVJdn475CWJ74Oq1aQ1M82StPh5tYGulyigkQTzM -----END CERTIFICATE-----Generated at Mon Jan 19 20:14:54 2026 by rpki-client