This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/OeSFxPx28HOZ5SP5OFGE4eN9Dkw.roa File: OeSFxPx28HOZ5SP5OFGE4eN9Dkw.roa (raw, json) Hash identifier: IUd/UJp2vz5KGesc4FkG7eW+Uztewk/WazlNqWRZVZg= Subject key identifier: 39:E4:85:C4:FC:76:F0:73:99:E5:23:F9:38:51:84:E1:E3:7D:0E:4C Certificate issuer: /CN=04cbe5b4623dab42f15a905002db7ce62e854f29 Certificate serial: 019B78A318395FD6C5455864E06B7CBEE775 Authority key identifier: 04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/OeSFxPx28HOZ5SP5OFGE4eN9Dkw.roa Signing time: Thu 01 Jan 2026 08:18:32 +0000 ROA not before: Thu 01 Jan 2026 08:18:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201443 IP address blocks: 37.202.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/BMvltGI9q0LxWpBQAtt85i6FTyk.crl rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/BMvltGI9q0LxWpBQAtt85i6FTyk.mft rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:18:39:5f:d6:c5:45:58:64:e0:6b:7c:be:e7:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04cbe5b4623dab42f15a905002db7ce62e854f29 Validity Not Before: Jan 1 08:18:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=39e485c4fc76f07399e523f9385184e1e37d0e4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:38:c1:70:09:68:f2:70:b4:ee:4c:9f:dd:bc: ea:f6:28:b0:33:57:88:26:44:f0:64:17:84:d8:e8: b9:76:d9:ca:df:32:47:c9:62:84:e6:e3:bd:6e:ef: 9a:e4:c9:82:1d:21:bd:8a:20:1e:6c:a6:19:b5:64: 06:7c:03:9c:06:7e:57:90:24:1e:6b:60:59:cc:fa: 28:e6:86:29:c6:f4:15:49:79:cc:d4:c7:6d:99:d8: cd:47:11:30:58:69:47:4d:9a:66:b2:4a:5d:7b:5f: 08:2c:b3:27:dd:4c:38:61:15:b2:bb:d9:67:b5:3d: 1e:2b:ce:b2:71:c6:51:7d:03:35:61:db:fb:c0:6e: c2:76:ee:ee:59:7f:b1:de:0b:cc:38:ef:4d:44:38: 5f:76:9e:b3:d7:20:75:1c:ee:8d:a2:08:d2:d0:f8: 38:e7:b8:b9:72:2e:b0:1a:8b:84:cd:a0:eb:00:4a: c8:a9:66:48:8a:42:26:34:10:67:ec:d6:65:cd:72: a8:3a:6a:5a:a9:1c:a5:c4:68:e6:5e:10:d1:23:74: 3d:01:c2:2e:03:93:5f:5b:52:1d:3e:af:0e:e9:3c: f9:9d:bb:18:fc:7a:4c:af:ba:94:fb:e4:d8:cb:94: f2:c0:8d:80:cd:ac:27:b8:f2:c2:9e:17:9b:36:9e: 1f:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:E4:85:C4:FC:76:F0:73:99:E5:23:F9:38:51:84:E1:E3:7D:0E:4C X509v3 Authority Key Identifier: keyid:04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/OeSFxPx28HOZ5SP5OFGE4eN9Dkw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/BMvltGI9q0LxWpBQAtt85i6FTyk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.202.14.0/24 Signature Algorithm: sha256WithRSAEncryption 87:89:7d:f6:f6:e8:44:e3:ad:e8:ae:46:06:ba:b0:be:ba:4b: 