This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/6de7ff-321e-4b47-b3c5-6db086c00f6a/1/OTzOq7SDpRdksgl_zYPgtdePfLI.roa File: OTzOq7SDpRdksgl_zYPgtdePfLI.roa (raw, json) Hash identifier: D6qdGzPzEfS+jEvVQOP5Z3G0DkCqmvwi/YwWrt4+qgc= Subject key identifier: 39:3C:CE:AB:B4:83:A5:17:64:B2:09:7F:CD:83:E0:B5:D7:8F:7C:B2 Certificate issuer: /CN=8d34fab9aa33eb55d9854237bd0d2252792132e6 Certificate serial: 019B7C8017A8723E7F66343813B80187AA2B Authority key identifier: 8D:34:FA:B9:AA:33:EB:55:D9:85:42:37:BD:0D:22:52:79:21:32:E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jTT6uaoz61XZhUI3vQ0iUnkhMuY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/6de7ff-321e-4b47-b3c5-6db086c00f6a/1/OTzOq7SDpRdksgl_zYPgtdePfLI.roa Signing time: Fri 02 Jan 2026 02:18:48 +0000 ROA not before: Fri 02 Jan 2026 02:18:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59597 IP address blocks: 193.176.4.0/24 maxlen: 24 193.176.44.0/24 maxlen: 24 193.176.62.0/24 maxlen: 24 193.176.147.0/24 maxlen: 24 2a0f:90c0::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/6de7ff-321e-4b47-b3c5-6db086c00f6a/1/jTT6uaoz61XZhUI3vQ0iUnkhMuY.crl rsync://rpki.ripe.net/repository/DEFAULT/f8/6de7ff-321e-4b47-b3c5-6db086c00f6a/1/jTT6uaoz61XZhUI3vQ0iUnkhMuY.mft rsync://rpki.ripe.net/repository/DEFAULT/jTT6uaoz61XZhUI3vQ0iUnkhMuY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:17:a8:72:3e:7f:66:34:38:13:b8:01:87:aa:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8d34fab9aa33eb55d9854237bd0d2252792132e6 Validity Not Before: Jan 2 02:18:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=393cceabb483a51764b2097fcd83e0b5d78f7cb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:0b:dd:8a:a9:68:90:46:c5:f2:ef:39:91:fd: f6:fa:eb:45:aa:2b:e3:00:cd:c9:c7:58:e8:c8:b6: 28:9a:e0:c0:d4:ec:a3:e0:4b:50:49:b4:2b:0a:e3: 9f:41:c2:25:98:d3:a8:3e:11:70:2a:2d:ad:46:4e: d3:c4:9e:2e:79:e3:f8:ef:6d:b6:5a:5d:6c:cd:21: bd:fd:99:2b:a0:9f:00:1a:08:0c:e6:21:57:8c:9b: d1:03:f0:fc:0b:73:8b:55:a3:93:e6:e3:b2:cd:51: ae:a4:bd:55:8d:01:47:71:db:77:0d:c9:c6:15:29: 91:89:e7:9e:e8:5d:fe:c9:6c:89:a6:e5:37:08:c8: 00:d7:99:02:03:ce:9e:3d:34:9a:a0:33:ed:bf:7b: 26:53:07:da:9b:ca:eb:68:4f:50:d0:8d:de:0f:02: f0:8d:4f:c7:32:31:bd:81:b5:c4:ec:da:02:db:35: b3:99:e6:22:6f:af:d8:7a:11:59:15:2a:ef:7a:80: 69:cb:86:a8:39:78:eb:5e:50:7e:12:96:85:b0:1c: 68:52:f2:e3:1b:80:3a:67:e7:cc:10:25:60:4a:8e: 1f:90:9f:56:97:c1:5a:cf:64:d1:a5:9a:b2:b9:2d: b7:4d:a6:8a:75:aa:bb:7b:9e:09:c8:57:2c:60:96: 92:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:3C:CE:AB:B4:83:A5:17:64:B2:09:7F:CD:83:E0:B5:D7:8F:7C:B2 X509v3 Authority Key Identifier: keyid:8D:34:FA:B9:AA:33:EB:55:D9:85:42:37:BD:0D:22:52:79:21:32:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jTT6uaoz61XZhUI3vQ0iUnkhMuY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/6de7ff-321e-4b47-b3c5-6db086c00f6a/1/OTzOq7SDpRdksgl_zYPgtdePfLI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/6de7ff-321e-4b47-b3c5-6db086c00f6a/1/jTT6uaoz61XZhUI3vQ0iUnkhMuY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.176.4.0/24 