This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/0MTbD1ZTQ8RkmGu_ThgOSCCcqRs.roa File: 0MTbD1ZTQ8RkmGu_ThgOSCCcqRs.roa (raw, json) Hash identifier: x8g3x8alA1GYm26r1ZPqCbnozd0RVhFDolwCkJFv3qc= Subject key identifier: D0:C4:DB:0F:56:53:43:C4:64:98:6B:BF:4E:18:0E:48:20:9C:A9:1B Certificate issuer: /CN=a0a647dac729f47b06369c4c9741cf943953dc59 Certificate serial: 019BA85B4C496229EDAFEED48466B6F62C4D Authority key identifier: A0:A6:47:DA:C7:29:F4:7B:06:36:9C:4C:97:41:CF:94:39:53:DC:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKZH2scp9HsGNpxMl0HPlDlT3Fk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/0MTbD1ZTQ8RkmGu_ThgOSCCcqRs.roa Signing time: Sat 10 Jan 2026 14:41:54 +0000 ROA not before: Sat 10 Jan 2026 14:41:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214640 IP address blocks: 45.67.15.0/24 maxlen: 24 78.109.16.0/23 maxlen: 23 82.197.73.0/24 maxlen: 24 95.141.241.0/24 maxlen: 24 185.113.11.0/24 maxlen: 24 193.53.40.0/24 maxlen: 24 2a13:7c80::/32 maxlen: 32 2a13:7c81::/32 maxlen: 48 2a13:7c82::/36 maxlen: 36 2a13:7c82:1000::/36 maxlen: 36 2a13:7c83:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.crl rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft rsync://rpki.ripe.net/repository/DEFAULT/oKZH2scp9HsGNpxMl0HPlDlT3Fk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:a8:5b:4c:49:62:29:ed:af:ee:d4:84:66:b6:f6:2c:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0a647dac729f47b06369c4c9741cf943953dc59 Validity Not Before: Jan 10 14:41:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d0c4db0f565343c464986bbf4e180e48209ca91b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:80:31:fd:3d:3c:ed:18:ce:c7:88:3d:ca:d7: e0:95:62:2b:15:1c:fc:b8:9e:09:74:44:35:da:08: ac:0f:00:c5:ef:60:c3:1b:65:b4:af:18:64:f4:75: 10:c6:0a:04:e5:76:d6:d0:79:54:7c:24:eb:57:05: 90:6c:80:80:11:f2:39:a7:54:85:e2:0b:cc:bf:86: 82:62:61:1c:51:9f:aa:4f:f3:c1:11:ec:f8:d8:f8: 67:66:51:5f:9f:3f:fd:10:d6:9a:ce:e8:47:c0:38: bb:d6:a8:35:ad:fd:db:5e:5d:f4:0e:22:74:28:ca: 83:59:99:06:8c:db:c2:59:eb:a7:27:cb:b5:5f:40: bf:05:e7:2e:ca:a8:88:9b:b3:14:67:29:83:e8:36: 99:4d:89:50:6f:e4:95:2e:df:a4:e0:94:d3:04:60: 9a:23:6a:95:a7:ec:13:b8:2f:d7:ea:44:52:c5:a4: b1:c3:7a:ab:4e:0d:cf:85:21:07:10:62:54:bb:c4: 06:90:9b:2c:c5:1a:8d:2e:ea:94:20:0d:aa:47:10: a8:29:81:d4:9b:77:d1:c8:c5:7f:83:ef:41:cb:45: b2:16:53:e6:66:07:c4:ce:b0:36:b9:96:be:1c:3c: f3:ab:5d:40:c2:2c:45:d8:0e:76:9a:4d:5e:ca:4c: 53:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:C4:DB:0F:56:53:43:C4:64:98:6B:BF:4E:18:0E:48:20:9C:A9:1B X509v3 Authority Key Identifier: keyid:A0:A6:47:DA:C7:29:F4:7B:06:36:9C:4C:97:41:CF:94:39:53:DC:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKZH2scp9HsGNpxMl0HPlDlT3Fk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/0MTbD1ZTQ8RkmGu_ThgOSCCcqRs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.67.15.0/24 