This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/e2ee51-1523-436e-ac75-ef6bd26a0305/1/o7BHBJoJ92UXLEcmbm_Nc1cTWuw.roa File: o7BHBJoJ92UXLEcmbm_Nc1cTWuw.roa (raw, json) Hash identifier: XRczo1xuWahblaw0qNPhWupN00zQLko2wywtz+3Wfrg= Subject key identifier: A3:B0:47:04:9A:09:F7:65:17:2C:47:26:6E:6F:CD:73:57:13:5A:EC Certificate issuer: /CN=655aef3cef3d9afa027db33579f4a1fe8ad91c6f Certificate serial: 019B7D5ACF7CD348BB02940AB23C3C7B660F Authority key identifier: 65:5A:EF:3C:EF:3D:9A:FA:02:7D:B3:35:79:F4:A1:FE:8A:D9:1C:6F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZVrvPO89mvoCfbM1efSh_orZHG8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/e2ee51-1523-436e-ac75-ef6bd26a0305/1/o7BHBJoJ92UXLEcmbm_Nc1cTWuw.roa Signing time: Fri 02 Jan 2026 06:17:41 +0000 ROA not before: Fri 02 Jan 2026 06:17:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200654 IP address blocks: 185.100.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/e2ee51-1523-436e-ac75-ef6bd26a0305/1/ZVrvPO89mvoCfbM1efSh_orZHG8.crl rsync://rpki.ripe.net/repository/DEFAULT/05/e2ee51-1523-436e-ac75-ef6bd26a0305/1/ZVrvPO89mvoCfbM1efSh_orZHG8.mft rsync://rpki.ripe.net/repository/DEFAULT/ZVrvPO89mvoCfbM1efSh_orZHG8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 21:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5a:cf:7c:d3:48:bb:02:94:0a:b2:3c:3c:7b:66:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=655aef3cef3d9afa027db33579f4a1fe8ad91c6f Validity Not Before: Jan 2 06:17:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a3b047049a09f765172c47266e6fcd7357135aec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:dc:fc:22:62:7d:be:cd:73:cc:5f:f5:cc:78: fa:28:a5:10:09:84:db:7b:0d:d4:2c:be:47:61:bf: f5:85:05:8d:04:eb:b2:fb:66:cb:74:44:ab:4b:a3: bc:15:ee:00:19:09:6a:c0:2c:99:56:1f:71:e0:39: d3:ba:d4:fe:14:3b:25:c2:12:35:50:ea:52:6f:a7: c5:f3:a5:c7:da:e9:9a:65:b5:9b:53:28:0f:34:26: 16:46:ca:c1:01:52:c9:5a:2f:94:16:50:ce:43:84: 7d:58:90:d0:f0:16:20:cf:e9:bd:7f:3e:78:1a:c1: e9:e3:ac:77:11:c5:fd:2e:ef:4f:cb:aa:c5:d0:90: 78:f5:8b:eb:43:82:25:95:d7:84:56:e2:4e:8d:20: c7:aa:43:50:a2:07:35:0d:f4:7a:71:55:62:7f:9f: cc:a3:ec:1f:e8:37:1d:c0:c9:f3:b7:0a:ae:bf:4b: c3:91:38:fe:cf:3b:52:7a:7c:0f:dd:86:64:6a:be: 48:c0:77:30:c7:a3:5a:8e:cd:41:56:04:17:2e:0e: 62:ef:38:b3:af:75:2f:90:73:f4:9d:a9:7b:7f:f1: 3f:bc:17:ea:72:48:41:ce:0c:78:de:d3:87:d1:eb: 46:c2:49:c2:dc:c0:63:7c:de:f8:f3:54:e3:20:e6: 6e:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:B0:47:04:9A:09:F7:65:17:2C:47:26:6E:6F:CD:73:57:13:5A:EC X509v3 Authority Key Identifier: