This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2acb8f-222f-4473-9205-1390a2d99e0b/1/oMePamcSuXSxfmF39ynMXweabv4.roa File: oMePamcSuXSxfmF39ynMXweabv4.roa (raw, json) Hash identifier: rGoYrQCZs2IM8glBNFHp5PUVvbo0qB19ajmf0wK0f8w= Subject key identifier: A0:C7:8F:6A:67:12:B9:74:B1:7E:61:77:F7:29:CC:5F:07:9A:6E:FE Certificate issuer: /CN=4f73b056f8d0fa996d6833c30b1fd78e7d979ac4 Certificate serial: 019B79ECA881A46F27E8845DF55E966BEC43 Authority key identifier: 4F:73:B0:56:F8:D0:FA:99:6D:68:33:C3:0B:1F:D7:8E:7D:97:9A:C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T3OwVvjQ-pltaDPDCx_Xjn2XmsQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2acb8f-222f-4473-9205-1390a2d99e0b/1/oMePamcSuXSxfmF39ynMXweabv4.roa Signing time: Thu 01 Jan 2026 14:18:31 +0000 ROA not before: Thu 01 Jan 2026 14:18:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1836 IP address blocks: 185.231.104.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2acb8f-222f-4473-9205-1390a2d99e0b/1/T3OwVvjQ-pltaDPDCx_Xjn2XmsQ.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/2acb8f-222f-4473-9205-1390a2d99e0b/1/T3OwVvjQ-pltaDPDCx_Xjn2XmsQ.mft rsync://rpki.ripe.net/repository/DEFAULT/T3OwVvjQ-pltaDPDCx_Xjn2XmsQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:a8:81:a4:6f:27:e8:84:5d:f5:5e:96:6b:ec:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f73b056f8d0fa996d6833c30b1fd78e7d979ac4 Validity Not Before: Jan 1 14:18:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a0c78f6a6712b974b17e6177f729cc5f079a6efe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:97:9e:b7:a6:00:7f:c8:57:32:e7:c9:a8:7e: b3:97:48:5a:9a:3b:4e:d1:2e:48:32:09:8c:cf:75: 6d:f0:68:82:5a:4c:c9:3d:b8:3f:72:07:29:ae:de: 16:fb:16:a4:26:b6:16:f9:96:1d:8c:7f:b6:95:e3: 1a:28:36:bd:dd:2e:e5:4a:c9:7b:bb:4e:1e:da:88: 6e:e6:97:43:bb:8c:ec:d1:08:a7:43:dc:d5:9b:79: 26:e4:90:0a:b5:1a:51:f6:1b:66:a7:1c:9d:99:c1: 6b:72:c1:9d:8d:21:2c:4d:62:2b:98:5b:9d:72:fb: 19:d1:6d:1d:4c:86:96:9d:63:7c:4f:9b:72:e9:01: f9:91:36:1d:d6:33:4f:20:f9:49:f7:fa:5b:f3:19: 77:fa:bd:8d:87:24:ca:b2:69:d4:7b:76:3d:86:ce: b2:fb:a2:8b:ee:a6:e4:c2:49:5e:78:71:51:80:0b: 21:bf:6c:39:30:14:09:e3:0b:80:3a:63:3a:50:d1: 92:57:17:3c:ae:63:85:d8:b1:b1:20:2d:d9:98:c6: f1:d9:e7:3e:07:48:2d:aa:eb:f2:f9:d4:04:14:ba: 96:71:14:cd:94:63:bc:f2:de:1d:b7:52:b0:5e:9b: 3b:e5:21:d8:c0:c5:6d:ec:bb:97:54:58:2a:97:1e: 01:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:C7:8F:6A:67:12:B9:74:B1:7E:61:77:F7:29:CC:5F:07:9A:6E:FE X509v3 Authority Key Identifier: keyid:4F:73:B0:56:F8:D0:FA:99:6D:68:33:C3:0B:1F:D7:8E:7D:97:9A:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T3OwVvjQ-pltaDPDCx_Xjn2XmsQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2acb8f-222f-4473-9205-1390a2d99e0b/1/oMePamcSuXSxfmF39ynMXweabv4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2acb8f-222f-4473-9205-1390a2d99e0b/1/T3OwVvjQ-pltaDPDCx_Xjn2XmsQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.231.104.0/22 