This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/a46c86-4b08-482b-92ca-84ee22a3ee5b/1/O3VQfD378Glka9TjOO3TvAaw_nk.roa File: O3VQfD378Glka9TjOO3TvAaw_nk.roa (raw, json) Hash identifier: Ybj9UWECximKsng5EBE3xYs2FwI/4KcnIfFjWhvui64= Subject key identifier: 3B:75:50:7C:3D:FB:F0:69:64:6B:D4:E3:38:ED:D3:BC:06:B0:FE:79 Certificate issuer: /CN=fdad61d8e8c1abda8596930e21f18211a517681f Certificate serial: 019B77C6E4F89261F8008CC5BC8A70AEB202 Authority key identifier: FD:AD:61:D8:E8:C1:AB:DA:85:96:93:0E:21:F1:82:11:A5:17:68:1F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_a1h2OjBq9qFlpMOIfGCEaUXaB8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/a46c86-4b08-482b-92ca-84ee22a3ee5b/1/O3VQfD378Glka9TjOO3TvAaw_nk.roa Signing time: Thu 01 Jan 2026 04:18:01 +0000 ROA not before: Thu 01 Jan 2026 04:18:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51178 IP address blocks: 5.61.13.0/24 maxlen: 24 5.61.14.0/23 maxlen: 24 91.219.64.0/22 maxlen: 24 92.249.4.0/24 maxlen: 24 185.218.68.0/23 maxlen: 24 185.218.70.0/24 maxlen: 24 188.68.184.0/22 maxlen: 23 188.68.187.0/24 maxlen: 24 2a00:9801::/32 maxlen: 32 2a0b:d0c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/a46c86-4b08-482b-92ca-84ee22a3ee5b/1/_a1h2OjBq9qFlpMOIfGCEaUXaB8.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/a46c86-4b08-482b-92ca-84ee22a3ee5b/1/_a1h2OjBq9qFlpMOIfGCEaUXaB8.mft rsync://rpki.ripe.net/repository/DEFAULT/_a1h2OjBq9qFlpMOIfGCEaUXaB8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:e4:f8:92:61:f8:00:8c:c5:bc:8a:70:ae:b2:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fdad61d8e8c1abda8596930e21f18211a517681f Validity Not Before: Jan 1 04:18:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3b75507c3dfbf069646bd4e338edd3bc06b0fe79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:7a:94:07:da:0c:7e:2c:87:d9:ad:aa:7f:58: 0a:71:c5:89:c2:21:1b:c8:7d:8f:f5:e3:cc:18:4c: d4:80:46:b3:4e:d6:f5:b5:79:a6:94:a4:74:68:a1: 95:a9:78:48:35:d6:f2:e0:65:a8:85:d2:d9:3f:c4: 1e:73:89:b3:f5:80:a1:71:99:df:cf:5e:af:30:ce: 38:39:38:2c:ac:62:19:3c:a3:00:16:9f:8b:73:1e: 9d:7b:40:3e:7d:43:fd:58:5d:4f:4a:da:b7:84:ef: a4:61:a3:3b:fe:f3:7b:5b:10:77:67:22:bc:1c:44: 31:fb:cf:ab:8a:13:02:c2:20:3d:61:3b:78:b5:04: 2b:0d:9e:c2:d9:fb:17:9b:bb:e7:40:60:16:b5:41: 23:e2:f8:3f:70:9d:cd:fa:fe:70:08:72:fc:55:e3: 91:78:ce:ac:d9:73:a9:2e:bb:e3:79:19:6d:2e:4d: 33:ac:ee:f3:1a:79:1d:cb:04:e8:8e:c6:a8:02:97: 4d:a2:98:53:c5:47:b9:b6:5a:e0:75:7d:34:79:1c: d3:39:a9:d7:d9:a3:6c:c2:21:c4:49:40:56:a2:4f: c2:cd:7d:04:c7:88:d0:ab:63:2c:e1:8e:8d:96:be: e7:b3:87:10:4a:43:15:a6:fb:ee:2a:69:85:e2:ad: d1:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:75:50:7C:3D:FB:F0:69:64:6B:D4:E3:38:ED:D3:BC:06:B0:FE:79 X509v3 Authority Key Identifier: keyid:FD:AD:61:D8:E8:C1:AB:DA:85:96:93:0E:21:F1:82:11:A5:17:68:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_a1h2OjBq9qFlpMOIfGCEaUXaB8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/a46c86-4b08-482b-92ca-84ee22a3ee5b/1/O3VQfD378Glka9TjOO3TvAaw_nk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/a46c86-4b08-482b-92ca-84ee22a3ee5b/1/_a1h2OjBq9qFlpMOIfGCEaUXaB8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.61.13.0-5.61.15.255 