This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/348ce5-ca20-4848-8844-ae50273681a7/1/ogYawkz_gBDjl6zl_q1fMXZNBvo.roa File: ogYawkz_gBDjl6zl_q1fMXZNBvo.roa (raw, json) Hash identifier: x588DAczbjPIl3pK5n5K7VZpFPPA1ral0L6/o6+ORO8= Subject key identifier: A2:06:1A:C2:4C:FF:80:10:E3:97:AC:E5:FE:AD:5F:31:76:4D:06:FA Certificate issuer: /CN=cd108c225f2478cd4230179890d07284be1636cd Certificate serial: 019B7BA3B2787FC68D7CCF79F480E6879F9A Authority key identifier: CD:10:8C:22:5F:24:78:CD:42:30:17:98:90:D0:72:84:BE:16:36:CD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zRCMIl8keM1CMBeYkNByhL4WNs0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/348ce5-ca20-4848-8844-ae50273681a7/1/ogYawkz_gBDjl6zl_q1fMXZNBvo.roa Signing time: Thu 01 Jan 2026 22:18:04 +0000 ROA not before: Thu 01 Jan 2026 22:18:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212921 IP address blocks: 2.59.152.0/22 maxlen: 22 2.59.152.0/24 maxlen: 24 2.59.155.0/24 maxlen: 24 45.91.224.0/22 maxlen: 22 45.91.227.0/24 maxlen: 24 45.142.152.0/22 maxlen: 22 45.142.152.0/24 maxlen: 24 45.142.155.0/24 maxlen: 24 91.204.224.0/22 maxlen: 22 91.204.225.0/24 maxlen: 24 185.202.100.0/22 maxlen: 22 193.239.150.0/23 maxlen: 23 193.239.150.0/24 maxlen: 24 193.239.154.0/23 maxlen: 23 193.239.154.0/24 maxlen: 24 194.126.202.0/24 maxlen: 24 194.126.215.0/24 maxlen: 24 194.126.219.0/24 maxlen: 24 194.126.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/348ce5-ca20-4848-8844-ae50273681a7/1/zRCMIl8keM1CMBeYkNByhL4WNs0.crl rsync://rpki.ripe.net/repository/DEFAULT/27/348ce5-ca20-4848-8844-ae50273681a7/1/zRCMIl8keM1CMBeYkNByhL4WNs0.mft rsync://rpki.ripe.net/repository/DEFAULT/zRCMIl8keM1CMBeYkNByhL4WNs0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 04:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:b2:78:7f:c6:8d:7c:cf:79:f4:80:e6:87:9f:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd108c225f2478cd4230179890d07284be1636cd Validity Not Before: Jan 1 22:18:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a2061ac24cff8010e397ace5fead5f31764d06fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:57:ba:1b:80:ec:39:bd:26:63:36:5e:1e:03: e4:a9:39:f2:ad:68:6e:f9:1f:1c:29:66:fb:9c:b9: b7:9b:f6:d1:00:4c:d3:41:84:af:37:21:5e:f3:8e: 75:c5:24:ad:61:24:c9:0b:6f:21:b0:4e:ef:d2:76: b5:11:5d:b7:fd:a9:76:2d:14:9b:cb:a0:c7:90:a5: 77:82:79:30:07:1a:dc:b3:ad:ca:b7:26:08:23:d3: b5:21:68:18:2a:2a:27:16:2d:78:37:66:c2:4a:bd: 60:da:30:a6:d8:99:89:49:81:f8:63:53:37:dc:4d: 46:ff:99:4a:fc:58:e8:b2:9f:0f:b7:bb:d1:79:78: 91:d7:11:f2:41:f5:47:16:fe:da:f9:31:a8:26:b6: 0b:c2:75:3e:04:8b:ca:b5:09:3f:88:c2:42:8a:41: 7f:98:d6:a1:6a:fe:19:67:71:d3:fb:fd:f7:64:16: 0a:0b:c8:be:6b:d1:8a:87:6e:eb:7d:7e:d2:10:65: 8c:10:bd:59:44:f7:f3:f9:5a:44:38:ed:c6:54:78: 6c:6e:b5:88:e4:72:ba:8b:16:e8:1e:b8:4e:4e:0a: df:a3:b5:32:03:b7:e4:91:57:11:51:69:25:66:34: e8:ac:4c:9d:60:65:91:aa:63:f6:8f:c4:ed:c6:76: b7:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:06:1A:C2:4C:FF:80:10:E3:97:AC:E5:FE:AD:5F:31:76:4D:06:FA X509v3 Authority Key Identifier: