This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/c931fc-df1e-4bb1-9de9-d74a12959ad7/1/o8WUGclaUTK-Yx3TsVxtYw-6VCM.roa File: o8WUGclaUTK-Yx3TsVxtYw-6VCM.roa (raw, json) Hash identifier: +0iTbM7TxxU8I5HwGr9jHcdLf9Mcq2k7c23zU2G7lvE= Subject key identifier: A3:C5:94:19:C9:5A:51:32:BE:63:1D:D3:B1:5C:6D:63:0F:BA:54:23 Certificate issuer: /CN=5bd6cbdaa794a97a7d8266702cb054f1b249d4bf Certificate serial: 019B7758BE23117C7A8EA7223D1C8059DCEC Authority key identifier: 5B:D6:CB:DA:A7:94:A9:7A:7D:82:66:70:2C:B0:54:F1:B2:49:D4:BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W9bL2qeUqXp9gmZwLLBU8bJJ1L8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/c931fc-df1e-4bb1-9de9-d74a12959ad7/1/o8WUGclaUTK-Yx3TsVxtYw-6VCM.roa Signing time: Thu 01 Jan 2026 02:17:43 +0000 ROA not before: Thu 01 Jan 2026 02:17:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 2200 IP address blocks: 192.33.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/c931fc-df1e-4bb1-9de9-d74a12959ad7/1/W9bL2qeUqXp9gmZwLLBU8bJJ1L8.crl rsync://rpki.ripe.net/repository/DEFAULT/80/c931fc-df1e-4bb1-9de9-d74a12959ad7/1/W9bL2qeUqXp9gmZwLLBU8bJJ1L8.mft rsync://rpki.ripe.net/repository/DEFAULT/W9bL2qeUqXp9gmZwLLBU8bJJ1L8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 20:01:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:be:23:11:7c:7a:8e:a7:22:3d:1c:80:59:dc:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5bd6cbdaa794a97a7d8266702cb054f1b249d4bf Validity Not Before: Jan 1 02:17:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a3c59419c95a5132be631dd3b15c6d630fba5423 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:a0:59:cc:c7:1c:87:28:c4:0d:9b:66:3f:0b: 59:da:64:3a:d4:a5:90:56:8b:7c:44:92:e8:56:56: c5:a7:de:3e:d5:f5:7d:06:56:b7:e4:92:1d:0a:4d: ad:6b:18:ce:52:f8:1c:e0:a4:18:ab:41:6d:2d:10: e0:fd:d7:4f:cf:81:ee:31:77:34:7e:ae:2b:87:f3: 4a:5e:56:43:8a:51:be:fd:a8:3f:bf:31:66:44:f1: 3f:d6:b8:97:6b:1b:bb:15:2b:82:b4:a3:f5:24:3b: ce:d0:b9:37:d6:8b:3f:ae:b7:12:5c:24:bf:7d:e2: d4:69:64:d4:45:c4:05:cc:e6:52:c2:fb:fc:19:62: 83:0a:eb:45:64:74:2a:c3:a0:3d:dd:14:53:d4:9a: a9:5c:d8:cd:21:aa:6e:8e:06:e7:80:00:f9:3e:71: db:65:89:ab:f8:59:7d:af:77:de:7f:21:f8:3a:a7: 5f:a6:de:be:31:90:60:80:63:2c:ce:2a:3d:8c:0e: 72:b4:89:da:09:e4:e5:6c:7c:b8:24:c2:c9:98:e1: a6:ea:a0:3a:8d:1a:56:2f:46:8d:f8:d2:8d:26:cc: 09:bd:f7:59:f5:60:7a:fb:f0:08:cd:be:b9:e4:99: 23:e8:96:0f:cf:a2:68:24:fb:cf:f0:57:e3:32:ec: 72:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:C5:94:19:C9:5A:51:32:BE:63:1D:D3:B1:5C:6D:63:0F:BA:54:23 X509v3 Authority Key Identifier: keyid:5B:D6:CB:DA:A7:94:A9:7A:7D:82:66:70:2C:B0:54:F1:B2:49:D4:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W9bL2qeUqXp9gmZwLLBU8bJJ1L8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/c931fc-df1e-4bb1-9de9-d74a12959ad7/1/o8WUGclaUTK-Yx3TsVxtYw-6VCM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/c931fc-df1e-4bb1-9de9-d74a12959ad7/1/W9bL2qeUqXp9gmZwLLBU8bJJ1L8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.33.156.0/24 Signature Algorithm: sha256WithRSAEncryption 37:59:dd:0a:8e:c4:93:09:92:67:91:90:82:c7:4a:85:85:a5: 8d:ec:6e:ad:3e:65:4a:ec:df:b6:40:e0:5d:b6:af:3d:c9:c0: bc:93:66:e6:72:be:dd:64:a7:d1:02:ac:21:7c:e4:6f:15:5d: 9a:22:b9:36:a1:88:3d:e8:d4:8b:3b:3e:e1:a5:f1:fc:46:a9: 78:1e:13:32:e4:b9:90:eb:cb:7f:41:b8:d6:c6:96:3d:22:9a: f3:a5:58:23:9a:a6:0c:e9:17:b2:e1:6e:63:13:96:5b:aa:8e: 04:c8:54:1d:5b:22:4d:e3:52:1f:ff:5a:71:4d:28:03:98:18: 2c:a3:48:ea:09:e2:f7:7f:b2:ec:56:78:8d:3b:16:43:5e:7d: d5:38:ee:f7:8c:57:37:9e:62:ad:6c:86:ca:92:40:98:90:08: 6b:25:04:2f:2c:6c:38:ef:f2:f2:39:3b:4c:d8:a1:78:59:19: 98:e2:c6:63:c4:30:30:bf:55:6a:a3:04:80:9a:17:a5:1f:8d: 28:83:50:2e:8f:27:17:c4:f6:a9:19:0e:7c:72:48:1e:6c:98: d9:5e:ad:08:a5:13:bb:90:c1:d1:d4:08:75:e3:72:33:23:40: 98:0c:68:f9:6b:f2:f4:11:bb:9f:06:8b:3e:f5:3b:6c:ee:4c: 35:49:e8:8a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3WL4jEXx6jqciPRyAWdzsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDViZDZjYmRhYTc5NGE5N2E3ZDgyNjY3MDJjYjA1NGYxYjI0 OWQ0YmYwHhcNMjYwMTAxMDIxNzQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhM2M1OTQxOWM5NWE1MTMyYmU2MzFkZDNiMTVjNmQ2MzBmYmE1NDIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnKBZzMcchyjEDZtmPwtZ2mQ61KWQ Vot8RJLoVlbFp94+1fV9Bla35JIdCk2taxjOUvgc4KQYq0FtLRDg/ddPz4HuMXc0 fq4rh/NKXlZDilG+/ag/vzFmRPE/1riXaxu7FSuCtKP1JDvO0Lk31os/rrcSXCS/ feLUaWTURcQFzOZSwvv8GWKDCutFZHQqw6A93RRT1JqpXNjNIapujgbngAD5PnHb ZYmr+Fl9r3fefyH4Oqdfpt6+MZBggGMszio9jA5ytInaCeTlbHy4JMLJmOGm6qA6 jRpWL0aN+NKNJswJvfdZ9WB6+/AIzb655Jkj6JYPz6JoJPvP8FfjMuxyIQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKPFlBnJWlEyvmMd07FcbWMPulQjMB8GA1UdIwQY MBaAFFvWy9qnlKl6fYJmcCywVPGySdS/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVzliTDJxZVVxWHA5Z21ad0xMQlU4YkpKMUw4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC9jOTMxZmMtZGYxZS00YmIxLTlkZTkt ZDc0YTEyOTU5YWQ3LzEvbzhXVUdjbGFVVEstWXgzVHNWeHRZdy02VkNNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC9jOTMxZmMtZGYxZS00YmIxLTlkZTktZDc0YTEyOTU5YWQ3 LzEvVzliTDJxZVVxWHA5Z21ad0xMQlU4YkpKMUw4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwCGcMA0G CSqGSIb3DQEBCwUAA4IBAQA3Wd0KjsSTCZJnkZCCx0qFhaWN7G6tPmVK7N+2QOBd tq89ycC8k2bmcr7dZKfRAqwhfORvFV2aIrk2oYg96NSLOz7hpfH8Rql4HhMy5LmQ 68t/QbjWxpY9IprzpVgjmqYM6Rey4W5jE5Zbqo4EyFQdWyJN41If/1pxTSgDmBgs o0jqCeL3f7LsVniNOxZDXn3VOO73jFc3nmKtbIbKkkCYkAhrJQQvLGw47/LyOTtM 2KF4WRmY4sZjxDAwv1VqowSAmhelH40og1AujycXxPapGQ58ckgebJjZXq0IpRO7 kMHR1Ah143IzI0CYDGj5a/L0EbufBos+9Tts7kw1SeiK -----END CERTIFICATE-----Generated at Mon Jan 26 04:38:58 2026 by rpki-client