This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/8db67a-c4fc-4c2c-9978-a7be5fa0ff65/1/OAEorJyO21CaYV6Gnw2MtG2JwsU.roa File: OAEorJyO21CaYV6Gnw2MtG2JwsU.roa (raw, json) Hash identifier: 6TwwN2/KVe8eDB0CY9btEHQoBYS5wpFBJapv0xQBLhk= Subject key identifier: 38:01:28:AC:9C:8E:DB:50:9A:61:5E:86:9F:0D:8C:B4:6D:89:C2:C5 Certificate issuer: /CN=ed624c590027a5a8c9eeb369726e4a630cdf414c Certificate serial: 019B7E37A9E6DCAA4035E712AE655844651D Authority key identifier: ED:62:4C:59:00:27:A5:A8:C9:EE:B3:69:72:6E:4A:63:0C:DF:41:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7WJMWQAnpajJ7rNpcm5KYwzfQUw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/8db67a-c4fc-4c2c-9978-a7be5fa0ff65/1/OAEorJyO21CaYV6Gnw2MtG2JwsU.roa Signing time: Fri 02 Jan 2026 10:18:55 +0000 ROA not before: Fri 02 Jan 2026 10:18:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 45.89.128.0/22 maxlen: 22 2a0b:a200::/48 maxlen: 48 2a0b:a200:1::/48 maxlen: 48 2a0b:a200:2::/48 maxlen: 48 2a0b:a200:3::/48 maxlen: 48 2a0b:a200:4::/48 maxlen: 48 2a0b:a200:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/8db67a-c4fc-4c2c-9978-a7be5fa0ff65/1/7WJMWQAnpajJ7rNpcm5KYwzfQUw.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/8db67a-c4fc-4c2c-9978-a7be5fa0ff65/1/7WJMWQAnpajJ7rNpcm5KYwzfQUw.mft rsync://rpki.ripe.net/repository/DEFAULT/7WJMWQAnpajJ7rNpcm5KYwzfQUw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:a9:e6:dc:aa:40:35:e7:12:ae:65:58:44:65:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ed624c590027a5a8c9eeb369726e4a630cdf414c Validity Not Before: Jan 2 10:18:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=380128ac9c8edb509a615e869f0d8cb46d89c2c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f2:65:cc:f8:be:5c:36:36:7d:c6:c8:ad:54: 25:a2:f4:ce:4a:53:bd:83:ca:2d:bf:7d:2d:f8:6d: 57:6f:d1:db:41:c7:b5:c2:fa:9f:29:a4:28:bd:fd: 25:05:89:30:c1:95:0e:52:d6:60:da:2d:e6:76:4d: f7:1a:c9:45:03:61:c3:8c:6f:e3:f8:5c:9f:5f:b8: 8e:cd:8b:c6:81:9b:b4:67:1b:e7:17:88:7c:ea:d6: a7:bf:21:65:47:c1:74:b1:0b:22:60:e6:ba:97:5a: 0c:74:77:46:6b:d4:2b:4a:66:02:db:e2:b5:60:38: 71:ce:39:24:59:69:d4:f5:5d:04:97:18:cc:56:1b: 29:cc:a3:85:43:00:08:5d:b3:42:12:ef:1a:42:98: a0:4a:89:e9:bc:1b:62:a5:aa:2f:2b:9f:32:6d:de: 9f:5a:d6:be:16:8c:e6:5f:a0:8a:59:f8:35:33:ae: ee:8d:57:62:cd:ba:77:d1:88:cc:cb:61:1d:9f:51: 9a:53:d8:95:06:61:88:57:09:f6:c2:4c:77:90:13: dd:fe:d4:a8:fa:87:10:4e:a0:53:15:7a:5f:a0:24: fc:e6:e8:9d:5e:80:f8:94:c0:fb:61:f2:b7:6d:33: 55:73:d9:4e:80:6f:9f:a6:44:fd:e3:af:db:3e:f9: c0:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:01:28:AC:9C:8E:DB:50:9A:61:5E:86:9F:0D:8C:B4:6D:89:C2:C5 X509v3 Authority Key Identifier: keyid:ED:62:4C:59:00:27:A5:A8:C9:EE:B3:69:72:6E:4A:63:0C:DF:41:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7WJMWQAnpajJ7rNpcm5KYwzfQUw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/8db67a-c4fc-4c2c-9978-a7be5fa0ff65/1/OAEorJyO21CaYV6Gnw2MtG2JwsU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/8db67a-c4fc-4c2c-9978-a7be5fa0ff65/1/7WJMWQAnpajJ7rNpcm5KYwzfQUw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.89.128.0/22 