This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/8c5808-3165-41dc-90a0-3ef5eb7c8598/1/oujn_bgR2P0PhEZCax5BiO_oVf4.roa File: oujn_bgR2P0PhEZCax5BiO_oVf4.roa (raw, json) Hash identifier: JeulLAWLMZsbKOX1qSlzlZW6BLtojE/TzKdL/Yu5wSQ= Subject key identifier: A2:E8:E7:FD:B8:11:D8:FD:0F:84:46:42:6B:1E:41:88:EF:E8:55:FE Certificate issuer: /CN=f3b90781dbbebdb8ec42baf66488059ea5866aac Certificate serial: 019B7AC7907E38C291CDBB9D25A4BD3FE19C Authority key identifier: F3:B9:07:81:DB:BE:BD:B8:EC:42:BA:F6:64:88:05:9E:A5:86:6A:AC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/87kHgdu-vbjsQrr2ZIgFnqWGaqw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/8c5808-3165-41dc-90a0-3ef5eb7c8598/1/oujn_bgR2P0PhEZCax5BiO_oVf4.roa Signing time: Thu 01 Jan 2026 18:17:37 +0000 ROA not before: Thu 01 Jan 2026 18:17:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49800 IP address blocks: 2a03:6947:200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/8c5808-3165-41dc-90a0-3ef5eb7c8598/1/87kHgdu-vbjsQrr2ZIgFnqWGaqw.crl rsync://rpki.ripe.net/repository/DEFAULT/12/8c5808-3165-41dc-90a0-3ef5eb7c8598/1/87kHgdu-vbjsQrr2ZIgFnqWGaqw.mft rsync://rpki.ripe.net/repository/DEFAULT/87kHgdu-vbjsQrr2ZIgFnqWGaqw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 18:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:90:7e:38:c2:91:cd:bb:9d:25:a4:bd:3f:e1:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f3b90781dbbebdb8ec42baf66488059ea5866aac Validity Not Before: Jan 1 18:17:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a2e8e7fdb811d8fd0f8446426b1e4188efe855fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:62:80:08:47:6b:a4:8f:2e:a4:78:53:23:94: 02:7b:b2:5a:db:1e:e3:d8:12:dd:0b:72:b7:13:fa: d6:50:c9:dc:92:94:71:2c:31:15:6b:9c:aa:30:2f: 29:6d:a6:fc:0a:c5:3d:03:3c:e0:2e:94:2c:21:04: 8f:82:8b:1c:7c:85:cd:46:3c:4f:8b:22:eb:6c:19: d8:3b:49:76:8b:c2:55:f3:1d:1c:28:6b:31:ce:da: 2f:3d:0d:3a:27:1c:bc:8f:e9:0c:0e:8d:0b:75:f4: 5d:dd:2d:ac:bd:08:da:cd:af:dc:f3:24:d5:34:71: 8e:dd:80:d0:15:9e:0b:61:15:56:63:0b:ab:ee:36: ac:84:86:ac:7f:28:42:40:39:2d:5f:4d:45:f1:ef: 4f:0b:2d:b2:a1:55:58:bd:d6:9c:c1:c1:c7:8f:22: d7:cf:9b:f4:fb:11:9a:62:27:ca:56:56:bc:a2:d4: 68:28:50:7d:0f:2d:e9:f0:8b:27:4d:46:4f:c8:a9: a6:2e:99:95:22:ba:26:59:c5:58:e1:b7:27:a9:93: 42:cd:76:ee:e2:af:1b:d1:0b:6d:af:84:5e:a3:d2: 64:5f:03:de:38:d6:0f:72:b5:5c:a0:2f:56:8c:11: ac:de:02:2f:aa:04:66:4e:b2:e0:16:85:fc:76:63: d3:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:E8:E7:FD:B8:11:D8:FD:0F:84:46:42:6B:1E:41:88:EF:E8:55:FE X509v3 Authority Key Identifier: