This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/oMb2k7Oz9unm3siEKObsvSGOu5s.roa File: oMb2k7Oz9unm3siEKObsvSGOu5s.roa (raw, json) Hash identifier: pGiHyUdRro6M/TUFejm603qJXDKgL9TMHqLZBCWVjz4= Subject key identifier: A0:C6:F6:93:B3:B3:F6:E9:E6:DE:C8:84:28:E6:EC:BD:21:8E:BB:9B Certificate issuer: /CN=acddc73b59a1fcdee22e25824d40acc27286aa52 Certificate serial: 019B79102E61DC24FA51B2CAA0DABA6D1EC4 Authority key identifier: AC:DD:C7:3B:59:A1:FC:DE:E2:2E:25:82:4D:40:AC:C2:72:86:AA:52 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rN3HO1mh_N7iLiWCTUCswnKGqlI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/oMb2k7Oz9unm3siEKObsvSGOu5s.roa Signing time: Thu 01 Jan 2026 10:17:42 +0000 ROA not before: Thu 01 Jan 2026 10:17:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39305 IP address blocks: 45.84.52.0/22 maxlen: 22 62.68.77.0/24 maxlen: 24 62.106.73.0/24 maxlen: 24 77.75.228.0/24 maxlen: 24 78.24.32.0/21 maxlen: 21 91.211.64.0/22 maxlen: 22 91.238.63.0/24 maxlen: 24 91.242.224.0/24 maxlen: 24 109.234.73.0/24 maxlen: 24 146.19.18.0/24 maxlen: 24 185.88.9.0/24 maxlen: 24 185.151.214.0/23 maxlen: 23 185.182.107.0/24 maxlen: 24 185.196.63.0/24 maxlen: 24 193.57.226.0/24 maxlen: 24 193.57.227.0/24 maxlen: 24 194.247.36.0/24 maxlen: 24 195.242.146.0/24 maxlen: 24 212.108.108.0/24 maxlen: 24 2a0c:7140::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.crl rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.mft rsync://rpki.ripe.net/repository/DEFAULT/rN3HO1mh_N7iLiWCTUCswnKGqlI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:2e:61:dc:24:fa:51:b2:ca:a0:da:ba:6d:1e:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=acddc73b59a1fcdee22e25824d40acc27286aa52 Validity Not Before: Jan 1 10:17:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a0c6f693b3b3f6e9e6dec88428e6ecbd218ebb9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:69:49:28:85:c0:fb:b8:0d:7c:d7:24:f1:fb: 2d:e2:b1:99:78:e8:a2:02:1d:c4:0e:bd:0c:39:55: 2f:52:f4:c2:52:7d:4d:8a:74:8c:00:82:11:09:69: ed:42:a8:49:2e:99:22:3f:e7:03:e5:18:89:97:54: 29:9f:e6:59:0f:bc:5f:17:83:42:a2:b9:68:6f:c7: c9:ed:47:e1:98:a3:32:86:f7:14:8a:90:95:7c:08: 75:30:19:46:6a:77:c6:bb:3f:25:7f:99:66:d3:47: a8:0e:21:51:92:d8:f4:01:bd:f3:16:b4:5f:3c:7b: e7:a6:df:bf:8c:27:6b:1c:05:4f:ca:98:bc:3a:b5: b8:05:c0:36:a3:31:55:f8:c4:64:f1:b6:c8:14:95: fe:8d:81:85:e4:ee:0d:0c:7f:7a:a7:88:9e:00:9f: 69:0b:75:c8:34:6e:4a:5b:fe:04:2d:5e:69:8e:83: c0:3c:91:20:8d:0d:31:4c:39:a9:bf:5b:41:bd:40: 76:ff:d9:24:72:6a:d4:b8:77:9f:65:34:93:12:9e: c9:93:ce:1c:8c:d7:fa:a4:44:02:6b:07:49:67:88: 62:e2:61:ed:ed:c6:dc:8b:d9:7e:d9:a3:98:c5:44: 19:ca:6f:ef:17:85:5f:84:11:31:1a:11:6c:aa:fc: 20:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:C6:F6:93:B3:B3:F6:E9:E6:DE:C8:84:28:E6:EC:BD:21:8E:BB:9B X509v3 Authority Key Identifier: keyid:AC:DD:C7:3B:59:A1:FC:DE:E2:2E:25:82:4D:40:AC:C2:72:86:AA:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rN3HO1mh_N7iLiWCTUCswnKGqlI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/oMb2k7Oz9unm3siEKObsvSGOu5s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.84.52.0/22 