Signature Algorithm: sha256WithRSAEncryption 0b:fa:f8:fd:a9:10:d9:6e:6f:92:59:8f:32:a1:31:cb:df:a0: ea:11:a7:12:de:c6:ab:46:0b:1e:1a:40:0c:b2:8f:ab:73:e1: 3e:d4:5e:51:07:a7:63:73:89:46:1b:55:29:8c:44:06:6c:c9: 69:da:cf:43:a5:5e:e6:36:ff:a2:88:ff:f6:f6:9f:30:88:27: 3a:f6:1f:c8:fe:72:b8:fa:f0:de:9c:e7:d8:40:d5:de:06:6f: b1:62:13:8d:e2:5a:21:e6:39:b4:ea:3b:f7:4d:59:f7:a2:b3: 03:27:fd:e8:7e:de:97:7e:1e:21:18:89:0a:07:9c:34:cd:a6: 67:f2:dd:d1:49:c1:16:0c:a4:e4:88:d4:74:80:d5:f9:ca:3b: 7f:3f:e0:95:8d:b5:28:e9:bb:9d:ac:62:e5:96:6f:0c:2e:73: 17:89:b6:20:7c:a0:f1:ed:b9:ef:3e:0f:da:b5:cc:cf:8e:a3: 42:19:b4:1c:a9:69:a1:1a:17:6e:c6:b2:cc:71:8d:2c:ce:91: 3d:6b:ee:4f:51:9f:e5:5d:9d:67:99:11:6a:b8:34:4a:32:e6: c2:6a:56:12:dd:e4:d0:03:38:b2:81:a3:83:16:c7:4d:29:53: 3f:69:db:03:96:58:d4:e6:08:a9:22:b8:f3:c5:0a:10:57:22: 5c:a0:e7:37 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57KiBpG8n6IRd9V6Wa+xDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmNzNiMDU2ZjhkMGZhOTk2ZDY4MzNjMzBiMWZkNzhlN2Q5 NzlhYzQwHhcNMjYwMTAxMTQxODMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMGM3OGY2YTY3MTJiOTc0YjE3ZTYxNzdmNzI5Y2M1ZjA3OWE2ZWZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Jeet6YAf8hXMufJqH6zl0hamjtO 0S5IMgmMz3Vt8GiCWkzJPbg/cgcprt4W+xakJrYW+ZYdjH+2leMaKDa93S7lSsl7 u04e2ohu5pdDu4zs0QinQ9zVm3km5JAKtRpR9htmpxydmcFrcsGdjSEsTWIrmFud cvsZ0W0dTIaWnWN8T5ty6QH5kTYd1jNPIPlJ9/pb8xl3+r2NhyTKsmnUe3Y9hs6y +6KL7qbkwkleeHFRgAshv2w5MBQJ4wuAOmM6UNGSVxc8rmOF2LGxIC3ZmMbx2ec+ B0gtquvy+dQEFLqWcRTNlGO88t4dt1KwXps75SHYwMVt7LuXVFgqlx4BcQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKDHj2pnErl0sX5hd/cpzF8Hmm7+MB8GA1UdIwQY MBaAFE9zsFb40PqZbWgzwwsf1459l5rEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVDNPd1Z2alEtcGx0YURQREN4X1hqbjJYbXNRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi8yYWNiOGYtMjIyZi00NDczLTkyMDUt MTM5MGEyZDk5ZTBiLzEvb01lUGFtY1N1WFN4Zm1GMzl5bk1Yd2VhYnY0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi8yYWNiOGYtMjIyZi00NDczLTkyMDUtMTM5MGEyZDk5ZTBi LzEvVDNPd1Z2alEtcGx0YURQREN4X1hqbjJYbXNRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuedoMA0G CSqGSIb3DQEBCwUAA4IBAQAL+vj9qRDZbm+SWY8yoTHL36DqEacS3sarRgseGkAM so+rc+E+1F5RB6djc4lGG1UpjEQGbMlp2s9DpV7mNv+iiP/29p8wiCc69h/I/nK4 +vDenOfYQNXeBm+xYhON4loh5jm06jv3TVn3orMDJ/3oft6Xfh4hGIkKB5w0zaZn 8t3RScEWDKTkiNR0gNX5yjt/P+CVjbUo6budrGLllm8MLnMXibYgfKDx7bnvPg/a tczPjqNCGbQcqWmhGhduxrLMcY0szpE9a+5PUZ/lXZ1nmRFquDRKMubCalYS3eTQ AziygaODFsdNKVM/adsDlljU5gipIrjzxQoQVyJcoOc3 -----END CERTIFICATE-----Generated at Mon Jan 26 11:04:52 2026 by rpki-client