This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9f5223-a56c-465b-ac65-fd152a6a0587/1/oPgrYeYQdKE5w12V1Qsc5asf-z0.roa File: oPgrYeYQdKE5w12V1Qsc5asf-z0.roa (raw, json) Hash identifier: DyrqcRbA6WGivtdHIlCxrVDtSLyegGOpED1YlRSd3w0= Subject key identifier: A0:F8:2B:61:E6:10:74:A1:39:C3:5D:95:D5:0B:1C:E5:AB:1F:FB:3D Certificate issuer: /CN=e5aaf76d27ba812e0d5ce2305f17c53188c2580c Certificate serial: 019B7D5B67A14787E854D9685A0795DC6456 Authority key identifier: E5:AA:F7:6D:27:BA:81:2E:0D:5C:E2:30:5F:17:C5:31:88:C2:58:0C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5ar3bSe6gS4NXOIwXxfFMYjCWAw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9f5223-a56c-465b-ac65-fd152a6a0587/1/oPgrYeYQdKE5w12V1Qsc5asf-z0.roa Signing time: Fri 02 Jan 2026 06:18:20 +0000 ROA not before: Fri 02 Jan 2026 06:18:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35773 IP address blocks: 46.245.237.0/24 maxlen: 24 2a13:d880::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/9f5223-a56c-465b-ac65-fd152a6a0587/1/5ar3bSe6gS4NXOIwXxfFMYjCWAw.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/9f5223-a56c-465b-ac65-fd152a6a0587/1/5ar3bSe6gS4NXOIwXxfFMYjCWAw.mft rsync://rpki.ripe.net/repository/DEFAULT/5ar3bSe6gS4NXOIwXxfFMYjCWAw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:67:a1:47:87:e8:54:d9:68:5a:07:95:dc:64:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e5aaf76d27ba812e0d5ce2305f17c53188c2580c Validity Not Before: Jan 2 06:18:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a0f82b61e61074a139c35d95d50b1ce5ab1ffb3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:7c:c6:fc:ca:bf:8c:61:cc:5d:38:17:5f:ee: 0d:d9:19:99:7e:e4:a2:11:d5:f1:db:9d:7b:b9:a8: 73:e9:9c:4e:02:e9:01:43:23:ba:42:5b:5f:b5:b9: 94:24:6e:59:e7:5d:cb:dd:51:91:7b:df:b6:9e:e3: 55:66:3c:33:7c:e3:b4:bb:04:c0:d1:92:02:ac:1a: 02:d4:26:e2:49:33:2c:5f:d9:28:fd:c7:97:9d:52: bd:60:54:72:24:b4:65:9f:17:28:58:b3:20:fc:6b: 90:46:85:13:f8:ec:5a:69:a0:c3:ad:a8:3e:61:c4: 82:ce:76:1f:e1:95:88:1f:88:60:c1:76:49:61:3b: e5:2a:61:e3:31:16:c1:da:2a:ab:82:c1:10:bc:fb: dc:2c:b0:8f:2c:87:d6:98:03:b6:12:ee:b2:2e:00: ca:41:fc:52:72:d9:26:03:20:ce:e7:f5:8b:1c:85: 6d:f3:62:5a:fb:33:69:eb:e9:50:c6:14:50:9f:db: 06:63:16:64:ce:e5:44:17:f1:57:76:7e:b7:8b:9b: 69:54:87:8f:f1:4d:be:5d:3f:e4:aa:ba:94:1b:ac: 39:8f:57:c4:5e:90:4c:9b:a4:82:5d:d8:31:d1:fc: 5e:e2:bf:c1:bc:7e:86:6b:38:70:89:dd:60:16:7e: f3:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:F8:2B:61:E6:10:74:A1:39:C3:5D:95:D5:0B:1C:E5:AB:1F:FB:3D X509v3 Authority Key Identifier: keyid:E5:AA:F7:6D:27:BA:81:2E:0D:5C:E2:30:5F:17:C5:31:88:C2:58:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5ar3bSe6gS4NXOIwXxfFMYjCWAw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9f5223-a56c-465b-ac65-fd152a6a0587/1/oPgrYeYQdKE5w12V1Qsc5asf-z0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9f5223-a56c-465b-ac65-fd152a6a0587/1/5ar3bSe6gS4NXOIwXxfFMYjCWAw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.245.237.0/24 