This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/ebfc3d-54fc-4643-be56-ea70a29c76f0/1/oj97Ng3JgLvsyAIw1yTVTtpM69s.roa File: oj97Ng3JgLvsyAIw1yTVTtpM69s.roa (raw, json) Hash identifier: vIQENoGSkGXr7OaQKpDZcQK7eabU4UndqxZJRNZu8JU= Subject key identifier: A2:3F:7B:36:0D:C9:80:BB:EC:C8:02:30:D7:24:D5:4E:DA:4C:EB:DB Certificate issuer: /CN=bd063d944bb81fc31cba11499dd006eb4ece9624 Certificate serial: 019B76EABE263CA854BC05E38257F7A62481 Authority key identifier: BD:06:3D:94:4B:B8:1F:C3:1C:BA:11:49:9D:D0:06:EB:4E:CE:96:24 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vQY9lEu4H8McuhFJndAG607OliQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/ebfc3d-54fc-4643-be56-ea70a29c76f0/1/oj97Ng3JgLvsyAIw1yTVTtpM69s.roa Signing time: Thu 01 Jan 2026 00:17:34 +0000 ROA not before: Thu 01 Jan 2026 00:17:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48971 IP address blocks: 94.231.80.0/20 maxlen: 20 94.231.80.0/21 maxlen: 21 94.231.80.0/24 maxlen: 24 94.231.88.0/21 maxlen: 21 94.231.93.0/24 maxlen: 24 94.231.94.0/24 maxlen: 24 185.19.84.0/22 maxlen: 22 195.2.228.0/23 maxlen: 23 2a00:41c0::/29 maxlen: 29 2a00:41c0::/32 maxlen: 32 2a00:41c0:7::/48 maxlen: 48 2a00:41c0:8::/48 maxlen: 48 2a00:41c0:9::/48 maxlen: 48 2a00:41c0:10::/48 maxlen: 48 2a00:41c0:11::/48 maxlen: 48 2a00:41c0:14::/48 maxlen: 48 2a00:41c0:16::/48 maxlen: 48 2a00:41c0:19::/48 maxlen: 48 2a00:41c0:20::/48 maxlen: 48 2a00:41c0:21::/48 maxlen: 48 2a00:41c0:81::/48 maxlen: 48 2a00:41c0:a8::/47 maxlen: 47 2a00:41c0:185::/48 maxlen: 48 2a00:41c0:194::/48 maxlen: 48 2a00:41c0:a11::/48 maxlen: 48 2a00:41c0:a21::/48 maxlen: 48 2a00:41c0:a94::/48 maxlen: 48 2a00:41c0:b94::/48 maxlen: 48 2a00:41c0:e94::/48 maxlen: 48 2a00:41c0:1185::/48 maxlen: 48 2a00:41c0:a121::/48 maxlen: 48 2a00:41c0:a123::/48 maxlen: 48 2a00:41c0:a185::/48 maxlen: 48 2a00:41c0:a186::/48 maxlen: 48 2a00:41c0:d185::/48 maxlen: 48 2a00:41c0:f185::/48 maxlen: 48 2a00:41c0:f231::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/ebfc3d-54fc-4643-be56-ea70a29c76f0/1/vQY9lEu4H8McuhFJndAG607OliQ.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/ebfc3d-54fc-4643-be56-ea70a29c76f0/1/vQY9lEu4H8McuhFJndAG607OliQ.mft rsync://rpki.ripe.net/repository/DEFAULT/vQY9lEu4H8McuhFJndAG607OliQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:be:26:3c:a8:54:bc:05:e3:82:57:f7:a6:24:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bd063d944bb81fc31cba11499dd006eb4ece9624 Validity Not Before: Jan 1 00:17:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a23f7b360dc980bbecc80230d724d54eda4cebdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:b2:47:9c:bf:02:66:fc:29:27:82:44:de:99: 23:db:3c:a2:5b:2a:24:80:45:75:b5:38:42:9f:4b: 6d:a0:bb:81:aa:28:6b:c5:df:56:49:7a:97:16:78: 04:a3:f4:83:5b:0a:7f:73:66:29:cd:ce:a4:eb:50: 1e:8e:f9:99:ad:17:a0:60:f7:5e:93:12:b4:a6:64: b5:89:b0:cb:99:71:70:aa:55:7c:4e:a9:0f:56:5f: ee:16:64:8a:6e:94:fe:40:f1:c4:a3:86:00:fa:4d: ba:2f:b0:26:d5:92:ff:d1:9e:53:98:c1:06:42:42: 09:31:bd:ba:b7:7a:af:81:33:de:eb:3e:a6:68:b4: 88:e5:2e:84:b6:88:ee:5a:14:a5:62:98:16:76:6e: 0d:cc:6c:cf:bc:a5:13:15:cf:02:98:48:71:dc:36: 73:cb:92:2a:6f:1c:fc:54:67:0b:d6:51:5e:3c:43: d4:c4:5e:6d:bb:82:82:b4:dc:d8:c0:6f:9b:99:7b: ff:40:a4:0a:80:c0:b2:a9:17:c8:22:36:66:a2:80: 1e:02:97:3b:31:06:82:1b:20:56:e2:44:c0:17:97: 