This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/0b2eef-75e9-43b2-9088-8303ad1371dd/1/O_wCNsyDbT6MUYABz8-3j0us_9g.roa File: O_wCNsyDbT6MUYABz8-3j0us_9g.roa (raw, json) Hash identifier: lcEmRT5pvsNkeswk2lk75S2Q+qGFNRLgl2uhLFsTeD4= Subject key identifier: 3B:FC:02:36:CC:83:6D:3E:8C:51:80:01:CF:CF:B7:8F:4B:AC:FF:D8 Certificate issuer: /CN=97bcbee44f4cef091985e546a6854f9ccb2ada8a Certificate serial: 019B7CEE4B8B39A13ABA61EFCC1767F72AC6 Authority key identifier: 97:BC:BE:E4:4F:4C:EF:09:19:85:E5:46:A6:85:4F:9C:CB:2A:DA:8A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l7y-5E9M7wkZheVGpoVPnMsq2oo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/0b2eef-75e9-43b2-9088-8303ad1371dd/1/O_wCNsyDbT6MUYABz8-3j0us_9g.roa Signing time: Fri 02 Jan 2026 04:19:10 +0000 ROA not before: Fri 02 Jan 2026 04:19:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41179 IP address blocks: 2a05:a944::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/0b2eef-75e9-43b2-9088-8303ad1371dd/1/l7y-5E9M7wkZheVGpoVPnMsq2oo.crl rsync://rpki.ripe.net/repository/DEFAULT/72/0b2eef-75e9-43b2-9088-8303ad1371dd/1/l7y-5E9M7wkZheVGpoVPnMsq2oo.mft rsync://rpki.ripe.net/repository/DEFAULT/l7y-5E9M7wkZheVGpoVPnMsq2oo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 10:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:4b:8b:39:a1:3a:ba:61:ef:cc:17:67:f7:2a:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97bcbee44f4cef091985e546a6854f9ccb2ada8a Validity Not Before: Jan 2 04:19:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3bfc0236cc836d3e8c518001cfcfb78f4bacffd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:96:c2:0b:63:37:65:42:4a:b1:7d:26:e9:88: 9e:c0:b0:08:fe:67:9a:cc:b0:51:c4:38:c4:e7:4e: ed:9d:a4:af:e2:79:a1:62:28:aa:f3:33:68:09:79: dc:37:57:40:73:e1:17:e2:e4:ef:1f:b6:70:95:10: 65:fb:2e:1e:92:dd:c3:37:aa:aa:b3:4b:36:1d:44: 53:bd:1a:b1:a9:44:4d:9a:72:d1:b8:7f:25:98:b2: 9f:52:80:a8:04:8f:46:96:0c:32:bf:40:34:f6:a6: aa:d9:44:2e:7d:34:91:03:f3:71:2c:d4:ff:b0:55: 00:2a:ca:f7:42:07:4a:7a:46:9d:43:b8:d5:68:bd: 23:70:03:da:44:6f:6c:d7:c5:b7:c0:3b:92:95:07: 6d:ea:18:eb:6d:21:f2:46:ef:ea:84:ea:65:24:c5: 68:be:01:b0:3a:f1:8d:9f:ee:12:5b:e2:64:8e:5e: 63:78:59:3d:3a:19:f8:f6:3f:e0:41:1c:cb:2b:4e: 47:65:be:c8:21:75:4f:03:67:32:16:0b:4d:28:be: 5f:f5:cb:32:c8:b8:37:23:4f:99:59:a4:24:2c:7a: 25:3e:aa:ef:9f:8d:0f:f3:7d:32:bb:27:03:4c:4d: 01:fa:60:5e:f1:dc:0b:3c:d2:62:d1:57:7f:71:ba: 1f:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:FC:02:36:CC:83:6D:3E:8C:51:80:01:CF:CF:B7:8F:4B:AC:FF:D8 X509v3 Authority Key Identifier: keyid:97:BC:BE:E4:4F:4C:EF:09:19:85:E5:46:A6:85:4F:9C:CB:2A:DA:8A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l7y-5E9M7wkZheVGpoVPnMsq2oo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/0b2eef-75e9-43b2-9088-8303ad1371dd/1/O_wCNsyDbT6MUYABz8-3j0us_9g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/72/0b2eef-75e9-43b2-9088-8303ad1371dd/1/l7y-5E9M7wkZheVGpoVPnMsq2oo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:a944::/48 Signature Algorithm: sha256WithRSAEncryption 30:67:33:55:12:c4:04:5a:23:1a:15:ef:d7:9d:e3:ec:6f:54: de:71:e9:72:71:28:ec:37:7f:75:12:6c:01:87:72:76:4a:0b: 25:69:4a:e5:34:b9:1e:a3:2d:28:17:82:05:94:ef:8e:65:8e: 5a:63:02:7c:d3:57:67:86:79:23:8e:77:3a:1a:a2:7a:ba:2b: 30:4c:03:bf:46:e0:aa:0a:0b:db:be:88:fa:8a:2a:9d:1c:98: 3c:d9:e3:1c:0d:8d:86:06:3a:a5:2c:17:90:b5:40:01:90:98: d5:41:4b:45:56:1a:39:35:fe:00:b8:5a:d0:d0:33:b4:a6:23: 70:6e:02:23:78:f4:65:70:e2:29:63:76:29:ab:da:e9:f9:48: 50:5a:70:14:e1:d8:8e:e9:48:96:99:45:33:6e:d2:32:36:05: 3e:7c:68:b9:de:ce:62:74:0c:3e:8b:49:e9:d4:b7:77:42:9f: 58:07:f2:5f:7b:71:f2:52:11:d9:17:4f:e7:81:a7:42:a5:f0: 4d:b5:31:12:b0:5d:5c:ec:fa:b1:da:c1:95:56:6e:44:6a:b8: 15:65:cd:e2:b0:a0:d7:6b:26:a9:d1:8e:58:3a:4a:03:62:43: a8:5c:ae:b5:9f:15:30:a7:19:45:d5:d2:e7:8c:90:3a:f0:93: c9:66:50:17 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt87kuLOaE6umHvzBdn9yrGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk3YmNiZWU0NGY0Y2VmMDkxOTg1ZTU0NmE2ODU0ZjljY2Iy YWRhOGEwHhcNMjYwMTAyMDQxOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYmZjMDIzNmNjODM2ZDNlOGM1MTgwMDFjZmNmYjc4ZjRiYWNmZmQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvpbCC2M3ZUJKsX0m6YiewLAI/mea zLBRxDjE507tnaSv4nmhYiiq8zNoCXncN1dAc+EX4uTvH7ZwlRBl+y4ekt3DN6qq s0s2HURTvRqxqURNmnLRuH8lmLKfUoCoBI9Glgwyv0A09qaq2UQufTSRA/NxLNT/ sFUAKsr3QgdKekadQ7jVaL0jcAPaRG9s18W3wDuSlQdt6hjrbSHyRu/qhOplJMVo vgGwOvGNn+4SW+Jkjl5jeFk9Ohn49j/gQRzLK05HZb7IIXVPA2cyFgtNKL5f9csy yLg3I0+ZWaQkLHolPqrvn40P830yuycDTE0B+mBe8dwLPNJi0Vd/cbofnQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFDv8AjbMg20+jFGAAc/Pt49LrP/YMB8GA1UdIwQY MBaAFJe8vuRPTO8JGYXlRqaFT5zLKtqKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbDd5LTVFOU03d2taaGVWR3BvVlBuTXNxMm9vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi8wYjJlZWYtNzVlOS00M2IyLTkwODgt ODMwM2FkMTM3MWRkLzEvT193Q05zeURiVDZNVVlBQno4LTNqMHVzXzlnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Mi8wYjJlZWYtNzVlOS00M2IyLTkwODgtODMwM2FkMTM3MWRk LzEvbDd5LTVFOU03d2taaGVWR3BvVlBuTXNxMm9vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgWpRAAA MA0GCSqGSIb3DQEBCwUAA4IBAQAwZzNVEsQEWiMaFe/XnePsb1TecelycSjsN391 EmwBh3J2SgslaUrlNLkeoy0oF4IFlO+OZY5aYwJ801dnhnkjjnc6GqJ6uiswTAO/ RuCqCgvbvoj6iiqdHJg82eMcDY2GBjqlLBeQtUABkJjVQUtFVho5Nf4AuFrQ0DO0 piNwbgIjePRlcOIpY3Ypq9rp+UhQWnAU4diO6UiWmUUzbtIyNgU+fGi53s5idAw+ i0np1Ld3Qp9YB/Jfe3HyUhHZF0/ngadCpfBNtTESsF1c7Pqx2sGVVm5EargVZc3i sKDXayap0Y5YOkoDYkOoXK61nxUwpxlF1dLnjJA68JPJZlAX -----END CERTIFICATE-----Generated at Sun Jan 25 18:09:37 2026 by rpki-client