This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b7a249-1552-4f10-b008-1f66faab4ab5/1/0OsrENlaW1u1m_gy68JdtqgFt-I.roa File: 0OsrENlaW1u1m_gy68JdtqgFt-I.roa (raw, json) Hash identifier: qPKr3VzmL+GeEM5oZfX3Kmu0cUVQygEN4Atc0x5l0ZE= Subject key identifier: D0:EB:2B:10:D9:5A:5B:5B:B5:9B:F8:32:EB:C2:5D:B6:A8:05:B7:E2 Certificate issuer: /CN=30d8a64903cfa217379749f18b7fdcea1dab6db4 Certificate serial: 019BD72A7343CF6161728B359D709995D055 Authority key identifier: 30:D8:A6:49:03:CF:A2:17:37:97:49:F1:8B:7F:DC:EA:1D:AB:6D:B4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MNimSQPPohc3l0nxi3_c6h2rbbQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b7a249-1552-4f10-b008-1f66faab4ab5/1/0OsrENlaW1u1m_gy68JdtqgFt-I.roa Signing time: Mon 19 Jan 2026 16:50:41 +0000 ROA not before: Mon 19 Jan 2026 16:50:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202032 IP address blocks: 185.54.80.0/22 maxlen: 24 2a02:4460::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/b7a249-1552-4f10-b008-1f66faab4ab5/1/MNimSQPPohc3l0nxi3_c6h2rbbQ.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/b7a249-1552-4f10-b008-1f66faab4ab5/1/MNimSQPPohc3l0nxi3_c6h2rbbQ.mft rsync://rpki.ripe.net/repository/DEFAULT/MNimSQPPohc3l0nxi3_c6h2rbbQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:d7:2a:73:43:cf:61:61:72:8b:35:9d:70:99:95:d0:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30d8a64903cfa217379749f18b7fdcea1dab6db4 Validity Not Before: Jan 19 16:50:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d0eb2b10d95a5b5bb59bf832ebc25db6a805b7e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:fd:d7:04:2c:5e:c2:8c:a1:7f:5d:fc:fa:53: 90:e7:77:c9:56:75:5e:4e:72:6e:5e:88:3f:c5:8e: 2e:cf:37:58:3d:46:5b:1d:97:bd:c2:31:0b:29:32: c4:93:23:7f:54:7e:d6:e7:39:28:23:d9:f6:3d:72: b2:98:dc:cf:51:4c:4f:81:a1:6f:48:7f:ba:2a:87: b4:86:f2:d0:f5:30:91:12:88:69:26:43:9d:b3:58: 47:b2:ec:c1:74:31:c0:ae:64:fa:76:57:59:24:88: 4d:2d:75:90:64:01:5d:6e:5c:c0:9f:56:20:89:35: 03:39:f5:78:45:34:55:d2:76:8e:0e:2f:61:5f:ad: b5:d7:95:05:04:51:99:81:2c:80:ff:b5:70:b8:c6: bc:62:af:af:9f:c9:69:f0:2c:fd:a1:c3:14:b5:9c: a2:85:00:36:5b:8e:54:df:e7:39:16:a1:33:72:ce: f8:0a:4d:d1:9a:5f:a5:b3:ff:fa:57:de:10:32:3a: 53:9f:12:ff:11:16:45:f5:e7:ed:3d:f0:4b:36:4c: 8d:34:a2:2f:dc:6f:d4:10:35:0b:84:2d:e3:a4:44: 8e:04:ae:67:79:23:d4:82:c1:43:a1:ef:d9:dc:5a: a7:fc:a1:8c:9d:8e:1f:99:35:da:59:b8:c1:25:88: fb:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:EB:2B:10:D9:5A:5B:5B:B5:9B:F8:32:EB:C2:5D:B6:A8:05:B7:E2 X509v3 Authority Key Identifier: keyid:30:D8:A6:49:03:CF:A2:17:37:97:49:F1:8B:7F:DC:EA:1D:AB:6D:B4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MNimSQPPohc3l0nxi3_c6h2rbbQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b7a249-1552-4f10-b008-1f66faab4ab5/1/0OsrENlaW1u1m_gy68JdtqgFt-I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b7a249-1552-4f10-b008-1f66faab4ab5/1/MNimSQPPohc3l0nxi3_c6h2rbbQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.54.80.0/22 