This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/b9adf4-f910-4355-bfc8-608564839fd0/1/oI8W0AkfN6Nm4xiZ9xN1plVsvaI.roa File: oI8W0AkfN6Nm4xiZ9xN1plVsvaI.roa (raw, json) Hash identifier: OjUGaPP7K1loTdge45OhIT+GBszfyERu/sHA/9LU0io= Subject key identifier: A0:8F:16:D0:09:1F:37:A3:66:E3:18:99:F7:13:75:A6:55:6C:BD:A2 Certificate issuer: /CN=1f68138d4ec2ea51cacef09ff1058a370a5be190 Certificate serial: 019B7F154D60573E1CA74DEDBAC6537E281C Authority key identifier: 1F:68:13:8D:4E:C2:EA:51:CA:CE:F0:9F:F1:05:8A:37:0A:5B:E1:90 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H2gTjU7C6lHKzvCf8QWKNwpb4ZA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/b9adf4-f910-4355-bfc8-608564839fd0/1/oI8W0AkfN6Nm4xiZ9xN1plVsvaI.roa Signing time: Fri 02 Jan 2026 14:21:01 +0000 ROA not before: Fri 02 Jan 2026 14:21:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1729 IP address blocks: 81.228.8.0/24 maxlen: 24 81.228.9.0/24 maxlen: 24 81.228.10.0/24 maxlen: 24 81.228.11.0/24 maxlen: 24 131.115.0.0/16 maxlen: 24 131.116.0.0/16 maxlen: 24 192.16.152.0/24 maxlen: 24 192.16.154.0/24 maxlen: 24 192.150.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/b9adf4-f910-4355-bfc8-608564839fd0/1/H2gTjU7C6lHKzvCf8QWKNwpb4ZA.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/b9adf4-f910-4355-bfc8-608564839fd0/1/H2gTjU7C6lHKzvCf8QWKNwpb4ZA.mft rsync://rpki.ripe.net/repository/DEFAULT/H2gTjU7C6lHKzvCf8QWKNwpb4ZA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:4d:60:57:3e:1c:a7:4d:ed:ba:c6:53:7e:28:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1f68138d4ec2ea51cacef09ff1058a370a5be190 Validity Not Before: Jan 2 14:21:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a08f16d0091f37a366e31899f71375a6556cbda2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:bb:35:c5:e8:02:09:24:5e:8e:31:c6:bf:8d: d3:10:e4:7d:f4:8b:ad:0b:22:81:46:30:a4:dd:1d: a4:c7:00:cf:b4:62:29:91:83:06:d6:fd:0b:95:bb: 4a:f1:8c:04:1b:34:c0:e8:48:69:c7:fa:ef:61:cf: 3c:3f:e7:ff:28:b2:28:c5:05:9a:38:c8:21:09:db: bc:46:2e:6e:47:1e:19:49:c8:99:4d:d9:1b:53:7d: f5:8f:2a:dd:37:e3:6e:b8:b9:47:54:ff:7e:90:18: 2f:24:12:d6:8a:aa:7c:23:59:28:2c:95:fa:4e:eb: 62:e9:26:ab:80:39:e0:9a:d6:3c:87:5f:d0:a4:79: b7:a4:64:2a:82:50:ef:6f:9f:2d:0c:f2:b3:6f:4b: a8:12:e7:71:17:6a:6d:8a:39:db:d2:e6:92:25:06: 35:ac:74:57:10:f7:48:b3:18:e5:04:4e:21:a2:33: 6e:c5:03:92:54:86:5d:b7:c1:f5:73:7f:3f:b1:ce: b3:e8:d0:f8:09:42:9e:96:e8:e9:68:e1:f4:ca:26: 5b:68:84:2d:b4:2c:12:51:e9:ed:f7:f6:eb:d8:0b: e7:01:b2:66:b5:87:27:8e:cc:04:ae:d9:d3:ae:64: f6:5a:ea:f0:27:98:56:93:e9:2f:16:e9:1e:f1:58: 5a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:8F:16:D0:09:1F:37:A3:66:E3:18:99:F7:13:75:A6:55:6C:BD:A2 X509v3 Authority Key Identifier: keyid:1F:68:13:8D:4E:C2:EA:51:CA:CE:F0:9F:F1:05:8A:37:0A:5B:E1:90 