This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d84a54-188f-4faf-9d45-6f21f4c751f3/1/opow8uP9IKSNWNqVgii4cTwADfA.roa File: opow8uP9IKSNWNqVgii4cTwADfA.roa (raw, json) Hash identifier: +b/EweslPo3iR9ssvZX7aiO4HVHajEP37IxcMi09yZk= Subject key identifier: A2:9A:30:F2:E3:FD:20:A4:8D:58:DA:95:82:28:B8:71:3C:00:0D:F0 Certificate issuer: /CN=39a3cebb811046a0966e9554d07e5d16b36dbf04 Certificate serial: 019B7834E85326B88B4BCDDA68D307131CF4 Authority key identifier: 39:A3:CE:BB:81:10:46:A0:96:6E:95:54:D0:7E:5D:16:B3:6D:BF:04 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OaPOu4EQRqCWbpVU0H5dFrNtvwQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d84a54-188f-4faf-9d45-6f21f4c751f3/1/opow8uP9IKSNWNqVgii4cTwADfA.roa Signing time: Thu 01 Jan 2026 06:18:11 +0000 ROA not before: Thu 01 Jan 2026 06:18:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8943 IP address blocks: 185.98.212.0/22 maxlen: 23 2a06:ec0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/d84a54-188f-4faf-9d45-6f21f4c751f3/1/OaPOu4EQRqCWbpVU0H5dFrNtvwQ.crl rsync://rpki.ripe.net/repository/DEFAULT/29/d84a54-188f-4faf-9d45-6f21f4c751f3/1/OaPOu4EQRqCWbpVU0H5dFrNtvwQ.mft rsync://rpki.ripe.net/repository/DEFAULT/OaPOu4EQRqCWbpVU0H5dFrNtvwQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:e8:53:26:b8:8b:4b:cd:da:68:d3:07:13:1c:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39a3cebb811046a0966e9554d07e5d16b36dbf04 Validity Not Before: Jan 1 06:18:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a29a30f2e3fd20a48d58da958228b8713c000df0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:e4:c1:0d:25:16:7a:f2:13:1c:20:ef:e6:33: 08:93:13:00:8c:4b:bc:30:ec:02:14:a0:27:36:7a: aa:ef:f0:d8:99:89:ee:98:c0:56:ba:1b:d7:4f:98: aa:ca:ee:6e:c3:1e:22:9d:08:9d:c1:db:82:bf:0e: cb:ea:f4:7a:62:93:01:af:61:45:30:93:6b:7f:a9: 0d:42:5e:55:56:92:5a:78:5f:87:0e:36:c3:85:98: 9f:be:61:49:85:18:6d:d3:43:6e:29:ef:2a:34:a3: f7:e6:2d:ee:b9:69:c6:ea:75:51:78:60:ee:e8:7b: 37:15:15:ef:47:a5:d6:99:b0:84:b7:db:89:70:aa: 4f:dd:a9:ec:92:1a:d7:e7:ec:83:68:15:98:7b:22: b8:3c:88:52:2b:e1:d9:c8:1b:ad:07:23:3d:64:a9: 8d:de:f8:01:0c:83:72:11:2d:df:19:45:47:75:38: 8c:c4:2d:89:38:26:b2:f8:99:ff:61:57:9a:3b:08: 86:01:a8:69:32:96:9d:b5:7f:3c:6c:54:cf:0e:b0: ee:6c:00:2c:f8:85:32:5b:4f:fd:b0:63:5e:70:64: 1a:47:94:0a:3d:97:a5:04:ad:bb:d1:8c:36:a6:89: ec:c8:67:2c:a6:2a:30:0c:6b:ee:05:ac:f3:03:e2: 40:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:9A:30:F2:E3:FD:20:A4:8D:58:DA:95:82:28:B8:71:3C:00:0D:F0 X509v3 Authority Key Identifier: keyid:39:A3:CE:BB:81:10:46:A0:96:6E:95:54:D0:7E:5D:16:B3:6D:BF:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OaPOu4EQRqCWbpVU0H5dFrNtvwQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d84a54-188f-4faf-9d45-6f21f4c751f3/1/opow8uP9IKSNWNqVgii4cTwADfA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d84a54-188f-4faf-9d45-6f21f4c751f3/1/OaPOu4EQRqCWbpVU0H5dFrNtvwQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.98.212.0/22 