This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/otDdauzK1pDpIELnjnezw5Wgbks.roa File: otDdauzK1pDpIELnjnezw5Wgbks.roa (raw, json) Hash identifier: PkYGbseDQrN+XnOme6deJeEpgE/JFmyzszNd7IeDEBs= Subject key identifier: A2:D0:DD:6A:EC:CA:D6:90:E9:20:42:E7:8E:77:B3:C3:95:A0:6E:4B Certificate issuer: /CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Certificate serial: 019B7EA63593CB560E150F22DD15F3F03CD0 Authority key identifier: 52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/otDdauzK1pDpIELnjnezw5Wgbks.roa Signing time: Fri 02 Jan 2026 12:19:40 +0000 ROA not before: Fri 02 Jan 2026 12:19:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14670 IP address blocks: 65.181.111.0/24 maxlen: 24 65.181.118.0/24 maxlen: 24 88.135.73.0/24 maxlen: 24 185.181.252.0/24 maxlen: 24 190.92.168.0/22 maxlen: 24 190.92.172.0/24 maxlen: 24 190.92.173.0/24 maxlen: 24 192.243.110.0/24 maxlen: 24 192.250.225.0/24 maxlen: 24 192.250.231.0/24 maxlen: 24 193.30.117.0/24 maxlen: 24 195.250.24.0/24 maxlen: 24 195.250.26.0/24 maxlen: 24 195.250.29.0/24 maxlen: 24 199.103.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 01:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:35:93:cb:56:0e:15:0f:22:dd:15:f3:f0:3c:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Validity Not Before: Jan 2 12:19:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a2d0dd6aeccad690e92042e78e77b3c395a06e4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b4:4e:6b:70:36:97:d3:70:7d:43:35:13:d4: 97:79:6b:e9:3e:c0:74:98:db:97:e8:d9:d3:60:de: bf:69:5c:32:70:34:c2:55:30:dc:cb:e1:73:04:d0: 55:36:5b:e4:c8:8d:3c:9e:0c:b7:14:9d:bd:0a:d0: 2b:3e:ef:df:43:37:16:72:45:a2:39:0e:09:6f:69: 06:fd:d9:57:dd:18:23:fa:37:a2:43:88:b6:9c:f8: 54:d2:89:2a:79:80:36:71:7c:ca:18:23:9b:7b:48: ba:4d:27:fe:b3:5c:a6:b8:c9:46:75:04:a7:ba:44: 6f:0c:ac:64:b3:1e:7c:64:02:22:1d:94:d1:cb:76: 07:c5:1c:98:8d:0b:3d:c9:27:87:95:54:9e:6c:be: 73:b0:22:dd:a1:1b:8a:06:e6:36:ae:ea:6a:58:d1: 8c:b2:da:6e:83:a2:2b:c1:23:02:17:2b:93:e7:40: 13:52:9c:46:d1:01:9f:49:a6:3a:67:20:65:dc:4b: a5:3f:11:44:bc:08:36:6e:5c:c4:af:09:a0:fd:77: f5:4c:a9:ff:08:ea:03:21:86:c8:1c:ec:a3:6a:c4: 24:a7:bd:a9:ce:5d:6e:75:0b:29:b3:c7:35:aa:3e: 03:47:01:33:32:c6:52:80:12:dc:5a:4f:00:c4:fe: 56:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:D0:DD:6A:EC:CA:D6:90:E9:20:42:E7:8E:77:B3:C3:95:A0:6E:4B X509v3 Authority Key Identifier: keyid:52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/otDdauzK1pDpIELnjnezw5Wgbks.