keyid:65:5A:EF:3C:EF:3D:9A:FA:02:7D:B3:35:79:F4:A1:FE:8A:D9:1C:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZVrvPO89mvoCfbM1efSh_orZHG8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/e2ee51-1523-436e-ac75-ef6bd26a0305/1/o7BHBJoJ92UXLEcmbm_Nc1cTWuw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/e2ee51-1523-436e-ac75-ef6bd26a0305/1/ZVrvPO89mvoCfbM1efSh_orZHG8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.100.20.0/24 Signature Algorithm: sha256WithRSAEncryption 15:e3:93:ed:e4:14:02:bf:9c:23:c3:90:ab:6d:cb:16:d8:f8: 73:d7:78:74:10:ff:d5:a3:b5:da:e9:ee:3d:17:c2:af:87:96: 3a:82:88:84:08:3e:e5:93:c8:4d:f7:94:d5:c6:03:00:05:e7: 19:9a:53:fd:75:51:96:cb:dc:9b:8b:a8:f6:a8:e9:b3:bf:ca: eb:2f:fa:07:cc:f2:f1:b0:46:0b:ae:73:e6:e9:06:b3:cc:02: 43:fc:d7:71:a8:c3:16:8b:67:44:e6:f3:ea:aa:85:57:e2:92: 9d:0d:3d:91:ab:0d:10:c0:f9:08:30:9a:af:2b:55:ad:86:2c: 59:c7:65:28:34:40:9f:ba:69:fa:9d:ca:7b:30:0d:8e:a9:30: 82:ca:4c:9f:a6:4c:04:29:66:2f:f5:6f:f6:f0:a9:03:b1:16: 95:b5:69:2a:ba:77:d5:41:6d:53:df:fe:42:a9:ef:35:ec:ea: 62:2d:78:5d:4d:c0:7d:e3:f0:65:38:7f:6b:73:a3:ec:59:11: e9:57:ed:94:2d:9d:64:a5:9a:3b:de:66:20:e5:c7:da:1f:f7: bb:c6:4e:83:9d:fb:1a:b6:96:43:e2:8d:42:39:bc:6f:8b:1b: 7c:9d:be:30:ee:c3:de:2a:2b:7b:b9:97:b7:13:00:3b:22:4c: d6:5d:60:7f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9Ws9800i7ApQKsjw8e2YPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY1NWFlZjNjZWYzZDlhZmEwMjdkYjMzNTc5ZjRhMWZlOGFk OTFjNmYwHhcNMjYwMTAyMDYxNzQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhM2IwNDcwNDlhMDlmNzY1MTcyYzQ3MjY2ZTZmY2Q3MzU3MTM1YWVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp9z8ImJ9vs1zzF/1zHj6KKUQCYTb ew3ULL5HYb/1hQWNBOuy+2bLdESrS6O8Fe4AGQlqwCyZVh9x4DnTutT+FDslwhI1 UOpSb6fF86XH2umaZbWbUygPNCYWRsrBAVLJWi+UFlDOQ4R9WJDQ8BYgz+m9fz54 GsHp46x3EcX9Lu9Py6rF0JB49YvrQ4IlldeEVuJOjSDHqkNQogc1DfR6cVVif5/M o+wf6DcdwMnztwquv0vDkTj+zztSenwP3YZkar5IwHcwx6Najs1BVgQXLg5i7ziz r3UvkHP0nal7f/E/vBfqckhBzgx43tOH0etGwknC3MBjfN7481TjIOZuXwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKOwRwSaCfdlFyxHJm5vzXNXE1rsMB8GA1UdIwQY MBaAFGVa7zzvPZr6An2zNXn0of6K2RxvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWlZydlBPODltdm9DZmJNMWVmU2hfb3JaSEc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS9lMmVlNTEtMTUyMy00MzZlLWFjNzUt ZWY2YmQyNmEwMzA1LzEvbzdCSEJKb0o5MlVYTEVjbWJtX05jMWNUV3V3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS9lMmVlNTEtMTUyMy00MzZlLWFjNzUtZWY2YmQyNmEwMzA1 LzEvWlZydlBPODltdm9DZmJNMWVmU2hfb3JaSEc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuWQUMA0G CSqGSIb3DQEBCwUAA4IBAQAV45Pt5BQCv5wjw5CrbcsW2Phz13h0EP/Vo7Xa6e49 F8Kvh5Y6goiECD7lk8hN95TVxgMABecZmlP9dVGWy9ybi6j2qOmzv8rrL/oHzPLx sEYLrnPm6QazzAJD/NdxqMMWi2dE5vPqqoVX4pKdDT2Rqw0QwPkIMJqvK1WthixZ x2UoNECfumn6ncp7MA2OqTCCykyfpkwEKWYv9W/28KkDsRaVtWkqunfVQW1T3/5C qe817OpiLXhdTcB94/BlOH9rc6PsWRHpV+2ULZ1kpZo73mYg5cfaH/e7xk6Dnfsa tpZD4o1CObxvixt8nb4w7sPeKit7uZe3EwA7IkzWXWB/ -----END CERTIFICATE-----Generated at Mon Jan 26 03:27:59 2026 by rpki-client