This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/5edaaf-3327-43ed-90b1-dc01f4b4bae4/1/Q6JObLBeLp3wtiYaWIJ3qZQTM-I.roa File: Q6JObLBeLp3wtiYaWIJ3qZQTM-I.roa (raw, json) Hash identifier: 8OMeNdCrOVu7DLm13oZufQc3RGDGngByCEF598K46Yw= Subject key identifier: 43:A2:4E:6C:B0:5E:2E:9D:F0:B6:26:1A:58:82:77:A9:94:13:33:E2 Certificate issuer: /CN=3ac78f33e8e1187327667fa94fd7446b8d91e5b4 Certificate serial: 019B7AC874641E0DB0D7EE2AD9E64207A212 Authority key identifier: 3A:C7:8F:33:E8:E1:18:73:27:66:7F:A9:4F:D7:44:6B:8D:91:E5:B4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OsePM-jhGHMnZn-pT9dEa42R5bQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/5edaaf-3327-43ed-90b1-dc01f4b4bae4/1/Q6JObLBeLp3wtiYaWIJ3qZQTM-I.roa Signing time: Thu 01 Jan 2026 18:18:35 +0000 ROA not before: Thu 01 Jan 2026 18:18:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203500 IP address blocks: 185.178.184.0/24 maxlen: 24 185.178.185.0/24 maxlen: 24 185.178.186.0/24 maxlen: 24 193.25.200.0/24 maxlen: 24 2a07:6780::/29 maxlen: 29 2a0a:6680:bee::/48 maxlen: 48 2a0a:6680:1000::/36 maxlen: 36 2a0a:6680:1979::/48 maxlen: 48 2a0a:6680:2000::/36 maxlen: 36 2a0a:6680:b300::/40 maxlen: 40 2a0a:6680:bee1::/48 maxlen: 48 2a0a:6680:bee5::/48 maxlen: 48 2a0a:6680:bee6::/48 maxlen: 48 2a0a:6680:cc91::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/5edaaf-3327-43ed-90b1-dc01f4b4bae4/1/OsePM-jhGHMnZn-pT9dEa42R5bQ.crl rsync://rpki.ripe.net/repository/DEFAULT/03/5edaaf-3327-43ed-90b1-dc01f4b4bae4/1/OsePM-jhGHMnZn-pT9dEa42R5bQ.mft rsync://rpki.ripe.net/repository/DEFAULT/OsePM-jhGHMnZn-pT9dEa42R5bQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:74:64:1e:0d:b0:d7:ee:2a:d9:e6:42:07:a2:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ac78f33e8e1187327667fa94fd7446b8d91e5b4 Validity Not Before: Jan 1 18:18:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=43a24e6cb05e2e9df0b6261a588277a9941333e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:14:f9:11:f8:89:2a:06:7c:1f:58:58:2e:df: 1e:25:fa:5b:24:c9:20:66:08:0b:b7:5d:89:6b:e8: 13:94:13:3f:48:a7:a7:76:45:ac:83:51:2e:bc:62: 60:71:76:10:f5:b2:6b:2a:23:36:7c:df:2d:9c:ee: 07:b9:da:e1:6b:38:7c:4f:1e:27:a4:13:c3:4d:42: 94:b9:c2:e9:31:37:b6:2e:ec:53:dd:d1:db:7b:14: af:d3:f9:3e:88:3c:f5:ff:9c:ad:b4:e9:fd:00:80: 1d:f0:51:82:0a:1f:a8:fb:de:20:0f:ca:67:fe:04: 32:e6:12:c6:88:67:9e:23:92:41:3a:df:59:4f:fc: 5a:63:2d:ab:d2:f3:d1:56:70:37:e3:2d:e1:20:af: 1b:88:dc:50:b9:c0:81:e9:03:1b:6b:59:80:05:27: fa:4a:eb:24:2a:89:d4:ca:15:68:44:76:95:ba:22: 45:81:76:8e:85:ac:23:d5:4c:b0:dd:55:72:2f:44: fb:bd:50:fa:96:ec:5d:15:ea:b1:e6:c1:6d:cd:f3: 00:e6:4c:0d:e6:32:a8:08:54:c9:f7:87:b7:6d:41: d4:2d:46:bb:95:3a:d2:7b:55:51:08:6f:49:64:c5: b4:4a:39:de:2e:9d:d3:b2:07:23:7b:70:bf:3d:56: 5f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:A2:4E:6C:B0:5E:2E:9D:F0:B6:26:1A:58:82:77:A9:94:13:33:E2 X509v3 Authority Key Identifier: keyid:3A:C7:8F:33:E8:E1:18:73:27:66:7F:A9:4F:D7:44:6B:8D:91:E5:B4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OsePM-jhGHMnZn-pT9dEa42R5bQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5edaaf-3327-43ed-90b1-dc01f4b4bae4/1/Q6JObLBeLp3wtiYaWIJ3qZQTM-I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5edaaf-3327-43ed-90b1-dc01f4b4bae4/1/OsePM-jhGHMnZn-pT9dEa42R5bQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.178.184.0-185.178.186.255 