This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/oxY3480BO9apY7JTXiwzgfhwWUw.roa File: oxY3480BO9apY7JTXiwzgfhwWUw.roa (raw, json) Hash identifier: In0qGPAf2MDp4KKhq6808YCj0DO3kb3vHh5nPcW9ZHM= Subject key identifier: A3:16:37:E3:CD:01:3B:D6:A9:63:B2:53:5E:2C:33:81:F8:70:59:4C Certificate issuer: /CN=2e6a86e62f0ce98e02e980869ff4414ee2a0f0ce Certificate serial: 019B797F3A7E80F990EE96147B5B91D5AD41 Authority key identifier: 2E:6A:86:E6:2F:0C:E9:8E:02:E9:80:86:9F:F4:41:4E:E2:A0:F0:CE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/oxY3480BO9apY7JTXiwzgfhwWUw.roa Signing time: Thu 01 Jan 2026 12:18:59 +0000 ROA not before: Thu 01 Jan 2026 12:18:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206224 IP address blocks: 170.168.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.crl rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.mft rsync://rpki.ripe.net/repository/DEFAULT/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:3a:7e:80:f9:90:ee:96:14:7b:5b:91:d5:ad:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2e6a86e62f0ce98e02e980869ff4414ee2a0f0ce Validity Not Before: Jan 1 12:18:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a31637e3cd013bd6a963b2535e2c3381f870594c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:6c:0e:7a:c6:31:ad:2d:80:9a:00:0c:e6:88: ef:5c:e1:b4:6b:be:33:ee:9c:22:94:0c:f5:ce:ed: 67:e6:ad:f1:f8:c2:56:01:b9:0f:ed:e9:a7:18:21: e4:88:7b:64:6e:07:04:40:d5:3c:6e:17:4a:a7:c4: 66:79:30:c1:9f:fc:e1:25:4e:8a:4f:6a:26:a8:fa: c8:bd:96:5d:b9:d9:fc:26:e6:31:ea:a0:ae:69:b3: 4e:10:9c:9d:4b:89:36:60:e5:f4:94:9a:1b:f3:20: 16:1d:de:d2:d2:d9:83:32:cb:2f:bc:0a:03:67:83: 83:d5:de:fe:dd:34:a0:eb:c5:8b:7a:85:06:4f:b4: 98:b5:14:58:0d:79:8a:f5:cf:35:d3:d7:14:b3:44: 84:65:e0:25:e3:03:62:54:5f:32:0a:cb:ed:67:8a: 2f:e4:7c:34:60:41:39:b8:56:09:27:df:bb:13:71: d1:e0:22:68:e8:ce:16:55:f0:5c:79:aa:ff:60:7c: 7a:2d:39:2c:a1:e9:f1:37:6c:90:bc:4c:9e:a0:2b: a6:db:c5:f7:1f:84:dc:c4:b8:7d:07:64:c1:c8:dd: 66:8e:9d:47:35:e0:8e:84:1b:e4:25:75:ab:b6:19: 06:b1:82:e6:1b:eb:ed:dc:76:32:33:dd:7f:53:0a: 48:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:16:37:E3:CD:01:3B:D6:A9:63:B2:53:5E:2C:33:81:F8:70:59:4C X509v3 Authority Key Identifier: keyid:2E:6A:86:E6:2F:0C:E9:8E:02:E9:80:86:9F:F4:41:4E:E2:A0:F0:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/oxY3480BO9apY7JTXiwzgfhwWUw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.168.12.