This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/2f339b-f19f-452f-88be-29ffc4443901/1/OyLfbjr156VI2R6lu1s2sko4xuQ.roa File: OyLfbjr156VI2R6lu1s2sko4xuQ.roa (raw, json) Hash identifier: wsr92dwS2psbt7DS2shBW+KX6UaQH5WPGbSf3r4UrZg= Subject key identifier: 3B:22:DF:6E:3A:F5:E7:A5:48:D9:1E:A5:BB:5B:36:B2:4A:38:C6:E4 Certificate issuer: /CN=75535bade37a3d6fc380442a285e157b984ca91d Certificate serial: 019B7AC896332FAD62F28B7EC1F93F634AF5 Authority key identifier: 75:53:5B:AD:E3:7A:3D:6F:C3:80:44:2A:28:5E:15:7B:98:4C:A9:1D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dVNbreN6PW_DgEQqKF4Ve5hMqR0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/2f339b-f19f-452f-88be-29ffc4443901/1/OyLfbjr156VI2R6lu1s2sko4xuQ.roa Signing time: Thu 01 Jan 2026 18:18:44 +0000 ROA not before: Thu 01 Jan 2026 18:18:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41690 IP address blocks: 185.223.156.0/22 maxlen: 24 188.65.120.0/21 maxlen: 24 195.8.214.0/23 maxlen: 24 2a03:d1c0::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/2f339b-f19f-452f-88be-29ffc4443901/1/dVNbreN6PW_DgEQqKF4Ve5hMqR0.crl rsync://rpki.ripe.net/repository/DEFAULT/81/2f339b-f19f-452f-88be-29ffc4443901/1/dVNbreN6PW_DgEQqKF4Ve5hMqR0.mft rsync://rpki.ripe.net/repository/DEFAULT/dVNbreN6PW_DgEQqKF4Ve5hMqR0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:96:33:2f:ad:62:f2:8b:7e:c1:f9:3f:63:4a:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75535bade37a3d6fc380442a285e157b984ca91d Validity Not Before: Jan 1 18:18:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3b22df6e3af5e7a548d91ea5bb5b36b24a38c6e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:8e:ae:96:4b:41:9e:72:17:94:65:9d:17:49: c6:70:77:48:ac:04:44:08:61:e3:e7:f9:ab:37:af: 6a:45:e6:b4:30:46:cf:a9:55:d5:97:2e:3b:5a:b3: d0:ae:e4:43:82:55:80:ca:13:d9:03:4e:dd:51:b4: ce:0c:d6:93:86:d7:69:5f:60:30:41:37:43:8e:bf: 96:77:3f:3d:3e:ec:e6:b8:05:be:cd:b5:3d:d1:40: 25:b5:8b:25:99:d0:79:78:e9:16:88:bc:05:52:0c: f1:2e:fa:a0:46:ea:58:3b:e0:98:70:e3:d7:c8:32: 21:32:49:37:f9:0d:42:c0:72:fb:27:c4:dc:f9:e1: 2d:a3:64:db:6e:5d:24:7b:a3:87:d7:ec:7b:cb:8d: 72:91:8a:2c:dd:eb:f8:fd:44:ef:66:79:43:54:95: 94:6c:de:c4:e6:d0:a9:ef:0c:71:7b:4f:a9:d7:7a: 9a:49:ad:6f:98:a3:50:9b:60:35:58:aa:52:94:67: 96:19:c9:b0:9a:1a:c9:09:0c:fe:58:eb:b4:49:7d: bb:a5:16:1b:6a:9d:d4:41:bc:8f:20:33:ed:56:f0: 25:d2:bb:99:80:eb:ba:b2:b0:f6:4c:bd:cf:f6:96: 39:cd:1a:c6:a8:8f:3a:d5:d3:32:e6:74:d8:f7:49: 13:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:22:DF:6E:3A:F5:E7:A5:48:D9:1E:A5:BB:5B:36:B2:4A:38:C6:E4 X509v3 Authority Key Identifier: keyid:75:53:5B:AD:E3:7A:3D:6F:C3:80:44:2A:28:5E:15:7B:98:4C:A9:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dVNbreN6PW_DgEQqKF4Ve5hMqR0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/2f339b-f19f-452f-88be-29ffc4443901/1/OyLfbjr156VI2R6lu1s2sko4xuQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/81/2f339b-f19f-452f-88be-29ffc4443901/1/dVNbreN6PW_DgEQqKF4Ve5hMqR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.223.156.0/22 