193.25.200.0/24 IPv6: 2a07:6780::/29 2a0a:6680:bee::/48 2a0a:6680:1000::-2a0a:6680:2fff:ffff:ffff:ffff:ffff:ffff 2a0a:6680:b300::/40 2a0a:6680:bee1::/48 2a0a:6680:bee5::-2a0a:6680:bee6:ffff:ffff:ffff:ffff:ffff 2a0a:6680:cc91::/48 Signature Algorithm: sha256WithRSAEncryption 56:73:fc:32:d4:25:72:dd:ba:15:1c:83:43:01:03:c6:f2:ca: 0e:44:c6:2f:6c:d8:78:d4:ca:5f:09:0d:0e:a4:65:68:02:cf: 54:3d:bb:e2:12:47:49:32:d1:52:36:dd:f9:0f:2c:bb:ea:3a: c0:cb:61:f4:76:85:1f:2e:e0:31:5e:8e:b3:2d:df:49:fc:6d: 2c:75:4d:cf:9d:a2:cf:00:c4:3a:54:a0:9c:bd:3c:78:0c:8f: 7a:98:73:b0:67:ce:45:6e:e9:06:c8:b5:1c:dc:7b:ce:36:e2: 74:7b:ed:7a:34:4a:79:64:85:db:8f:62:9b:d1:47:f7:be:19: 4b:0b:b2:d8:9d:6a:86:c9:33:3e:f8:f8:a1:aa:1d:3c:ae:1a: 9c:bd:f5:ba:cb:a3:fe:bf:52:96:59:51:e2:63:f3:90:3f:b0: d0:98:1c:8e:25:35:ff:95:87:52:56:f5:da:7c:95:ba:db:bb: 7c:8b:ab:19:a2:77:4d:41:82:2d:e6:cf:d3:61:12:78:75:6a: 10:06:11:36:03:4e:4c:76:c7:08:59:b9:d4:63:c4:c5:f3:6d: 78:a0:5c:c1:f2:f6:f6:07:b8:ec:69:aa:08:14:54:a7:cc:3b: ec:5b:41:ff:ad:3d:4d:65:6e:65:d7:99:98:95:87:fa:62:4c: 56:47:b1:14 -----BEGIN CERTIFICATE----- MIIFZDCCBEygAwIBAgISAZt6yHRkHg2w1+4q2eZCB6ISMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhYzc4ZjMzZThlMTE4NzMyNzY2N2ZhOTRmZDc0NDZiOGQ5 MWU1YjQwHhcNMjYwMTAxMTgxODM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0M2EyNGU2Y2IwNWUyZTlkZjBiNjI2MWE1ODgyNzdhOTk0MTMzM2UyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsxT5EfiJKgZ8H1hYLt8eJfpbJMkg ZggLt12Ja+gTlBM/SKendkWsg1EuvGJgcXYQ9bJrKiM2fN8tnO4Hudrhazh8Tx4n pBPDTUKUucLpMTe2LuxT3dHbexSv0/k+iDz1/5yttOn9AIAd8FGCCh+o+94gD8pn /gQy5hLGiGeeI5JBOt9ZT/xaYy2r0vPRVnA34y3hIK8biNxQucCB6QMba1mABSf6 SuskKonUyhVoRHaVuiJFgXaOhawj1Uyw3VVyL0T7vVD6luxdFeqx5sFtzfMA5kwN 5jKoCFTJ94e3bUHULUa7lTrSe1VRCG9JZMW0SjneLp3Tsgcje3C/PVZf6wIDAQAB o4ICcDCCAmwwHQYDVR0OBBYEFEOiTmywXi6d8LYmGliCd6mUEzPiMB8GA1UdIwQY MBaAFDrHjzPo4RhzJ2Z/qU/XRGuNkeW0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3NlUE0tamhHSE1uWm4tcFQ5ZEVhNDJSNWJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy81ZWRhYWYtMzMyNy00M2VkLTkwYjEt ZGMwMWY0YjRiYWU0LzEvUTZKT2JMQmVMcDN3dGlZYVdJSjNxWlFUTS1JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy81ZWRhYWYtMzMyNy00M2VkLTkwYjEtZGMwMWY0YjRiYWU0 LzEvT3NlUE0tamhHSE1uWm4tcFQ5ZEVhNDJSNWJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIGFBggrBgEFBQcBBwEB/wR2MHQwGgQCAAEwFDAMAwQDubK4 AwQAubK6AwQAwRnIMFYEAgACMFADBQMqB2eAAwcAKgpmgAvuMBADBgQqCmaAEAMG BCoKZoAgAwYAKgpmgLMDBwAqCmaAvuEwEgMHACoKZoC+5QMHACoKZoC+5gMHACoK ZoDMkTANBgkqhkiG9w0BAQsFAAOCAQEAVnP8MtQlct26FRyDQwEDxvLKDkTGL2zY eNTKXwkNDqRlaALPVD274hJHSTLRUjbd+Q8su+o6wMth9HaFHy7gMV6Osy3fSfxt LHVNz52izwDEOlSgnL08eAyPephzsGfORW7pBsi1HNx7zjbidHvtejRKeWSF249i m9FH974ZSwuy2J1qhskzPvj4oaodPK4anL31usuj/r9SlllR4mPzkD+w0JgcjiU1 /5WHUlb12nyVutu7fIurGaJ3TUGCLebP02ESeHVqEAYRNgNOTHbHCFm51GPExfNt eKBcwfL29ge47GmqCBRUp8w77FtB/609TWVuZdeZmJWH+mJMVkexFA== -----END CERTIFICATE-----Generated at Mon Jan 26 15:01:45 2026 by rpki-client