This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/oLlQgePRk9yvcOlL0Fl_a56u9H4.roa File: oLlQgePRk9yvcOlL0Fl_a56u9H4.roa (raw, json) Hash identifier: Wqock9cGRbZPQGtCkafIuYZm7FqajUuA17fJ83OGRks= Subject key identifier: A0:B9:50:81:E3:D1:93:DC:AF:70:E9:4B:D0:59:7F:6B:9E:AE:F4:7E Certificate issuer: /CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Certificate serial: 019B7EA635F67EC780322DC2A93D7E0CEB44 Authority key identifier: 52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/oLlQgePRk9yvcOlL0Fl_a56u9H4.roa Signing time: Fri 02 Jan 2026 12:19:40 +0000 ROA not before: Fri 02 Jan 2026 12:19:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 21396 IP address blocks: 93.113.110.0/23 maxlen: 23 93.114.86.0/23 maxlen: 23 93.114.184.0/23 maxlen: 23 93.114.234.0/23 maxlen: 23 176.56.56.0/21 maxlen: 21 185.17.180.0/22 maxlen: 22 185.65.40.0/22 maxlen: 22 185.164.196.0/22 maxlen: 22 188.212.34.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 10:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:35:f6:7e:c7:80:32:2d:c2:a9:3d:7e:0c:eb:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Validity Not Before: Jan 2 12:19:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a0b95081e3d193dcaf70e94bd0597f6b9eaef47e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:61:e5:9f:7b:3a:a4:4c:4f:da:d4:c9:95:a1: c4:50:05:64:b3:32:1d:b9:ce:25:ed:f9:fc:39:eb: 12:f5:69:8d:d4:12:b5:7a:83:35:75:22:45:b5:1b: f4:ca:eb:24:bd:97:5c:06:9f:19:8d:83:83:84:54: c2:93:9e:31:6f:92:e6:fd:87:2c:98:91:01:06:93: c5:7e:90:bd:6a:37:75:f2:8f:ed:a7:33:0b:f6:2c: 7d:89:88:68:52:52:06:e7:53:e7:34:9e:8f:d0:4d: 47:6c:95:4e:2b:61:dd:cf:43:ab:a9:fb:d1:0e:3b: cf:46:32:c9:9e:cc:10:c8:3c:0c:01:20:08:26:2d: ec:14:ff:1f:5d:7e:a2:d3:38:e2:1b:30:03:15:21: 26:fe:fa:d0:33:fe:44:18:5c:d1:ce:2a:2d:d3:0a: dc:0d:d0:d2:ec:97:3e:67:cf:74:e5:2a:cf:6c:fd: 8d:5a:4a:db:15:39:7f:9d:ff:b0:fa:9a:69:d4:fb: 6f:e0:83:c6:a4:58:ed:b4:65:83:27:c1:33:60:1b: 97:01:25:84:a4:14:a3:b4:30:12:08:86:a5:09:69: 6c:35:79:b1:a0:ef:96:2b:a5:ee:eb:f6:e9:9e:b0: b9:8d:41:76:f6:69:f9:b7:2c:ce:ec:50:9c:6c:f6: ce:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:B9:50:81:E3:D1:93:DC:AF:70:E9:4B:D0:59:7F:6B:9E:AE:F4:7E X509v3 Authority Key Identifier: keyid:52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/oLlQgePRk9yvcOlL0Fl_a56u9H4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.113.110.0/23 93.114.86.0/23 93.114.184.0/23 93.114.234.0/23 176.56.56.0/21 185.17.180.0/22 185.65.40.0/22 185.164.196.0/22 188.212.34.