IPv6: 2a13:d880::/29 Signature Algorithm: sha256WithRSAEncryption 90:7f:06:df:39:5f:ca:1e:e1:4b:2d:6d:63:30:13:64:06:ad: 42:30:83:46:f4:f2:ec:b3:21:60:29:95:85:28:f3:42:d6:cb: a2:a4:e9:47:97:c3:9b:ee:0b:c2:5e:7c:ad:29:59:8f:e4:ed: e2:44:34:4c:e1:ad:df:19:47:82:b0:01:5b:36:08:42:03:07: 30:53:85:ed:1e:b9:57:04:45:4e:a8:09:14:50:37:15:e0:3e: 87:52:90:00:c5:96:b4:04:f0:b1:b8:b8:ab:bf:34:d1:f5:1a: d8:a8:27:83:46:1d:9a:26:d0:51:29:44:67:06:2a:9c:81:1b: 0a:41:35:32:b8:41:c7:8f:22:9b:fc:ac:8a:59:db:88:35:ba: 8c:c6:7d:43:ef:90:c1:a1:1a:fd:0c:4c:c6:f3:d8:df:9c:42: f9:e4:8b:70:f8:89:02:f8:83:68:52:3d:bf:af:f6:24:a0:a9: 96:de:cc:ba:27:d8:10:a6:0e:13:d8:cf:83:c4:c5:b4:01:bb: 51:f8:2c:8a:d8:a4:ff:a3:7b:41:9f:f5:d5:02:d0:ac:d5:2f: 70:e2:ef:84:0c:32:71:2a:ba:fb:24:7c:1b:55:53:b0:e5:f8: ee:36:be:cb:e3:08:7d:6d:fb:b6:86:b8:5b:a8:02:7e:5c:a7: 1a:77:b2:d2 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt9W2ehR4foVNloWgeV3GRWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1YWFmNzZkMjdiYTgxMmUwZDVjZTIzMDVmMTdjNTMxODhj MjU4MGMwHhcNMjYwMTAyMDYxODIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMGY4MmI2MWU2MTA3NGExMzljMzVkOTVkNTBiMWNlNWFiMWZmYjNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnnzG/Mq/jGHMXTgXX+4N2RmZfuSi EdXx2517uahz6ZxOAukBQyO6QltftbmUJG5Z513L3VGRe9+2nuNVZjwzfOO0uwTA 0ZICrBoC1CbiSTMsX9ko/ceXnVK9YFRyJLRlnxcoWLMg/GuQRoUT+OxaaaDDrag+ YcSCznYf4ZWIH4hgwXZJYTvlKmHjMRbB2iqrgsEQvPvcLLCPLIfWmAO2Eu6yLgDK QfxSctkmAyDO5/WLHIVt82Ja+zNp6+lQxhRQn9sGYxZkzuVEF/FXdn63i5tpVIeP 8U2+XT/kqrqUG6w5j1fEXpBMm6SCXdgx0fxe4r/BvH6Gazhwid1gFn7ztwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFKD4K2HmEHShOcNdldULHOWrH/s9MB8GA1UdIwQY MBaAFOWq920nuoEuDVziMF8XxTGIwlgMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNWFyM2JTZTZnUzROWE9Jd1h4ZkZNWWpDV0F3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC85ZjUyMjMtYTU2Yy00NjViLWFjNjUt ZmQxNTJhNmEwNTg3LzEvb1BnclllWVFkS0U1dzEyVjFRc2M1YXNmLXowLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC85ZjUyMjMtYTU2Yy00NjViLWFjNjUtZmQxNTJhNmEwNTg3 LzEvNWFyM2JTZTZnUzROWE9Jd1h4ZkZNWWpDV0F3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQALvXtMA0E AgACMAcDBQMqE9iAMA0GCSqGSIb3DQEBCwUAA4IBAQCQfwbfOV/KHuFLLW1jMBNk Bq1CMING9PLssyFgKZWFKPNC1suipOlHl8Ob7gvCXnytKVmP5O3iRDRM4a3fGUeC sAFbNghCAwcwU4XtHrlXBEVOqAkUUDcV4D6HUpAAxZa0BPCxuLirvzTR9RrYqCeD Rh2aJtBRKURnBiqcgRsKQTUyuEHHjyKb/KyKWduINbqMxn1D75DBoRr9DEzG89jf nEL55Itw+IkC+INoUj2/r/YkoKmW3sy6J9gQpg4T2M+DxMW0AbtR+CyK2KT/o3tB n/XVAtCs1S9w4u+EDDJxKrr7JHwbVVOw5fjuNr7L4wh9bfu2hrhbqAJ+XKcad7LS -----END CERTIFICATE-----Generated at Tue Feb 10 00:29:42 2026 by rpki-client