This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/OhJpimseggO-Y4_hoEiI1nB-3a4.roa File: OhJpimseggO-Y4_hoEiI1nB-3a4.roa (raw, json) Hash identifier: zDlcOi1opjdDim5XNlXyOBikBSD080S2FUrAKbWMWcM= Subject key identifier: 3A:12:69:8A:6B:1E:82:03:BE:63:8F:E1:A0:48:88:D6:70:7E:DD:AE Certificate issuer: /CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a Certificate serial: 019B7F85759D14B5F4CFAAC843386B710304 Authority key identifier: B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/OhJpimseggO-Y4_hoEiI1nB-3a4.roa Signing time: Fri 02 Jan 2026 16:23:31 +0000 ROA not before: Fri 02 Jan 2026 16:23:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205010 IP address blocks: 185.226.32.0/22 maxlen: 22 2a0c:2600::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:75:9d:14:b5:f4:cf:aa:c8:43:38:6b:71:03:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a Validity Not Before: Jan 2 16:23:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3a12698a6b1e8203be638fe1a04888d6707eddae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:0d:03:3a:be:35:10:eb:c7:a4:23:14:e2:fc: d6:70:de:68:eb:e4:02:9c:85:52:30:04:bb:98:b1: 53:40:4f:98:d3:f8:8e:7d:c6:5a:51:96:9f:f0:36: a2:20:8f:38:a2:c2:1d:1d:df:e8:e6:41:55:e2:35: 7f:49:91:a5:4c:68:d4:61:ea:93:1a:51:27:d1:a0: 0b:bf:4d:e0:73:d0:04:8e:77:e4:d2:4c:87:fd:91: ed:2b:01:24:97:11:aa:ea:0d:00:e1:a1:d1:81:46: 30:e0:3e:fe:7c:6a:dd:a7:8a:c0:22:de:3e:61:ab: bb:85:63:b5:24:1d:55:84:57:60:c2:c0:fc:02:4d: c8:e5:27:32:59:1a:a7:64:ae:6b:84:23:9f:7c:6c: ba:6b:89:1c:d8:da:83:93:02:42:25:07:94:e6:ee: 23:0a:5f:d7:67:4b:9c:8e:10:2f:d1:d2:8e:2b:08: 7b:24:3c:a0:71:3e:a8:ed:10:b5:a4:b8:04:ba:0c: 45:3e:3f:42:b3:35:7a:b8:ca:a7:c1:e8:2e:da:8d: 67:af:5c:25:75:6e:45:47:6a:8e:9b:4b:4b:df:ac: 29:c7:11:bc:af:bc:0f:3d:f2:fb:e6:c2:bc:a3:01: ff:ee:c0:c2:cf:ab:94:85:82:e7:a5:78:d5:c4:4e: 8c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:12:69:8A:6B:1E:82:03:BE:63:8F:E1:A0:48:88:D6:70:7E:DD:AE X509v3 Authority Key Identifier: keyid:B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/OhJpimseggO-Y4_hoEiI1nB-3a4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.226.32.0/22 IPv6: 2a0c:2600::/29 Signature Algorithm: sha256WithRSAEncryption 45:cb:89:c0:43:92:f4:a6:f4:ac:f0:bf:27:34:fc:c7:2c:ec: de:39:f2:86:8f:f4:fb:80:0f:13:5d:de:31:b5:2f:e7:90:45: 55:09:86:09:b8:53:58:75:ac:c9:50:06:c0:32:15:0a:8e:2a: 