This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/0330fb-95d1-4302-bea1-f54577f7cc0f/1/OgWEvpt9l3fjUZPTGCjCIeBKF7g.roa File: OgWEvpt9l3fjUZPTGCjCIeBKF7g.roa (raw, json) Hash identifier: ERaqLzlMb64hRM2SkbR4/skAX7oKEBTPX2o20Ce35C4= Subject key identifier: 3A:05:84:BE:9B:7D:97:77:E3:51:93:D3:18:28:C2:21:E0:4A:17:B8 Certificate issuer: /CN=60ea8385a14fd9967978ae7f06ec4dd52229a44a Certificate serial: 019B78A334F743E90DE632B925A154B86A3B Authority key identifier: 60:EA:83:85:A1:4F:D9:96:79:78:AE:7F:06:EC:4D:D5:22:29:A4:4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YOqDhaFP2ZZ5eK5_BuxN1SIppEo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/0330fb-95d1-4302-bea1-f54577f7cc0f/1/OgWEvpt9l3fjUZPTGCjCIeBKF7g.roa Signing time: Thu 01 Jan 2026 08:18:40 +0000 ROA not before: Thu 01 Jan 2026 08:18:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 196714 IP address blocks: 31.3.80.0/21 maxlen: 24 91.137.0.0/18 maxlen: 18 109.73.16.0/20 maxlen: 20 171.33.184.0/21 maxlen: 22 185.38.8.0/22 maxlen: 24 2a02:2250::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/0330fb-95d1-4302-bea1-f54577f7cc0f/1/YOqDhaFP2ZZ5eK5_BuxN1SIppEo.crl rsync://rpki.ripe.net/repository/DEFAULT/9b/0330fb-95d1-4302-bea1-f54577f7cc0f/1/YOqDhaFP2ZZ5eK5_BuxN1SIppEo.mft rsync://rpki.ripe.net/repository/DEFAULT/YOqDhaFP2ZZ5eK5_BuxN1SIppEo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:34:f7:43:e9:0d:e6:32:b9:25:a1:54:b8:6a:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60ea8385a14fd9967978ae7f06ec4dd52229a44a Validity Not Before: Jan 1 08:18:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3a0584be9b7d9777e35193d31828c221e04a17b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:6d:9f:14:99:a7:1a:78:20:0f:cb:b6:16:18: 9f:6e:25:d9:58:b3:75:e6:b9:81:68:d0:9e:d4:a0: 57:35:89:76:2b:5f:0d:4e:11:2c:ea:35:ea:6a:fc: f3:1e:22:09:84:05:bc:53:e1:97:19:db:1a:06:eb: bf:f9:ce:dc:0c:9a:09:3f:0c:42:8d:38:39:a2:f1: e8:bb:9b:4d:2d:14:5d:8a:35:0c:02:7e:6f:dd:4a: 97:15:d6:bb:81:1f:65:04:de:10:1c:d2:ff:15:8c: a7:b8:c7:de:89:77:90:29:52:c2:4c:a8:b8:91:8e: ae:4e:04:81:18:3e:74:4b:b3:2f:43:8a:a5:78:f0: a3:1a:36:72:3d:52:96:cf:76:03:32:29:ff:c5:04: 91:ea:a8:fa:d6:d5:4c:e8:e8:af:ae:d1:8d:a5:da: 5b:95:5e:cc:94:46:2e:0d:25:62:8b:02:d1:58:2c: 71:48:c4:72:c6:f6:df:40:4c:db:a0:f4:29:96:bd: 15:01:ac:63:1d:1c:89:55:0a:8f:ae:39:c3:2d:5d: 0a:72:ab:84:77:4d:7b:ca:93:ea:fb:c2:35:1a:f0: 47:15:bd:6d:22:1c:39:bb:a1:18:d6:ce:55:e0:4d: 79:bf:ea:72:5f:8b:be:12:83:5f:f8:84:62:a1:47: 01:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:05:84:BE:9B:7D:97:77:E3:51:93:D3:18:28:C2:21:E0:4A:17:B8 X509v3 Authority Key Identifier: keyid:60:EA:83:85:A1:4F:D9:96:79:78:AE:7F:06:EC:4D:D5:22:29:A4:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YOqDhaFP2ZZ5eK5_BuxN1SIppEo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/0330fb-95d1-4302-bea1-f54577f7cc0f/1/OgWEvpt9l3fjUZPTGCjCIeBKF7g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/0330fb-95d1-4302-bea1-f54577f7cc0f/1/YOqDhaFP2ZZ5eK5_BuxN1SIppEo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.3.80.0/21 