This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/oSHcrJoHQTnsgntMnrCNm4AWAlA.roa File: oSHcrJoHQTnsgntMnrCNm4AWAlA.roa (raw, json) Hash identifier: a3cCgw339HSCSt92rk1/y/YUB3elccT+VxUcVU9x2aI= Subject key identifier: A1:21:DC:AC:9A:07:41:39:EC:82:7B:4C:9E:B0:8D:9B:80:16:02:50 Certificate issuer: /CN=5853e65a3087b4ca85c8802b60ff0f02b4106d97 Certificate serial: 019B7B35C97105D7EB9A277530ED5D49B624 Authority key identifier: 58:53:E6:5A:30:87:B4:CA:85:C8:80:2B:60:FF:0F:02:B4:10:6D:97 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WFPmWjCHtMqFyIArYP8PArQQbZc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/oSHcrJoHQTnsgntMnrCNm4AWAlA.roa Signing time: Thu 01 Jan 2026 20:18:01 +0000 ROA not before: Thu 01 Jan 2026 20:18:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34573 IP address blocks: 78.140.32.0/20 maxlen: 20 78.140.32.0/24 maxlen: 24 78.140.33.0/24 maxlen: 24 78.140.34.0/24 maxlen: 24 78.140.35.0/24 maxlen: 24 78.140.36.0/24 maxlen: 24 78.140.37.0/24 maxlen: 24 78.140.38.0/24 maxlen: 24 78.140.39.0/24 maxlen: 24 78.140.40.0/24 maxlen: 24 78.140.41.0/24 maxlen: 24 78.140.42.0/24 maxlen: 24 78.140.43.0/24 maxlen: 24 78.140.44.0/24 maxlen: 24 78.140.45.0/24 maxlen: 24 78.140.46.0/24 maxlen: 24 78.140.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/WFPmWjCHtMqFyIArYP8PArQQbZc.crl rsync://rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/WFPmWjCHtMqFyIArYP8PArQQbZc.mft rsync://rpki.ripe.net/repository/DEFAULT/WFPmWjCHtMqFyIArYP8PArQQbZc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 20:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:c9:71:05:d7:eb:9a:27:75:30:ed:5d:49:b6:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5853e65a3087b4ca85c8802b60ff0f02b4106d97 Validity Not Before: Jan 1 20:18:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a121dcac9a074139ec827b4c9eb08d9b80160250 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:b2:51:f7:fc:83:ed:7b:90:6b:4f:17:61:90: d9:ec:47:51:f8:c8:ad:10:d6:d8:4f:48:71:27:c0: f0:b7:70:b6:16:ca:67:3a:ab:ca:16:6c:ef:41:31: 35:1e:5f:13:26:fb:86:bc:7b:9c:1b:c2:86:e9:9f: 18:70:39:bf:7c:69:27:31:53:f2:30:3d:ac:4b:31: 97:0f:0d:30:81:17:e5:de:54:79:7d:b4:4b:af:da: ab:ce:b7:73:6c:85:30:d5:6a:24:34:49:1b:21:5f: 05:ef:30:35:c2:2b:a9:a9:45:98:d1:e3:43:b9:8e: d2:bf:6c:13:81:c0:b1:fe:bc:99:ff:0c:69:f1:ff: 72:02:7d:80:c3:b7:23:fc:d5:38:81:e7:01:49:b4: 98:db:c1:8e:cc:48:35:92:50:63:52:74:41:69:b3: e9:89:15:48:b6:a8:ae:7d:72:ed:27:97:e2:44:1e: 1f:d3:9b:2b:15:2c:17:2c:b0:e1:67:f6:35:54:9d: e4:62:b6:b6:56:65:5a:e6:64:89:0e:40:6e:3e:26: be:36:c3:9c:b8:2f:a5:18:ac:a8:af:5a:ad:c4:09: 2f:7f:cc:1f:57:2c:7f:96:94:95:22:78:3f:cf:49: 20:37:4a:cd:c0:5b:5d:0a:0d:23:eb:f9:29:d2:14: 78:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:21:DC:AC:9A:07:41:39:EC:82:7B:4C:9E:B0:8D:9B:80:16:02:50 X509v3 Authority Key Identifier: keyid:58:53:E6:5A:30:87:B4:CA:85:C8:80:2B:60:FF:0F:02:B4:10:6D:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WFPmWjCHtMqFyIArYP8PArQQbZc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/oSHcrJoHQTnsgntMnrCNm4AWAlA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/WFPmWjCHtMqFyIArYP8PArQQbZc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.140.32.0/20 Signature Algorithm: sha256WithRSAEncryption 4f:3c:74:19:16:25:82:d1:18:6f:95:b3:eb:77:88:a1:f9:17: b0:10:9e:99:0e:2f:2a:db:d3:48:d5:f7:99:ae:2d:82:cc:2f: 74:f5:41:53:88:4c:1e:c7:0c:d2:34:d2:2a:e3:26:73:7e:4d: 37:20:96:0d:5e:b7:b3:3b:68:f6:4d:ad:85:10:85:bd:6b:cc: 59:cb:51:36:21:02:8c:1d:fb:22:39:07:9c:a8:01:f2:65:4b: a0:6f:5f:b7:89:0b:bf:94:54:cb:b0:38:97:01:f5:ce:5b:b6: ed:91:21:5d:26:9f:fd:56:8d:e3:e1:e5:fe:30:d7:42:be:71: ab:dd:1c:30:dd:32:8a:c2:d3:25:6a:31:d5:a1:fd:5a:58:c6: 66:a6:7b:e9:39:9c:a5:41:31:2f:c6:8d:ba:f7:cd:8c:03:a4: 71:8c:b0:a6:54:fd:b5:ce:d5:70:50:5c:7f:22:87:af:22:85: a2:54:a4:36:5e:5c:fd:02:4e:67:45:69:09:a9:6b:6b:12:12: 00:b8:db:f5:d5:27:5c:71:ab:e3:51:bc:56:b0:5b:cb:92:4f: ca:fd:d4:99:57:97:f3:11:e3:c3:b2:97:9b:db:a7:c4:63:44: 03:dd:0f:fb:d5:21:9c:2c:72:e7:a1:a2:b6:c5:52:cf:10:a8: b5:56:96:76 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7NclxBdfrmid1MO1dSbYkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4NTNlNjVhMzA4N2I0Y2E4NWM4ODAyYjYwZmYwZjAyYjQx MDZkOTcwHhcNMjYwMTAxMjAxODAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMTIxZGNhYzlhMDc0MTM5ZWM4MjdiNGM5ZWIwOGQ5YjgwMTYwMjUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/LJR9/yD7XuQa08XYZDZ7EdR+Mit ENbYT0hxJ8Dwt3C2FspnOqvKFmzvQTE1Hl8TJvuGvHucG8KG6Z8YcDm/fGknMVPy MD2sSzGXDw0wgRfl3lR5fbRLr9qrzrdzbIUw1WokNEkbIV8F7zA1wiupqUWY0eND uY7Sv2wTgcCx/ryZ/wxp8f9yAn2Aw7cj/NU4gecBSbSY28GOzEg1klBjUnRBabPp iRVItqiufXLtJ5fiRB4f05srFSwXLLDhZ/Y1VJ3kYra2VmVa5mSJDkBuPia+NsOc uC+lGKyor1qtxAkvf8wfVyx/lpSVIng/z0kgN0rNwFtdCg0j6/kp0hR4XQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKEh3KyaB0E57IJ7TJ6wjZuAFgJQMB8GA1UdIwQY MBaAFFhT5lowh7TKhciAK2D/DwK0EG2XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0ZQbVdqQ0h0TXFGeUlBcllQOFBBclFRYlpjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi82YWZkMWUtY2I3ZS00ZTZlLWE4YTQt ZTE4NjAyNzM5Y2Q1LzEvb1NIY3JKb0hRVG5zZ250TW5yQ05tNEFXQWxBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Mi82YWZkMWUtY2I3ZS00ZTZlLWE4YTQtZTE4NjAyNzM5Y2Q1 LzEvV0ZQbVdqQ0h0TXFGeUlBcllQOFBBclFRYlpjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQETowgMA0G CSqGSIb3DQEBCwUAA4IBAQBPPHQZFiWC0RhvlbPrd4ih+RewEJ6ZDi8q29NI1feZ ri2CzC909UFTiEwexwzSNNIq4yZzfk03IJYNXrezO2j2Ta2FEIW9a8xZy1E2IQKM HfsiOQecqAHyZUugb1+3iQu/lFTLsDiXAfXOW7btkSFdJp/9Vo3j4eX+MNdCvnGr 3Rww3TKKwtMlajHVof1aWMZmpnvpOZylQTEvxo26982MA6RxjLCmVP21ztVwUFx/ IoevIoWiVKQ2Xlz9Ak5nRWkJqWtrEhIAuNv11SdccavjUbxWsFvLkk/K/dSZV5fz EePDspeb26fEY0QD3Q/71SGcLHLnoaK2xVLPEKi1VpZ2 -----END CERTIFICATE-----Generated at Mon Jan 26 03:56:46 2026 by rpki-client