This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/3ojXaYtiYuy-7iogw6i2G3C6X6I.roa File: 3ojXaYtiYuy-7iogw6i2G3C6X6I.roa (raw, json) Hash identifier: QbBWWIS8DVdo15a6EV0oz4pvQIl10yagzOCuUWNFAr4= Subject key identifier: DE:88:D7:69:8B:62:62:EC:BE:EE:2A:20:C3:A8:B6:1B:70:BA:5F:A2 Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b Certificate serial: 019B7910706266901949442393EE39E4F5A6 Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/3ojXaYtiYuy-7iogw6i2G3C6X6I.roa Signing time: Thu 01 Jan 2026 10:17:59 +0000 ROA not before: Thu 01 Jan 2026 10:17:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49505 IP address blocks: 103.101.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.mft rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:70:62:66:90:19:49:44:23:93:ee:39:e4:f5:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b Validity Not Before: Jan 1 10:17:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=de88d7698b6262ecbeee2a20c3a8b61b70ba5fa2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b6:85:b8:d7:19:38:26:e0:57:9f:90:48:26: 05:96:d8:b0:35:4a:cc:51:30:3a:04:45:16:83:2d: 92:af:8d:f7:e2:ce:cb:0c:90:41:d8:26:5b:7d:38: 34:97:ac:93:31:88:ca:e2:d8:16:ae:9c:a5:ba:a6: 8a:e8:72:27:84:32:92:d7:a0:fc:83:61:6d:58:35: ab:75:92:05:75:f8:02:eb:f6:44:11:56:21:46:47: 99:2e:f3:44:ca:06:d4:84:7b:81:90:01:7e:89:59: ce:62:62:5e:ba:b0:4f:14:92:b5:fa:2c:3f:b1:b2: ca:90:e9:f9:70:47:27:fc:49:de:38:28:d7:7b:62: 82:40:ba:e6:b6:01:50:ac:12:c5:64:7d:d7:07:7a: c0:8a:1c:80:bc:f3:bc:c2:6c:64:2f:46:87:99:a8: 69:db:0f:ac:29:06:c1:dc:ae:7b:25:fe:62:27:d5: ce:fa:73:a9:4d:35:93:df:d3:68:cd:d2:fc:5c:f6: dd:73:15:ad:05:d3:e5:39:d3:09:0c:ee:03:a8:91: ef:d4:cf:30:fe:0c:20:ac:4f:69:1a:3a:92:64:15: 9c:35:1f:20:8d:bc:29:ff:67:c9:3d:e4:bf:d0:73: 30:57:c1:c3:84:69:08:73:ef:7b:d7:89:88:a7:f7: 24:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:88:D7:69:8B:62:62:EC:BE:EE:2A:20:C3:A8:B6:1B:70:BA:5F:A2 X509v3 Authority Key Identifier: keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/3ojXaYtiYuy-7iogw6i2G3C6X6I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.101.85.0/24 Signature Algorithm: sha256WithRSAEncryption 68:6c:a2:83:63:91:5e:28:4f:a8:c3:0e:5f:81:a3:5c:89:51: 68:5c:81:b4:41:bf:94:03:d0:46:0f:8a:cf:15:a4:28:69:c2: 8a:18:9a:e5:a7:5a:20:5c:3e:b0:fd:17:77:75:a6:85:e2:bb: a8:27:6f:40:0b:ba:1d:c3:1e:48:66:cc:7a:c0:65:f3:1a:dc: b8:77:1d:94:6e:f4:92:61:c9:85:36:66:e6:9c:35:5e:d4:22: 64:e2:eb:e1:1e:f2:e0:df:35:3d:d5:24:39:88:95:07:8d:6a: ba:e4:80:0a:27:98:17:87:19:7c:42:7b:e2:b5:73:79:ff:2f: ac:5e:17:87:f0:95:f7:6b:a9:c3:7f:5b:e8:7b:7b:30:e7:0f: 0c:c9:9d:b1:75:75:b0:ba:d5:1f:8c:29:94:f2:e5:05:0a:3c: f1:39:5b:3e:7e:0d:44:02:b1:3f:fd:ff:cc:c4:1d:dc:04:6f: c1:7e:7b:f3:9c:b6:f1:1c:37:f1:cd:77:c3:96:aa:9a:dd:68: ab:67:a7:e7:89:f9:6a:b7:44:be:a4:f2:d3:70:d5:8e:5c:ef: 09:32:ed:43:6a:f8:2f:85:bf:4a:c8:53:ea:02:18:ac:bb:8f: e1:e9:8e:46:d0:3e:4b:79:58:3d:ad:e8:c2:00:59:22:fc:46: 1e:0f:e7:a2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EHBiZpAZSUQjk+455PWmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEzMTg4MTczMmEzZTI0NWE5NTliYzY3OWUwNDU4YzM5Zjg5 M2U0NmIwHhcNMjYwMTAxMTAxNzU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZTg4ZDc2OThiNjI2MmVjYmVlZTJhMjBjM2E4YjYxYjcwYmE1ZmEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxraFuNcZOCbgV5+QSCYFltiwNUrM UTA6BEUWgy2Sr4334s7LDJBB2CZbfTg0l6yTMYjK4tgWrpyluqaK6HInhDKS16D8 g2FtWDWrdZIFdfgC6/ZEEVYhRkeZLvNEygbUhHuBkAF+iVnOYmJeurBPFJK1+iw/ sbLKkOn5cEcn/EneOCjXe2KCQLrmtgFQrBLFZH3XB3rAihyAvPO8wmxkL0aHmahp 2w+sKQbB3K57Jf5iJ9XO+nOpTTWT39NozdL8XPbdcxWtBdPlOdMJDO4DqJHv1M8w /gwgrE9pGjqSZBWcNR8gjbwp/2fJPeS/0HMwV8HDhGkIc+9714mIp/ckRwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFN6I12mLYmLsvu4qIMOothtwul+iMB8GA1UdIwQY MBaAFBMYgXMqPiRalZvGeeBFjDn4k+RrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRXhpQmN5by1KRnFWbThaNTRFV01PZmlUNUdzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS84OWYwNzEtNTYzMS00NWRiLWE3ZTUt Y2Q2MTUyMjYxYzZmLzEvM29qWGFZdGlZdXktN2lvZ3c2aTJHM0M2WDZJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS84OWYwNzEtNTYzMS00NWRiLWE3ZTUtY2Q2MTUyMjYxYzZm LzEvRXhpQmN5by1KRnFWbThaNTRFV01PZmlUNUdzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2VVMA0G CSqGSIb3DQEBCwUAA4IBAQBobKKDY5FeKE+oww5fgaNciVFoXIG0Qb+UA9BGD4rP FaQoacKKGJrlp1ogXD6w/Rd3daaF4ruoJ29AC7odwx5IZsx6wGXzGty4dx2UbvSS YcmFNmbmnDVe1CJk4uvhHvLg3zU91SQ5iJUHjWq65IAKJ5gXhxl8QnvitXN5/y+s XheH8JX3a6nDf1voe3sw5w8MyZ2xdXWwutUfjCmU8uUFCjzxOVs+fg1EArE//f/M xB3cBG/BfnvznLbxHDfxzXfDlqqa3WirZ6fniflqt0S+pPLTcNWOXO8JMu1Davgv hb9KyFPqAhisu4/h6Y5G0D5LeVg9rejCAFki/EYeD+ei -----END CERTIFICATE-----Generated at Sun Jan 25 23:49:15 2026 by rpki-client