This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/OrDYqOKyG2h0cgHNbIcvJZSpi3w.roa File: OrDYqOKyG2h0cgHNbIcvJZSpi3w.roa (raw, json) Hash identifier: QxHOREiCtAmpya3TW5m7Qk23RtGjlvBGGyN6v/cJ+dg= Subject key identifier: 3A:B0:D8:A8:E2:B2:1B:68:74:72:01:CD:6C:87:2F:25:94:A9:8B:7C Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8 Certificate serial: 019B7758F09234533CA243D179F89879E8E0 Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/OrDYqOKyG2h0cgHNbIcvJZSpi3w.roa Signing time: Thu 01 Jan 2026 02:17:55 +0000 ROA not before: Thu 01 Jan 2026 02:17:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31165 IP address blocks: 81.168.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.mft rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:f0:92:34:53:3c:a2:43:d1:79:f8:98:79:e8:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8 Validity Not Before: Jan 1 02:17:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3ab0d8a8e2b21b68747201cd6c872f2594a98b7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d1:a0:a9:5c:fd:9d:e1:c2:72:78:01:73:09: 81:e8:1f:5a:f3:73:59:8c:2d:a3:bc:e5:7b:be:d0: 5a:1f:f8:20:2d:be:f8:e5:76:ce:71:09:91:e6:28: 37:8e:58:94:aa:4d:1b:7f:2b:5c:83:2b:d9:7a:27: 12:ec:ff:e6:1d:cc:75:f3:7f:fc:31:a5:78:b0:87: db:44:7c:e1:34:46:08:f8:51:a7:d1:49:bc:60:73: ac:9f:26:60:5b:76:5e:06:c8:ea:8b:44:4e:ad:68: af:7e:8e:25:7f:12:bf:97:c5:41:77:3d:f4:0e:27: 5f:21:0d:2e:0f:3f:48:cf:de:a4:08:62:29:48:9d: fb:8d:64:55:86:8d:00:da:54:e6:68:d6:6a:4c:2b: af:95:eb:46:8b:02:f7:29:2c:a1:f8:a4:b5:f9:b9: b6:2a:2d:db:bf:4f:8d:af:28:00:79:54:91:33:d5: 0e:96:11:d7:c4:9c:79:56:61:59:d2:ec:9c:69:42: 23:5c:14:75:f9:73:c3:f6:c7:0d:da:6d:e0:e8:a1: 2d:88:89:b2:14:f3:28:2a:af:aa:f6:4c:52:06:d2: 39:ab:84:cd:12:17:ab:ab:08:50:3e:be:04:98:8c: 8d:3e:55:9f:a6:fb:37:48:61:37:30:1d:9b:5d:7c: 20:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:B0:D8:A8:E2:B2:1B:68:74:72:01:CD:6C:87:2F:25:94:A9:8B:7C X509v3 Authority Key Identifier: keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/OrDYqOKyG2h0cgHNbIcvJZSpi3w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.168.254.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:8f:f0:66:af:21:8d:e1:2d:74:52:88:9e:a4:6f:7c:44:fb: 99:da:a6:ed:e4:21:c6:b5:f6:18:10:d4:91:5f:ec:c8:57:33: 97:7e:ac:19:65:46:bb:05:68:3a:a8:a3:64:f3:eb:9c:a1:4d: 3d:f5:92:41:cc:f1:2a:20:b9:51:0b:fa:c3:f7:22:23:c9:79: 2a:bd:6e:43:0b:b9:f2:c3:17:b6:8d:49:36:dd:65:78:90:f9: 55:06:eb:70:dd:88:3d:73:4e:fb:c4:60:8c:61:9b:e1:dd:d8: 8b:51:3a:da:a1:db:f2:98:a0:f0:a0:d0:9b:af:72:1d:73:49: 92:1a:89:2f:b3:8e:b9:45:ed:78:53:b2:57:12:c1:69:08:ed: 8d:df:03:ea:14:f5:34:54:a5:0a:fd:72:53:4e:32:f6:de:1d: 10:ba:49:46:a3:1d:9b:96:30:10:c9:1b:70:70:5f:fc:49:bb: aa:1f:1e:1d:bb:cb:a4:65:75:6c:6a:bf:a7:06:7d:7f:e7:93: 67:2a:af:c8:76:5c:77:66:c2:d5:46:9d:9c:5c:2e:96:f2:04: 54:c5:01:b9:20:28:66:60:03:50:55:2c:a6:5c:81:a6:23:99: 51:3e:c7:e0:e1:0c:7b:d7:78:5f:95:bb:e3:af:4f:da:59:f4: dd:3f:5f:db -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3WPCSNFM8okPRefiYeejgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5OTU0NDk5OTc3Mjc4YTc1NTcwYjM0MDNmNGQzYWEwMGIx YjM2ZTgwHhcNMjYwMTAxMDIxNzU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYWIwZDhhOGUyYjIxYjY4NzQ3MjAxY2Q2Yzg3MmYyNTk0YTk4YjdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtNGgqVz9neHCcngBcwmB6B9a83NZ jC2jvOV7vtBaH/ggLb745XbOcQmR5ig3jliUqk0bfytcgyvZeicS7P/mHcx183/8 MaV4sIfbRHzhNEYI+FGn0Um8YHOsnyZgW3ZeBsjqi0ROrWivfo4lfxK/l8VBdz30 DidfIQ0uDz9Iz96kCGIpSJ37jWRVho0A2lTmaNZqTCuvletGiwL3KSyh+KS1+bm2 Ki3bv0+NrygAeVSRM9UOlhHXxJx5VmFZ0uycaUIjXBR1+XPD9scN2m3g6KEtiImy FPMoKq+q9kxSBtI5q4TNEherqwhQPr4EmIyNPlWfpvs3SGE3MB2bXXwgTQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDqw2KjishtodHIBzWyHLyWUqYt8MB8GA1UdIwQY MBaAFLmVRJmXcninVXCzQD9NOqALGzboMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdVpWRW1aZHllS2RWY0xOQVAwMDZvQXNiTnVnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny83ODg4MDMtYmUxMi00MzNmLWE4ZDAt MDI0YjE2NTVjMjQ3LzEvT3JEWXFPS3lHMmgwY2dITmJJY3ZKWlNwaTN3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ny83ODg4MDMtYmUxMi00MzNmLWE4ZDAtMDI0YjE2NTVjMjQ3 LzEvdVpWRW1aZHllS2RWY0xOQVAwMDZvQXNiTnVnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUaj+MA0G CSqGSIb3DQEBCwUAA4IBAQAqj/BmryGN4S10UoiepG98RPuZ2qbt5CHGtfYYENSR X+zIVzOXfqwZZUa7BWg6qKNk8+ucoU099ZJBzPEqILlRC/rD9yIjyXkqvW5DC7ny wxe2jUk23WV4kPlVButw3Yg9c077xGCMYZvh3diLUTraodvymKDwoNCbr3Idc0mS Gokvs465Re14U7JXEsFpCO2N3wPqFPU0VKUK/XJTTjL23h0QuklGox2bljAQyRtw cF/8SbuqHx4du8ukZXVsar+nBn1/55NnKq/Idlx3ZsLVRp2cXC6W8gRUxQG5IChm YANQVSymXIGmI5lRPsfg4Qx713hflbvjr0/aWfTdP1/b -----END CERTIFICATE-----Generated at Sun Jan 25 20:31:34 2026 by rpki-client