This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oOrJ1mX-eBcznfB-6h_-uiPoUU4.roa File: oOrJ1mX-eBcznfB-6h_-uiPoUU4.roa (raw, json) Hash identifier: JC0s2WTzEg4/KUWP2gEhCQYV0XyL5LJW76D+euRX/Y8= Subject key identifier: A0:EA:C9:D6:65:FE:78:17:33:9D:F0:7E:EA:1F:FE:BA:23:E8:51:4E Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e Certificate serial: 019B7AC8E2D1CCA43D34BFC6822BB2CDF6FA Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oOrJ1mX-eBcznfB-6h_-uiPoUU4.roa Signing time: Thu 01 Jan 2026 18:19:03 +0000 ROA not before: Thu 01 Jan 2026 18:19:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41334 IP address blocks: 91.88.0.0/16 maxlen: 16 2a00:d780::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.mft rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:e2:d1:cc:a4:3d:34:bf:c6:82:2b:b2:cd:f6:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e Validity Not Before: Jan 1 18:19:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a0eac9d665fe7817339df07eea1ffeba23e8514e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:2b:ad:c0:d8:d6:72:49:74:29:76:6f:f6:ba: 5b:0b:80:b7:7c:6c:b4:0a:ad:48:f8:3f:c0:80:97: 44:99:a6:7d:1f:96:67:2b:ab:77:13:d9:16:35:61: d6:3d:f1:27:13:f4:23:b5:6f:02:c4:7c:54:f6:cf: 83:37:83:36:02:bd:3e:20:74:27:ca:f3:27:d8:6b: 39:6d:01:85:55:f3:83:68:c4:a4:b4:d0:75:20:71: f5:f2:ab:df:b6:c0:ee:fb:5b:27:b4:2c:f6:8c:fc: c5:98:2e:19:0d:32:27:d5:fc:0b:74:07:c2:cb:df: 32:98:90:40:a9:b3:d0:ed:d8:15:a3:ec:0c:c0:58: ee:19:42:68:bf:31:86:8a:30:b2:dd:a3:e8:8a:6f: 75:b1:e6:32:52:a8:ad:b1:78:25:a6:b8:11:54:76: a3:78:1b:37:61:f8:e4:d2:66:8a:52:9a:6b:89:eb: 8c:9f:89:ae:be:91:6b:f2:f4:ed:e1:d3:71:ab:4f: 95:ff:1c:f2:f0:fc:2b:59:fc:c1:8a:b5:78:31:9e: 70:38:38:e0:d2:63:64:dc:5e:77:80:a8:a9:e0:0a: 1a:12:a6:b9:8f:30:e6:af:f5:11:93:a3:2d:59:e5: ab:c6:eb:f7:2c:f9:f4:bc:3b:34:6b:cf:b4:26:f5: 6b:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:EA:C9:D6:65:FE:78:17:33:9D:F0:7E:EA:1F:FE:BA:23:E8:51:4E X509v3 Authority Key Identifier: keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oOrJ1mX-eBcznfB-6h_-uiPoUU4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.88.0.0/16 IPv6: 2a00:d780::/32 Signature Algorithm: sha256WithRSAEncryption 37:2b:8b:60:72:6e:be:83:db:ff:ab:9f:06:b5:41:3b:8a:9d: a8:49:27:7f:b2:c4:0e:d4:4a:7f:e7:c9:a9:fa:1a:20:78:5b: ec:86:26:61:26:2f:5b:75:07:a9:f7:5c:4c:a2:24:3d:ce:a1: 