193.176.44.0/24 193.176.62.0/24 193.176.147.0/24 IPv6: 2a0f:90c0::/29 Signature Algorithm: sha256WithRSAEncryption 57:8a:10:ce:41:e8:2e:be:2f:ae:5f:43:76:d0:c0:d0:0d:77: 37:71:71:0f:0c:15:dd:e4:60:32:63:4d:db:2b:3b:7e:9c:ec: 4b:59:14:f5:cd:a7:0f:cd:b2:ce:bf:37:f8:d0:00:63:07:d2: a9:0f:c0:e9:0b:74:d2:08:46:a7:fb:5c:d3:49:a5:39:4e:5b: bf:92:87:6d:b6:3e:02:8f:9d:5a:03:c3:6c:25:56:f6:06:0a: 5c:99:16:fb:23:58:a1:70:02:62:3a:88:c1:5b:d5:11:57:0f: 51:22:84:34:a6:2e:78:95:a9:f9:f3:5a:7c:f9:d6:a5:c7:44: 8d:7c:c4:42:7b:5e:2d:69:65:3e:57:01:e1:3f:2d:b7:3c:62: a4:b7:42:f5:e3:47:68:37:e2:55:a9:82:a5:d0:ca:01:84:34: cf:16:a9:a4:77:f8:98:40:5e:2d:17:d6:9b:8e:31:ac:ca:e5: 3b:3f:27:6b:c9:a2:b2:3c:01:05:bd:55:39:86:e8:99:9e:80: df:cd:95:39:13:fd:dd:51:08:b0:64:32:2c:09:b0:94:5d:9b: 88:5a:c1:19:7a:4c:cb:ef:3d:9e:f0:0c:d5:b4:5d:ab:c1:10: fd:04:07:ff:40:67:d9:71:db:de:b3:e3:9b:5b:b5:30:ec:4e: f2:df:18:31 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgISAZt8gBeocj5/ZjQ4E7gBh6orMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhkMzRmYWI5YWEzM2ViNTVkOTg1NDIzN2JkMGQyMjUyNzky MTMyZTYwHhcNMjYwMTAyMDIxODQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzOTNjY2VhYmI0ODNhNTE3NjRiMjA5N2ZjZDgzZTBiNWQ3OGY3Y2IyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoQvdiqlokEbF8u85kf32+utFqivj AM3Jx1joyLYomuDA1Oyj4EtQSbQrCuOfQcIlmNOoPhFwKi2tRk7TxJ4ueeP47222 Wl1szSG9/ZkroJ8AGggM5iFXjJvRA/D8C3OLVaOT5uOyzVGupL1VjQFHcdt3DcnG FSmRieee6F3+yWyJpuU3CMgA15kCA86ePTSaoDPtv3smUwfam8rraE9Q0I3eDwLw jU/HMjG9gbXE7NoC2zWzmeYib6/YehFZFSrveoBpy4aoOXjrXlB+EpaFsBxoUvLj G4A6Z+fMECVgSo4fkJ9Wl8Faz2TRpZqyuS23TaaKdaq7e54JyFcsYJaSBQIDAQAB o4ICKjCCAiYwHQYDVR0OBBYEFDk8zqu0g6UXZLIJf82D4LXXj3yyMB8GA1UdIwQY MBaAFI00+rmqM+tV2YVCN70NIlJ5ITLmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvalRUNnVhb3o2MVhaaFVJM3ZRMGlVbmtoTXVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC82ZGU3ZmYtMzIxZS00YjQ3LWIzYzUt NmRiMDg2YzAwZjZhLzEvT1R6T3E3U0RwUmRrc2dsX3pZUGd0ZGVQZkxJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOC82ZGU3ZmYtMzIxZS00YjQ3LWIzYzUtNmRiMDg2YzAwZjZh LzEvalRUNnVhb3o2MVhaaFVJM3ZRMGlVbmtoTXVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwQAwbAEAwQA wbAsAwQAwbA+AwQAwbCTMA0EAgACMAcDBQMqD5DAMA0GCSqGSIb3DQEBCwUAA4IB AQBXihDOQeguvi+uX0N20MDQDXc3cXEPDBXd5GAyY03bKzt+nOxLWRT1zacPzbLO vzf40ABjB9KpD8DpC3TSCEan+1zTSaU5Tlu/kodttj4Cj51aA8NsJVb2BgpcmRb7 I1ihcAJiOojBW9URVw9RIoQ0pi54lan581p8+dalx0SNfMRCe14taWU+VwHhPy23 PGKkt0L140doN+JVqYKl0MoBhDTPFqmkd/iYQF4tF9abjjGsyuU7PydryaKyPAEF vVU5huiZnoDfzZU5E/3dUQiwZDIsCbCUXZuIWsEZekzL7z2e8AzVtF2rwRD9BAf/ QGfZcdves+ObW7Uw7E7y3xgx -----END CERTIFICATE-----Generated at Tue Jan 20 04:28:44 2026 by rpki-client