This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/fad4f1-91f0-47e1-b370-ee509fbd80e1/1/oOmlfKVzpMVENSLkIqqHr9oYYIg.roa File: oOmlfKVzpMVENSLkIqqHr9oYYIg.roa (raw, json) Hash identifier: /1cGoeAjRc1hP5Tzk5VY4ttcaNmL4WoxJgl5UoSxmIg= Subject key identifier: A0:E9:A5:7C:A5:73:A4:C5:44:35:22:E4:22:AA:87:AF:DA:18:60:88 Certificate issuer: /CN=522f9879ccfadee5d04a9a9973f5b27952971bfb Certificate serial: 019B7B35625BFC26B09F32BF0F7C24A7CD56 Authority key identifier: 52:2F:98:79:CC:FA:DE:E5:D0:4A:9A:99:73:F5:B2:79:52:97:1B:FB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ui-Yecz63uXQSpqZc_WyeVKXG_s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/fad4f1-91f0-47e1-b370-ee509fbd80e1/1/oOmlfKVzpMVENSLkIqqHr9oYYIg.roa Signing time: Thu 01 Jan 2026 20:17:34 +0000 ROA not before: Thu 01 Jan 2026 20:17:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31726 IP address blocks: 185.90.180.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/fad4f1-91f0-47e1-b370-ee509fbd80e1/1/Ui-Yecz63uXQSpqZc_WyeVKXG_s.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/fad4f1-91f0-47e1-b370-ee509fbd80e1/1/Ui-Yecz63uXQSpqZc_WyeVKXG_s.mft rsync://rpki.ripe.net/repository/DEFAULT/Ui-Yecz63uXQSpqZc_WyeVKXG_s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:62:5b:fc:26:b0:9f:32:bf:0f:7c:24:a7:cd:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=522f9879ccfadee5d04a9a9973f5b27952971bfb Validity Not Before: Jan 1 20:17:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a0e9a57ca573a4c5443522e422aa87afda186088 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:51:98:ca:4b:2a:59:e7:d9:4f:95:ed:3b:af: 50:c6:25:f9:37:0d:c5:1f:3f:98:59:13:d7:4a:a0: e0:0a:00:f9:5a:2c:f6:bd:da:24:9a:96:ec:c9:3f: 27:04:a5:55:e7:ea:bb:ad:d2:2a:22:47:93:06:3b: a7:0e:02:a8:c1:d9:9c:fe:b4:f4:18:67:87:ae:f9: f8:34:05:a5:fb:f4:e1:3d:69:61:b1:0a:f8:a5:d8: 85:60:e3:7c:c5:86:5e:82:3e:6d:69:e3:2c:ba:89: a6:f0:0b:a4:65:c9:c2:cc:98:ee:0f:90:75:2c:6a: c8:47:f8:db:1c:7b:f4:c1:05:8e:a7:3e:13:ed:05: 2b:ba:33:5f:36:73:07:21:eb:69:4b:f5:66:59:cc: 1f:e7:a2:c6:16:d5:85:5a:2a:83:3b:e2:d2:7a:76: 09:e8:1d:72:23:47:ee:fd:6c:a3:a5:d1:94:dd:a1: 10:5b:2a:44:b6:f6:6f:35:70:53:fc:f8:94:f4:4b: 87:f4:88:74:fd:08:bc:af:e6:d1:f9:b4:fc:f5:cb: 10:b9:a1:81:6b:ed:f4:57:63:96:92:49:2b:45:fc: 05:65:f3:50:b4:4d:8c:3d:b2:67:30:b6:81:8b:15: 31:75:b7:95:62:79:63:7f:49:0a:3e:b7:36:c0:71: 7a:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:E9:A5:7C:A5:73:A4:C5:44:35:22:E4:22:AA:87:AF:DA:18:60:88 X509v3 Authority Key Identifier: keyid:52:2F:98:79:CC:FA:DE:E5:D0:4A:9A:99:73:F5:B2:79:52:97:1B:FB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ui-Yecz63uXQSpqZc_WyeVKXG_s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/fad4f1-91f0-47e1-b370-ee509fbd80e1/1/oOmlfKVzpMVENSLkIqqHr9oYYIg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/fad4f1-91f0-47e1-b370-ee509fbd80e1/1/Ui-Yecz63uXQSpqZc_WyeVKXG_s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.90.180.0/22 