3b:53:1e:b9:af:4c:2f:03:8e:65:b7:ef:66:69:c6:fd:be:9b: bd:2b:a2:9b:01:eb:f8:21:26:5d:6b:06:37:73:1b:42:98:1a: d7:43:df:15:39:63:f9:8c:5a:6d:f3:7c:ac:62:46:82:85:0a: a4:00:77:93:ac:a3:f5:9e:8c:2f:02:be:a4:c0:5e:ad:e1:22: 1e:b2:2d:33:1d:90:b6:62:51:0e:8f:f0:f1:6a:1c:fd:7d:e9: b4:9e:b7:00:fe:be:a7:27:d4:5f:bf:c5:d3:d1:00:95:f7:20: 3e:20:f8:98:ea:30:04:72:aa:eb:17:a7:1e:a3:84:c8:ca:24: 23:c0:93:c8:ca:36:79:e2:8f:c9:71:df:09:71:14:8c:14:8a: 1c:6f:74:11:a5:79:2c:21:7a:8e:11:7d:10:f1:e8:a8:5a:32: e4:0e:e7:8e:bb:08:8a:03:6b:0c:ad:0e:db:99:ef:a9:de:45: b3:27:29:f0:0c:67:50:06:24:ed:ef:54:29:b5:6b:6f:0f:f4: 21:bb:51:c5 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/hXWdFLX0z6rIQzhrcQMEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3YmQ4ZWFlMTY2OWRlYjNhM2ZhNDE4NjQ5MWUwNWNiMzJj ZTA5MmEwHhcNMjYwMTAyMTYyMzMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYTEyNjk4YTZiMWU4MjAzYmU2MzhmZTFhMDQ4ODhkNjcwN2VkZGFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzw0DOr41EOvHpCMU4vzWcN5o6+QC nIVSMAS7mLFTQE+Y0/iOfcZaUZaf8DaiII84osIdHd/o5kFV4jV/SZGlTGjUYeqT GlEn0aALv03gc9AEjnfk0kyH/ZHtKwEklxGq6g0A4aHRgUYw4D7+fGrdp4rAIt4+ Yau7hWO1JB1VhFdgwsD8Ak3I5ScyWRqnZK5rhCOffGy6a4kc2NqDkwJCJQeU5u4j Cl/XZ0ucjhAv0dKOKwh7JDygcT6o7RC1pLgEugxFPj9CszV6uMqnwegu2o1nr1wl dW5FR2qOm0tL36wpxxG8r7wPPfL75sK8owH/7sDCz6uUhYLnpXjVxE6MqQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFDoSaYprHoIDvmOP4aBIiNZwft2uMB8GA1UdIwQY MBaAFLe9jq4Wad6zo/pBhkkeBcsyzgkqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDcyT3JoWnAzck9qLWtHR1NSNEZ5ekxPQ1NvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi9iMGJkYmQtODAxYy00YjBiLTlmYmUt YWUxNWQ1MDc1OTBlLzEvT2hKcGltc2VnZ08tWTRfaG9FaUkxbkItM2E0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi9iMGJkYmQtODAxYy00YjBiLTlmYmUtYWUxNWQ1MDc1OTBl LzEvdDcyT3JoWnAzck9qLWtHR1NSNEZ5ekxPQ1NvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCueIgMA0E AgACMAcDBQMqDCYAMA0GCSqGSIb3DQEBCwUAA4IBAQBFy4nAQ5L0pvSs8L8nNPzH LOzeOfKGj/T7gA8TXd4xtS/nkEVVCYYJuFNYdazJUAbAMhUKjio7Ux65r0wvA45l t+9macb9vpu9K6KbAev4ISZdawY3cxtCmBrXQ98VOWP5jFpt83ysYkaChQqkAHeT rKP1nowvAr6kwF6t4SIesi0zHZC2YlEOj/Dxahz9fem0nrcA/r6nJ9Rfv8XT0QCV 9yA+IPiY6jAEcqrrF6ceo4TIyiQjwJPIyjZ54o/Jcd8JcRSMFIocb3QRpXksIXqO EX0Q8eioWjLkDueOuwiKA2sMrQ7bme+p3kWzJynwDGdQBiTt71QptWtvD/Qhu1HF -----END CERTIFICATE-----Generated at Sun Jan 25 22:51:10 2026 by rpki-client