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H2gTjU7C6lHKzvCf8QWKNwpb4ZA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/b9adf4-f910-4355-bfc8-608564839fd0/1/oI8W0AkfN6Nm4xiZ9xN1plVsvaI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/b9adf4-f910-4355-bfc8-608564839fd0/1/H2gTjU7C6lHKzvCf8QWKNwpb4ZA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.228.8.0/22 131.115.0.0-131.116.255.255 192.16.152.0/24 192.16.154.0/24 192.150.84.0/24 Signature Algorithm: sha256WithRSAEncryption 14:0f:79:9b:f5:bb:ab:8d:9b:0b:c4:de:31:50:71:a0:0f:6a: b0:51:96:61:0b:6d:37:57:fb:11:a1:aa:28:7c:57:e0:b0:95: 6d:17:b9:f4:b5:80:03:8e:7f:b5:e6:8b:32:45:5e:8d:f5:59: 8e:e5:e2:13:4f:fb:0c:55:3a:30:8d:ef:18:9f:b2:79:a2:ab: 1c:89:ed:8e:c0:68:70:bc:c0:50:55:28:41:7b:e5:09:dc:ca: 55:3e:80:69:08:6e:a4:94:ed:fb:48:ff:04:3f:f5:b2:f4:40: c6:08:02:21:4c:4b:17:8e:dd:dd:44:d8:a5:6d:85:e6:33:55: 3d:00:fe:64:68:d6:79:9b:e8:67:34:54:c0:3b:17:06:ab:03: 45:7e:93:34:8d:45:32:ba:40:59:8b:bf:fd:2e:1f:24:b1:8c: 54:7f:3f:c5:01:44:f9:7d:58:c6:38:55:22:e2:6f:06:ec:a9: 7e:29:e0:5a:f0:8e:29:f6:93:28:bd:e2:93:7e:5b:5f:e4:5a: ba:5f:52:de:1b:c2:69:24:80:9d:65:93:34:5a:7e:dd:ff:15: 4a:0f:57:3c:45:a9:85:2e:e9:ad:93:6f:68:77:46:c7:bd:95: 93:22:16:31:c5:b3:e7:7c:14:f5:f9:29:67:05:90:21:60:9c: 39:ab:8e:c4 -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgISAZt/FU1gVz4cp03tusZTfigcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmNjgxMzhkNGVjMmVhNTFjYWNlZjA5ZmYxMDU4YTM3MGE1 YmUxOTAwHhcNMjYwMTAyMTQyMTAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMDhmMTZkMDA5MWYzN2EzNjZlMzE4OTlmNzEzNzVhNjU1NmNiZGEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnrs1xegCCSRejjHGv43TEOR99Iut CyKBRjCk3R2kxwDPtGIpkYMG1v0LlbtK8YwEGzTA6Ehpx/rvYc88P+f/KLIoxQWa OMghCdu8Ri5uRx4ZSciZTdkbU331jyrdN+NuuLlHVP9+kBgvJBLWiqp8I1koLJX6 Tuti6SargDngmtY8h1/QpHm3pGQqglDvb58tDPKzb0uoEudxF2ptijnb0uaSJQY1 rHRXEPdIsxjlBE4hojNuxQOSVIZdt8H1c38/sc6z6ND4CUKelujpaOH0yiZbaIQt tCwSUent9/br2AvnAbJmtYcnjswErtnTrmT2WurwJ5hWk+kvFuke8VhaHwIDAQAB o4ICJzCCAiMwHQYDVR0OBBYEFKCPFtAJHzejZuMYmfcTdaZVbL2iMB8GA1UdIwQY MBaAFB9oE41OwupRys7wn/EFijcKW+GQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSDJnVGpVN0M2bEhLenZDZjhRV0tOd3BiNFpBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy9iOWFkZjQtZjkxMC00MzU1LWJmYzgt NjA4NTY0ODM5ZmQwLzEvb0k4VzBBa2ZONk5tNHhpWjl4TjFwbFZzdmFJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy9iOWFkZjQtZjkxMC00MzU1LWJmYzgtNjA4NTY0ODM5ZmQw LzEvSDJnVGpVN0M2bEhLenZDZjhRV0tOd3BiNFpBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQCUeQIMAoD AwCDcwMDAIN0AwQAwBCYAwQAwBCaAwQAwJZUMA0GCSqGSIb3DQEBCwUAA4IBAQAU D3mb9burjZsLxN4xUHGgD2qwUZZhC203V/sRoaoofFfgsJVtF7n0tYADjn+15osy RV6N9VmO5eITT/sMVTowje8Yn7J5oqscie2OwGhwvMBQVShBe+UJ3MpVPoBpCG6k lO37SP8EP/Wy9EDGCAIhTEsXjt3dRNilbYXmM1U9AP5kaNZ5m+hnNFTAOxcGqwNF fpM0jUUyukBZi7/9Lh8ksYxUfz/FAUT5fVjGOFUi4m8G7Kl+KeBa8I4p9pMoveKT fltf5Fq6X1LeG8JpJICdZZM0Wn7d/xVKD1c8RamFLumtk29od0bHvZWTIhYxxbPn fBT1+SlnBZAhYJw5q47E -----END CERTIFICATE-----Generated at Sun Jan 25 15:06:17 2026 by rpki-client