91.219.64.0/22 92.249.4.0/24 185.218.68.0-185.218.70.255 188.68.184.0/22 IPv6: 2a00:9801::/32 2a0b:d0c0::/29 Signature Algorithm: sha256WithRSAEncryption 03:c1:c8:4a:f2:d4:22:3b:b3:ed:22:db:c3:2f:20:84:3b:9c: 15:6d:d9:dd:a2:40:07:33:5b:a0:b8:2f:f2:96:43:06:d5:98: c8:33:5d:f6:21:e8:74:50:3f:a0:df:69:af:4d:93:df:e7:9d: 52:b6:3f:3b:66:14:74:a1:61:c2:a0:3a:cc:02:be:0f:78:27: d1:4e:77:00:79:9f:c9:56:91:d7:0a:d3:ee:d6:0c:0a:ab:1a: cb:71:8c:a4:d6:07:99:46:d8:9f:65:10:9f:2b:4b:22:39:f6: 67:b2:12:83:b9:58:32:9e:3c:d6:bf:ce:08:c2:04:14:bf:91: 5c:c6:13:e6:e2:86:ff:00:27:39:4a:64:66:4e:1e:ac:f2:4b: 31:39:99:c3:5e:b6:f2:06:d5:08:cf:f2:17:2b:dd:af:61:cc: c2:97:43:52:75:ee:90:0c:8c:c8:93:97:23:c2:aa:59:f7:ce: 51:ee:60:c3:b1:bf:90:e1:96:a1:fc:eb:60:16:73:81:93:1b: a8:e1:38:c8:2c:3b:7e:13:65:01:7e:f2:c6:d0:68:8b:0a:81: a7:f1:af:3d:35:32:cb:e8:25:bc:47:08:50:0d:1f:f6:14:f1: 7a:0d:76:f3:a1:1c:3a:20:0e:0f:34:57:2f:87:4b:1a:8d:8d: 1b:df:44:5c -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgISAZt3xuT4kmH4AIzFvIpwrrICMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZkYWQ2MWQ4ZThjMWFiZGE4NTk2OTMwZTIxZjE4MjExYTUx NzY4MWYwHhcNMjYwMTAxMDQxODAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYjc1NTA3YzNkZmJmMDY5NjQ2YmQ0ZTMzOGVkZDNiYzA2YjBmZTc5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiXqUB9oMfiyH2a2qf1gKccWJwiEb yH2P9ePMGEzUgEazTtb1tXmmlKR0aKGVqXhINdby4GWohdLZP8Qec4mz9YChcZnf z16vMM44OTgsrGIZPKMAFp+Lcx6de0A+fUP9WF1PStq3hO+kYaM7/vN7WxB3ZyK8 HEQx+8+rihMCwiA9YTt4tQQrDZ7C2fsXm7vnQGAWtUEj4vg/cJ3N+v5wCHL8VeOR eM6s2XOpLrvjeRltLk0zrO7zGnkdywTojsaoApdNophTxUe5tlrgdX00eRzTOanX 2aNswiHESUBWok/CzX0Ex4jQq2Ms4Y6Nlr7ns4cQSkMVpvvuKmmF4q3RAQIDAQAB o4ICRzCCAkMwHQYDVR0OBBYEFDt1UHw9+/BpZGvU4zjt07wGsP55MB8GA1UdIwQY MBaAFP2tYdjowavahZaTDiHxghGlF2gfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX2ExaDJPakJxOXFGbHBNT0lmR0NFYVVYYUI4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy9hNDZjODYtNGIwOC00ODJiLTkyY2Et ODRlZTIyYTNlZTViLzEvTzNWUWZEMzc4R2xrYTlUak9PM1R2QWF3X25rLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy9hNDZjODYtNGIwOC00ODJiLTkyY2EtODRlZTIyYTNlZTVi LzEvX2ExaDJPakJxOXFGbHBNT0lmR0NFYVVYYUI4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMF0GCCsGAQUFBwEHAQH/BE4wTDA0BAIAATAuMAwDBAAFPQ0D BAQFPQADBAJb20ADBABc+QQwDAMEArnaRAMEALnaRgMEArxEuDAUBAIAAjAOAwUA KgCYAQMFAyoL0MAwDQYJKoZIhvcNAQELBQADggEBAAPByEry1CI7s+0i28MvIIQ7 nBVt2d2iQAczW6C4L/KWQwbVmMgzXfYh6HRQP6Dfaa9Nk9/nnVK2PztmFHShYcKg OswCvg94J9FOdwB5n8lWkdcK0+7WDAqrGstxjKTWB5lG2J9lEJ8rSyI59meyEoO5 WDKePNa/zgjCBBS/kVzGE+bihv8AJzlKZGZOHqzySzE5mcNetvIG1QjP8hcr3a9h zMKXQ1J17pAMjMiTlyPCqln3zlHuYMOxv5DhlqH862AWc4GTG6jhOMgsO34TZQF+ 8sbQaIsKgafxrz01MsvoJbxHCFANH/YU8XoNdvOhHDogDg80Vy+HSxqNjRvfRFw= -----END CERTIFICATE-----Generated at Mon Jan 26 05:31:27 2026 by rpki-client