This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/470cda-d0ec-4323-ae9b-994af5c34402/1/oRx6EJhqzaqgG0amciWL3M5KR-E.roa File: oRx6EJhqzaqgG0amciWL3M5KR-E.roa (raw, json) Hash identifier: OiolxTV+7ThPd+hCMKxyTyX6crUMp94Obmmo4AolkqE= Subject key identifier: A1:1C:7A:10:98:6A:CD:AA:A0:1B:46:A6:72:25:8B:DC:CE:4A:47:E1 Certificate issuer: /CN=b930da21518184145f6d7621b5a13bd54035ac83 Certificate serial: 019B7834D90F90E314947731592891CCE089 Authority key identifier: B9:30:DA:21:51:81:84:14:5F:6D:76:21:B5:A1:3B:D5:40:35:AC:83 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uTDaIVGBhBRfbXYhtaE71UA1rIM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/470cda-d0ec-4323-ae9b-994af5c34402/1/oRx6EJhqzaqgG0amciWL3M5KR-E.roa Signing time: Thu 01 Jan 2026 06:18:07 +0000 ROA not before: Thu 01 Jan 2026 06:18:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202876 IP address blocks: 185.152.28.0/22 maxlen: 22 2a07:7d40::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/470cda-d0ec-4323-ae9b-994af5c34402/1/uTDaIVGBhBRfbXYhtaE71UA1rIM.crl rsync://rpki.ripe.net/repository/DEFAULT/34/470cda-d0ec-4323-ae9b-994af5c34402/1/uTDaIVGBhBRfbXYhtaE71UA1rIM.mft rsync://rpki.ripe.net/repository/DEFAULT/uTDaIVGBhBRfbXYhtaE71UA1rIM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:d9:0f:90:e3:14:94:77:31:59:28:91:cc:e0:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b930da21518184145f6d7621b5a13bd54035ac83 Validity Not Before: Jan 1 06:18:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a11c7a10986acdaaa01b46a672258bdcce4a47e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:04:d7:96:3c:1b:9a:2e:33:65:9a:8b:1d:1a: 27:89:98:92:4c:8a:8a:1e:b3:a1:29:8f:d4:c1:fe: 7d:5c:ff:c5:7f:3c:9c:bf:40:08:f2:3b:62:cb:1d: 33:e3:6b:6a:8f:d5:2d:b6:91:43:cb:19:7a:c4:c5: c8:81:a2:2f:2f:6c:db:04:69:b8:3a:86:15:8e:91: ab:2f:6d:bb:14:f3:a0:0b:43:61:5b:3a:bc:04:ce: 17:a7:32:a8:77:16:9a:29:fa:7e:82:10:ad:4b:21: 4d:db:0a:b6:83:fe:24:8a:ee:72:bd:9e:77:de:14: 2a:98:ba:93:75:2a:20:af:67:6e:94:5b:c1:f7:d1: fb:e5:3d:5f:5f:f4:28:22:d8:5c:e9:f8:9b:7c:6a: 74:17:2c:ca:f0:a8:95:cf:db:9e:9c:c7:59:8f:af: 33:11:b7:b0:34:c2:7f:94:9c:a3:72:2e:75:25:9d: 10:6e:0b:fb:c4:69:c7:49:54:5e:2f:72:f2:fe:1c: 6d:87:77:c8:69:36:fd:8d:1b:18:97:db:2c:0c:ba: 6b:82:a5:b8:bc:73:f2:07:85:d6:e0:be:c5:6d:ad: 49:2e:68:6c:b1:b2:be:43:b2:42:ae:7e:9f:fb:74: 6e:f8:ee:a7:6f:fd:fb:59:a8:86:75:d8:fa:fa:69: ca:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:1C:7A:10:98:6A:CD:AA:A0:1B:46:A6:72:25:8B:DC:CE:4A:47:E1 X509v3 Authority Key Identifier: keyid:B9:30:DA:21:51:81:84:14:5F:6D:76:21:B5:A1:3B:D5:40:35:AC:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uTDaIVGBhBRfbXYhtaE71UA1rIM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/470cda-d0ec-4323-ae9b-994af5c34402/1/oRx6EJhqzaqgG0amciWL3M5KR-E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/470cda-d0ec-4323-ae9b-994af5c34402/1/uTDaIVGBhBRfbXYhtaE71UA1rIM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.152.28.0/22 