This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/3e7210-0528-4456-b68e-a713a1915c90/1/Qm-ojB5dZpQPZIP5vLGbx-B8HzI.roa File: Qm-ojB5dZpQPZIP5vLGbx-B8HzI.roa (raw, json) Hash identifier: dgJjkcZELRuvGpy4Hh7iKii9g2A21viogoew+COrj5c= Subject key identifier: 42:6F:A8:8C:1E:5D:66:94:0F:64:83:F9:BC:B1:9B:C7:E0:7C:1F:32 Certificate issuer: /CN=9c1394768c9a39a6112674d7375972a6696b4680 Certificate serial: 019B791124D0E070156C275124FCB20CF90C Authority key identifier: 9C:13:94:76:8C:9A:39:A6:11:26:74:D7:37:59:72:A6:69:6B:46:80 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nBOUdoyaOaYRJnTXN1lypmlrRoA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/3e7210-0528-4456-b68e-a713a1915c90/1/Qm-ojB5dZpQPZIP5vLGbx-B8HzI.roa Signing time: Thu 01 Jan 2026 10:18:45 +0000 ROA not before: Thu 01 Jan 2026 10:18:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 23273 IP address blocks: 194.146.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/3e7210-0528-4456-b68e-a713a1915c90/1/nBOUdoyaOaYRJnTXN1lypmlrRoA.crl rsync://rpki.ripe.net/repository/DEFAULT/27/3e7210-0528-4456-b68e-a713a1915c90/1/nBOUdoyaOaYRJnTXN1lypmlrRoA.mft rsync://rpki.ripe.net/repository/DEFAULT/nBOUdoyaOaYRJnTXN1lypmlrRoA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 19:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:24:d0:e0:70:15:6c:27:51:24:fc:b2:0c:f9:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9c1394768c9a39a6112674d7375972a6696b4680 Validity Not Before: Jan 1 10:18:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=426fa88c1e5d66940f6483f9bcb19bc7e07c1f32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a2:67:8f:a1:97:21:4f:95:62:a2:e5:42:7c: 1c:b1:12:81:d5:35:be:54:fe:26:40:db:63:ca:b7: 27:d1:ff:6a:20:fb:73:56:af:d3:68:c9:d2:74:4a: e3:74:fe:bb:30:d2:68:31:b8:b8:66:1a:e8:0e:df: b2:6e:31:4b:c2:0a:27:2e:a0:11:b6:2f:3a:ce:3f: f7:94:6f:12:e4:fe:be:28:75:17:75:cd:ee:37:df: 1f:19:51:e6:da:20:b0:e2:86:85:92:40:91:7d:55: 8d:7d:6e:68:f9:24:f6:1d:48:ec:5d:0b:5b:6a:3d: 65:e2:5c:60:5f:8c:2a:63:7b:7e:2b:a8:63:02:e7: de:3d:3d:e3:d9:52:1c:1c:3b:71:0c:44:3a:bc:fb: 39:39:53:cd:2d:3d:74:ae:ee:a3:c7:2d:33:d2:bd: 37:46:4d:fc:e5:3f:4d:01:d3:a5:53:bd:99:5a:c6: 72:89:63:25:bc:4d:19:d6:3c:04:a1:84:42:24:16: e3:37:ab:0e:2e:e4:3b:d8:fc:53:71:a2:37:1b:ca: 7e:fe:6f:1c:bb:0b:90:de:ef:dc:c3:e9:11:89:23: ac:ce:e7:92:2d:0d:b2:68:6a:34:5d:aa:ab:f1:7b: 9c:01:27:1e:03:01:73:bd:8c:e0:a8:90:e7:c3:b3: a4:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:6F:A8:8C:1E:5D:66:94:0F:64:83:F9:BC:B1:9B:C7:E0:7C:1F:32 X509v3 Authority Key Identifier: keyid:9C:13:94:76:8C:9A:39:A6:11:26:74:D7:37:59:72:A6:69:6B:46:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nBOUdoyaOaYRJnTXN1lypmlrRoA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/3e7210-0528-4456-b68e-a713a1915c90/1/Qm-ojB5dZpQPZIP5vLGbx-B8HzI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/3e7210-0528-4456-b68e-a713a1915c90/1/nBOUdoyaOaYRJnTXN1lypmlrRoA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.146.114.0/24 Signature Algorithm: sha256WithRSAEncryption 83:5e:d8:55:b9:63:8f:43:2e:d3:9c:a1:6d:fe:62:3d:f8:79: ef:c8:47:55:1d:5f:c0:e3:83:17:30:b5:43:5f:62:85:94:ac: 81:77:e9:88:f2:01:f3:2d:7a:99:49:94:ea:c6:1f:d8:49:77: 98:7b:29:4b:c1:75:e4:cc:b3:ff:20:c9:bb:e8:c0:71:3e:c0: 31:32:de:55:64:94:57:e1:2e:42:fc:1f:cb:57:9b:23:2d:43: 25:81:4e:be:21:2f:cf:fe:e1:88:2e:f2:98:71:bc:fd:4f:c1: 41:75:af:d2:79:cf:bc:7c:ae:52:fd:3e:96:be:a7:cc:ae:3a: be:16:8a:0a:ee:9d:5a:5b:41:ee:e3:f3:7d:0a:2e:49:80:86: dc:2d:23:db:8f:bb:a0:b4:60:17:a7:8c:21:af:23:75:8a:03: 90:d4:dc:e7:4c:82:91:14:2f:3d:39:98:e1:b7:44:f8:30:ab: d1:67:ba:5f:41:70:64:4b:e9:cd:cf:1c:6a:5b:a1:e0:06:cf: 73:84:e4:39:87:fb:40:95:9a:1f:1b:c3:54:61:e1:a7:c9:f6: 14:85:01:9a:d9:2d:20:7b:54:fb:e5:c8:d4:78:e8:70:76:e0: db:ad:48:cc:80:70:65:c2:3d:d2:08:7f:b2:0e:b9:13:ee:35: ff:4a:7a:a9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5ESTQ4HAVbCdRJPyyDPkMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDljMTM5NDc2OGM5YTM5YTYxMTI2NzRkNzM3NTk3MmE2Njk2 YjQ2ODAwHhcNMjYwMTAxMTAxODQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MjZmYTg4YzFlNWQ2Njk0MGY2NDgzZjliY2IxOWJjN2UwN2MxZjMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuKJnj6GXIU+VYqLlQnwcsRKB1TW+ VP4mQNtjyrcn0f9qIPtzVq/TaMnSdErjdP67MNJoMbi4ZhroDt+ybjFLwgonLqAR ti86zj/3lG8S5P6+KHUXdc3uN98fGVHm2iCw4oaFkkCRfVWNfW5o+ST2HUjsXQtb aj1l4lxgX4wqY3t+K6hjAufePT3j2VIcHDtxDEQ6vPs5OVPNLT10ru6jxy0z0r03 Rk385T9NAdOlU72ZWsZyiWMlvE0Z1jwEoYRCJBbjN6sOLuQ72PxTcaI3G8p+/m8c uwuQ3u/cw+kRiSOszueSLQ2yaGo0Xaqr8XucASceAwFzvYzgqJDnw7Ok6wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEJvqIweXWaUD2SD+byxm8fgfB8yMB8GA1UdIwQY MBaAFJwTlHaMmjmmESZ01zdZcqZpa0aAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbkJPVWRveWFPYVlSSm5UWE4xbHlwbWxyUm9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy8zZTcyMTAtMDUyOC00NDU2LWI2OGUt YTcxM2ExOTE1YzkwLzEvUW0tb2pCNWRacFFQWklQNXZMR2J4LUI4SHpJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy8zZTcyMTAtMDUyOC00NDU2LWI2OGUtYTcxM2ExOTE1Yzkw LzEvbkJPVWRveWFPYVlSSm5UWE4xbHlwbWxyUm9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwpJyMA0G CSqGSIb3DQEBCwUAA4IBAQCDXthVuWOPQy7TnKFt/mI9+HnvyEdVHV/A44MXMLVD X2KFlKyBd+mI8gHzLXqZSZTqxh/YSXeYeylLwXXkzLP/IMm76MBxPsAxMt5VZJRX 4S5C/B/LV5sjLUMlgU6+IS/P/uGILvKYcbz9T8FBda/Sec+8fK5S/T6WvqfMrjq+ FooK7p1aW0Hu4/N9Ci5JgIbcLSPbj7ugtGAXp4whryN1igOQ1NznTIKRFC89OZjh t0T4MKvRZ7pfQXBkS+nNzxxqW6HgBs9zhOQ5h/tAlZofG8NUYeGnyfYUhQGa2S0g e1T75cjUeOhwduDbrUjMgHBlwj3SCH+yDrkT7jX/Snqp -----END CERTIFICATE-----Generated at Mon Jan 26 06:03:21 2026 by rpki-client