IPv6: 2a06:ec0::/32 Signature Algorithm: sha256WithRSAEncryption 6e:25:81:b7:d3:b8:21:57:f2:ee:fb:78:f5:cf:9f:cc:01:bb: a2:70:73:fd:50:1e:6a:6e:ee:42:e3:a2:42:0d:2e:f4:bc:f4: 6f:2d:47:98:71:c1:99:73:32:42:80:d5:15:a9:76:cc:21:8f: e9:e9:81:bf:ad:75:bf:e8:65:1b:d1:50:7c:3f:69:9f:18:41: 5b:e8:1f:76:86:b9:cf:21:eb:0c:03:0f:c4:bc:4d:fd:52:b7: 1b:fd:6a:76:19:d7:4a:e9:0f:a7:bc:c5:c4:8a:a3:95:3a:d1: 8b:d3:81:07:c3:4c:20:2d:d3:ff:92:10:87:a7:b6:4e:30:6a: 4c:4e:33:00:b4:ae:20:f8:b7:04:41:ee:5b:84:5b:7c:49:47: e7:a3:90:36:cd:12:f3:96:a7:81:74:cb:a9:60:5c:d0:09:d0: 40:ab:6e:0b:63:82:5d:88:47:3e:4c:c2:59:72:19:14:b6:4f: 9e:93:7b:8a:15:c8:d9:b0:b2:18:b4:d5:1b:36:ed:58:e9:4b: 21:83:74:c4:18:29:b8:0d:97:1a:d2:fb:f0:bb:b2:0d:5f:66: a3:d2:a3:e5:86:2e:c1:6e:a4:ed:a8:6b:ae:5e:f0:7e:8d:ce: 5f:a4:5a:b1:b9:7f:2f:5e:01:40:71:f2:60:6e:a7:5b:9a:ae: 53:74:17:b5 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4NOhTJriLS83aaNMHExz0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5YTNjZWJiODExMDQ2YTA5NjZlOTU1NGQwN2U1ZDE2YjM2 ZGJmMDQwHhcNMjYwMTAxMDYxODExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMjlhMzBmMmUzZmQyMGE0OGQ1OGRhOTU4MjI4Yjg3MTNjMDAwZGYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm+TBDSUWevITHCDv5jMIkxMAjEu8 MOwCFKAnNnqq7/DYmYnumMBWuhvXT5iqyu5uwx4inQidwduCvw7L6vR6YpMBr2FF MJNrf6kNQl5VVpJaeF+HDjbDhZifvmFJhRht00NuKe8qNKP35i3uuWnG6nVReGDu 6Hs3FRXvR6XWmbCEt9uJcKpP3anskhrX5+yDaBWYeyK4PIhSK+HZyButByM9ZKmN 3vgBDINyES3fGUVHdTiMxC2JOCay+Jn/YVeaOwiGAahpMpadtX88bFTPDrDubAAs +IUyW0/9sGNecGQaR5QKPZelBK270Yw2ponsyGcspiowDGvuBazzA+JABwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFKKaMPLj/SCkjVjalYIouHE8AA3wMB8GA1UdIwQY MBaAFDmjzruBEEaglm6VVNB+XRazbb8EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2FQT3U0RVFScUNXYnBWVTBINWRGck50dndRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9kODRhNTQtMTg4Zi00ZmFmLTlkNDUt NmYyMWY0Yzc1MWYzLzEvb3Bvdzh1UDlJS1NOV05xVmdpaTRjVHdBRGZBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS9kODRhNTQtMTg4Zi00ZmFmLTlkNDUtNmYyMWY0Yzc1MWYz LzEvT2FQT3U0RVFScUNXYnBWVTBINWRGck50dndRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuWLUMA0E AgACMAcDBQAqBg7AMA0GCSqGSIb3DQEBCwUAA4IBAQBuJYG307ghV/Lu+3j1z5/M AbuicHP9UB5qbu5C46JCDS70vPRvLUeYccGZczJCgNUVqXbMIY/p6YG/rXW/6GUb 0VB8P2mfGEFb6B92hrnPIesMAw/EvE39Urcb/Wp2GddK6Q+nvMXEiqOVOtGL04EH w0wgLdP/khCHp7ZOMGpMTjMAtK4g+LcEQe5bhFt8SUfno5A2zRLzlqeBdMupYFzQ CdBAq24LY4JdiEc+TMJZchkUtk+ek3uKFcjZsLIYtNUbNu1Y6Ushg3TEGCm4DZca 0vvwu7INX2aj0qPlhi7BbqTtqGuuXvB+jc5fpFqxuX8vXgFAcfJgbqdbmq5TdBe1 -----END CERTIFICATE-----Generated at Sun Jan 25 19:59:18 2026 by rpki-client