IPv6: 2a07:7d40::/29 Signature Algorithm: sha256WithRSAEncryption 4c:d5:01:bb:9b:cf:30:40:c2:ce:d8:ae:56:ee:1e:45:6e:7d: 22:44:6a:75:99:6b:d9:2b:b7:4e:cf:9b:6e:59:70:d4:6a:6a: b5:7c:db:a6:ef:f4:5e:e9:e0:58:41:2a:5c:d1:ec:d7:66:6d: 26:c6:19:b1:71:ca:a4:39:b5:6a:95:d3:ed:d4:ef:de:aa:b1: 63:b7:da:1b:82:4f:31:95:69:ff:fb:80:af:c3:d2:07:d8:65: c9:82:2b:4c:ff:47:3b:9d:4c:9b:2a:49:11:0c:28:73:9a:99: 03:2a:31:7e:19:94:4f:18:d3:9e:ff:c2:4d:d0:83:b3:db:b8: 00:1a:77:ae:3e:43:9f:80:c5:74:89:f1:69:c1:25:ce:14:21: 82:46:30:73:47:32:b6:e7:46:bc:b6:54:f3:b7:eb:ec:dd:38: fb:02:70:da:12:a9:4c:65:e1:e8:11:29:ee:dd:bb:e6:ac:fe: e0:ba:da:04:3f:90:55:ac:1a:1d:a1:f1:3d:04:d5:7d:61:8d: 40:c6:4f:0b:63:e5:07:95:c4:34:6e:dc:59:e6:05:d2:76:13: 77:ca:1c:fe:6b:67:16:e4:63:d6:be:b9:e8:d6:45:e3:cf:d2: 2f:6f:f1:a9:27:98:eb:f2:b0:a3:07:20:7e:eb:3a:77:c1:6b: bc:ea:c1:e8 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4NNkPkOMUlHcxWSiRzOCJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5MzBkYTIxNTE4MTg0MTQ1ZjZkNzYyMWI1YTEzYmQ1NDAz NWFjODMwHhcNMjYwMTAxMDYxODA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMTFjN2ExMDk4NmFjZGFhYTAxYjQ2YTY3MjI1OGJkY2NlNGE0N2UxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuwTXljwbmi4zZZqLHRoniZiSTIqK HrOhKY/Uwf59XP/Ffzycv0AI8jtiyx0z42tqj9UttpFDyxl6xMXIgaIvL2zbBGm4 OoYVjpGrL227FPOgC0NhWzq8BM4XpzKodxaaKfp+ghCtSyFN2wq2g/4kiu5yvZ53 3hQqmLqTdSogr2dulFvB99H75T1fX/QoIthc6fibfGp0FyzK8KiVz9uenMdZj68z EbewNMJ/lJyjci51JZ0Qbgv7xGnHSVReL3Ly/hxth3fIaTb9jRsYl9ssDLprgqW4 vHPyB4XW4L7Fba1JLmhssbK+Q7JCrn6f+3Ru+O6nb/37WaiGddj6+mnKYQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFKEcehCYas2qoBtGpnIli9zOSkfhMB8GA1UdIwQY MBaAFLkw2iFRgYQUX212IbWhO9VANayDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdVREYUlWR0JoQlJmYlhZaHRhRTcxVUExcklNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC80NzBjZGEtZDBlYy00MzIzLWFlOWIt OTk0YWY1YzM0NDAyLzEvb1J4NkVKaHF6YXFnRzBhbWNpV0wzTTVLUi1FLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC80NzBjZGEtZDBlYy00MzIzLWFlOWItOTk0YWY1YzM0NDAy LzEvdVREYUlWR0JoQlJmYlhZaHRhRTcxVUExcklNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuZgcMA0E AgACMAcDBQMqB31AMA0GCSqGSIb3DQEBCwUAA4IBAQBM1QG7m88wQMLO2K5W7h5F bn0iRGp1mWvZK7dOz5tuWXDUamq1fNum7/Re6eBYQSpc0ezXZm0mxhmxccqkObVq ldPt1O/eqrFjt9obgk8xlWn/+4Cvw9IH2GXJgitM/0c7nUybKkkRDChzmpkDKjF+ GZRPGNOe/8JN0IOz27gAGneuPkOfgMV0ifFpwSXOFCGCRjBzRzK250a8tlTzt+vs 3Tj7AnDaEqlMZeHoESnu3bvmrP7gutoEP5BVrBodofE9BNV9YY1Axk8LY+UHlcQ0 btxZ5gXSdhN3yhz+a2cW5GPWvrno1kXjz9Ivb/GpJ5jr8rCjByB+6zp3wWu86sHo -----END CERTIFICATE-----Generated at Mon Jan 26 21:06:19 2026 by rpki-client