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:3f:de:95:f8:a2:e3:4b:38:ea:53:f1:5c:b2:70:8c:81:5d: 41:fb:8f:12:36:b5:f8:72:5a:e6:ae:4f:aa:c0:4b:ac:73:6c: 1d:d7:11:b0:02:59:8c:55:76:10:bb:11:79:d5:d4:43:0d:db: 3f:05:20:02:1c:6d:be:95:45:d7:47:49:8b:22:c7:64:54:de: 7e:1c:13:67:b1:a2:c2:9e:ab:06:c7:98:21:0b:44:7f:f7:a7: f5:d9:02:fb:84:00:27:7e:08:af:c8:dc:06:f2:80:52:21:ce: cd:77:65:dd:bb:b9:27:bb:4c:d6:84:b1:78:17:a6:c9:6f:2b: 03:90:92:0c:61:ae:a1:ee:df:e1:a4:be:63:d4:47:2f:e8:3a: 8f:01:f5:2c:02:c7:e0:e5:8d:f7:c6:b7:52:af:28:b4:b8:bd: 37:60:d7:4a:48:6c:1f:b7:c7:3d:47:95:c2:08:25:96:38:33: 76:23:2e:94:41:1c:58:03:6b:c3:95:de:f4:f1:5c:3f:a7:51: 56:73:af:c3:02:cb:fb:8b:cc:25:50:d8:40:d6:02:17:db:ae: d1:02:39:06:4c:22:8e:e5:ca:ab:ae:85:20:86:62:62:ae:a1: 61:2d:db:6c:f7:63:d1:f3:94:11:b2:0b:2e:94:a4:94:cd:7b: d6:e8:03:78 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fzp+gPmQ7pYUe1uR1a1BMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJlNmE4NmU2MmYwY2U5OGUwMmU5ODA4NjlmZjQ0MTRlZTJh MGYwY2UwHhcNMjYwMTAxMTIxODU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMzE2MzdlM2NkMDEzYmQ2YTk2M2IyNTM1ZTJjMzM4MWY4NzA1OTRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2mwOesYxrS2AmgAM5ojvXOG0a74z 7pwilAz1zu1n5q3x+MJWAbkP7emnGCHkiHtkbgcEQNU8bhdKp8RmeTDBn/zhJU6K T2omqPrIvZZdudn8JuYx6qCuabNOEJydS4k2YOX0lJob8yAWHd7S0tmDMssvvAoD Z4OD1d7+3TSg68WLeoUGT7SYtRRYDXmK9c8109cUs0SEZeAl4wNiVF8yCsvtZ4ov 5Hw0YEE5uFYJJ9+7E3HR4CJo6M4WVfBcear/YHx6LTksoenxN2yQvEyeoCum28X3 H4TcxLh9B2TByN1mjp1HNeCOhBvkJXWrthkGsYLmG+vt3HYyM91/UwpIFQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKMWN+PNATvWqWOyU14sM4H4cFlMMB8GA1UdIwQY MBaAFC5qhuYvDOmOAumAhp/0QU7ioPDOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTG1xRzVpOE02WTRDNllDR25fUkJUdUtnOE00LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC8yYjYwMzAtNmQ4OC00ZTNlLTlmM2Et YTY2N2JiNzY1MDYwLzEvb3hZMzQ4MEJPOWFwWTdKVFhpd3pnZmh3V1V3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC8yYjYwMzAtNmQ4OC00ZTNlLTlmM2EtYTY2N2JiNzY1MDYw LzEvTG1xRzVpOE02WTRDNllDR25fUkJUdUtnOE00LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAqqgMMA0G CSqGSIb3DQEBCwUAA4IBAQAPP96V+KLjSzjqU/FcsnCMgV1B+48SNrX4clrmrk+q wEusc2wd1xGwAlmMVXYQuxF51dRDDds/BSACHG2+lUXXR0mLIsdkVN5+HBNnsaLC nqsGx5ghC0R/96f12QL7hAAnfgivyNwG8oBSIc7Nd2Xdu7knu0zWhLF4F6bJbysD kJIMYa6h7t/hpL5j1Ecv6DqPAfUsAsfg5Y33xrdSryi0uL03YNdKSGwft8c9R5XC CCWWODN2Iy6UQRxYA2vDld708Vw/p1FWc6/DAsv7i8wlUNhA1gIX267RAjkGTCKO 5cqrroUghmJirqFhLdts92PR85QRsgsulKSUzXvW6AN4 -----END CERTIFICATE-----Generated at Sun Jan 25 16:55:15 2026 by rpki-client