188.65.120.0/21 195.8.214.0/23 IPv6: 2a03:d1c0::/29 Signature Algorithm: sha256WithRSAEncryption 43:c6:6d:fb:5a:69:82:c9:a3:21:ac:21:67:8e:fe:e4:95:50: fc:38:8b:61:c4:83:a6:3e:de:74:23:cf:a1:9b:d8:05:0d:f4: 71:78:71:1d:e3:2b:eb:15:50:a5:36:53:f3:e5:82:1b:fd:fe: 09:0a:59:d6:98:f8:09:c2:13:98:07:f4:58:3d:34:cb:28:72: 6a:d1:89:33:ff:8e:fa:9f:c6:dd:8e:da:bb:a0:3c:f0:3e:9a: 58:f2:1b:25:cb:1c:d0:46:52:e2:70:e4:23:f7:0c:eb:e2:c5: a8:9f:9d:00:93:a0:8b:be:2c:37:43:60:73:89:fc:eb:5c:eb: 50:32:97:85:16:b5:43:ca:cb:7a:42:85:f5:9e:71:7e:6b:7a: ea:34:e4:94:b5:90:fb:91:b5:bb:22:dc:05:28:7d:37:16:a2: 34:b4:8a:79:81:a7:94:69:ea:35:19:3c:7b:0f:8e:9d:ac:98: 76:4e:ad:68:35:5c:f5:60:a0:56:55:ad:64:99:03:b8:d7:89: 72:e7:fc:cb:1b:f9:61:b6:38:c4:fa:e4:0d:da:28:7b:f7:76: b9:97:d9:3f:6f:9e:c9:02:23:81:fa:f5:52:78:8f:ff:3e:08: 67:ea:c1:91:6d:97:02:be:09:af:f7:48:f1:0b:35:58:2a:d9: 9f:6f:ea:c0 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISAZt6yJYzL61i8ot+wfk/Y0r1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1NTM1YmFkZTM3YTNkNmZjMzgwNDQyYTI4NWUxNTdiOTg0 Y2E5MWQwHhcNMjYwMTAxMTgxODQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYjIyZGY2ZTNhZjVlN2E1NDhkOTFlYTViYjViMzZiMjRhMzhjNmU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz46ulktBnnIXlGWdF0nGcHdIrARE CGHj5/mrN69qRea0MEbPqVXVly47WrPQruRDglWAyhPZA07dUbTODNaThtdpX2Aw QTdDjr+Wdz89PuzmuAW+zbU90UAltYslmdB5eOkWiLwFUgzxLvqgRupYO+CYcOPX yDIhMkk3+Q1CwHL7J8Tc+eEto2Tbbl0ke6OH1+x7y41ykYos3ev4/UTvZnlDVJWU bN7E5tCp7wxxe0+p13qaSa1vmKNQm2A1WKpSlGeWGcmwmhrJCQz+WOu0SX27pRYb ap3UQbyPIDPtVvAl0ruZgOu6srD2TL3P9pY5zRrGqI861dMy5nTY90kT+QIDAQAB o4ICJDCCAiAwHQYDVR0OBBYEFDsi32469eelSNkepbtbNrJKOMbkMB8GA1UdIwQY MBaAFHVTW63jej1vw4BEKiheFXuYTKkdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZFZOYnJlTjZQV19EZ0VRcUtGNFZlNWhNcVIwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8yZjMzOWItZjE5Zi00NTJmLTg4YmUt MjlmZmM0NDQzOTAxLzEvT3lMZmJqcjE1NlZJMlI2bHUxczJza280eHVRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MS8yZjMzOWItZjE5Zi00NTJmLTg4YmUtMjlmZmM0NDQzOTAx LzEvZFZOYnJlTjZQV19EZ0VRcUtGNFZlNWhNcVIwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQCud+cAwQD vEF4AwQBwwjWMA0EAgACMAcDBQMqA9HAMA0GCSqGSIb3DQEBCwUAA4IBAQBDxm37 WmmCyaMhrCFnjv7klVD8OIthxIOmPt50I8+hm9gFDfRxeHEd4yvrFVClNlPz5YIb /f4JClnWmPgJwhOYB/RYPTTLKHJq0Ykz/476n8bdjtq7oDzwPppY8hslyxzQRlLi cOQj9wzr4sWon50Ak6CLviw3Q2BzifzrXOtQMpeFFrVDyst6QoX1nnF+a3rqNOSU tZD7kbW7ItwFKH03FqI0tIp5gaeUaeo1GTx7D46drJh2Tq1oNVz1YKBWVa1kmQO4 14ly5/zLG/lhtjjE+uQN2ih793a5l9k/b57JAiOB+vVSeI//Pghn6sGRbZcCvgmv 90jxCzVYKtmfb+rA -----END CERTIFICATE-----Generated at Sun Jan 25 21:06:38 2026 by rpki-client