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:d0:57:01:35:de:8a:62:66:98:2b:d2:3c:56:fa:e2:18:ef: 89:df:b6:aa:e0:6a:97:b4:77:2b:c6:b7:05:1e:34:d0:ed:02: e0:f1:66:f1:ab:1f:b7:c5:70:48:f3:88:4a:21:24:44:1e:d1: 22:ec:e5:24:e9:26:86:a7:53:7c:22:50:8b:63:58:a2:19:17: 48:34:62:c0:07:09:83:68:28:fd:4a:2b:18:08:0b:e5:f2:62: 0d:e3:08:44:c1:0a:5f:e4:a0:a5:4d:2a:64:ec:35:97:ea:32: 33:55:bb:d4:b6:16:ae:13:00:e9:fa:4a:18:53:c3:f8:98:1a: f5:20:50:54:b9:d8:6f:6e:58:42:ae:95:2a:ca:20:7f:e3:56: d8:ea:c9:11:75:d8:78:cc:a7:83:58:49:64:51:66:8b:3d:9c: 20:ce:9a:ff:88:af:75:35:8c:02:89:5f:6a:b1:92:3f:8e:93: 2b:3b:21:78:b1:a0:a4:23:4d:67:e5:2d:fe:47:38:b5:f0:fc: 32:fc:c3:e1:80:87:ef:9e:24:8f:a1:cb:94:51:ae:6d:34:d7: 6a:f3:ae:51:41:f7:ad:c2:25:19:3c:14:21:74:e6:fb:ea:dc: 52:9e:1e:c0:fa:1b:b9:68:c6:88:a4:cd:49:e0:56:00:9c:05: 3e:35:10:7c -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgISAZt+pjX2fseAMi3CqT1+DOtEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyY2Q5YTY1MTJkYmYyNWE1ZjE5YjgyN2Q3YTJjN2UyMmEy ZWU4ZGQwHhcNMjYwMTAyMTIxOTQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMGI5NTA4MWUzZDE5M2RjYWY3MGU5NGJkMDU5N2Y2YjllYWVmNDdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx2Hln3s6pExP2tTJlaHEUAVkszId uc4l7fn8OesS9WmN1BK1eoM1dSJFtRv0yuskvZdcBp8ZjYODhFTCk54xb5Lm/Ycs mJEBBpPFfpC9ajd18o/tpzML9ix9iYhoUlIG51PnNJ6P0E1HbJVOK2Hdz0OrqfvR DjvPRjLJnswQyDwMASAIJi3sFP8fXX6i0zjiGzADFSEm/vrQM/5EGFzRziot0wrc DdDS7Jc+Z8905SrPbP2NWkrbFTl/nf+w+ppp1Ptv4IPGpFjttGWDJ8EzYBuXASWE pBSjtDASCIalCWlsNXmxoO+WK6Xu6/bpnrC5jUF29mn5tyzO7FCcbPbOBQIDAQAB o4ICOTCCAjUwHQYDVR0OBBYEFKC5UIHj0ZPcr3DpS9BZf2uervR+MB8GA1UdIwQY MBaAFFLNmmUS2/JaXxm4J9eix+IqLujdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUt Y2NhMzc2MDZiZjE4LzEvb0xsUWdlUFJrOXl2Y09sTDBGbF9hNTZ1OUg0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUtY2NhMzc2MDZiZjE4 LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME8GCCsGAQUFBwEHAQH/BEAwPjA8BAIAATA2AwQBXXFuAwQB XXJWAwQBXXK4AwQBXXLqAwQDsDg4AwQCuRG0AwQCuUEoAwQCuaTEAwQBvNQiMA0G CSqGSIb3DQEBCwUAA4IBAQA90FcBNd6KYmaYK9I8VvriGO+J37aq4GqXtHcrxrcF HjTQ7QLg8Wbxqx+3xXBI84hKISREHtEi7OUk6SaGp1N8IlCLY1iiGRdINGLABwmD aCj9SisYCAvl8mIN4whEwQpf5KClTSpk7DWX6jIzVbvUthauEwDp+koYU8P4mBr1 IFBUudhvblhCrpUqyiB/41bY6skRddh4zKeDWElkUWaLPZwgzpr/iK91NYwCiV9q sZI/jpMrOyF4saCkI01n5S3+Rzi18Pwy/MPhgIfvniSPocuUUa5tNNdq865RQfet wiUZPBQhdOb76txSnh7A+hu5aMaIpM1J4FYAnAU+NRB8 -----END CERTIFICATE-----Generated at Sun Jan 25 19:02:26 2026 by rpki-client