This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/22581e-fe8c-4fb8-9585-9880f04db94a/1/OUHZPu_PJYtOLDLbLVCMk8yoe-k.roa File: OUHZPu_PJYtOLDLbLVCMk8yoe-k.roa (raw, json) Hash identifier: Ma69Row9f6EcaHWc23EqgBUIT2c3X7xAnz9i9hXJ3nQ= Subject key identifier: 39:41:D9:3E:EF:CF:25:8B:4E:2C:32:DB:2D:50:8C:93:CC:A8:7B:E9 Certificate issuer: /CN=62beaa57c67aeb5bafd99793ab4846850a796c28 Certificate serial: 019B7D5AC248F96C9B2FFECB9F781F94E1E9 Authority key identifier: 62:BE:AA:57:C6:7A:EB:5B:AF:D9:97:93:AB:48:46:85:0A:79:6C:28 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yr6qV8Z661uv2ZeTq0hGhQp5bCg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/22581e-fe8c-4fb8-9585-9880f04db94a/1/OUHZPu_PJYtOLDLbLVCMk8yoe-k.roa Signing time: Fri 02 Jan 2026 06:17:38 +0000 ROA not before: Fri 02 Jan 2026 06:17:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56687 IP address blocks: 2a13:d000::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/22581e-fe8c-4fb8-9585-9880f04db94a/1/Yr6qV8Z661uv2ZeTq0hGhQp5bCg.crl rsync://rpki.ripe.net/repository/DEFAULT/3c/22581e-fe8c-4fb8-9585-9880f04db94a/1/Yr6qV8Z661uv2ZeTq0hGhQp5bCg.mft rsync://rpki.ripe.net/repository/DEFAULT/Yr6qV8Z661uv2ZeTq0hGhQp5bCg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 21:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5a:c2:48:f9:6c:9b:2f:fe:cb:9f:78:1f:94:e1:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62beaa57c67aeb5bafd99793ab4846850a796c28 Validity Not Before: Jan 2 06:17:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3941d93eefcf258b4e2c32db2d508c93cca87be9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e6:a4:0d:85:49:13:08:f2:0d:a2:1d:56:0c: 86:16:03:a7:17:fd:cc:e1:d3:08:fa:d7:09:fc:1f: 0e:0f:0f:c9:df:22:3f:9b:e8:24:d1:d8:70:ce:61: 3c:78:99:24:6d:e1:41:d5:60:40:98:12:4a:8c:2e: 04:77:0d:dd:1c:fd:47:1a:41:71:b5:57:59:7b:7d: 2a:ba:f0:46:d9:7b:6c:9b:a7:43:2e:23:15:58:9c: db:c8:3b:b4:98:9d:97:0b:1d:95:23:48:71:ff:8e: 65:39:04:d9:57:bf:07:a5:4d:2e:3b:10:b2:6e:db: 06:d1:40:53:42:1e:f5:21:ec:7a:f4:8f:f0:7b:b0: 1a:c8:b3:a9:92:66:1e:03:0d:5d:46:da:06:ef:60: 0a:78:2b:a3:dd:2f:3c:68:ba:66:23:ee:26:12:25: 04:b5:32:5b:9b:1f:a1:b9:b9:2b:74:50:c6:bc:58: c8:46:4d:cc:50:da:27:de:08:3d:40:0b:4e:da:b1: cc:9a:32:98:ed:fc:e4:30:6a:e3:3b:8b:e7:65:cf: cd:77:e5:a0:41:37:da:0b:89:fc:52:ca:e4:11:f3: f9:f3:16:2e:e9:27:84:83:31:ee:ea:83:76:d7:ef: 72:b2:c8:9b:af:44:0c:07:4b:22:ac:cd:f7:8c:c0: e4:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:41:D9:3E:EF:CF:25:8B:4E:2C:32:DB:2D:50:8C:93:CC:A8:7B:E9 X509v3 Authority Key Identifier: keyid:62:BE:AA:57:C6:7A:EB:5B:AF:D9:97:93:AB:48:46:85:0A:79:6C:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yr6qV8Z661uv2ZeTq0hGhQp5bCg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/22581e-fe8c-4fb8-9585-9880f04db94a/1/OUHZPu_PJYtOLDLbLVCMk8yoe-k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/22581e-fe8c-4fb8-9585-9880f04db94a/1/Yr6qV8Z661uv2ZeTq0hGhQp5bCg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a13:d000::/29 Signature Algorithm: sha256WithRSAEncryption 21:b2:9d:48:89:e9:e5:d0:01:8e:2c:af:9d:c2:62:e2:57:d7: 52:f6:f2:40:8f:5c:6e:c4:ea:5b:e0:31:de:e6:68:15:12:42: b6:ee:39:59:2f:ab:a7:c6:75:cd:0c:35:c3:92:aa:6c:7d:0c: a4:fa:49:b1:6e:1e:26:7d:61:24:52:39:df:02:62:b1:b6:90: 37:20:e4:d3:bb:0d:ed:28:17:bb:29:a6:94:60:8c:bc:7f:5f: a4:ef:ab:98:ab:ac:6c:40:c7:2e:8b:26:8b:fd:af:89:93:26: e7:9a:27:14:c9:fb:60:ba:fa:aa:1f:eb:71:8e:89:ec:89:04: 06:1e:b1:3d:7a:23:2c:af:eb:48:32:f3:12:fc:d4:4f:6f:5d: 05:1d:43:62:0a:f5:78:5d:a7:70:3e:6f:88:d5:3c:9d:09:ef: 59:2c:2a:af:17:38:9d:18:ae:08:19:cd:9c:f2:fa:52:66:3d: 18:06:3d:42:4d:b8:05:cd:8a:07:ff:a4:5b:97:28:c7:3d:e3: 9f:2d:38:a5:ab:c3:25:59:50:94:40:03:f8:0a:65:2e:fe:d7: ca:4b:7a:bc:fd:90:93:59:29:eb:92:43:6f:3d:40:d5:b4:ef: ac:81:e5:1b:a7:bc:c4:49:fc:f6:90:02:4e:c8:4b:68:12:4c: e6:a6:d6:44 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt9WsJI+WybL/7Ln3gflOHpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyYmVhYTU3YzY3YWViNWJhZmQ5OTc5M2FiNDg0Njg1MGE3 OTZjMjgwHhcNMjYwMTAyMDYxNzM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzOTQxZDkzZWVmY2YyNThiNGUyYzMyZGIyZDUwOGM5M2NjYTg3YmU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAreakDYVJEwjyDaIdVgyGFgOnF/3M 4dMI+tcJ/B8ODw/J3yI/m+gk0dhwzmE8eJkkbeFB1WBAmBJKjC4Edw3dHP1HGkFx tVdZe30quvBG2Xtsm6dDLiMVWJzbyDu0mJ2XCx2VI0hx/45lOQTZV78HpU0uOxCy btsG0UBTQh71Iex69I/we7AayLOpkmYeAw1dRtoG72AKeCuj3S88aLpmI+4mEiUE tTJbmx+hubkrdFDGvFjIRk3MUNon3gg9QAtO2rHMmjKY7fzkMGrjO4vnZc/Nd+Wg QTfaC4n8UsrkEfP58xYu6SeEgzHu6oN21+9yssibr0QMB0sirM33jMDk8wIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFDlB2T7vzyWLTiwy2y1QjJPMqHvpMB8GA1UdIwQY MBaAFGK+qlfGeutbr9mXk6tIRoUKeWwoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWXI2cVY4WjY2MXV2MlplVHEwaEdoUXA1YkNnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy8yMjU4MWUtZmU4Yy00ZmI4LTk1ODUt OTg4MGYwNGRiOTRhLzEvT1VIWlB1X1BKWXRPTERMYkxWQ01rOHlvZS1rLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYy8yMjU4MWUtZmU4Yy00ZmI4LTk1ODUtOTg4MGYwNGRiOTRh LzEvWXI2cVY4WjY2MXV2MlplVHEwaEdoUXA1YkNnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhPQADAN BgkqhkiG9w0BAQsFAAOCAQEAIbKdSInp5dABjiyvncJi4lfXUvbyQI9cbsTqW+Ax 3uZoFRJCtu45WS+rp8Z1zQw1w5KqbH0MpPpJsW4eJn1hJFI53wJisbaQNyDk07sN 7SgXuymmlGCMvH9fpO+rmKusbEDHLosmi/2viZMm55onFMn7YLr6qh/rcY6J7IkE Bh6xPXojLK/rSDLzEvzUT29dBR1DYgr1eF2ncD5viNU8nQnvWSwqrxc4nRiuCBnN nPL6UmY9GAY9Qk24Bc2KB/+kW5coxz3jny04pavDJVlQlEAD+AplLv7Xykt6vP2Q k1kp65JDbz1A1bTvrIHlG6e8xEn89pACTshLaBJM5qbWRA== -----END CERTIFICATE-----Generated at Mon Jan 26 05:03:11 2026 by rpki-client