This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/ec84d7-ed3e-4ada-beb9-18e65e64df71/1/osHVQH8VsNLb4CfrwBHFrXKWzUM.roa File: osHVQH8VsNLb4CfrwBHFrXKWzUM.roa (raw, json) Hash identifier: VoKNeQ3l9XKj9V37+GVfXeQ4vJfOENAKEnCMkVGQkdE= Subject key identifier: A2:C1:D5:40:7F:15:B0:D2:DB:E0:27:EB:C0:11:C5:AD:72:96:CD:43 Certificate issuer: /CN=84827de36da383801ec42a8043c787253776037e Certificate serial: 019B7DC88D7470D11B1AA17C5D9D6DBB575D Authority key identifier: 84:82:7D:E3:6D:A3:83:80:1E:C4:2A:80:43:C7:87:25:37:76:03:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hIJ9422jg4AexCqAQ8eHJTd2A34.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/ec84d7-ed3e-4ada-beb9-18e65e64df71/1/osHVQH8VsNLb4CfrwBHFrXKWzUM.roa Signing time: Fri 02 Jan 2026 08:17:33 +0000 ROA not before: Fri 02 Jan 2026 08:17:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12350 IP address blocks: 195.13.52.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/ec84d7-ed3e-4ada-beb9-18e65e64df71/1/hIJ9422jg4AexCqAQ8eHJTd2A34.crl rsync://rpki.ripe.net/repository/DEFAULT/7c/ec84d7-ed3e-4ada-beb9-18e65e64df71/1/hIJ9422jg4AexCqAQ8eHJTd2A34.mft rsync://rpki.ripe.net/repository/DEFAULT/hIJ9422jg4AexCqAQ8eHJTd2A34.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c8:8d:74:70:d1:1b:1a:a1:7c:5d:9d:6d:bb:57:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84827de36da383801ec42a8043c787253776037e Validity Not Before: Jan 2 08:17:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a2c1d5407f15b0d2dbe027ebc011c5ad7296cd43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:61:bb:2f:d1:d6:0b:85:72:74:c1:1f:6c:b7: cc:af:ba:ff:3b:66:ba:5c:c9:d2:71:56:2c:cd:20: a9:a0:99:3e:af:2a:05:12:55:7a:95:c7:8d:8d:11: 9d:ff:a9:4f:a8:33:22:d4:64:fc:5f:2c:64:c6:a2: 34:66:02:3b:00:bc:86:56:29:9a:f2:f1:55:28:e4: 77:e4:b8:05:77:83:a9:24:54:71:ee:1f:74:44:cd: 1d:6e:70:91:bb:5d:3c:db:3d:88:cc:96:f7:07:8e: 72:f7:99:55:93:6d:d1:d2:25:47:c9:99:b6:c8:d5: 91:3e:8f:7e:4a:c8:c7:a2:c4:56:d9:22:b0:ee:75: 4c:d4:88:5d:7a:70:f7:a7:ad:f5:ba:43:39:de:71: 85:99:8e:38:1b:17:48:75:8a:a0:11:36:e7:ae:50: e0:bb:4f:e9:d1:86:46:2f:2a:d8:b6:be:96:4e:21: 09:6f:87:e4:0c:55:1e:b5:2f:51:b7:6a:8a:1f:26: a1:32:46:fe:53:16:50:b8:47:fb:83:6b:27:07:ed: c3:53:e9:e3:35:ab:b0:03:41:9e:f5:c8:0a:6c:c2: 16:5d:76:51:db:af:96:c5:30:38:fa:73:40:af:a4: cf:08:de:ce:e6:e1:4c:65:31:6a:f0:ef:8a:6d:e9: 6a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:C1:D5:40:7F:15:B0:D2:DB:E0:27:EB:C0:11:C5:AD:72:96:CD:43 X509v3 Authority Key Identifier: keyid:84:82:7D:E3:6D:A3:83:80:1E:C4:2A:80:43:C7:87:25:37:76:03:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hIJ9422jg4AexCqAQ8eHJTd2A34.