This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/57e8d7-49ab-4d1e-a808-45fabe3f9f33/1/OwPnXef8wjjPeRu0JL3nBkCM2bI.roa File: OwPnXef8wjjPeRu0JL3nBkCM2bI.roa (raw, json) Hash identifier: aVplhHufSEGNMhwKZj/hpZrwjk8V5+AyOwyihQOJg38= Subject key identifier: 3B:03:E7:5D:E7:FC:C2:38:CF:79:1B:B4:24:BD:E7:06:40:8C:D9:B2 Certificate issuer: /CN=bc87b9cfc3ee0c44965ea209c04fd8e8f48fa42f Certificate serial: 019B79ECB3C64F45CE076E2D0AB822E15FB5 Authority key identifier: BC:87:B9:CF:C3:EE:0C:44:96:5E:A2:09:C0:4F:D8:E8:F4:8F:A4:2F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vIe5z8PuDESWXqIJwE_Y6PSPpC8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/57e8d7-49ab-4d1e-a808-45fabe3f9f33/1/OwPnXef8wjjPeRu0JL3nBkCM2bI.roa Signing time: Thu 01 Jan 2026 14:18:34 +0000 ROA not before: Thu 01 Jan 2026 14:18:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39401 IP address blocks: 91.192.236.0/22 maxlen: 24 193.93.24.0/22 maxlen: 24 2a0d:9a00::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/57e8d7-49ab-4d1e-a808-45fabe3f9f33/1/vIe5z8PuDESWXqIJwE_Y6PSPpC8.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/57e8d7-49ab-4d1e-a808-45fabe3f9f33/1/vIe5z8PuDESWXqIJwE_Y6PSPpC8.mft rsync://rpki.ripe.net/repository/DEFAULT/vIe5z8PuDESWXqIJwE_Y6PSPpC8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:b3:c6:4f:45:ce:07:6e:2d:0a:b8:22:e1:5f:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bc87b9cfc3ee0c44965ea209c04fd8e8f48fa42f Validity Not Before: Jan 1 14:18:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3b03e75de7fcc238cf791bb424bde706408cd9b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:89:f8:28:c2:d9:d2:95:77:fb:f4:77:33:9d: 41:2c:36:79:59:f2:fa:cb:91:3c:a3:53:73:68:bd: 96:ee:9b:1f:f1:24:d9:60:2b:e7:a8:af:f3:23:bd: 8b:21:12:e6:e9:03:d4:11:20:02:4b:dd:38:a0:c2: 78:f5:70:37:6a:5d:65:89:a1:0d:85:dc:e0:2a:4d: 3e:48:de:71:81:84:67:26:b4:51:89:61:3d:7f:e0: 5b:01:55:d4:db:10:fa:77:a4:b6:73:c7:8c:c3:d8: 70:ca:43:8f:a4:e9:45:09:05:28:e4:cf:de:4f:eb: 9e:11:b9:9d:bc:7d:75:e4:b1:d6:10:3c:6f:d9:22: 78:b2:cc:05:a0:08:4c:cd:5e:e9:a1:9b:f3:cd:21: d8:9b:e2:18:72:a8:c4:f3:2c:60:d7:2d:2e:2e:2c: 0f:ea:11:a0:e9:6d:0f:9d:8f:74:e6:7f:9c:2c:16: 80:df:3a:4c:4b:d7:27:2a:3c:af:50:7c:e3:b6:c9: eb:fe:e5:82:c4:ff:3b:2e:b0:fe:49:cc:8a:38:fa: 19:99:3a:93:3d:30:d0:dc:b1:dc:aa:10:9c:ec:c8: 1f:04:38:9d:01:41:5f:45:dd:43:ec:ca:1c:de:64: db:73:bc:8b:bf:aa:13:cc:5c:79:68:00:3b:3e:0a: 16:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:03:E7:5D:E7:FC:C2:38:CF:79:1B:B4:24:BD:E7:06:40:8C:D9:B2 X509v3 Authority Key Identifier: keyid:BC:87:B9:CF:C3:EE:0C:44:96:5E:A2:09:C0:4F:D8:E8:F4:8F:A4:2F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vIe5z8PuDESWXqIJwE_Y6PSPpC8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/57e8d7-49ab-4d1e-a808-45fabe3f9f33/1/OwPnXef8wjjPeRu0JL3nBkCM2bI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/57e8d7-49ab-4d1e-a808-45fabe3f9f33/1/vIe5z8PuDESWXqIJwE_Y6PSPpC8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.192.236.0/22 