IPv6: 2a0b:a200::-2a0b:a200:5:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption d3:81:af:35:1e:c5:f8:e5:1e:67:51:8d:61:c4:cf:88:6f:7b: f0:1a:e9:98:e1:a1:d0:95:52:c8:36:f1:41:e3:9d:38:11:00: 54:94:48:81:80:84:9d:e3:61:1b:b1:c6:1f:2d:16:98:b3:ee: 5d:b7:56:62:76:7c:6f:aa:0c:ff:4c:1f:bb:26:e2:08:44:11: 52:5a:50:50:43:d4:59:39:1e:d4:94:5e:1c:81:4c:6e:19:f0: 40:8d:19:2a:3a:46:fb:82:cc:a8:7c:05:ad:cc:1d:b2:2b:77: 65:91:0e:8c:fc:38:ee:0b:cc:b3:7c:c9:7d:92:38:5f:bb:fe: b6:91:d8:fc:6d:ab:1e:68:d0:5b:04:cb:6e:f1:2d:3a:97:e9: ce:3e:86:9c:26:0b:30:50:ff:f0:cd:03:4a:e0:47:d3:33:72: 47:de:e3:db:f3:79:f0:ce:c2:41:ca:ea:25:be:84:7a:8e:96: b8:82:61:8e:a8:9d:3f:36:e7:2d:a0:96:c4:e9:f9:b9:06:52: 09:e0:c7:eb:e6:87:8f:04:f1:74:b8:5b:a0:28:01:4d:40:16: 3c:57:1a:c8:e3:be:aa:e9:66:30:03:7e:72:2e:c6:9c:e8:f6: f8:32:ff:e4:e3:a9:94:3b:1f:b2:e9:3e:6b:34:e0:79:38:db: ad:52:a4:07 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZt+N6nm3KpANecSrmVYRGUdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVkNjI0YzU5MDAyN2E1YThjOWVlYjM2OTcyNmU0YTYzMGNk ZjQxNGMwHhcNMjYwMTAyMTAxODU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzODAxMjhhYzljOGVkYjUwOWE2MTVlODY5ZjBkOGNiNDZkODljMmM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy/JlzPi+XDY2fcbIrVQlovTOSlO9 g8otv30t+G1Xb9HbQce1wvqfKaQovf0lBYkwwZUOUtZg2i3mdk33GslFA2HDjG/j +FyfX7iOzYvGgZu0ZxvnF4h86tanvyFlR8F0sQsiYOa6l1oMdHdGa9QrSmYC2+K1 YDhxzjkkWWnU9V0ElxjMVhspzKOFQwAIXbNCEu8aQpigSonpvBtipaovK58ybd6f Wta+FozmX6CKWfg1M67ujVdizbp30YjMy2Edn1GaU9iVBmGIVwn2wkx3kBPd/tSo +ocQTqBTFXpfoCT85uidXoD4lMD7YfK3bTNVc9lOgG+fpkT946/bPvnAMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDgBKKycjttQmmFehp8NjLRticLFMB8GA1UdIwQY MBaAFO1iTFkAJ6Woye6zaXJuSmMM30FMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN1dKTVdRQW5wYWpKN3JOcGNtNUtZd3pmUVV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy84ZGI2N2EtYzRmYy00YzJjLTk5Nzgt YTdiZTVmYTBmZjY1LzEvT0FFb3JKeU8yMUNhWVY2R253Mk10RzJKd3NVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy84ZGI2N2EtYzRmYy00YzJjLTk5NzgtYTdiZTVmYTBmZjY1 LzEvN1dKTVdRQW5wYWpKN3JOcGNtNUtZd3pmUVV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDgGCCsGAQUFBwEHAQH/BCkwJzAMBAIAATAGAwQCLVmAMBcE AgACMBEwDwMEASoLogMHASoLogAABDANBgkqhkiG9w0BAQsFAAOCAQEA04GvNR7F +OUeZ1GNYcTPiG978BrpmOGh0JVSyDbxQeOdOBEAVJRIgYCEneNhG7HGHy0WmLPu XbdWYnZ8b6oM/0wfuybiCEQRUlpQUEPUWTke1JReHIFMbhnwQI0ZKjpG+4LMqHwF rcwdsit3ZZEOjPw47gvMs3zJfZI4X7v+tpHY/G2rHmjQWwTLbvEtOpfpzj6GnCYL MFD/8M0DSuBH0zNyR97j2/N58M7CQcrqJb6Eeo6WuIJhjqidPzbnLaCWxOn5uQZS CeDH6+aHjwTxdLhboCgBTUAWPFcayOO+qulmMAN+ci7GnOj2+DL/5OOplDsfsuk+ azTgeTjbrVKkBw== -----END CERTIFICATE-----Generated at Wed Jan 7 23:47:45 2026 by rpki-client