This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/oOHNlCkdTvwxwwkZipSovG4-J9E.roa File: oOHNlCkdTvwxwwkZipSovG4-J9E.roa (raw, json) Hash identifier: 1qhpb3EWY1vPwRlEctk/rNd4NKSQiuRJVhs0aeEzvdQ= Subject key identifier: A0:E1:CD:94:29:1D:4E:FC:31:C3:09:19:8A:94:A8:BC:6E:3E:27:D1 Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019B7F84AB9D6CBC822236F20FC1D3484AE5 Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/oOHNlCkdTvwxwwkZipSovG4-J9E.roa Signing time: Fri 02 Jan 2026 16:22:39 +0000 ROA not before: Fri 02 Jan 2026 16:22:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44835 IP address blocks: 146.120.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:ab:9d:6c:bc:82:22:36:f2:0f:c1:d3:48:4a:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Jan 2 16:22:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a0e1cd94291d4efc31c309198a94a8bc6e3e27d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:c8:8b:34:20:92:09:d1:64:eb:b6:45:52:20: 3c:e8:b0:b2:e7:cb:e1:d4:1b:37:42:0d:e6:dd:d7: 8e:d9:e4:d8:4d:d2:02:e1:23:ba:bf:db:9e:f6:d2: d7:45:d8:44:75:4b:50:7c:03:c3:da:56:27:e5:31: 9b:1c:85:01:4f:85:cd:05:44:02:1f:ce:58:57:f8: 77:5d:91:c8:1e:35:77:a9:05:09:ab:99:2e:1a:a6: dc:a2:01:5f:aa:ee:87:be:56:85:a4:62:7d:e2:9d: 5c:d9:a6:05:64:4e:9e:59:fb:11:1e:d1:61:8c:83: 78:1e:b0:84:aa:ea:81:c1:8f:18:de:52:c2:93:61: fb:65:a1:29:aa:27:35:3a:20:31:2a:ae:cd:26:76: d0:63:5d:22:70:86:59:74:7c:34:de:bb:0d:48:a1: 48:ae:16:4f:2c:69:ae:3d:2a:1e:61:2a:fb:2f:3d: 02:10:e3:14:2b:78:b9:c5:67:22:1f:5d:d7:38:b1: d7:db:34:e0:b1:47:c0:0b:36:aa:6e:b0:3a:4c:28: 48:17:09:a9:dd:d4:fc:ae:4f:44:02:fa:8d:83:df: cd:72:c5:1d:41:92:11:f7:04:58:97:cc:c7:ac:e7: 87:f4:d7:b1:cc:c6:4b:e6:d2:e0:39:92:c9:fb:9f: a6:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:E1:CD:94:29:1D:4E:FC:31:C3:09:19:8A:94:A8:BC:6E:3E:27:D1 X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/oOHNlCkdTvwxwwkZipSovG4-J9E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 146.120.224.0/24 Signature Algorithm: sha256WithRSAEncryption 95:93:72:6e:8b:58:e0:31:c2:f5:0e:c8:38:53:66:44:74:87: 23:1b:df:52:85:7a:a7:de:4b:f1:4c:92:d1:f1:c2:95:71:fa: 9e:9b:02:c1:2d:2b:67:ed:02:a6:9b:02:bc:74:f5:47:49:07: 72:0c:22:19:39:fa:fd:3e:01:56:b0:7b:55:a4:54:48:d7:51: c5:fa:92:9a:10:a0:1f:ee:96:8d:c9:5d:9a:b5:da:71:40:5b: ea:a9:e8:88:2e:46:60:d3:aa:66:24:5c:e7:a7:c5:76:2a:3e: 70:d9:b2:51:9c:b6:56:a4:b3:99:f0:2a:42:70:b2:f1:41:20: 80:fc:d9:7b:ea:76:2e:c4:61:0c:79:01:22:d7:0e:e9:e0:81: cb:76:37:60:a6:00:c5:4b:4c:15:ad:1a:bf:ea:4a:47:4f:56: 4f:b1:91:ae:c5:83:67:24:f6:60:2c:74:c8:e8:8d:14:95:c3: 19:45:13:d6:98:f2:b6:ed:fb:ad:50:5e:0c:2a:9b:88:1d:a8: 72:11:ef:32:c9:e1:d0:b1:ee:25:18:91:bb:51:1f:88:a0:33: a5:97:64:18:f1:00:04:58:20:71:78:e1:7c:9a:c3:4e:f5:34: 21:05:4b:65:be:f3:85:64:3c:bb:d7:a8:62:9a:51:2e:1c:11: f2:6b:66:f9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hKudbLyCIjbyD8HTSErlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjYwMTAyMTYyMjM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMGUxY2Q5NDI5MWQ0ZWZjMzFjMzA5MTk4YTk0YThiYzZlM2UyN2QxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2siLNCCSCdFk67ZFUiA86LCy58vh 1Bs3Qg3m3deO2eTYTdIC4SO6v9ue9tLXRdhEdUtQfAPD2lYn5TGbHIUBT4XNBUQC H85YV/h3XZHIHjV3qQUJq5kuGqbcogFfqu6HvlaFpGJ94p1c2aYFZE6eWfsRHtFh jIN4HrCEquqBwY8Y3lLCk2H7ZaEpqic1OiAxKq7NJnbQY10icIZZdHw03rsNSKFI rhZPLGmuPSoeYSr7Lz0CEOMUK3i5xWciH13XOLHX2zTgsUfACzaqbrA6TChIFwmp 3dT8rk9EAvqNg9/NcsUdQZIR9wRYl8zHrOeH9NexzMZL5tLgOZLJ+5+m9wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKDhzZQpHU78McMJGYqUqLxuPifRMB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvb09ITmxDa2RUdnd4d3drWmlwU292RzQtSjlFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAknjgMA0G CSqGSIb3DQEBCwUAA4IBAQCVk3Jui1jgMcL1Dsg4U2ZEdIcjG99ShXqn3kvxTJLR 8cKVcfqemwLBLStn7QKmmwK8dPVHSQdyDCIZOfr9PgFWsHtVpFRI11HF+pKaEKAf 7paNyV2atdpxQFvqqeiILkZg06pmJFznp8V2Kj5w2bJRnLZWpLOZ8CpCcLLxQSCA /Nl76nYuxGEMeQEi1w7p4IHLdjdgpgDFS0wVrRq/6kpHT1ZPsZGuxYNnJPZgLHTI 6I0UlcMZRRPWmPK27futUF4MKpuIHahyEe8yyeHQse4lGJG7UR+IoDOll2QY8QAE WCBxeOF8msNO9TQhBUtlvvOFZDy716himlEuHBHya2b5 -----END CERTIFICATE-----Generated at Sun Jan 25 20:48:14 2026 by rpki-client