62.68.77.0/24 62.106.73.0/24 77.75.228.0/24 78.24.32.0/21 91.211.64.0/22 91.238.63.0/24 91.242.224.0/24 109.234.73.0/24 146.19.18.0/24 185.88.9.0/24 185.151.214.0/23 185.182.107.0/24 185.196.63.0/24 193.57.226.0/23 194.247.36.0/24 195.242.146.0/24 212.108.108.0/24 IPv6: 2a0c:7140::/29 Signature Algorithm: sha256WithRSAEncryption 33:ac:fb:d1:c7:7f:e6:84:4e:4a:c2:f3:70:fd:35:93:bf:f9: de:84:71:06:dd:85:e0:87:e7:78:96:c1:80:66:a2:36:e7:35: 31:74:fe:d2:d2:ee:22:be:7f:2e:a7:6e:94:6b:d0:b1:48:1d: 06:5d:e0:de:0e:15:2a:c7:51:81:ea:89:5d:cd:be:28:91:90: 8c:f6:c3:fe:d1:12:3a:ee:2c:a7:18:b5:4e:cd:32:2b:24:b2: 72:6e:65:db:d0:b9:6d:8f:df:2c:77:2b:13:e8:7b:35:cd:c3: 81:53:89:de:d4:d6:b8:f8:79:8d:db:de:09:07:d0:91:0f:ef: ff:c6:68:18:14:3d:2a:9e:c7:9e:9f:20:75:6c:18:8d:c9:cc: 8b:c2:dc:3b:ce:bb:25:6a:5c:6b:38:32:fd:89:2f:e1:e4:a1: 24:b4:b0:55:ab:6b:86:93:15:21:d9:f4:02:b5:aa:c8:54:34: 4d:82:95:37:2a:44:b1:4f:5b:f3:10:a2:6f:47:44:fd:73:96: 27:43:fd:cc:87:6a:60:ae:b9:2a:66:82:80:29:3e:ee:79:5d: db:fd:fd:b1:aa:64:b9:d2:ce:a2:5c:f4:4d:0e:ac:b1:ee:0a: 79:26:be:79:7d:ac:14:1f:fa:b0:9a:98:d4:c7:75:51:72:53: 95:07:8a:2e -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgISAZt5EC5h3CT6UbLKoNq6bR7EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjZGRjNzNiNTlhMWZjZGVlMjJlMjU4MjRkNDBhY2MyNzI4 NmFhNTIwHhcNMjYwMTAxMTAxNzQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMGM2ZjY5M2IzYjNmNmU5ZTZkZWM4ODQyOGU2ZWNiZDIxOGViYjliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9GlJKIXA+7gNfNck8fst4rGZeOii Ah3EDr0MOVUvUvTCUn1NinSMAIIRCWntQqhJLpkiP+cD5RiJl1Qpn+ZZD7xfF4NC orlob8fJ7UfhmKMyhvcUipCVfAh1MBlGanfGuz8lf5lm00eoDiFRktj0Ab3zFrRf PHvnpt+/jCdrHAVPypi8OrW4BcA2ozFV+MRk8bbIFJX+jYGF5O4NDH96p4ieAJ9p C3XING5KW/4ELV5pjoPAPJEgjQ0xTDmpv1tBvUB2/9kkcmrUuHefZTSTEp7Jk84c jNf6pEQCawdJZ4hi4mHt7cbci9l+2aOYxUQZym/vF4VfhBExGhFsqvwgDwIDAQAB o4ICgTCCAn0wHQYDVR0OBBYEFKDG9pOzs/bp5t7IhCjm7L0hjrubMB8GA1UdIwQY MBaAFKzdxztZofze4i4lgk1ArMJyhqpSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvck4zSE8xbWhfTjdpTGlXQ1RVQ3N3bktHcWxJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS84Nzg4ZTUtOGFiOC00M2U5LTlkYWIt YTBlYzg0YTMxMzkzLzEvb01iMms3T3o5dW5tM3NpRUtPYnN2U0dPdTVzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS84Nzg4ZTUtOGFiOC00M2U5LTlkYWItYTBlYzg0YTMxMzkz LzEvck4zSE8xbWhfTjdpTGlXQ1RVQ3N3bktHcWxJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIGWBggrBgEFBQcBBwEB/wSBhjCBgzByBAIAATBsAwQCLVQ0 AwQAPkRNAwQAPmpJAwQATUvkAwQDThggAwQCW9NAAwQAW+4/AwQAW/LgAwQAbepJ AwQAkhMSAwQAuVgJAwQBuZfWAwQAubZrAwQAucQ/AwQBwTniAwQAwvckAwQAw/KS AwQA1GxsMA0EAgACMAcDBQMqDHFAMA0GCSqGSIb3DQEBCwUAA4IBAQAzrPvRx3/m hE5KwvNw/TWTv/nehHEG3YXgh+d4lsGAZqI25zUxdP7S0u4ivn8up26Ua9CxSB0G XeDeDhUqx1GB6oldzb4okZCM9sP+0RI67iynGLVOzTIrJLJybmXb0Lltj98sdysT 6Hs1zcOBU4ne1Na4+HmN294JB9CRD+//xmgYFD0qnseenyB1bBiNycyLwtw7zrsl alxrODL9iS/h5KEktLBVq2uGkxUh2fQCtarIVDRNgpU3KkSxT1vzEKJvR0T9c5Yn Q/3Mh2pgrrkqZoKAKT7ueV3b/f2xqmS50s6iXPRNDqyx7gp5Jr55fawUH/qwmpjU x3VRclOVB4ou -----END CERTIFICATE-----Generated at Sun Jan 25 23:32:29 2026 by rpki-client