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 65.181.111.0/24 65.181.118.0/24 88.135.73.0/24 185.181.252.0/24 190.92.168.0-190.92.173.255 192.243.110.0/24 192.250.225.0/24 192.250.231.0/24 193.30.117.0/24 195.250.24.0/24 195.250.26.0/24 195.250.29.0/24 199.103.58.0/24 Signature Algorithm: sha256WithRSAEncryption 87:79:bd:85:b6:79:e1:bc:dd:54:89:68:d9:63:37:91:56:3e: 4b:8e:c4:d9:d0:68:16:82:32:8a:56:4e:88:e1:21:18:e0:ba: f0:6b:b7:7c:8b:e3:9e:26:63:97:6d:9d:3b:f4:5c:80:6e:1f: d6:eb:9d:67:bf:7d:ce:94:92:5f:06:c9:d7:41:2b:81:e0:f1: 78:95:1a:74:19:46:6b:46:b2:7b:59:58:05:70:fd:c6:d2:85: 20:0c:cb:d7:fa:59:f7:13:41:01:bb:5f:d4:4f:c1:18:8a:e6: d5:73:58:4e:c2:c5:2d:d7:f5:d3:14:cf:1f:dd:2e:81:58:8b: 9c:e2:77:e5:bd:f7:0f:b4:13:a0:98:87:38:a1:70:15:ef:0c: f0:b2:d9:44:a3:94:91:5e:15:2d:e7:3f:f7:0f:77:68:b2:81: ee:ae:26:3b:e0:d4:e1:83:91:2c:31:cb:27:5e:a8:1a:01:d3: 2d:91:bd:86:df:d0:4f:ce:04:b8:92:e1:7b:63:55:2c:45:b4: 9f:96:3c:ae:52:e1:2c:d1:ec:2c:be:c6:b8:d8:49:e8:f4:e5: c2:fe:ff:93:7c:33:2f:65:66:63:e9:50:dc:fd:80:d3:b7:2b: 0d:bf:a5:17:85:4a:62:d1:6b:2c:3d:32:f4:0e:98:8f:28:c7: 98:44:68:98 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgISAZt+pjWTy1YOFQ8i3RXz8DzQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyY2Q5YTY1MTJkYmYyNWE1ZjE5YjgyN2Q3YTJjN2UyMmEy ZWU4ZGQwHhcNMjYwMTAyMTIxOTQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMmQwZGQ2YWVjY2FkNjkwZTkyMDQyZTc4ZTc3YjNjMzk1YTA2ZTRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0LROa3A2l9NwfUM1E9SXeWvpPsB0 mNuX6NnTYN6/aVwycDTCVTDcy+FzBNBVNlvkyI08ngy3FJ29CtArPu/fQzcWckWi OQ4Jb2kG/dlX3Rgj+jeiQ4i2nPhU0okqeYA2cXzKGCObe0i6TSf+s1ymuMlGdQSn ukRvDKxksx58ZAIiHZTRy3YHxRyYjQs9ySeHlVSebL5zsCLdoRuKBuY2rupqWNGM stpug6IrwSMCFyuT50ATUpxG0QGfSaY6ZyBl3EulPxFEvAg2blzErwmg/Xf1TKn/ COoDIYbIHOyjasQkp72pzl1udQsps8c1qj4DRwEzMsZSgBLcWk8AxP5W7wIDAQAB o4ICWTCCAlUwHQYDVR0OBBYEFKLQ3WrsytaQ6SBC5453s8OVoG5LMB8GA1UdIwQY MBaAFFLNmmUS2/JaXxm4J9eix+IqLujdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUt Y2NhMzc2MDZiZjE4LzEvb3REZGF1eksxcERwSUVMbmpuZXp3NVdnYmtzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUtY2NhMzc2MDZiZjE4 LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMG8GCCsGAQUFBwEHAQH/BGAwXjBcBAIAATBWAwQAQbVvAwQA QbV2AwQAWIdJAwQAubX8MAwDBAO+XKgDBAG+XKwDBADA824DBADA+uEDBADA+ucD BADBHnUDBADD+hgDBADD+hoDBADD+h0DBADHZzowDQYJKoZIhvcNAQELBQADggEB AId5vYW2eeG83VSJaNljN5FWPkuOxNnQaBaCMopWTojhIRjguvBrt3yL454mY5dt nTv0XIBuH9brnWe/fc6Ukl8GyddBK4Hg8XiVGnQZRmtGsntZWAVw/cbShSAMy9f6 WfcTQQG7X9RPwRiK5tVzWE7CxS3X9dMUzx/dLoFYi5zid+W99w+0E6CYhzihcBXv DPCy2USjlJFeFS3nP/cPd2iyge6uJjvg1OGDkSwxyydeqBoB0y2RvYbf0E/OBLiS 4XtjVSxFtJ+WPK5S4SzR7Cy+xrjYSej05cL+/5N8My9lZmPpUNz9gNO3Kw2/pReF SmLRayw9MvQOmI8ox5hEaJg= -----END CERTIFICATE-----Generated at Sun Jan 25 12:46:36 2026 by rpki-client