Signature Algorithm: sha256WithRSAEncryption 29:66:09:37:ab:6e:dc:44:82:ed:85:db:05:49:cf:22:b9:f3: a9:c0:8a:6e:6d:90:19:f8:1f:f6:23:1b:96:6d:af:15:b6:2d: 32:52:34:8d:6d:de:96:90:85:8b:54:e4:24:e1:14:90:c6:81: b6:02:83:16:b5:36:fe:1f:5d:a8:c4:f3:07:d9:f7:fa:31:e7: 8c:c0:ee:0f:63:74:f8:91:4e:33:85:a8:23:4a:ad:73:8e:1e: ae:f1:85:a5:56:e7:0a:81:59:22:76:b0:28:3c:3d:54:0e:61: 2b:52:60:0a:9a:31:27:71:72:ed:df:5a:98:b4:6d:75:f6:ad: b8:ca:be:5e:c5:1d:83:69:67:ea:b6:b6:fc:e0:7b:85:6d:3f: ea:70:17:f3:88:42:fc:9f:ed:1c:e9:aa:a3:90:47:ba:fb:62: f9:19:47:17:d7:1c:99:3b:42:17:21:c4:3f:33:c6:71:d6:7b: b5:c1:cb:a5:a9:94:fc:00:c6:c3:7b:54:c2:ed:39:82:1c:87: 6b:e3:ec:b0:4b:c3:4b:77:aa:67:a3:3b:8c:43:4f:e0:f2:58: 6d:e0:42:83:77:67:1a:e2:64:cf:39:68:6f:88:01:f5:70:f1: 4c:d8:c9:a3:26:e5:35:b9:21:96:78:7f:84:64:3b:c8:cb:68: 4f:59:0e:77 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7NWJb/CawnzK/D3wkp81WMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyMmY5ODc5Y2NmYWRlZTVkMDRhOWE5OTczZjViMjc5NTI5 NzFiZmIwHhcNMjYwMTAxMjAxNzM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMGU5YTU3Y2E1NzNhNGM1NDQzNTIyZTQyMmFhODdhZmRhMTg2MDg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo1GYyksqWefZT5XtO69QxiX5Nw3F Hz+YWRPXSqDgCgD5Wiz2vdokmpbsyT8nBKVV5+q7rdIqIkeTBjunDgKowdmc/rT0 GGeHrvn4NAWl+/ThPWlhsQr4pdiFYON8xYZegj5taeMsuomm8AukZcnCzJjuD5B1 LGrIR/jbHHv0wQWOpz4T7QUrujNfNnMHIetpS/VmWcwf56LGFtWFWiqDO+LSenYJ 6B1yI0fu/WyjpdGU3aEQWypEtvZvNXBT/PiU9EuH9Ih0/Qi8r+bR+bT89csQuaGB a+30V2OWkkkrRfwFZfNQtE2MPbJnMLaBixUxdbeVYnljf0kKPrc2wHF6gwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKDppXylc6TFRDUi5CKqh6/aGGCIMB8GA1UdIwQY MBaAFFIvmHnM+t7l0EqamXP1snlSlxv7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVWktWWVjejYzdVhRU3BxWmNfV3llVktYR19zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS9mYWQ0ZjEtOTFmMC00N2UxLWIzNzAt ZWU1MDlmYmQ4MGUxLzEvb09tbGZLVnpwTVZFTlNMa0lxcUhyOW9ZWUlnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS9mYWQ0ZjEtOTFmMC00N2UxLWIzNzAtZWU1MDlmYmQ4MGUx LzEvVWktWWVjejYzdVhRU3BxWmNfV3llVktYR19zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuVq0MA0G CSqGSIb3DQEBCwUAA4IBAQApZgk3q27cRILthdsFSc8iufOpwIpubZAZ+B/2IxuW ba8Vti0yUjSNbd6WkIWLVOQk4RSQxoG2AoMWtTb+H12oxPMH2ff6MeeMwO4PY3T4 kU4zhagjSq1zjh6u8YWlVucKgVkidrAoPD1UDmErUmAKmjEncXLt31qYtG119q24 yr5exR2DaWfqtrb84HuFbT/qcBfziEL8n+0c6aqjkEe6+2L5GUcX1xyZO0IXIcQ/ M8Zx1nu1wculqZT8AMbDe1TC7TmCHIdr4+ywS8NLd6pnozuMQ0/g8lht4EKDd2ca 4mTPOWhviAH1cPFM2MmjJuU1uSGWeH+EZDvIy2hPWQ53 -----END CERTIFICATE-----Generated at Mon Feb 9 19:54:50 2026 by rpki-client