This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/b278df-ed37-4de7-a675-107a8d85bd30/1/oOGxWgRI9chP9dLuo4u1njWP4rQ.roa File: oOGxWgRI9chP9dLuo4u1njWP4rQ.roa (raw, json) Hash identifier: NtM4yc9nFeOQLsS06C9rnI3lpf0UgW1F4jqaGJ55u5w= Subject key identifier: A0:E1:B1:5A:04:48:F5:C8:4F:F5:D2:EE:A3:8B:B5:9E:35:8F:E2:B4 Certificate issuer: /CN=ed5a6ba2d2248bc4782ac0fdb3c64b946640b09c Certificate serial: 019B78A317CB22DB64CEAED78E9E016E45B5 Authority key identifier: ED:5A:6B:A2:D2:24:8B:C4:78:2A:C0:FD:B3:C6:4B:94:66:40:B0:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7VprotIki8R4KsD9s8ZLlGZAsJw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/b278df-ed37-4de7-a675-107a8d85bd30/1/oOGxWgRI9chP9dLuo4u1njWP4rQ.roa Signing time: Thu 01 Jan 2026 08:18:32 +0000 ROA not before: Thu 01 Jan 2026 08:18:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197730 IP address blocks: 188.64.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/b278df-ed37-4de7-a675-107a8d85bd30/1/7VprotIki8R4KsD9s8ZLlGZAsJw.crl rsync://rpki.ripe.net/repository/DEFAULT/80/b278df-ed37-4de7-a675-107a8d85bd30/1/7VprotIki8R4KsD9s8ZLlGZAsJw.mft rsync://rpki.ripe.net/repository/DEFAULT/7VprotIki8R4KsD9s8ZLlGZAsJw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:17:cb:22:db:64:ce:ae:d7:8e:9e:01:6e:45:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ed5a6ba2d2248bc4782ac0fdb3c64b946640b09c Validity Not Before: Jan 1 08:18:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a0e1b15a0448f5c84ff5d2eea38bb59e358fe2b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ed:6f:68:d0:3f:62:62:5a:9d:36:8c:b1:70: 58:51:08:3c:aa:74:f2:1b:c8:38:24:b7:9f:68:19: a5:81:64:23:a7:6e:24:8e:f9:92:04:e6:b7:c1:86: 74:5a:a0:45:c1:61:4e:69:67:77:19:eb:bb:d6:cc: 57:76:06:dc:b8:16:bd:e7:51:96:92:13:55:c6:01: 79:89:35:50:d2:0c:8b:d1:36:8c:86:03:c5:97:34: bf:ae:11:7f:a1:5b:22:9b:a3:ee:5c:48:eb:50:c5: af:64:c6:fb:72:3b:02:df:fb:ff:41:11:fa:77:32: 96:03:1a:b4:cb:23:2e:ac:e9:1e:03:95:d2:d6:0c: 0a:3d:17:ca:9e:f4:9a:67:58:7d:1b:32:90:f2:a2: e8:4e:84:d6:1b:94:7c:2a:ba:bf:62:13:8a:bb:04: a2:96:c8:cf:c5:22:8c:e8:47:96:f5:e5:3c:05:70: c5:4a:10:61:7a:29:33:b2:1f:d8:f0:41:fd:7c:b6: c9:9e:6a:f7:df:d3:ec:34:d3:9a:79:3f:21:7e:5b: b5:75:d4:f7:fa:7f:b0:eb:6e:0f:e0:cf:6c:43:86: 5e:43:93:c3:f8:75:fb:33:11:ed:26:84:09:be:8c: b3:2e:e7:b8:93:59:87:47:c1:02:1a:db:8d:d7:16: e4:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:E1:B1:5A:04:48:F5:C8:4F:F5:D2:EE:A3:8B:B5:9E:35:8F:E2:B4 X509v3 Authority Key Identifier: keyid:ED:5A:6B:A2:D2:24:8B:C4:78:2A:C0:FD:B3:C6:4B:94:66:40:B0:9C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7VprotIki8R4KsD9s8ZLlGZAsJw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/b278df-ed37-4de7-a675-107a8d85bd30/1/oOGxWgRI9chP9dLuo4u1njWP4rQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/b278df-ed37-4de7-a675-107a8d85bd30/1/7VprotIki8R4KsD9s8ZLlGZAsJw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.64.143.