This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/OVh7Og0MnBvfViwAfN5yqNnqzMw.roa File: OVh7Og0MnBvfViwAfN5yqNnqzMw.roa (raw, json) Hash identifier: ezdZhggLmfT/aMmTUCVupVNyhQRLePGL/bjtwOWSXEY= Subject key identifier: 39:58:7B:3A:0D:0C:9C:1B:DF:56:2C:00:7C:DE:72:A8:D9:EA:CC:CC Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478 Certificate serial: 019B76EB02753C0314719CF1AC22380E0C7E Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/OVh7Og0MnBvfViwAfN5yqNnqzMw.roa Signing time: Thu 01 Jan 2026 00:17:51 +0000 ROA not before: Thu 01 Jan 2026 00:17:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215081 IP address blocks: 178.173.240.0/24 maxlen: 24 193.36.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.mft rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:02:75:3c:03:14:71:9c:f1:ac:22:38:0e:0c:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478 Validity Not Before: Jan 1 00:17:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=39587b3a0d0c9c1bdf562c007cde72a8d9eacccc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:6a:01:c7:d0:28:48:f5:5b:42:39:08:5a:9c: e1:39:d6:c6:57:bf:f9:7f:e0:e6:07:0c:2c:88:61: 4a:59:75:52:00:f2:74:2d:1a:de:2a:dc:ed:f6:6c: 26:d3:8c:62:4d:47:cf:fa:8f:60:20:ba:10:32:ea: 5e:24:26:13:05:8c:c1:63:20:ec:88:15:13:26:16: 41:c7:08:68:46:98:60:3b:62:88:75:0a:0d:05:13: 5f:8a:3a:ea:a0:d2:a7:a2:3c:2f:95:f8:a4:f3:dd: ff:4f:1e:00:ff:d5:94:fe:d0:ee:1b:99:14:bf:c6: e8:30:43:5b:98:4a:10:87:3e:09:72:21:e1:b9:ec: 7b:7e:4b:a7:81:b8:09:2a:9a:fe:1e:3e:ab:50:52: f1:2c:97:c9:d2:f3:94:36:d0:80:8f:bb:a3:9e:3c: f6:1e:1e:95:b2:d2:f1:09:c5:40:be:18:c5:da:d3: 86:9e:3f:63:cc:5e:40:54:54:67:b6:8a:4b:76:21: b5:b3:ea:d2:2b:5b:fe:5e:6e:ee:b2:c3:2e:00:1b: 1f:b9:3e:c7:9d:c3:70:71:5f:ae:98:e1:4e:46:c6: fe:d1:03:5c:5f:1f:46:c3:09:bc:c0:83:c3:7e:09: 31:44:cb:f9:7a:a8:55:61:78:59:bd:03:53:d6:14: ff:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:58:7B:3A:0D:0C:9C:1B:DF:56:2C:00:7C:DE:72:A8:D9:EA:CC:CC X509v3 Authority Key Identifier: keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/OVh7Og0MnBvfViwAfN5yqNnqzMw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.173.240.0/24 193.36.73.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:39:00:15:45:e3:b1:99:3c:00:c5:54:c6:aa:ad:81:cd:d2: 43:66:eb:ee:d9:89:ee:72:de:13:58:f0:d8:30:1c:48:21:35: f4:e6:27:e1:d7:02:13:a0:6c:31:51:93:7f:f8:22:29:3c:d7: 01:4b:a2:cc:cb:ab:c6:92:ac:fe:72:f7:9d:47:da:05:bf:c7: 78:5b:41:3f:1d:9a:86:f5:b0:c0:e1:df:12:3d:50:e5:a4:a1: 47:ac:fe:91:ce:ba:86:ce:4a:d1:e7:bd:33:b7:cc:f6:c0:63: fc:22:d6:95:cf:31:d8:d8:f6:d7:9e:fd:7d:6e:fe:d4:9a:98: 4b:a9:20:d3:22:c7:11:2a:82:72:a5:4e:b1:94:a8:23:81:ad: fe:b6:95:a7:19:7c:c1:0b:53:d8:39:0f:9f:f6:a0:ee:3f:a6: 08:6e:b6:8c:03:b6:35:71:70:b4:a3:15:c7:6e:3e:4e:56:60: 42:64:bb:09:d7:90:ca:70:74:1d:2b:a1:4e:99:62:61:2e:94: b8:e7:88:66:ad:af:98:cc:ff:c4:65:85:15:01:dd:1e:bc:a3: 4d:69:cb:3c:61:cb:28:40:3e:11:12:6d:7b:f5:56:e1:63:d3: 33:6f:00:cd:02:6e:09:2f:90:0a:5b:99:f5:c2:3e:3d:ad:ac: 62:ee:66:19 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt26wJ1PAMUcZzxrCI4Dgx+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhYzNkYWExYjE0ODUwZjJlNjFjNTkyYjIxOTE5MTVhNWU2 NWE0NzgwHhcNMjYwMTAxMDAxNzUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzOTU4N2IzYTBkMGM5YzFiZGY1NjJjMDA3Y2RlNzJhOGQ5ZWFjY2NjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6WoBx9AoSPVbQjkIWpzhOdbGV7/5 f+DmBwwsiGFKWXVSAPJ0LRreKtzt9mwm04xiTUfP+o9gILoQMupeJCYTBYzBYyDs iBUTJhZBxwhoRphgO2KIdQoNBRNfijrqoNKnojwvlfik893/Tx4A/9WU/tDuG5kU v8boMENbmEoQhz4JciHhuex7fkungbgJKpr+Hj6rUFLxLJfJ0vOUNtCAj7ujnjz2 Hh6VstLxCcVAvhjF2tOGnj9jzF5AVFRntopLdiG1s+rSK1v+Xm7ussMuABsfuT7H ncNwcV+umOFORsb+0QNcXx9Gwwm8wIPDfgkxRMv5eqhVYXhZvQNT1hT/tQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFDlYezoNDJwb31YsAHzecqjZ6szMMB8GA1UdIwQY MBaAFCrD2qGxSFDy5hxZKyGRkVpeZaR4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUt ZmUwNjU5MTc2YTU2LzEvT1ZoN09nME1uQnZmVml3QWZONXlxTm5xek13LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUtZmUwNjU5MTc2YTU2 LzEvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAsq3wAwQA wSRJMA0GCSqGSIb3DQEBCwUAA4IBAQAKOQAVReOxmTwAxVTGqq2BzdJDZuvu2Ynu ct4TWPDYMBxIITX05ifh1wIToGwxUZN/+CIpPNcBS6LMy6vGkqz+cvedR9oFv8d4 W0E/HZqG9bDA4d8SPVDlpKFHrP6RzrqGzkrR570zt8z2wGP8ItaVzzHY2PbXnv19 bv7UmphLqSDTIscRKoJypU6xlKgjga3+tpWnGXzBC1PYOQ+f9qDuP6YIbraMA7Y1 cXC0oxXHbj5OVmBCZLsJ15DKcHQdK6FOmWJhLpS454hmra+YzP/EZYUVAd0evKNN acs8YcsoQD4REm179VbhY9MzbwDNAm4JL5AKW5n1wj49raxi7mYZ -----END CERTIFICATE-----Generated at Sun Jan 25 12:05:59 2026 by rpki-client