This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/9ca446-fc5c-4746-b26f-30ce83701b39/1/OCCamzGIjYqKmyPB5gU68V84jtk.roa File: OCCamzGIjYqKmyPB5gU68V84jtk.roa (raw, json) Hash identifier: Mv9Gt7kM3WySy+Jw5Lw06u8sR2Gfffm0Uge0ysYX5gw= Subject key identifier: 38:20:9A:9B:31:88:8D:8A:8A:9B:23:C1:E6:05:3A:F1:5F:38:8E:D9 Certificate issuer: /CN=3433ae1c60672c7591a8f97d68f79fb2a5ee8da7 Certificate serial: 019B783491050EDC46CAB2F31B8273F3BAC9 Authority key identifier: 34:33:AE:1C:60:67:2C:75:91:A8:F9:7D:68:F7:9F:B2:A5:EE:8D:A7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NDOuHGBnLHWRqPl9aPefsqXujac.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/9ca446-fc5c-4746-b26f-30ce83701b39/1/OCCamzGIjYqKmyPB5gU68V84jtk.roa Signing time: Thu 01 Jan 2026 06:17:49 +0000 ROA not before: Thu 01 Jan 2026 06:17:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213896 IP address blocks: 185.191.116.0/22 maxlen: 32 2a02:ae00:3000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/9ca446-fc5c-4746-b26f-30ce83701b39/1/NDOuHGBnLHWRqPl9aPefsqXujac.crl rsync://rpki.ripe.net/repository/DEFAULT/43/9ca446-fc5c-4746-b26f-30ce83701b39/1/NDOuHGBnLHWRqPl9aPefsqXujac.mft rsync://rpki.ripe.net/repository/DEFAULT/NDOuHGBnLHWRqPl9aPefsqXujac.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:91:05:0e:dc:46:ca:b2:f3:1b:82:73:f3:ba:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3433ae1c60672c7591a8f97d68f79fb2a5ee8da7 Validity Not Before: Jan 1 06:17:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=38209a9b31888d8a8a9b23c1e6053af15f388ed9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:67:18:b2:dc:5e:e5:87:21:69:10:bf:fb:a8: 83:cd:1d:33:7b:75:a6:3d:8d:65:3a:a3:89:8a:10: 81:c3:af:8b:d8:c5:9d:e0:00:b8:68:5f:8d:f0:a4: f4:6d:95:0e:f9:36:a7:de:15:93:3a:92:d7:f0:cb: fc:dd:79:7a:b0:b1:ff:ff:8a:3e:a9:29:0f:da:4b: ea:9f:e6:44:77:9a:12:c8:93:9f:80:e6:98:fc:dc: bf:bd:6c:70:fc:b6:79:bf:1d:a4:b7:d7:05:ed:e6: 3c:39:75:64:28:d9:26:3d:5d:2e:1b:62:a7:eb:f9: 47:be:38:cc:05:90:ef:b4:25:1b:09:ac:87:f1:eb: f7:24:93:7b:0e:6f:43:8f:98:0f:8c:9a:e8:c6:d0: cd:3f:bb:bf:82:7b:e4:a7:05:ae:e2:de:d9:c2:f9: db:3a:03:6c:a6:be:97:23:7b:0d:c2:cc:07:d0:5f: fb:2d:75:17:0f:5a:d9:6b:7d:8c:b3:35:71:67:c7: f9:93:42:f5:af:cb:7e:22:49:34:5f:e1:c5:3d:8b: 9d:dc:fa:cd:f5:b2:96:0b:47:f1:2a:3d:af:6d:a6: d9:59:d7:67:fe:4d:3f:33:18:cb:d1:0b:c3:22:94: e8:91:4d:91:55:08:c7:91:61:82:53:06:47:29:d7: 7d:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:20:9A:9B:31:88:8D:8A:8A:9B:23:C1:E6:05:3A:F1:5F:38:8E:D9 X509v3 Authority Key Identifier: keyid:34:33:AE:1C:60:67:2C:75:91:A8:F9:7D:68:F7:9F:B2:A5:EE:8D:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NDOuHGBnLHWRqPl9aPefsqXujac.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/9ca446-fc5c-4746-b26f-30ce83701b39/1/OCCamzGIjYqKmyPB5gU68V84jtk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/9ca446-fc5c-4746-b26f-30ce83701b39/1/NDOuHGBnLHWRqPl9aPefsqXujac.