keyid:CD:10:8C:22:5F:24:78:CD:42:30:17:98:90:D0:72:84:BE:16:36:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zRCMIl8keM1CMBeYkNByhL4WNs0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/348ce5-ca20-4848-8844-ae50273681a7/1/ogYawkz_gBDjl6zl_q1fMXZNBvo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/348ce5-ca20-4848-8844-ae50273681a7/1/zRCMIl8keM1CMBeYkNByhL4WNs0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.59.152.0/22 45.91.224.0/22 45.142.152.0/22 91.204.224.0/22 185.202.100.0/22 193.239.150.0/23 193.239.154.0/23 194.126.202.0/24 194.126.215.0/24 194.126.219.0/24 194.126.227.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:53:1d:e3:44:3e:45:ac:70:40:f4:f2:ef:7c:9d:4f:9f:5a: 8b:8c:67:83:9d:e6:fe:40:8d:cb:dc:10:48:7a:86:18:4f:75: 0d:8e:9d:b2:11:a7:05:16:f9:69:f6:f8:0d:24:e1:43:67:f8: 01:8f:77:e3:a0:f2:47:8b:9c:86:6e:b3:69:21:6b:7a:4c:7a: 70:ea:04:20:9c:78:29:19:05:77:5a:7e:42:1d:f7:97:4e:36: 03:72:cc:a3:5f:b6:6f:ca:88:5d:1d:16:64:75:59:32:8b:c4: fa:e1:28:cb:7b:ca:d8:22:7c:75:12:e7:d4:74:fe:12:7c:8c: a9:7d:67:30:f1:d2:e7:07:42:ff:6b:6e:b2:a5:27:b0:2a:1f: 4c:dd:b3:34:dd:f2:68:9a:b2:53:db:24:38:78:21:55:82:a9: 48:41:2c:05:df:53:27:db:c7:74:fc:f8:44:e6:01:c6:54:c3: bd:aa:eb:c5:8c:3f:ae:ef:ee:25:1d:21:6c:4b:74:00:1d:ba: 11:7d:7a:9a:94:d1:fc:0c:dc:6a:3c:fc:93:7d:bd:d0:02:83: f9:66:75:dc:d5:ca:54:eb:de:f3:30:c0:e4:aa:15:2b:b6:c7: 89:e6:4e:19:9e:18:09:f7:fa:e9:96:17:ec:fa:a8:8e:62:61: ea:4e:f8:a9 -----BEGIN CERTIFICATE----- MIIFOTCCBCGgAwIBAgISAZt7o7J4f8aNfM959IDmh5+aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkMTA4YzIyNWYyNDc4Y2Q0MjMwMTc5ODkwZDA3Mjg0YmUx NjM2Y2QwHhcNMjYwMTAxMjIxODA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMjA2MWFjMjRjZmY4MDEwZTM5N2FjZTVmZWFkNWYzMTc2NGQwNmZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr1e6G4DsOb0mYzZeHgPkqTnyrWhu +R8cKWb7nLm3m/bRAEzTQYSvNyFe8451xSStYSTJC28hsE7v0na1EV23/al2LRSb y6DHkKV3gnkwBxrcs63KtyYII9O1IWgYKionFi14N2bCSr1g2jCm2JmJSYH4Y1M3 3E1G/5lK/Fjosp8Pt7vReXiR1xHyQfVHFv7a+TGoJrYLwnU+BIvKtQk/iMJCikF/ mNahav4ZZ3HT+/33ZBYKC8i+a9GKh27rfX7SEGWMEL1ZRPfz+VpEOO3GVHhsbrWI 5HK6ixboHrhOTgrfo7UyA7fkkVcRUWklZjTorEydYGWRqmP2j8Ttxna3ewIDAQAB o4ICRTCCAkEwHQYDVR0OBBYEFKIGGsJM/4AQ45es5f6tXzF2TQb6MB8GA1UdIwQY MBaAFM0QjCJfJHjNQjAXmJDQcoS+FjbNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvelJDTUlsOGtlTTFDTUJlWWtOQnloTDRXTnMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy8zNDhjZTUtY2EyMC00ODQ4LTg4NDQt YWU1MDI3MzY4MWE3LzEvb2dZYXdrel9nQkRqbDZ6bF9xMWZNWFpOQnZvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy8zNDhjZTUtY2EyMC00ODQ4LTg4NDQtYWU1MDI3MzY4MWE3 LzEvelJDTUlsOGtlTTFDTUJlWWtOQnloTDRXTnMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFsGCCsGAQUFBwEHAQH/BEwwSjBIBAIAATBCAwQCAjuYAwQC LVvgAwQCLY6YAwQCW8zgAwQCucpkAwQBwe+WAwQBwe+aAwQAwn7KAwQAwn7XAwQA wn7bAwQAwn7jMA0GCSqGSIb3DQEBCwUAA4IBAQBKUx3jRD5FrHBA9PLvfJ1Pn1qL jGeDneb+QI3L3BBIeoYYT3UNjp2yEacFFvlp9vgNJOFDZ/gBj3fjoPJHi5yGbrNp IWt6THpw6gQgnHgpGQV3Wn5CHfeXTjYDcsyjX7ZvyohdHRZkdVkyi8T64SjLe8rY Inx1EufUdP4SfIypfWcw8dLnB0L/a26ypSewKh9M3bM03fJomrJT2yQ4eCFVgqlI QSwF31Mn28d0/PhE5gHGVMO9quvFjD+u7+4lHSFsS3QAHboRfXqalNH8DNxqPPyT fb3QAoP5ZnXc1cpU697zMMDkqhUrtseJ5k4ZnhgJ9/rplhfs+qiOYmHqTvip -----END CERTIFICATE-----Generated at Sun Jan 25 15:37:11 2026 by rpki-client