This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/otaASQB8GGspCrnWLO5XzeVcDtk.roa File: otaASQB8GGspCrnWLO5XzeVcDtk.roa (raw, json) Hash identifier: oDtuQThG0LQMGhrXFrB1ol0UNfbRDq15W0nys4vTqB4= Subject key identifier: A2:D6:80:49:00:7C:18:6B:29:0A:B9:D6:2C:EE:57:CD:E5:5C:0E:D9 Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722 Certificate serial: 019BA77F92CA83A75E252807A0D6D90EA3D8 Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/otaASQB8GGspCrnWLO5XzeVcDtk.roa Signing time: Sat 10 Jan 2026 10:41:54 +0000 ROA not before: Sat 10 Jan 2026 10:41:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197537 IP address blocks: 213.145.66.0/24 maxlen: 24 213.145.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.mft rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 23:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:a7:7f:92:ca:83:a7:5e:25:28:07:a0:d6:d9:0e:a3:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722 Validity Not Before: Jan 10 10:41:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a2d68049007c186b290ab9d62cee57cde55c0ed9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b4:c0:2f:4a:b6:e6:25:8b:bb:8e:09:2a:2d: 5a:81:3e:50:be:48:c4:a4:58:39:bc:54:c2:e3:db: 14:24:be:9c:a2:84:b9:19:30:03:87:c2:17:06:e3: 7a:5b:f2:4e:42:21:1d:6d:99:e1:8f:fd:dc:39:50: 72:17:be:0e:fc:bd:a8:3d:7c:5b:8b:d2:fb:6e:ab: ac:b6:ca:fd:03:36:1f:62:7e:c2:17:f7:75:64:58: 47:d2:92:bc:15:d4:00:1b:2f:4d:7d:54:8c:d4:18: 44:62:ad:27:7b:a0:17:66:79:ab:da:20:cf:2a:67: dd:32:16:1f:de:bb:e2:d2:79:1b:b1:f0:5b:79:84: 48:db:c9:51:84:bf:28:f9:8b:eb:1c:8e:93:97:ed: 37:a6:43:e7:bd:21:78:17:11:2f:ad:ec:78:51:27: 85:21:3d:29:45:8e:10:2f:67:a7:99:9b:6c:cc:6d: 2e:d9:49:d1:0a:18:1a:5a:de:72:a3:b3:af:c1:04: 4c:75:75:d9:3b:cc:db:ef:7e:08:3e:7b:12:02:47: fe:a0:a7:d9:89:89:c2:50:24:84:d6:08:0c:b2:dd: 71:f6:d7:4c:61:5b:b0:48:42:0d:55:37:c7:93:bf: ab:39:b9:b9:6a:7a:e0:2a:16:13:c6:18:69:2f:c8: 40:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:D6:80:49:00:7C:18:6B:29:0A:B9:D6:2C:EE:57:CD:E5:5C:0E:D9 X509v3 Authority Key Identifier: keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/otaASQB8GGspCrnWLO5XzeVcDtk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.145.66.0/24 213.145.89.0/24 Signature Algorithm: sha256WithRSAEncryption b9:90:70:22:5e:5a:b0:09:a8:01:be:44:b1:1c:a0:db:98:0e: c9:66:ed:e8:83:57:2a:77:09:21:66:31:81:1d:3d:13:c9:12: 3c:4b:c1:5a:fb:58:6c:ba:e3:11:8d:15:0f:01:25:cc:6a:25: fc:31:27:55:8d:dd:b0:e2:0f:8c:32:39:15:35:df:8e:20:64: df:f1:bb:07:54:c6:5e:87:eb:81:32:3d:e7:c3:24:1e:bc:97: d1:5b:84:c5:fc:cc:cb:6e:be:05:f4:bb:b8:e1:a5:a3:e3:e1: 5e:2b:ca:b4:5c:ca:b4:f5:98:3e:25:78:37:da:eb:4b:61:f8: 23:29:5f:d4:3a:69:2c:ab:c6:d1:19:ef:16:00:50:63:89:66: c9:c4:99:1d:a4:c9:74:dc:48:85:4b:1a:56:47:0c:51:ce:99: cc:8b:b4:ba:45:1e:a5:c0:b1:04:b9:da:37:f8:ce:5d:00:c7: 22:67:9c:8f:d7:5f:f1:34:41:11:fd:8d:63:2b:3e:91:f0:df: e6:e3:4e:f7:d1:02:55:7a:8c:b8:a1:f8:4a:c2:d6:00:68:0b: 0b:eb:cc:48:a8:6c:70:07:ba:6c:3e:68:c9:f5:0a:ea:f0:8c: 70:6c:4e:90:d5:31:3b:44:e9:6a:da:27:9d:e8:b2:98:22:da: 2c:f0:88:e8 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZunf5LKg6deJSgHoNbZDqPYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJmYTE2YWIwNjAyMDA2Nzc0MGE0YzFmYjQ3YTkxMjYyMmYx ZDA3MjIwHhcNMjYwMTEwMTA0MTU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMmQ2ODA0OTAwN2MxODZiMjkwYWI5ZDYyY2VlNTdjZGU1NWMwZWQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsLTAL0q25iWLu44JKi1agT5QvkjE pFg5vFTC49sUJL6cooS5GTADh8IXBuN6W/JOQiEdbZnhj/3cOVByF74O/L2oPXxb i9L7bqustsr9AzYfYn7CF/d1ZFhH0pK8FdQAGy9NfVSM1BhEYq0ne6AXZnmr2iDP KmfdMhYf3rvi0nkbsfBbeYRI28lRhL8o+YvrHI6Tl+03pkPnvSF4FxEvrex4USeF IT0pRY4QL2enmZtszG0u2UnRChgaWt5yo7OvwQRMdXXZO8zb734IPnsSAkf+oKfZ iYnCUCSE1ggMst1x9tdMYVuwSEINVTfHk7+rObm5anrgKhYTxhhpL8hAaQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFKLWgEkAfBhrKQq51izuV83lXA7ZMB8GA1UdIwQY MBaAFC+harBgIAZ3QKTB+0epEmIvHQciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUt ZDI0MmI2ZjNhOGExLzEvb3RhQVNRQjhHR3NwQ3JuV0xPNVh6ZVZjRHRrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUtZDI0MmI2ZjNhOGEx LzEvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQA1ZFCAwQA 1ZFZMA0GCSqGSIb3DQEBCwUAA4IBAQC5kHAiXlqwCagBvkSxHKDbmA7JZu3og1cq dwkhZjGBHT0TyRI8S8Fa+1hsuuMRjRUPASXMaiX8MSdVjd2w4g+MMjkVNd+OIGTf 8bsHVMZeh+uBMj3nwyQevJfRW4TF/MzLbr4F9Lu44aWj4+FeK8q0XMq09Zg+JXg3 2utLYfgjKV/UOmksq8bRGe8WAFBjiWbJxJkdpMl03EiFSxpWRwxRzpnMi7S6RR6l wLEEudo3+M5dAMciZ5yP11/xNEER/Y1jKz6R8N/m40730QJVeoy4ofhKwtYAaAsL 68xIqGxwB7psPmjJ9Qrq8IxwbE6Q1TE7ROlq2ied6LKYItos8Ijo -----END CERTIFICATE-----Generated at Sun Jan 18 08:53:33 2026 by rpki-client