This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/O0zW5TfYvBKPM_06y39fr20GlgU.roa File: O0zW5TfYvBKPM_06y39fr20GlgU.roa (raw, json) Hash identifier: o9IJqdu4tvBH89+q/ixOEY64sxONXtm+OJZs9bCwOus= Subject key identifier: 3B:4C:D6:E5:37:D8:BC:12:8F:33:FD:3A:CB:7F:5F:AF:6D:06:96:05 Certificate issuer: /CN=90f25e6a6893f466d2695e90670c047443643701 Certificate serial: 019B77C758B1E41AE4D78C2C83D7F8D73289 Authority key identifier: 90:F2:5E:6A:68:93:F4:66:D2:69:5E:90:67:0C:04:74:43:64:37:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kPJeamiT9GbSaV6QZwwEdENkNwE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/O0zW5TfYvBKPM_06y39fr20GlgU.roa Signing time: Thu 01 Jan 2026 04:18:31 +0000 ROA not before: Thu 01 Jan 2026 04:18:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31079 IP address blocks: 195.20.106.0/24 maxlen: 24 2001:678:2e4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/kPJeamiT9GbSaV6QZwwEdENkNwE.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/kPJeamiT9GbSaV6QZwwEdENkNwE.mft rsync://rpki.ripe.net/repository/DEFAULT/kPJeamiT9GbSaV6QZwwEdENkNwE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 04:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:58:b1:e4:1a:e4:d7:8c:2c:83:d7:f8:d7:32:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90f25e6a6893f466d2695e90670c047443643701 Validity Not Before: Jan 1 04:18:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3b4cd6e537d8bc128f33fd3acb7f5faf6d069605 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:30:50:2b:1b:d9:16:cf:f1:78:f5:e2:9e:96: 87:02:bd:c3:0f:05:b7:4e:dc:4a:16:88:96:15:c4: fb:90:20:68:0d:f8:5a:45:fe:e0:d4:70:df:2a:ec: 45:5b:49:a9:90:7f:f8:8c:1c:df:45:3e:57:cc:44: b3:b4:62:2b:1d:5b:81:55:0e:af:d1:83:c6:e1:f6: 32:10:fb:2d:28:8a:d3:ac:ec:76:7c:c3:1a:fb:51: 76:91:86:02:4f:a8:fc:15:ce:3b:97:89:9e:f0:3a: 78:7e:6c:b1:91:4c:e1:f9:06:dd:e2:15:48:84:34: 6c:7a:b4:cc:ee:df:cf:58:bd:34:22:d6:9d:cb:39: ca:92:c8:29:e7:25:09:07:56:57:87:27:c9:dc:ce: 91:5b:7d:b2:76:e8:8c:84:0e:ce:f5:c0:80:00:d0: f9:ca:8c:30:de:a4:ba:46:93:92:a5:a2:53:91:f5: 01:18:ae:b8:4a:24:28:4a:8a:86:06:af:9f:5f:1c: ac:21:b4:94:67:9c:51:61:70:f7:13:7f:3a:82:16: 13:f4:5c:a5:7c:85:80:37:c0:1c:81:c2:53:e5:48: 13:fc:31:9e:0a:4d:c4:ea:16:48:10:9d:cb:1f:5e: c5:35:b5:51:b1:ad:50:c0:b2:ee:b9:7a:13:19:32: ef:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:4C:D6:E5:37:D8:BC:12:8F:33:FD:3A:CB:7F:5F:AF:6D:06:96:05 X509v3 Authority Key Identifier: keyid:90:F2:5E:6A:68:93:F4:66:D2:69:5E:90:67:0C:04:74:43:64:37:01 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kPJeamiT9GbSaV6QZwwEdENkNwE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/O0zW5TfYvBKPM_06y39fr20GlgU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/kPJeamiT9GbSaV6QZwwEdENkNwE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.20.106.0/24 