78.109.16.0/23 82.197.73.0/24 95.141.241.0/24 185.113.11.0/24 193.53.40.0/24 IPv6: 2a13:7c80::-2a13:7c82:1fff:ffff:ffff:ffff:ffff:ffff 2a13:7c83:1::/48 Signature Algorithm: sha256WithRSAEncryption 64:94:eb:9d:74:0b:79:81:b7:71:68:43:f9:e3:87:83:5e:9d: 87:6c:b7:cb:44:3a:fc:2e:0b:28:d7:2c:f1:d7:64:71:01:b5: 55:f9:61:bd:b3:4c:92:3f:be:ad:72:24:98:bf:6f:95:27:46: a6:e2:59:48:12:66:4c:9e:6c:a7:fc:72:3b:34:89:c5:73:eb: bf:11:b6:a7:43:2b:e2:fe:e7:4d:f6:4a:bd:2f:5d:92:59:d5: 07:11:84:3f:27:b7:fc:ff:f3:8a:70:80:2d:2a:f5:7d:58:d5: c2:d2:16:ed:fc:60:d5:0b:a3:3d:9c:24:42:ce:0e:ed:3c:4b: 5e:0a:3a:81:85:39:97:3a:ce:92:ba:b6:58:4d:72:28:40:38: 5d:41:cd:bc:d5:c6:86:2a:d9:2a:d6:47:4d:c5:01:80:c2:27: 04:f1:58:67:e6:2b:e0:12:78:b5:73:c4:84:a5:b3:8e:c8:fc: b3:5e:95:8d:67:16:ef:4c:1e:a0:4a:bd:cb:ae:cb:8d:5c:84: 7e:8c:11:b3:d6:8e:eb:6f:9a:89:64:08:4b:ed:48:aa:c7:f6: 2c:73:a8:fe:25:c1:f9:eb:90:60:f4:75:54:16:98:22:09:62: ae:c5:63:8c:0e:0f:69:01:55:b2:7e:25:02:25:fc:3c:f3:08: 81:ee:8c:75 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgISAZuoW0xJYintr+7UhGa29ixNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwYTY0N2RhYzcyOWY0N2IwNjM2OWM0Yzk3NDFjZjk0Mzk1 M2RjNTkwHhcNMjYwMTEwMTQ0MTU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMGM0ZGIwZjU2NTM0M2M0NjQ5ODZiYmY0ZTE4MGU0ODIwOWNhOTFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzIAx/T087RjOx4g9ytfglWIrFRz8 uJ4JdEQ12gisDwDF72DDG2W0rxhk9HUQxgoE5XbW0HlUfCTrVwWQbICAEfI5p1SF 4gvMv4aCYmEcUZ+qT/PBEez42PhnZlFfnz/9ENaazuhHwDi71qg1rf3bXl30DiJ0 KMqDWZkGjNvCWeunJ8u1X0C/BecuyqiIm7MUZymD6DaZTYlQb+SVLt+k4JTTBGCa I2qVp+wTuC/X6kRSxaSxw3qrTg3PhSEHEGJUu8QGkJssxRqNLuqUIA2qRxCoKYHU m3fRyMV/g+9By0WyFlPmZgfEzrA2uZa+HDzzq11AwixF2A52mk1eykxT3QIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFNDE2w9WU0PEZJhrv04YDkggnKkbMB8GA1UdIwQY MBaAFKCmR9rHKfR7BjacTJdBz5Q5U9xZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0taSDJzY3A5SHNHTnB4TWwwSFBsRGxUM0ZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9iYTFmODgtNzA3Zi00MWJkLWI5YmQt ZmI2OTgzY2U5ZGZmLzEvME1UYkQxWlRROFJrbUd1X1RoZ09TQ0NjcVJzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9iYTFmODgtNzA3Zi00MWJkLWI5YmQtZmI2OTgzY2U5ZGZm LzEvb0taSDJzY3A5SHNHTnB4TWwwSFBsRGxUM0ZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMF8GCCsGAQUFBwEHAQH/BFAwTjAqBAIAATAkAwQALUMPAwQB Tm0QAwQAUsVJAwQAX43xAwQAuXELAwQAwTUoMCAEAgACMBowDwMFByoTfIADBgUq E3yCAAMHACoTfIMAATANBgkqhkiG9w0BAQsFAAOCAQEAZJTrnXQLeYG3cWhD+eOH g16dh2y3y0Q6/C4LKNcs8ddkcQG1VflhvbNMkj++rXIkmL9vlSdGpuJZSBJmTJ5s p/xyOzSJxXPrvxG2p0Mr4v7nTfZKvS9dklnVBxGEPye3/P/zinCALSr1fVjVwtIW 7fxg1QujPZwkQs4O7TxLXgo6gYU5lzrOkrq2WE1yKEA4XUHNvNXGhirZKtZHTcUB gMInBPFYZ+Yr4BJ4tXPEhKWzjsj8s16VjWcW70weoEq9y67LjVyEfowRs9aO62+a iWQIS+1Iqsf2LHOo/iXB+euQYPR1VBaYIglirsVjjA4PaQFVsn4lAiX8PPMIge6M dQ== -----END CERTIFICATE-----Generated at Sun Jan 25 09:19:16 2026 by rpki-client