193.93.24.0/22 IPv6: 2a0d:9a00::/32 Signature Algorithm: sha256WithRSAEncryption 1e:cc:9f:8b:1e:d1:68:e9:a3:ca:1a:2d:ef:a8:96:a8:c7:6b: 49:55:d9:af:d6:9a:ab:cb:4b:92:5b:51:b3:d1:a4:98:21:e1: 56:a1:ec:a1:ad:c8:a2:55:f0:f5:75:88:2e:2b:d6:5f:1d:88: 1c:59:a7:e8:9a:5b:54:e5:b6:d9:2b:cd:47:56:c9:ae:98:d4: 6e:53:82:4a:3a:d8:3c:c6:ae:0b:da:cb:68:f6:a0:ee:c2:8c: 02:de:dd:71:3e:f1:9e:3a:e8:f3:91:1f:c9:d7:ae:06:94:a2: 60:3a:18:02:15:03:02:33:ea:c3:9e:26:a0:b3:e1:79:de:23: c1:23:ca:c1:da:03:cd:3f:eb:09:3a:33:c7:3c:74:f2:bc:14: 0c:5d:13:26:9d:6b:25:63:5b:8d:35:65:3d:ef:08:a3:27:ef: ee:21:37:93:21:75:63:ae:56:e7:c6:b9:30:71:05:83:27:c6: e2:f4:5f:1e:54:f2:c2:b8:37:56:56:5d:a6:2b:e4:21:7b:f1: 7f:e6:ae:90:20:b1:47:79:a8:55:66:c4:3e:8e:71:16:39:27: f0:56:c9:c8:ac:64:10:fb:15:86:91:a0:3f:3d:ce:8d:82:c7: 8a:d2:81:d9:a6:8e:65:4c:df:9b:77:1a:9f:b0:8c:ea:d7:09: 6b:10:e9:d9 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt57LPGT0XOB24tCrgi4V+1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJjODdiOWNmYzNlZTBjNDQ5NjVlYTIwOWMwNGZkOGU4ZjQ4 ZmE0MmYwHhcNMjYwMTAxMTQxODM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYjAzZTc1ZGU3ZmNjMjM4Y2Y3OTFiYjQyNGJkZTcwNjQwOGNkOWIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx4n4KMLZ0pV3+/R3M51BLDZ5WfL6 y5E8o1NzaL2W7psf8STZYCvnqK/zI72LIRLm6QPUESACS904oMJ49XA3al1liaEN hdzgKk0+SN5xgYRnJrRRiWE9f+BbAVXU2xD6d6S2c8eMw9hwykOPpOlFCQUo5M/e T+ueEbmdvH115LHWEDxv2SJ4sswFoAhMzV7poZvzzSHYm+IYcqjE8yxg1y0uLiwP 6hGg6W0PnY905n+cLBaA3zpMS9cnKjyvUHzjtsnr/uWCxP87LrD+ScyKOPoZmTqT PTDQ3LHcqhCc7MgfBDidAUFfRd1D7Moc3mTbc7yLv6oTzFx5aAA7PgoW3wIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFDsD513n/MI4z3kbtCS95wZAjNmyMB8GA1UdIwQY MBaAFLyHuc/D7gxEll6iCcBP2Oj0j6QvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdkllNXo4UHVERVNXWHFJSndFX1k2UFNQcEM4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS81N2U4ZDctNDlhYi00ZDFlLWE4MDgt NDVmYWJlM2Y5ZjMzLzEvT3dQblhlZjh3ampQZVJ1MEpMM25Ca0NNMmJJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS81N2U4ZDctNDlhYi00ZDFlLWE4MDgtNDVmYWJlM2Y5ZjMz LzEvdkllNXo4UHVERVNXWHFJSndFX1k2UFNQcEM4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCW8DsAwQC wV0YMA0EAgACMAcDBQAqDZoAMA0GCSqGSIb3DQEBCwUAA4IBAQAezJ+LHtFo6aPK Gi3vqJaox2tJVdmv1pqry0uSW1Gz0aSYIeFWoeyhrciiVfD1dYguK9ZfHYgcWafo mltU5bbZK81HVsmumNRuU4JKOtg8xq4L2sto9qDuwowC3t1xPvGeOujzkR/J164G lKJgOhgCFQMCM+rDniags+F53iPBI8rB2gPNP+sJOjPHPHTyvBQMXRMmnWslY1uN NWU97wijJ+/uITeTIXVjrlbnxrkwcQWDJ8bi9F8eVPLCuDdWVl2mK+Qhe/F/5q6Q ILFHeahVZsQ+jnEWOSfwVsnIrGQQ+xWGkaA/Pc6NgseK0oHZpo5lTN+bdxqfsIzq 1wlrEOnZ -----END CERTIFICATE-----Generated at Sun Jan 25 19:17:46 2026 by rpki-client