keyid:F3:B9:07:81:DB:BE:BD:B8:EC:42:BA:F6:64:88:05:9E:A5:86:6A:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/87kHgdu-vbjsQrr2ZIgFnqWGaqw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/8c5808-3165-41dc-90a0-3ef5eb7c8598/1/oujn_bgR2P0PhEZCax5BiO_oVf4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/8c5808-3165-41dc-90a0-3ef5eb7c8598/1/87kHgdu-vbjsQrr2ZIgFnqWGaqw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a03:6947:200::/40 Signature Algorithm: sha256WithRSAEncryption ae:b9:5b:58:dc:8e:a1:cb:fe:b5:2e:36:e5:2a:26:30:9f:d0: 73:4c:dd:10:2b:92:c1:64:f1:14:1b:f4:bc:9a:d3:67:f0:ff: ec:05:58:1a:ca:e2:e4:77:45:8d:00:61:2c:ba:5a:cf:13:bf: 38:a8:9e:09:a7:f8:63:a0:4d:73:5b:db:1d:1f:ad:37:48:9f: a6:2f:42:92:a9:1a:3e:5d:fa:a6:e7:76:6f:35:cb:77:af:af: 01:1a:70:fc:e7:4b:22:f9:0a:91:cc:1e:1f:3e:af:eb:ab:91: ba:a9:71:68:ce:2c:aa:e0:e2:49:73:e5:87:3e:d3:61:d5:7b: d5:ef:26:95:40:c1:32:fc:6d:36:2e:f7:1f:0d:90:69:0a:22: a5:e0:a3:db:29:e9:2a:19:76:06:99:0c:0c:93:1c:e7:e5:a3: 3a:09:a7:75:6f:f6:c0:c9:64:4e:67:08:8e:1b:86:9d:db:fb: d4:7c:39:6d:d8:9c:4d:c1:11:bf:2f:a3:3f:da:9f:b5:69:4d: 3b:35:d3:38:31:23:68:59:f8:17:8c:32:cf:41:8e:17:84:14: 25:fe:8e:db:0f:7c:b0:73:01:3e:9b:ce:f1:42:72:50:f5:73: f0:54:cf:98:fc:7d:1a:16:8e:25:2a:21:a3:7e:5e:68:14:3e: 62:33:4d:70 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt6x5B+OMKRzbudJaS9P+GcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYzYjkwNzgxZGJiZWJkYjhlYzQyYmFmNjY0ODgwNTllYTU4 NjZhYWMwHhcNMjYwMTAxMTgxNzM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMmU4ZTdmZGI4MTFkOGZkMGY4NDQ2NDI2YjFlNDE4OGVmZTg1NWZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq2KACEdrpI8upHhTI5QCe7Ja2x7j 2BLdC3K3E/rWUMnckpRxLDEVa5yqMC8pbab8CsU9AzzgLpQsIQSPgoscfIXNRjxP iyLrbBnYO0l2i8JV8x0cKGsxztovPQ06Jxy8j+kMDo0LdfRd3S2svQjaza/c8yTV NHGO3YDQFZ4LYRVWYwur7jashIasfyhCQDktX01F8e9PCy2yoVVYvdacwcHHjyLX z5v0+xGaYifKVla8otRoKFB9Dy3p8IsnTUZPyKmmLpmVIromWcVY4bcnqZNCzXbu 4q8b0Qttr4Reo9JkXwPeONYPcrVcoC9WjBGs3gIvqgRmTrLgFoX8dmPTDQIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFKLo5/24Edj9D4RGQmseQYjv6FX+MB8GA1UdIwQY MBaAFPO5B4Hbvr247EK69mSIBZ6lhmqsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvODdrSGdkdS12YmpzUXJyMlpJZ0ZucVdHYXF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi84YzU4MDgtMzE2NS00MWRjLTkwYTAt M2VmNWViN2M4NTk4LzEvb3Vqbl9iZ1IyUDBQaEVaQ2F4NUJpT19vVmY0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi84YzU4MDgtMzE2NS00MWRjLTkwYTAtM2VmNWViN2M4NTk4 LzEvODdrSGdkdS12YmpzUXJyMlpJZ0ZucVdHYXF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgNpRwIw DQYJKoZIhvcNAQELBQADggEBAK65W1jcjqHL/rUuNuUqJjCf0HNM3RArksFk8RQb 9Lya02fw/+wFWBrK4uR3RY0AYSy6Ws8Tvziongmn+GOgTXNb2x0frTdIn6YvQpKp Gj5d+qbndm81y3evrwEacPznSyL5CpHMHh8+r+urkbqpcWjOLKrg4klz5Yc+02HV e9XvJpVAwTL8bTYu9x8NkGkKIqXgo9sp6SoZdgaZDAyTHOflozoJp3Vv9sDJZE5n CI4bhp3b+9R8OW3YnE3BEb8voz/an7VpTTs10zgxI2hZ+BeMMs9BjheEFCX+jtsP fLBzAT6bzvFCclD1c/BUz5j8fRoWjiUqIaN+XmgUPmIzTXA= -----END CERTIFICATE-----Generated at Mon Jan 26 03:06:05 2026 by rpki-client