IPv6: 2001:678:2e4::/48 Signature Algorithm: sha256WithRSAEncryption 58:c2:33:71:e5:45:96:38:a5:e4:53:e9:94:02:e2:6b:a8:38: c6:03:e0:ff:53:ce:51:9c:a3:2c:1f:7d:1b:68:0a:10:50:9f: 00:de:53:55:e1:af:aa:b9:26:99:2c:8c:27:3f:fc:87:3d:22: 62:e6:8b:21:91:08:b6:87:ed:23:69:b2:de:dd:0e:9e:88:e6: dc:d5:d7:8a:a1:6a:50:75:a3:35:ec:96:41:e7:92:d0:b3:13: 51:4e:e6:f6:43:45:f6:2a:f3:ce:a9:50:9d:82:b2:c3:60:85: 6f:2e:a3:fb:21:21:9f:e5:00:b5:5f:db:6d:25:1a:a9:50:bc: d6:94:c9:71:06:8b:ce:60:01:16:d2:e4:4f:5c:5d:7f:76:c9: 2c:b0:21:10:ee:3a:5e:12:61:a3:87:7c:c0:bd:b4:32:9e:34: 9d:c1:ed:e8:ad:2b:10:1c:f5:7b:1c:86:72:fd:8c:78:53:78: a8:56:cf:a2:91:d2:d6:41:80:c5:28:23:64:96:de:bf:ec:fc: 85:2a:55:95:4a:c1:e5:fe:1f:27:f4:3a:e7:b7:ac:a8:a6:37: 8a:4e:c6:f8:78:bb:a4:bd:3f:94:47:43:cc:ea:18:a6:5d:cc: 62:77:67:99:e5:4d:c3:3e:36:f6:77:57:61:be:36:06:cb:4c: f1:8c:e3:44 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt3x1ix5Brk14wsg9f41zKJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkwZjI1ZTZhNjg5M2Y0NjZkMjY5NWU5MDY3MGMwNDc0NDM2 NDM3MDEwHhcNMjYwMTAxMDQxODMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYjRjZDZlNTM3ZDhiYzEyOGYzM2ZkM2FjYjdmNWZhZjZkMDY5NjA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiTBQKxvZFs/xePXinpaHAr3DDwW3 TtxKFoiWFcT7kCBoDfhaRf7g1HDfKuxFW0mpkH/4jBzfRT5XzESztGIrHVuBVQ6v 0YPG4fYyEPstKIrTrOx2fMMa+1F2kYYCT6j8Fc47l4me8Dp4fmyxkUzh+Qbd4hVI hDRserTM7t/PWL00ItadyznKksgp5yUJB1ZXhyfJ3M6RW32yduiMhA7O9cCAAND5 yoww3qS6RpOSpaJTkfUBGK64SiQoSoqGBq+fXxysIbSUZ5xRYXD3E386ghYT9Fyl fIWAN8AcgcJT5UgT/DGeCk3E6hZIEJ3LH17FNbVRsa1QwLLuuXoTGTLv9QIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFDtM1uU32LwSjzP9Ost/X69tBpYFMB8GA1UdIwQY MBaAFJDyXmpok/Rm0mlekGcMBHRDZDcBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1BKZWFtaVQ5R2JTYVY2UVp3d0VkRU5rTndFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi8wNGIxNjItNzA5OS00MDRkLTgzOTEt M2IwYjRiOGEyOTgzLzEvTzB6VzVUZll2QktQTV8wNnkzOWZyMjBHbGdVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi8wNGIxNjItNzA5OS00MDRkLTgzOTEtM2IwYjRiOGEyOTgz LzEva1BKZWFtaVQ5R2JTYVY2UVp3d0VkRU5rTndFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwxRqMA8E AgACMAkDBwAgAQZ4AuQwDQYJKoZIhvcNAQELBQADggEBAFjCM3HlRZY4peRT6ZQC 4muoOMYD4P9TzlGcoywffRtoChBQnwDeU1Xhr6q5JpksjCc//Ic9ImLmiyGRCLaH 7SNpst7dDp6I5tzV14qhalB1ozXslkHnktCzE1FO5vZDRfYq886pUJ2CssNghW8u o/shIZ/lALVf220lGqlQvNaUyXEGi85gARbS5E9cXX92ySywIRDuOl4SYaOHfMC9 tDKeNJ3B7eitKxAc9XschnL9jHhTeKhWz6KR0tZBgMUoI2SW3r/s/IUqVZVKweX+ Hyf0Oue3rKimN4pOxvh4u6S9P5RHQ8zqGKZdzGJ3Z5nlTcM+NvZ3V2G+NgbLTPGM 40Q= -----END CERTIFICATE-----Generated at Sun Jan 25 16:12:58 2026 by rpki-client