73:a7:c0:6b:24:ea:b0:27:f1:e9:e9:4f:13:4a:65:1b:58:48: ac:3f:64:1d:d9:33:ec:47:77:79:4c:e3:9c:41:2e:bf:00:98: 1f:ed:f7:0d:42:2a:5e:b3:d5:36:53:ab:62:5c:e3:c4:42:42: 18:4c:00:44:f7:59:f0:f8:ff:7d:f8:f5:9f:65:47:aa:43:a9: 29:3c:95:38:2e:37:55:4a:70:5b:bb:92:40:97:61:d3:ef:47: a1:12:1f:c2:d4:d4:8d:0d:66:a6:89:c5:49:3c:cb:b5:57:9d: c2:80:38:be:d1:30:14:83:b8:bb:cc:9e:08:e1:7f:d7:e6:6f: 88:22:60:2c:aa:fc:a5:ff:4f:f4:3d:df:c4:08:fc:20:90:57: fb:dc:19:a0:29:21:36:2e:d7:50:e1:d7:1b:31:31:38:df:80: e5:80:bf:94:87:6c:f8:bf:06:58:4a:7e:b3:0f:52:a6:90:a2: f4:53:30:0c:9c:a6:3c:0b:b6:23:d7:a0:3a:a8:3c:bd:18:37: a8:77:d5:71 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZt6yOLRzKQ9NL/Ggiuyzfb6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwZWY1ZmJiZmNhN2E5M2NmZWU5NjVlZWI2YmRlZTZmYjQz YzQwM2UwHhcNMjYwMTAxMTgxOTAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMGVhYzlkNjY1ZmU3ODE3MzM5ZGYwN2VlYTFmZmViYTIzZTg1MTRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtiutwNjWckl0KXZv9rpbC4C3fGy0 Cq1I+D/AgJdEmaZ9H5ZnK6t3E9kWNWHWPfEnE/QjtW8CxHxU9s+DN4M2Ar0+IHQn yvMn2Gs5bQGFVfODaMSktNB1IHH18qvftsDu+1sntCz2jPzFmC4ZDTIn1fwLdAfC y98ymJBAqbPQ7dgVo+wMwFjuGUJovzGGijCy3aPoim91seYyUqitsXglprgRVHaj eBs3Yfjk0maKUpprieuMn4muvpFr8vTt4dNxq0+V/xzy8PwrWfzBirV4MZ5wODjg 0mNk3F53gKip4AoaEqa5jzDmr/URk6MtWeWrxuv3LPn0vDs0a8+0JvVrYwIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFKDqydZl/ngXM53wfuof/roj6FFOMB8GA1UdIwQY MBaAFKDvX7v8p6k8/ull7ra97m+0PEA+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb085ZnVfeW5xVHotNldYdXRyM3ViN1E4UUQ0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi9mZTkxNWMtYmY3MC00NjAyLThhM2Mt MDI5MmIwMjAxNTBhLzEvb09ySjFtWC1lQmN6bmZCLTZoXy11aVBvVVU0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Mi9mZTkxNWMtYmY3MC00NjAyLThhM2MtMDI5MmIwMjAxNTBh LzEvb085ZnVfeW5xVHotNldYdXRyM3ViN1E4UUQ0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDALBAIAATAFAwMAW1gwDQQC AAIwBwMFACoA14AwDQYJKoZIhvcNAQELBQADggEBADcri2Bybr6D2/+rnwa1QTuK nahJJ3+yxA7USn/nyan6GiB4W+yGJmEmL1t1B6n3XEyiJD3OoXOnwGsk6rAn8enp TxNKZRtYSKw/ZB3ZM+xHd3lM45xBLr8AmB/t9w1CKl6z1TZTq2Jc48RCQhhMAET3 WfD4/3349Z9lR6pDqSk8lTguN1VKcFu7kkCXYdPvR6ESH8LU1I0NZqaJxUk8y7VX ncKAOL7RMBSDuLvMngjhf9fmb4giYCyq/KX/T/Q938QI/CCQV/vcGaApITYu11Dh 1xsxMTjfgOWAv5SHbPi/BlhKfrMPUqaQovRTMAycpjwLtiPXoDqoPL0YN6h31XE= -----END CERTIFICATE-----Generated at Mon Jan 26 00:39:19 2026 by rpki-client