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:1a:fe:bd:37:46:cc:a9:7c:a2:c5:02:78:3b:7b:39:03:a5: bb:9d:f1:8d:21:7c:05:ff:cb:b2:7f:3d:24:51:36:9a:11:71: f1:9e:66:da:ea:2f:cc:c8:d9:ac:b1:6c:26:60:6c:f5:3b:dd: 3c:90:c6:d9:c8:2a:9b:1d:ea:23:67:6a:49:ec:21:dd:cd:df: 69:1a:50:6e:e8:3d:f7:99:cf:87:99:64:18:6b:c4:05:ca:a7: 52:b1:df:15:00:f1:f8:d7:5b:92:4a:b9:30:8f:68:10:37:11: bb:c6:8e:f6:96:5d:27:82:1f:6f:83:78:dc:fb:47:4f:38:c1: f4:3e:bf:c7:55:9f:97:fa:2e:6b:e8:8f:ed:df:16:9d:0b:88: 86:c6:72:8c:02:6b:b6:2d:83:3b:67:68:d0:2d:ee:93:76:7a: 5a:b5:d4:1b:2c:a8:1e:fc:61:04:92:e7:3f:28:e1:88:ea:dc: 79:ff:08:83:3c:6a:03:59:68:5e:d3:19:c7:1f:6f:87:be:02: 5e:d2:0f:dc:65:d4:51:bc:10:2e:a7:12:1c:7f:b0:ba:58:f9: 2c:23:e4:3c:65:49:c9:15:86:06:b9:c6:0f:a4:8f:7a:0a:54: 24:b2:34:7a:63:f2:bc:d6:ab:b1:8c:61:3b:c0:41:ab:b6:c8: d1:2e:48:23 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4oxfLIttkzq7Xjp4BbkW1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVkNWE2YmEyZDIyNDhiYzQ3ODJhYzBmZGIzYzY0Yjk0NjY0 MGIwOWMwHhcNMjYwMTAxMDgxODMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMGUxYjE1YTA0NDhmNWM4NGZmNWQyZWVhMzhiYjU5ZTM1OGZlMmI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2u1vaNA/YmJanTaMsXBYUQg8qnTy G8g4JLefaBmlgWQjp24kjvmSBOa3wYZ0WqBFwWFOaWd3Geu71sxXdgbcuBa951GW khNVxgF5iTVQ0gyL0TaMhgPFlzS/rhF/oVsim6PuXEjrUMWvZMb7cjsC3/v/QRH6 dzKWAxq0yyMurOkeA5XS1gwKPRfKnvSaZ1h9GzKQ8qLoToTWG5R8Krq/YhOKuwSi lsjPxSKM6EeW9eU8BXDFShBheikzsh/Y8EH9fLbJnmr339PsNNOaeT8hflu1ddT3 +n+w624P4M9sQ4ZeQ5PD+HX7MxHtJoQJvoyzLue4k1mHR8ECGtuN1xbkLQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKDhsVoESPXIT/XS7qOLtZ41j+K0MB8GA1UdIwQY MBaAFO1aa6LSJIvEeCrA/bPGS5RmQLCcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN1Zwcm90SWtpOFI0S3NEOXM4WkxsR1pBc0p3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC9iMjc4ZGYtZWQzNy00ZGU3LWE2NzUt MTA3YThkODViZDMwLzEvb09HeFdnUkk5Y2hQOWRMdW80dTFualdQNHJRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC9iMjc4ZGYtZWQzNy00ZGU3LWE2NzUtMTA3YThkODViZDMw LzEvN1Zwcm90SWtpOFI0S3NEOXM4WkxsR1pBc0p3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvECPMA0G CSqGSIb3DQEBCwUAA4IBAQAPGv69N0bMqXyixQJ4O3s5A6W7nfGNIXwF/8uyfz0k UTaaEXHxnmba6i/MyNmssWwmYGz1O908kMbZyCqbHeojZ2pJ7CHdzd9pGlBu6D33 mc+HmWQYa8QFyqdSsd8VAPH411uSSrkwj2gQNxG7xo72ll0ngh9vg3jc+0dPOMH0 Pr/HVZ+X+i5r6I/t3xadC4iGxnKMAmu2LYM7Z2jQLe6TdnpatdQbLKge/GEEkuc/ KOGI6tx5/wiDPGoDWWhe0xnHH2+HvgJe0g/cZdRRvBAupxIcf7C6WPksI+Q8ZUnJ FYYGucYPpI96ClQksjR6Y/K81quxjGE7wEGrtsjRLkgj -----END CERTIFICATE-----Generated at Sun Jan 25 12:01:48 2026 by rpki-client