This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/o_Bf0VGW92_DCdOl3hEPauIcGy8.roa File: o_Bf0VGW92_DCdOl3hEPauIcGy8.roa (raw, json) Hash identifier: d5OLj+rJQH1MY3TJPEBxQsrX0nSKpiL1pAGjwbvYMm0= Subject key identifier: A3:F0:5F:D1:51:96:F7:6F:C3:09:D3:A5:DE:11:0F:6A:E2:1C:1B:2F Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019B7F850B2B3E38EB938E90143FA1F86D92 Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/o_Bf0VGW92_DCdOl3hEPauIcGy8.roa Signing time: Fri 02 Jan 2026 16:23:04 +0000 ROA not before: Fri 02 Jan 2026 16:23:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210241 IP address blocks: 93.171.248.0/23 maxlen: 24 2a02:128:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:0b:2b:3e:38:eb:93:8e:90:14:3f:a1:f8:6d:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Jan 2 16:23:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a3f05fd15196f76fc309d3a5de110f6ae21c1b2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:5e:9c:2e:81:95:d8:8d:19:cf:9e:77:7c:85: 19:c1:a8:bc:89:66:50:8b:d9:f8:e8:25:c7:63:db: 9b:1e:3a:e5:24:bd:a5:bd:01:06:28:3f:53:c4:d0: c1:c3:5a:c9:a1:6b:47:f2:60:f3:65:e4:05:46:fc: 84:c9:d5:82:5e:8c:b2:d2:30:64:34:42:6a:98:86: e9:0a:94:a8:fe:e6:f3:e4:5e:de:e9:1f:ee:10:e8: 85:1f:27:b8:d2:83:4e:b8:33:d2:ed:54:ba:c6:b7: 04:ee:1d:d7:9d:74:f3:e7:e4:80:bd:38:e6:09:f8: 31:b9:2a:ae:66:36:7e:90:fe:94:27:76:ae:4c:3f: a8:8a:26:75:a8:43:57:07:1b:69:4f:bc:5f:04:b4: da:b3:13:9f:21:2f:ce:16:70:2f:e5:75:2e:2a:14: 35:33:55:58:04:88:14:ee:f0:a1:34:7b:08:c6:23: 3b:c9:6b:88:8c:40:0b:4a:8a:ec:38:2c:99:26:b4: a3:b1:54:19:e6:b3:21:cb:98:7a:76:c5:84:a1:56: f9:63:44:e0:39:6d:b0:33:a8:8f:c0:39:0b:f3:38: 6f:9a:50:48:a1:0d:82:ae:cd:77:dd:14:06:36:cb: 0f:fb:6c:4b:5b:f9:d6:d8:ea:e9:2f:5b:18:6e:9f: 0f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:F0:5F:D1:51:96:F7:6F:C3:09:D3:A5:DE:11:0F:6A:E2:1C:1B:2F X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/o_Bf0VGW92_DCdOl3hEPauIcGy8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.171.248.0/23 IPv6: 2a02:128:3::/48 Signature Algorithm: sha256WithRSAEncryption 27:81:b4:29:e4:4c:d9:18:3f:8c:f9:bb:a0:dc:e1:47:f8:00: 9d:fe:18:53:1c:c2:7d:22:3a:19:36:df:36:b1:52:ba:36:28: 7e:3d:d1:41:e1:12:f8:0f:b7:a7:d9:37:1b:85:c3:1b:9c:f9: 8d:85:a1:ba:78:c1:0b:be:62:67:6c:46:2d:d8:44:5e:a3:84: a8:a5:c7:7c:ae:b3:00:0f:56:0e:62:f3:b2:98:43:80:2d:2a: 73:17:29:a7:c4:29:56:38:4e:8f:47:c6:53:66:95:58:36:83: b0:8b:5d:31:b1:10:0a:fd:15:c7:72:84:45:7a:15:5c:9e:4d: f6:5c:f8:b0:28:98:4d:da:66:97:7d:83:68:89:8d:2f:cc:c7: c6:cc:56:61:ef:d5:dd:bb:06:0f:f2:61:fc:c9:09:92:7c:e0: 50:eb:50:8c:a0:0a:21:90:79:dc:6a:70:6c:19:27:88:dd:f0: bd:10:87:d6:2a:ea:67:0d:f7:35:ec:74:3a:2d:d2:86:ee:13: 07:58:2b:fd:24:ad:d2:3c:d1:c4:39:7f:2e:28:95:80:92:e2: cb:05:c6:10:42:60:de:6c:2b:32:a8:91:9e:6e:d1:21:80:51: 25:c3:28:10:6f:ef:af:23:75:75:eb:2e:dc:b0:18:65:5e:78: 1a:d7:4e:78 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt/hQsrPjjrk46QFD+h+G2SMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjYwMTAyMTYyMzA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhM2YwNWZkMTUxOTZmNzZmYzMwOWQzYTVkZTExMGY2YWUyMWMxYjJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzF6cLoGV2I0Zz553fIUZwai8iWZQ i9n46CXHY9ubHjrlJL2lvQEGKD9TxNDBw1rJoWtH8mDzZeQFRvyEydWCXoyy0jBk NEJqmIbpCpSo/ubz5F7e6R/uEOiFHye40oNOuDPS7VS6xrcE7h3XnXTz5+SAvTjm CfgxuSquZjZ+kP6UJ3auTD+oiiZ1qENXBxtpT7xfBLTasxOfIS/OFnAv5XUuKhQ1 M1VYBIgU7vChNHsIxiM7yWuIjEALSorsOCyZJrSjsVQZ5rMhy5h6dsWEoVb5Y0Tg OW2wM6iPwDkL8zhvmlBIoQ2Crs133RQGNssP+2xLW/nW2OrpL1sYbp8PiQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFKPwX9FRlvdvwwnTpd4RD2riHBsvMB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvb19CZjBWR1c5Ml9EQ2RPbDNoRVBhdUljR3k4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBXav4MA8E AgACMAkDBwAqAgEoAAMwDQYJKoZIhvcNAQELBQADggEBACeBtCnkTNkYP4z5u6Dc 4Uf4AJ3+GFMcwn0iOhk23zaxUro2KH490UHhEvgPt6fZNxuFwxuc+Y2Fobp4wQu+ YmdsRi3YRF6jhKilx3yuswAPVg5i87KYQ4AtKnMXKafEKVY4To9HxlNmlVg2g7CL XTGxEAr9FcdyhEV6FVyeTfZc+LAomE3aZpd9g2iJjS/Mx8bMVmHv1d27Bg/yYfzJ CZJ84FDrUIygCiGQedxqcGwZJ4jd8L0Qh9Yq6mcN9zXsdDot0obuEwdYK/0krdI8 0cQ5fy4olYCS4ssFxhBCYN5sKzKokZ5u0SGAUSXDKBBv768jdXXrLtywGGVeeBrX Tng= -----END CERTIFICATE-----Generated at Sun Jan 25 23:48:28 2026 by rpki-client