This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/ob0tki58wxHPraW7cmAWjNuCzNs.roa File: ob0tki58wxHPraW7cmAWjNuCzNs.roa (raw, json) Hash identifier: 8pm794I9YLrUb9NIEkbxR08BBG7U1MWCb/Ty9fwgJsQ= Subject key identifier: A1:BD:2D:92:2E:7C:C3:11:CF:AD:A5:BB:72:60:16:8C:DB:82:CC:DB Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3 Certificate serial: 019B7F84C78F96B66E9F25C30EF847BC6BFC Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/ob0tki58wxHPraW7cmAWjNuCzNs.roa Signing time: Fri 02 Jan 2026 16:22:46 +0000 ROA not before: Fri 02 Jan 2026 16:22:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34907 IP address blocks: 2a14:140::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.mft rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 08:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:c7:8f:96:b6:6e:9f:25:c3:0e:f8:47:bc:6b:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3 Validity Not Before: Jan 2 16:22:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a1bd2d922e7cc311cfada5bb7260168cdb82ccdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:05:ea:8d:6d:14:5c:b1:be:0b:15:57:b3:f5: 4f:27:21:79:72:d0:3d:26:89:0f:0e:b0:de:bb:b5: 65:f3:a8:49:c8:1b:f9:09:bb:4a:1c:a7:e6:c8:52: 3f:b0:5a:3b:ac:9b:bb:98:41:85:a9:b0:b8:d2:20: 22:d7:ff:c8:54:2d:0e:dc:1d:e5:34:08:ff:85:7e: 6d:dd:3b:54:7c:52:c2:b0:78:10:31:5c:13:3b:32: c2:23:fc:45:91:96:88:fd:03:23:36:49:6d:d0:90: 01:99:54:1e:52:05:c9:a6:99:84:b7:a9:89:a3:4d: 9f:e7:ce:a5:6d:85:52:53:d7:0c:63:fe:7a:fb:0f: cd:b7:63:a3:93:b6:2e:f8:a3:89:8c:84:bb:15:11: 50:0e:54:84:71:a7:c7:bb:45:60:af:42:73:b3:bb: 4d:5a:2e:51:53:6a:bf:90:ab:d6:68:fc:34:ac:4d: ab:5f:1e:d2:aa:fb:7c:45:17:65:db:85:6b:ff:5b: 19:35:9a:aa:a5:48:29:42:2d:8a:20:fc:e1:0f:1c: ad:60:2e:78:7e:a4:52:4f:e4:46:97:90:14:5e:fc: 64:8d:42:35:f6:73:dc:20:25:69:f1:d2:17:03:46: 05:0d:f7:05:35:f2:46:33:48:34:27:a5:6d:38:c2: 29:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:BD:2D:92:2E:7C:C3:11:CF:AD:A5:BB:72:60:16:8C:DB:82:CC:DB X509v3 Authority Key Identifier: keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/ob0tki58wxHPraW7cmAWjNuCzNs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:140::/29 Signature Algorithm: sha256WithRSAEncryption 23:09:37:86:92:78:0e:a5:53:62:ec:1e:2d:33:81:e3:7d:27: 46:86:58:e6:48:2e:28:cc:c2:04:56:22:c0:3b:e4:c6:ff:1a: 6a:0c:01:09:ba:8a:da:4e:53:6c:65:e5:38:5b:82:fc:81:3c: b4:c6:04:75:d8:23:a6:b4:7a:2d:be:ce:f2:15:c3:ea:5d:97: 9b:52:d6:1d:aa:e4:66:74:76:f0:12:67:d1:fe:93:7f:f0:e6: 46:ae:a2:f2:ae:9e:0c:09:d5:01:f9:65:05:46:fe:d0:d3:f8: c1:ce:af:72:cf:dd:27:72:28:60:a7:63:53:6b:ee:4d:6e:1f: 1d:56:c7:9f:9f:e4:3a:5f:fd:05:ec:89:2c:17:30:1f:d2:2a: 73:16:74:01:49:13:88:1a:c4:cb:97:cd:2d:4a:5e:04:cc:af: f5:c4:7a:9b:ba:c9:56:ff:d7:ac:46:33:c1:c6:9c:8e:66:27: ed:a8:dd:df:c8:18:35:7a:8f:bb:3b:2b:d5:57:81:d0:a3:54: 95:25:5e:3d:2c:be:ad:fc:67:7f:47:8a:ce:18:18:15:77:5a: eb:5f:c3:c6:07:9d:3d:40:fa:f6:27:57:1b:17:7b:82:7c:9b: d5:30:e0:2a:57:e0:d7:1d:f8:23:eb:59:db:44:42:7c:c4:6f: dd:24:5f:f1 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt/hMePlrZunyXDDvhHvGv8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE4OWQ2YjU1ZDZhNjg4ZWU1ZTMzODE4ODNiYjVhZjY4NDMz Mjc2ZTMwHhcNMjYwMTAyMTYyMjQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMWJkMmQ5MjJlN2NjMzExY2ZhZGE1YmI3MjYwMTY4Y2RiODJjY2RiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzgXqjW0UXLG+CxVXs/VPJyF5ctA9 JokPDrDeu7Vl86hJyBv5CbtKHKfmyFI/sFo7rJu7mEGFqbC40iAi1//IVC0O3B3l NAj/hX5t3TtUfFLCsHgQMVwTOzLCI/xFkZaI/QMjNklt0JABmVQeUgXJppmEt6mJ o02f586lbYVSU9cMY/56+w/Nt2Ojk7Yu+KOJjIS7FRFQDlSEcafHu0Vgr0Jzs7tN Wi5RU2q/kKvWaPw0rE2rXx7Sqvt8RRdl24Vr/1sZNZqqpUgpQi2KIPzhDxytYC54 fqRST+RGl5AUXvxkjUI19nPcICVp8dIXA0YFDfcFNfJGM0g0J6VtOMIpuQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFKG9LZIufMMRz62lu3JgFozbgszbMB8GA1UdIwQY MBaAFBida1XWpojuXjOBiDu1r2hDMnbjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUt YTJhNGM2YTYyMWNkLzEvb2IwdGtpNTh3eEhQcmFXN2NtQVdqTnVDek5zLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUtYTJhNGM2YTYyMWNk LzEvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhQBQDAN BgkqhkiG9w0BAQsFAAOCAQEAIwk3hpJ4DqVTYuweLTOB430nRoZY5kguKMzCBFYi wDvkxv8aagwBCbqK2k5TbGXlOFuC/IE8tMYEddgjprR6Lb7O8hXD6l2Xm1LWHark ZnR28BJn0f6Tf/DmRq6i8q6eDAnVAfllBUb+0NP4wc6vcs/dJ3IoYKdjU2vuTW4f HVbHn5/kOl/9BeyJLBcwH9IqcxZ0AUkTiBrEy5fNLUpeBMyv9cR6m7rJVv/XrEYz wcacjmYn7ajd38gYNXqPuzsr1VeB0KNUlSVePSy+rfxnf0eKzhgYFXda61/Dxged PUD69idXGxd7gnyb1TDgKlfg1x34I+tZ20RCfMRv3SRf8Q== -----END CERTIFICATE-----Generated at Mon Jan 26 15:36:38 2026 by rpki-client