This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/OM8ro-KVXSFi75-rvSPMDiOZZ2w.roa File: OM8ro-KVXSFi75-rvSPMDiOZZ2w.roa (raw, json) Hash identifier: tRpRCTQ3IPxP0cXhDKgtLxyzWVrLZ+lXbxv9lEYuwmY= Subject key identifier: 38:CF:2B:A3:E2:95:5D:21:62:EF:9F:AB:BD:23:CC:0E:23:99:67:6C Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09 Certificate serial: 019B7EA770407DFA3E95C2EEED88EF82D756 Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/OM8ro-KVXSFi75-rvSPMDiOZZ2w.roa Signing time: Fri 02 Jan 2026 12:21:01 +0000 ROA not before: Fri 02 Jan 2026 12:21:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35516 IP address blocks: 80.240.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.mft rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 00:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:70:40:7d:fa:3e:95:c2:ee:ed:88:ef:82:d7:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09 Validity Not Before: Jan 2 12:21:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=38cf2ba3e2955d2162ef9fabbd23cc0e2399676c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:2d:ef:47:d9:56:c7:04:a8:0d:4d:c8:33:bd: d8:86:49:36:ff:e0:46:0e:a7:c7:65:57:bc:f8:cc: 36:11:42:19:62:c7:ae:61:7c:06:9b:43:93:15:b9: 75:7f:11:14:8f:8f:98:1c:1a:01:5c:9d:5e:7f:fd: f5:81:0e:28:f8:83:97:ba:87:42:42:d2:9e:3f:ac: e2:e3:7c:03:51:58:94:c0:43:1a:1d:54:16:9f:dc: ff:c8:88:13:fa:0f:01:c7:06:ed:ee:ea:d0:52:17: 5f:40:33:a2:08:8c:95:a7:ea:a7:5a:b8:b9:d0:2e: a9:7b:11:d8:2c:90:c2:d4:ad:ae:3b:be:b2:12:1f: 9c:af:0f:50:f0:3d:36:80:d4:61:02:87:fa:55:57: 17:49:c2:b1:a8:fe:80:ca:83:8e:1d:b9:97:bd:1c: 35:71:78:28:a6:ad:45:16:6a:cf:19:33:7e:ba:67: f7:30:a8:22:99:78:6a:92:d9:60:16:06:41:82:be: 32:d8:57:bd:85:1c:10:e0:09:b7:7e:ad:e1:0b:aa: 2f:c5:30:33:1a:f1:eb:2e:49:03:86:18:4a:e8:b6: 22:99:3a:2c:5e:c7:75:bb:e4:78:35:a5:78:45:e3: 0f:71:86:dc:c9:a2:91:1c:bb:2f:2e:c0:0f:f6:65: 1b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:CF:2B:A3:E2:95:5D:21:62:EF:9F:AB:BD:23:CC:0E:23:99:67:6C X509v3 Authority Key Identifier: keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/OM8ro-KVXSFi75-rvSPMDiOZZ2w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.240.240.0/20 Signature Algorithm: sha256WithRSAEncryption 0f:62:a6:24:39:4f:22:f5:8c:fb:f9:f9:9b:bb:3b:42:70:32: 8a:2c:a8:70:4a:43:ae:4c:26:fb:fe:99:06:7a:d3:d8:fe:f8: d8:79:3c:16:d8:46:56:ad:a2:b4:2d:f8:1a:5a:6f:f8:20:3a: 44:82:76:d6:9c:c5:6e:af:58:8f:b7:45:e2:68:28:65:46:de: ef:26:5a:bc:70:23:d5:4c:ac:61:30:c7:da:4c:9d:f0:12:d7: b5:d0:1d:0f:d1:d9:bb:8b:61:96:f9:61:22:cd:27:2c:16:96: 6d:65:60:2a:64:82:fd:e3:51:81:27:55:8c:6d:41:ec:d5:fd: c5:ea:ae:95:b3:5c:1c:85:ae:f1:7b:b8:eb:d9:bc:2a:90:02: 24:4b:31:36:40:fd:46:43:b5:80:6f:7f:ff:7f:1a:ff:02:ef: 3c:20:1c:a0:76:45:e8:44:4c:e5:ec:dd:d8:f3:bc:59:1c:82: 28:e5:06:35:ca:a2:d2:bc:7d:fe:e1:16:18:7f:1c:de:43:97: 0c:b1:db:68:91:f0:a3:7d:45:05:d3:f6:d0:60:6a:0d:a5:7a: bf:8a:cd:2c:cd:32:92:e3:b6:9f:33:80:68:6b:77:28:15:e8: 6e:6b:28:24:7a:1e:53:f6:cb:b1:a2:73:e9:6d:6b:0a:e1:4d: a9:a2:3d:a8 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+p3BAffo+lcLu7YjvgtdWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlZTUzMWI5YWMyOTkwZDY5YThhNWMzMDIzZTcyZTZkODQx ZTZjMDkwHhcNMjYwMTAyMTIyMTAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzOGNmMmJhM2UyOTU1ZDIxNjJlZjlmYWJiZDIzY2MwZTIzOTk2NzZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwS3vR9lWxwSoDU3IM73Yhkk2/+BG DqfHZVe8+Mw2EUIZYseuYXwGm0OTFbl1fxEUj4+YHBoBXJ1ef/31gQ4o+IOXuodC QtKeP6zi43wDUViUwEMaHVQWn9z/yIgT+g8Bxwbt7urQUhdfQDOiCIyVp+qnWri5 0C6pexHYLJDC1K2uO76yEh+crw9Q8D02gNRhAof6VVcXScKxqP6AyoOOHbmXvRw1 cXgopq1FFmrPGTN+umf3MKgimXhqktlgFgZBgr4y2Fe9hRwQ4Am3fq3hC6ovxTAz GvHrLkkDhhhK6LYimTosXsd1u+R4NaV4ReMPcYbcyaKRHLsvLsAP9mUbJQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDjPK6PilV0hYu+fq70jzA4jmWdsMB8GA1UdIwQY MBaAFF7lMbmsKZDWmopcMCPnLm2EHmwJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQt NWE4NmMyNzU3YzFlLzEvT004cm8tS1ZYU0ZpNzUtcnZTUE1EaU9aWjJ3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQtNWE4NmMyNzU3YzFl LzEvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEUPDwMA0G CSqGSIb3DQEBCwUAA4IBAQAPYqYkOU8i9Yz7+fmbuztCcDKKLKhwSkOuTCb7/pkG etPY/vjYeTwW2EZWraK0LfgaWm/4IDpEgnbWnMVur1iPt0XiaChlRt7vJlq8cCPV TKxhMMfaTJ3wEte10B0P0dm7i2GW+WEizScsFpZtZWAqZIL941GBJ1WMbUHs1f3F 6q6Vs1wcha7xe7jr2bwqkAIkSzE2QP1GQ7WAb3//fxr/Au88IBygdkXoREzl7N3Y 87xZHIIo5QY1yqLSvH3+4RYYfxzeQ5cMsdtokfCjfUUF0/bQYGoNpXq/is0szTKS 47afM4Boa3coFehuaygkeh5T9suxonPpbWsK4U2poj2o -----END CERTIFICATE-----Generated at Mon Jan 26 10:13:39 2026 by rpki-client