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/ec84d7-ed3e-4ada-beb9-18e65e64df71/1/osHVQH8VsNLb4CfrwBHFrXKWzUM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/ec84d7-ed3e-4ada-beb9-18e65e64df71/1/hIJ9422jg4AexCqAQ8eHJTd2A34.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.13.52.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:78:29:dc:be:92:31:74:c2:ad:ec:b1:35:70:56:fe:1a:4c: 2a:c4:21:c7:0d:04:6a:ab:52:99:5a:b3:ff:0e:32:c0:04:12: 53:f6:56:83:dd:dd:b4:51:9f:3c:66:e3:47:7b:a0:d0:83:26: a7:72:36:82:24:a3:ae:95:da:2f:08:b6:52:3d:8c:22:de:1a: cb:9b:ae:00:4d:ae:3c:65:7a:f7:16:ab:e7:d2:68:49:e3:86: ac:4f:52:4f:96:a9:3b:b6:02:90:cf:6d:40:df:7b:31:5e:fc: 93:53:a7:5e:e9:38:31:9c:00:cb:c1:74:bb:15:b9:4f:d4:11: d3:3f:9a:b3:de:42:b1:cd:32:bb:e9:eb:8a:a2:10:fd:83:44: 0e:25:99:db:7c:22:91:da:c0:95:75:4b:d3:5d:f2:72:e9:79: b5:e6:a8:23:88:07:19:7e:0c:7e:13:af:01:4a:ac:df:78:ae: a3:30:52:bd:82:cc:da:68:6a:ff:8c:1b:f4:7e:2b:b9:91:38: 6b:77:2f:36:86:ac:b8:68:fb:f7:58:29:1a:1a:07:86:f8:5d: 3c:90:b8:65:37:25:4c:e4:59:10:1e:0e:1c:05:6a:58:2b:88: 7d:10:11:f0:04:47:a9:99:84:8a:67:98:d6:0d:3e:3f:ca:a5: 49:f4:b5:d8 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9yI10cNEbGqF8XZ1tu1ddMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0ODI3ZGUzNmRhMzgzODAxZWM0MmE4MDQzYzc4NzI1Mzc3 NjAzN2UwHhcNMjYwMTAyMDgxNzMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMmMxZDU0MDdmMTViMGQyZGJlMDI3ZWJjMDExYzVhZDcyOTZjZDQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqWG7L9HWC4VydMEfbLfMr7r/O2a6 XMnScVYszSCpoJk+ryoFElV6lceNjRGd/6lPqDMi1GT8XyxkxqI0ZgI7ALyGVima 8vFVKOR35LgFd4OpJFRx7h90RM0dbnCRu1082z2IzJb3B45y95lVk23R0iVHyZm2 yNWRPo9+SsjHosRW2SKw7nVM1IhdenD3p631ukM53nGFmY44GxdIdYqgETbnrlDg u0/p0YZGLyrYtr6WTiEJb4fkDFUetS9Rt2qKHyahMkb+UxZQuEf7g2snB+3DU+nj NauwA0Ge9cgKbMIWXXZR26+WxTA4+nNAr6TPCN7O5uFMZTFq8O+KbelqIwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKLB1UB/FbDS2+An68ARxa1yls1DMB8GA1UdIwQY MBaAFISCfeNto4OAHsQqgEPHhyU3dgN+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaElKOTQyMmpnNEFleENxQVE4ZUhKVGQyQTM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy9lYzg0ZDctZWQzZS00YWRhLWJlYjkt MThlNjVlNjRkZjcxLzEvb3NIVlFIOFZzTkxiNENmcndCSEZyWEtXelVNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yy9lYzg0ZDctZWQzZS00YWRhLWJlYjktMThlNjVlNjRkZjcx LzEvaElKOTQyMmpnNEFleENxQVE4ZUhKVGQyQTM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBww00MA0G CSqGSIb3DQEBCwUAA4IBAQA/eCncvpIxdMKt7LE1cFb+GkwqxCHHDQRqq1KZWrP/ DjLABBJT9laD3d20UZ88ZuNHe6DQgyancjaCJKOuldovCLZSPYwi3hrLm64ATa48 ZXr3Fqvn0mhJ44asT1JPlqk7tgKQz21A33sxXvyTU6de6TgxnADLwXS7FblP1BHT P5qz3kKxzTK76euKohD9g0QOJZnbfCKR2sCVdUvTXfJy6Xm15qgjiAcZfgx+E68B SqzfeK6jMFK9gszaaGr/jBv0fiu5kThrdy82hqy4aPv3WCkaGgeG+F08kLhlNyVM 5FkQHg4cBWpYK4h9EBHwBEepmYSKZ5jWDT4/yqVJ9LXY -----END CERTIFICATE-----Generated at Mon Jan 26 08:37:42 2026 by rpki-client