8b:1d:e6:d8:b6:8f:ad:a7:c1:bc:22:aa:fe:59:90:31:96:49: 19:85:3a:97:ec:87:f1:ea:26:f6:be:8c:6c:78:c4:e1:42:45: ce:6e:9d:d7:7d:0e:d2:8a:77:2e:8d:6c:a2:80:3f:d9:72:b7: 96:a0:29:c5:9e:cc:eb:f7:44:a9:82:7f:a4:a8:20:a5:bc:3d: b8:de:9b:3d:c6:fc:55:3a:aa:69:21:2b:cb:ec:d8:dd:00:9a: b0:a7:3d:24:41:84:79:f6:6c:95:b2:cd:07:29:04:e2:cd:94: 13:c0:88:ad:7e:ea:fe:0e:82:1a:ea:04:f4:6d:96:0c:94:97: bc:9b:2c:a9:59:96:b1:ed:11:06:19:bc:38:de:1d:52:83:40: 49:13:8d:92:89:a0:ce:df:88:39:f7:08:15:fb:6b:a3:f7:47: 51:5a:d6:55:48:3c:5a:d0:fc:71:d6:d7:29:eb:84:f7:db:5e: 5c:27:1f:31:6c:b5:c6:c6:9c:da:91:dd:34:0b:99:f7:71:de: da:fe:ca:86:1b:8b:0a:31:78:36:a1:71:cd:00:48:9a:6d:e0: c6:74:ab:25:0d:4a:df:ff:96:e5:5f:e3:d0:1e:e7:3c:1a:f3: 4d:28:f0:ee -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4oxg5X9bFRVhk4Gt8vud1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA0Y2JlNWI0NjIzZGFiNDJmMTVhOTA1MDAyZGI3Y2U2MmU4 NTRmMjkwHhcNMjYwMTAxMDgxODMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzOWU0ODVjNGZjNzZmMDczOTllNTIzZjkzODUxODRlMWUzN2QwZTRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2jjBcAlo8nC07kyf3bzq9iiwM1eI JkTwZBeE2Oi5dtnK3zJHyWKE5uO9bu+a5MmCHSG9iiAebKYZtWQGfAOcBn5XkCQe a2BZzPoo5oYpxvQVSXnM1MdtmdjNRxEwWGlHTZpmskpde18ILLMn3Uw4YRWyu9ln tT0eK86yccZRfQM1Ydv7wG7Cdu7uWX+x3gvMOO9NRDhfdp6z1yB1HO6NogjS0Pg4 57i5ci6wGouEzaDrAErIqWZIikImNBBn7NZlzXKoOmpaqRylxGjmXhDRI3Q9AcIu A5NfW1IdPq8O6Tz5nbsY/HpMr7qU++TYy5TywI2AzawnuPLCnhebNp4fTQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDnkhcT8dvBzmeUj+ThRhOHjfQ5MMB8GA1UdIwQY MBaAFATL5bRiPatC8VqQUALbfOYuhU8pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQk12bHRHSTlxMEx4V3BCUUF0dDg1aTZGVHlrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS8zZDNhMmQtYTAzOS00NmY0LTg2ODct MDU3ODE3YmE5ZmI3LzEvT2VTRnhQeDI4SE9aNVNQNU9GR0U0ZU45RGt3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS8zZDNhMmQtYTAzOS00NmY0LTg2ODctMDU3ODE3YmE5ZmI3 LzEvQk12bHRHSTlxMEx4V3BCUUF0dDg1aTZGVHlrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJcoOMA0G CSqGSIb3DQEBCwUAA4IBAQCHiX329uhE463orkYGurC+ukuLHebYto+tp8G8Iqr+ WZAxlkkZhTqX7Ifx6ib2voxseMThQkXObp3XfQ7SincujWyigD/ZcreWoCnFnszr 90Spgn+kqCClvD243ps9xvxVOqppISvL7NjdAJqwpz0kQYR59myVss0HKQTizZQT wIitfur+DoIa6gT0bZYMlJe8myypWZax7REGGbw43h1Sg0BJE42SiaDO34g59wgV +2uj90dRWtZVSDxa0Pxx1tcp64T3215cJx8xbLXGxpzakd00C5n3cd7a/sqGG4sK MXg2oXHNAEiabeDGdKslDUrf/5blX+PQHuc8GvNNKPDu -----END CERTIFICATE-----Generated at Sun Jan 25 17:40:34 2026 by rpki-client