91.137.0.0/18 109.73.16.0/20 171.33.184.0/21 185.38.8.0/22 IPv6: 2a02:2250::/32 Signature Algorithm: sha256WithRSAEncryption 6f:f0:e9:a9:6a:12:31:f2:17:e9:d2:36:70:4d:f1:57:80:f9: 31:b4:d5:39:01:99:25:e5:55:62:a0:8a:b7:55:56:e3:5d:a2: 62:a5:26:83:52:c9:69:40:ed:f1:b0:cc:35:74:93:74:a2:64: c6:f0:78:0b:c0:d5:a0:de:d4:88:ea:fa:2b:78:cf:65:fd:0a: 59:9e:97:95:04:ab:a1:0f:87:f8:c2:bd:85:3b:a0:a3:fa:31: cc:8f:f7:c4:61:f1:43:5a:ec:5e:74:de:c8:f0:6e:f2:9d:ec: 9b:c0:ab:47:aa:f9:f4:07:35:04:b9:82:a6:cc:e2:96:35:a3: 78:49:62:1d:a1:51:9c:58:2b:c6:1d:0e:76:c7:b7:5f:de:11: 98:9b:c1:25:c3:0c:9a:e8:ab:37:5f:3b:ba:12:88:df:0e:c1: cd:37:c7:ce:a5:16:a2:4a:83:7c:62:be:a4:1f:99:99:bf:c9: 2b:90:43:8f:63:9a:f7:7c:5e:ab:6d:07:c8:84:08:2b:dc:11: 19:b9:e7:9c:f6:2b:fd:e0:1e:eb:1b:ba:ca:01:e4:2c:58:00: 93:d1:61:87:2a:07:f0:b3:b6:e7:ff:de:a4:d1:77:e6:75:68: be:cc:e1:95:d7:6f:1f:f0:8a:2d:4e:17:5e:08:cb:64:ef:c5: bb:9c:1b:a5 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgISAZt4ozT3Q+kN5jK5JaFUuGo7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwZWE4Mzg1YTE0ZmQ5OTY3OTc4YWU3ZjA2ZWM0ZGQ1MjIy OWE0NGEwHhcNMjYwMTAxMDgxODQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYTA1ODRiZTliN2Q5Nzc3ZTM1MTkzZDMxODI4YzIyMWUwNGExN2I4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnG2fFJmnGnggD8u2FhifbiXZWLN1 5rmBaNCe1KBXNYl2K18NThEs6jXqavzzHiIJhAW8U+GXGdsaBuu/+c7cDJoJPwxC jTg5ovHou5tNLRRdijUMAn5v3UqXFda7gR9lBN4QHNL/FYynuMfeiXeQKVLCTKi4 kY6uTgSBGD50S7MvQ4qlePCjGjZyPVKWz3YDMin/xQSR6qj61tVM6OivrtGNpdpb lV7MlEYuDSViiwLRWCxxSMRyxvbfQEzboPQplr0VAaxjHRyJVQqPrjnDLV0KcquE d017ypPq+8I1GvBHFb1tIhw5u6EY1s5V4E15v+pyX4u+EoNf+IRioUcBTwIDAQAB o4ICMDCCAiwwHQYDVR0OBBYEFDoFhL6bfZd341GT0xgowiHgShe4MB8GA1UdIwQY MBaAFGDqg4WhT9mWeXiufwbsTdUiKaRKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWU9xRGhhRlAyWlo1ZUs1X0J1eE4xU0lwcEVvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi8wMzMwZmItOTVkMS00MzAyLWJlYTEt ZjU0NTc3ZjdjYzBmLzEvT2dXRXZwdDlsM2ZqVVpQVEdDakNJZUJLRjdnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yi8wMzMwZmItOTVkMS00MzAyLWJlYTEtZjU0NTc3ZjdjYzBm LzEvWU9xRGhhRlAyWlo1ZUs1X0J1eE4xU0lwcEVvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQDHwNQAwQG W4kAAwQEbUkQAwQDqyG4AwQCuSYIMA0EAgACMAcDBQAqAiJQMA0GCSqGSIb3DQEB CwUAA4IBAQBv8OmpahIx8hfp0jZwTfFXgPkxtNU5AZkl5VVioIq3VVbjXaJipSaD UslpQO3xsMw1dJN0omTG8HgLwNWg3tSI6voreM9l/QpZnpeVBKuhD4f4wr2FO6Cj +jHMj/fEYfFDWuxedN7I8G7yneybwKtHqvn0BzUEuYKmzOKWNaN4SWIdoVGcWCvG HQ52x7df3hGYm8Elwwya6Ks3Xzu6EojfDsHNN8fOpRaiSoN8Yr6kH5mZv8krkEOP Y5r3fF6rbQfIhAgr3BEZueec9iv94B7rG7rKAeQsWACT0WGHKgfws7bn/96k0Xfm dWi+zOGV128f8IotThdeCMtk78W7nBul -----END CERTIFICATE-----Generated at Mon Jan 26 00:37:21 2026 by rpki-client