24:ee:58:11:84:33:64:8f:2b:3a:46:e9:9b:c4:54: 81:78:3b:9c:f6:dc:1a:ba:02:f0:12:36:10:b7:18: 8a:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:3F:7B:36:0D:C9:80:BB:EC:C8:02:30:D7:24:D5:4E:DA:4C:EB:DB X509v3 Authority Key Identifier: keyid:BD:06:3D:94:4B:B8:1F:C3:1C:BA:11:49:9D:D0:06:EB:4E:CE:96:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vQY9lEu4H8McuhFJndAG607OliQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/ebfc3d-54fc-4643-be56-ea70a29c76f0/1/oj97Ng3JgLvsyAIw1yTVTtpM69s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/ebfc3d-54fc-4643-be56-ea70a29c76f0/1/vQY9lEu4H8McuhFJndAG607OliQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.231.80.0/20 185.19.84.0/22 195.2.228.0/23 IPv6: 2a00:41c0::/29 Signature Algorithm: sha256WithRSAEncryption 08:84:71:51:aa:41:bb:bb:26:5b:96:e2:8e:6b:43:0b:81:a9: b5:67:2e:da:24:43:1d:1f:34:99:6b:fe:bb:c3:6a:d3:8c:c5: 2d:01:dd:7d:7b:7b:8c:58:29:3a:0c:12:ea:1e:9b:be:82:67: e3:40:c5:7a:ea:20:52:c5:06:7a:ca:09:aa:34:ce:60:c5:1c: 35:21:37:ea:b2:ce:70:bb:d6:ff:1e:dc:f6:ed:b9:7d:8c:ca: 6b:46:24:7c:fc:a2:8e:9d:27:61:9b:d7:39:ff:35:9d:82:a6: bf:a8:b2:77:08:69:1a:49:b2:95:f5:d2:9a:5b:c6:ad:6c:68: b0:2c:bd:93:14:f7:47:25:9e:9f:4a:62:20:64:af:3b:6b:55: da:dd:62:ff:a4:23:c7:f3:9c:41:e0:ce:8b:0d:c0:7d:a4:2f: 13:62:d3:44:73:ae:1b:55:2a:93:89:47:5f:4f:12:f0:21:34: e2:d5:d2:f6:b0:6c:d1:36:8b:b0:86:07:2d:b1:e2:f9:46:3c: 2c:18:50:d7:cf:19:86:cd:14:d7:a2:76:af:81:ab:b3:82:57: de:24:6d:24:84:0e:fc:52:93:4e:13:5c:fd:48:7b:62:85:4e: 79:0d:f5:b4:05:b5:a7:96:51:03:77:d1:d7:e6:b2:d8:ab:bc: 29:59:fe:a8 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISAZt26r4mPKhUvAXjglf3piSBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkMDYzZDk0NGJiODFmYzMxY2JhMTE0OTlkZDAwNmViNGVj ZTk2MjQwHhcNMjYwMTAxMDAxNzM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMjNmN2IzNjBkYzk4MGJiZWNjODAyMzBkNzI0ZDU0ZWRhNGNlYmRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA57JHnL8CZvwpJ4JE3pkj2zyiWyok gEV1tThCn0ttoLuBqihrxd9WSXqXFngEo/SDWwp/c2Ypzc6k61AejvmZrRegYPde kxK0pmS1ibDLmXFwqlV8TqkPVl/uFmSKbpT+QPHEo4YA+k26L7Am1ZL/0Z5TmMEG QkIJMb26t3qvgTPe6z6maLSI5S6EtojuWhSlYpgWdm4NzGzPvKUTFc8CmEhx3DZz y5Iqbxz8VGcL1lFePEPUxF5tu4KCtNzYwG+bmXv/QKQKgMCyqRfIIjZmooAeApc7 MQaCGyBW4kTAF5ck7lgRhDNkjys6RumbxFSBeDuc9twaugLwEjYQtxiK8wIDAQAB o4ICJDCCAiAwHQYDVR0OBBYEFKI/ezYNyYC77MgCMNck1U7aTOvbMB8GA1UdIwQY MBaAFL0GPZRLuB/DHLoRSZ3QButOzpYkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdlFZOWxFdTRIOE1jdWhGSm5kQUc2MDdPbGlRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS9lYmZjM2QtNTRmYy00NjQzLWJlNTYt ZWE3MGEyOWM3NmYwLzEvb2o5N05nM0pnTHZzeUFJdzF5VFZUdHBNNjlzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS9lYmZjM2QtNTRmYy00NjQzLWJlNTYtZWE3MGEyOWM3NmYw LzEvdlFZOWxFdTRIOE1jdWhGSm5kQUc2MDdPbGlRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQEXudQAwQC uRNUAwQBwwLkMA0EAgACMAcDBQMqAEHAMA0GCSqGSIb3DQEBCwUAA4IBAQAIhHFR qkG7uyZbluKOa0MLgam1Zy7aJEMdHzSZa/67w2rTjMUtAd19e3uMWCk6DBLqHpu+ gmfjQMV66iBSxQZ6ygmqNM5gxRw1ITfqss5wu9b/Htz27bl9jMprRiR8/KKOnSdh m9c5/zWdgqa/qLJ3CGkaSbKV9dKaW8atbGiwLL2TFPdHJZ6fSmIgZK87a1Xa3WL/ pCPH85xB4M6LDcB9pC8TYtNEc64bVSqTiUdfTxLwITTi1dL2sGzRNouwhgctseL5 RjwsGFDXzxmGzRTXonavgauzglfeJG0khA78UpNOE1z9SHtihU55DfW0BbWnllED d9HX5rLYq7wpWf6o -----END CERTIFICATE-----Generated at Sun Jan 25 20:01:35 2026 by rpki-client