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.191.116.0/22 IPv6: 2a02:ae00:3000::/36 Signature Algorithm: sha256WithRSAEncryption d7:a7:e7:b4:df:68:5e:37:6a:7b:d4:76:50:27:55:b5:a3:f0: 85:f2:b4:45:b0:48:b2:c8:17:68:b2:b6:e9:cc:e8:10:0c:88: 79:0f:f1:81:ed:09:a8:35:c9:1a:e3:61:3d:e0:0e:06:c1:41: 51:2c:dc:f6:af:9f:94:cb:eb:98:b5:8f:d8:b8:86:a8:ea:5b: 99:42:f6:66:bd:62:7e:e1:3b:d9:bb:d2:c1:c0:ee:57:17:af: 69:ee:4b:cc:a8:8b:fe:b6:84:2f:3f:a7:f1:70:39:72:de:a2: a2:08:18:c3:98:ab:bc:c4:22:5d:4d:d8:e9:dc:7d:32:b6:00: f2:0c:8a:85:22:5f:e1:f2:21:0a:23:48:2e:bd:b2:1d:2f:0e: 36:cd:c2:b3:df:22:86:b7:d1:f0:54:dd:5c:59:96:62:39:09: b1:77:c0:53:50:48:2e:f7:9f:c0:ee:9d:45:a7:a7:b2:ac:a3: be:ef:6f:ee:9c:57:f9:91:e9:21:da:e3:78:4d:35:17:18:77: e2:19:fc:6d:e9:0a:1b:fe:66:fc:bf:17:f6:67:68:3e:62:d0: e7:04:ce:c4:5a:c2:86:51:4e:28:21:6c:61:88:76:a9:20:d7: 82:35:f3:be:5f:51:2e:1c:cf:7c:d5:cb:dd:24:56:34:5b:cd: ce:a9:2b:47 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISAZt4NJEFDtxGyrLzG4Jz87rJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0MzNhZTFjNjA2NzJjNzU5MWE4Zjk3ZDY4Zjc5ZmIyYTVl ZThkYTcwHhcNMjYwMTAxMDYxNzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzODIwOWE5YjMxODg4ZDhhOGE5YjIzYzFlNjA1M2FmMTVmMzg4ZWQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzGcYstxe5YchaRC/+6iDzR0ze3Wm PY1lOqOJihCBw6+L2MWd4AC4aF+N8KT0bZUO+Tan3hWTOpLX8Mv83Xl6sLH//4o+ qSkP2kvqn+ZEd5oSyJOfgOaY/Ny/vWxw/LZ5vx2kt9cF7eY8OXVkKNkmPV0uG2Kn 6/lHvjjMBZDvtCUbCayH8ev3JJN7Dm9Dj5gPjJroxtDNP7u/gnvkpwWu4t7Zwvnb OgNspr6XI3sNwswH0F/7LXUXD1rZa32MszVxZ8f5k0L1r8t+Ikk0X+HFPYud3PrN 9bKWC0fxKj2vbabZWddn/k0/MxjL0QvDIpTokU2RVQjHkWGCUwZHKdd9GwIDAQAB o4ICGTCCAhUwHQYDVR0OBBYEFDggmpsxiI2KipsjweYFOvFfOI7ZMB8GA1UdIwQY MBaAFDQzrhxgZyx1kaj5fWj3n7Kl7o2nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTkRPdUhHQm5MSFdScVBsOWFQZWZzcVh1amFjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My85Y2E0NDYtZmM1Yy00NzQ2LWIyNmYt MzBjZTgzNzAxYjM5LzEvT0NDYW16R0lqWXFLbXlQQjVnVTY4Vjg0anRrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My85Y2E0NDYtZmM1Yy00NzQ2LWIyNmYtMzBjZTgzNzAxYjM5 LzEvTkRPdUhHQm5MSFdScVBsOWFQZWZzcVh1amFjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC8GCCsGAQUFBwEHAQH/BCAwHjAMBAIAATAGAwQCub90MA4E AgACMAgDBgQqAq4AMDANBgkqhkiG9w0BAQsFAAOCAQEA16fntN9oXjdqe9R2UCdV taPwhfK0RbBIssgXaLK26czoEAyIeQ/xge0JqDXJGuNhPeAOBsFBUSzc9q+flMvr mLWP2LiGqOpbmUL2Zr1ifuE72bvSwcDuVxevae5LzKiL/raELz+n8XA5ct6ioggY w5irvMQiXU3Y6dx9MrYA8gyKhSJf4fIhCiNILr2yHS8ONs3Cs98ihrfR8FTdXFmW YjkJsXfAU1BILvefwO6dRaensqyjvu9v7pxX+ZHpIdrjeE01Fxh34hn8bekKG/5m /L8X9mdoPmLQ5wTOxFrChlFOKCFsYYh2qSDXgjXzvl9RLhzPfNXL3SRWNFvNzqkr Rw== -----END CERTIFICATE-----Generated at Sun Jan 25 21:33:38 2026 by rpki-client