IPv6: 2a02:4460::/32 Signature Algorithm: sha256WithRSAEncryption 36:c4:39:6f:df:d1:4e:a6:8c:88:ba:a9:93:d1:93:1c:44:c6: f6:b5:2d:e7:81:4d:9f:c6:dc:6c:0e:a8:15:6c:eb:8c:db:97: c9:41:02:3b:81:8d:22:73:37:cb:17:fa:68:6a:0d:ab:10:df: 3f:88:ea:6d:14:bd:e1:f6:7b:74:a4:f7:97:38:d2:76:64:8a: dd:14:14:f6:ac:3d:8a:9c:21:39:a5:5a:5f:eb:df:53:1f:03: 7a:69:7f:09:79:63:ff:1d:be:94:e7:81:ae:bb:68:9f:10:c3: fa:d2:3d:bf:a7:d4:f5:bc:85:a4:4b:ea:1a:93:e7:a7:56:3b: 2e:7c:f2:55:fe:b5:f9:2b:35:fa:5a:7c:83:eb:45:32:97:a5: 0c:20:6e:e8:9a:c5:ba:b4:80:c9:99:ff:f2:a1:7a:d5:37:a4: 75:05:64:18:c7:8e:ee:79:7b:57:90:2a:2a:69:cc:f9:9e:40: bb:ee:c1:d6:5b:8e:40:65:d4:79:d9:4e:c8:5c:d8:2d:b5:c0: 84:93:8a:5a:36:42:a6:bc:5d:e9:4f:93:4d:26:66:ad:5e:eb: 6e:08:ff:fb:dd:a9:d0:bc:9e:75:79:85:7f:01:82:87:80:72: 60:24:00:62:be:cb:f1:cf:3b:54:e4:98:88:1a:93:b4:a5:b0: 9d:e5:76:30 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZvXKnNDz2Fhcos1nXCZldBVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwZDhhNjQ5MDNjZmEyMTczNzk3NDlmMThiN2ZkY2VhMWRh YjZkYjQwHhcNMjYwMTE5MTY1MDQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMGViMmIxMGQ5NWE1YjViYjU5YmY4MzJlYmMyNWRiNmE4MDViN2UyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq/3XBCxewoyhf138+lOQ53fJVnVe TnJuXog/xY4uzzdYPUZbHZe9wjELKTLEkyN/VH7W5zkoI9n2PXKymNzPUUxPgaFv SH+6Koe0hvLQ9TCREohpJkOds1hHsuzBdDHArmT6dldZJIhNLXWQZAFdblzAn1Yg iTUDOfV4RTRV0naODi9hX62115UFBFGZgSyA/7VwuMa8Yq+vn8lp8Cz9ocMUtZyi hQA2W45U3+c5FqEzcs74Ck3Rml+ls//6V94QMjpTnxL/ERZF9eftPfBLNkyNNKIv 3G/UEDULhC3jpESOBK5neSPUgsFDoe/Z3Fqn/KGMnY4fmTXaWbjBJYj7aQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFNDrKxDZWltbtZv4MuvCXbaoBbfiMB8GA1UdIwQY MBaAFDDYpkkDz6IXN5dJ8Yt/3Oodq220MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTU5pbVNRUFBvaGMzbDBueGkzX2M2aDJyYmJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS9iN2EyNDktMTU1Mi00ZjEwLWIwMDgt MWY2NmZhYWI0YWI1LzEvME9zckVObGFXMXUxbV9neTY4SmR0cWdGdC1JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS9iN2EyNDktMTU1Mi00ZjEwLWIwMDgtMWY2NmZhYWI0YWI1 LzEvTU5pbVNRUFBvaGMzbDBueGkzX2M2aDJyYmJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuTZQMA0E AgACMAcDBQAqAkRgMA0GCSqGSIb3DQEBCwUAA4IBAQA2xDlv39FOpoyIuqmT0ZMc RMb2tS3ngU2fxtxsDqgVbOuM25fJQQI7gY0iczfLF/poag2rEN8/iOptFL3h9nt0 pPeXONJ2ZIrdFBT2rD2KnCE5pVpf699THwN6aX8JeWP/Hb6U54Guu2ifEMP60j2/ p9T1vIWkS+oak+enVjsufPJV/rX5KzX6WnyD60Uyl6UMIG7omsW6tIDJmf/yoXrV N6R1BWQYx47ueXtXkCoqacz5nkC77sHWW45AZdR52U7IXNgttcCEk4paNkKmvF3p T5NNJmatXutuCP/73anQvJ51eYV/AYKHgHJgJABivsvxzztU5JiIGpO0pbCd5XYw -----END CERTIFICATE-----Generated at Sun Jan 25 22:30:25 2026 by rpki-client