This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/2dc7af-2c8c-457b-aeb0-4e1dc1505260/1/OHhiAeYr_lPpJG4ElFSYvT9QaKg.roa File: OHhiAeYr_lPpJG4ElFSYvT9QaKg.roa (raw, json) Hash identifier: okWIP8UHkkOy4kiOXB5kYOZ+ieyxEU9RuYl0RT/ofhs= Subject key identifier: 38:78:62:01:E6:2B:FE:53:E9:24:6E:04:94:54:98:BD:3F:50:68:A8 Certificate issuer: /CN=f6090b4db06a4d65935141bac98098127a8b8f5a Certificate serial: 019B7BA4FFFDE579609694E1F1236FE131B6 Authority key identifier: F6:09:0B:4D:B0:6A:4D:65:93:51:41:BA:C9:80:98:12:7A:8B:8F:5A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9gkLTbBqTWWTUUG6yYCYEnqLj1o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/2dc7af-2c8c-457b-aeb0-4e1dc1505260/1/OHhiAeYr_lPpJG4ElFSYvT9QaKg.roa Signing time: Thu 01 Jan 2026 22:19:29 +0000 ROA not before: Thu 01 Jan 2026 22:19:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200514 IP address blocks: 77.81.120.0/24 maxlen: 24 77.81.121.0/24 maxlen: 24 185.66.140.0/24 maxlen: 24 185.66.141.0/24 maxlen: 24 185.66.142.0/24 maxlen: 24 185.66.143.0/24 maxlen: 24 185.192.125.0/24 maxlen: 24 185.192.126.0/24 maxlen: 24 185.192.127.0/24 maxlen: 24 194.145.208.0/24 maxlen: 24 194.145.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/2dc7af-2c8c-457b-aeb0-4e1dc1505260/1/9gkLTbBqTWWTUUG6yYCYEnqLj1o.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/2dc7af-2c8c-457b-aeb0-4e1dc1505260/1/9gkLTbBqTWWTUUG6yYCYEnqLj1o.mft rsync://rpki.ripe.net/repository/DEFAULT/9gkLTbBqTWWTUUG6yYCYEnqLj1o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:ff:fd:e5:79:60:96:94:e1:f1:23:6f:e1:31:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f6090b4db06a4d65935141bac98098127a8b8f5a Validity Not Before: Jan 1 22:19:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=38786201e62bfe53e9246e04945498bd3f5068a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:cb:89:77:a3:86:29:11:8e:03:7a:df:94:93: 6c:a7:b0:d0:28:76:3b:dc:2f:ed:fd:ab:60:a5:ff: 09:ee:e9:df:63:6c:70:43:e4:2f:39:13:ea:aa:90: 67:f7:bd:31:1b:13:ca:a3:ec:3d:23:46:26:c2:bc: 94:7e:e6:e6:37:1f:e2:dc:a2:4b:28:07:ba:e6:9e: 2f:e7:f1:3c:53:51:9b:4d:dc:db:35:a5:ed:00:13: ae:39:01:00:28:b6:f1:1e:92:d2:8d:0c:8b:80:57: 98:fc:69:f5:5e:ef:02:56:35:05:d9:56:4a:7e:a7: 5f:53:a5:32:81:57:27:b5:60:b8:e9:1f:a5:3a:38: d8:32:d8:28:e3:1f:a1:f1:1d:af:e2:22:51:45:94: 0d:42:79:85:46:64:eb:a1:f5:49:cf:9a:69:ce:b4: 6e:a0:f2:33:4b:99:96:ca:2e:a8:aa:bb:b1:e1:a3: cc:49:28:ba:49:b0:21:c2:d9:ce:fe:4a:82:e0:65: 7e:2a:aa:b5:b2:b1:32:4d:24:f0:3a:4b:65:96:24: 68:c2:09:09:3f:4e:d5:c3:cc:c1:16:21:4d:c3:86: 64:f5:a3:01:2d:99:bf:3d:73:dd:39:9c:0a:3a:3a: 5d:41:01:96:a9:31:79:87:74:3b:34:11:aa:16:2c: 40:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:78:62:01:E6:2B:FE:53:E9:24:6E:04:94:54:98:BD:3F:50:68:A8 X509v3 Authority Key Identifier: keyid:F6:09:0B:4D:B0:6A:4D:65:93:51:41:BA:C9:80:98:12:7A:8B:8F:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9gkLTbBqTWWTUUG6yYCYEnqLj1o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2dc7af-2c8c-457b-aeb0-4e1dc1505260/1/OHhiAeYr_lPpJG4ElFSYvT9QaKg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2dc7af-2c8c-457b-aeb0-4e1dc1505260/1/9gkLTbBqTWWTUUG6yYCYEnqLj1o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.81.120.0/23 185.66.140.0/22 185.192.125.0-185.192.127.255 194.145.208.0/23 Signature Algorithm: sha256WithRSAEncryption 37:7f:e0:84:62:7a:74:75:f9:cf:e2:59:30:c2:7b:a7:7d:fd: c2:d6:1c:bf:a4:16:41:78:a2:0c:7c:85:de:2e:e7:39:ea:8f: c7:57:1d:8a:1b:4b:71:d0:05:9c:0f:77:d0:b0:e1:e6:30:79: db:e6:3e:04:03:27:f8:1d:6d:d3:00:d7:a1:7d:d4:77:16:12: 15:07:98:dd:b0:e3:4b:56:0d:90:25:a1:f2:86:a4:b0:76:82: 2a:21:6e:d2:90:c6:4d:94:0a:69:0a:c6:e5:0f:ee:18:1b:8e: 44:90:2c:e1:63:5d:d8:08:9a:df:61:21:ca:46:3e:ec:28:be: 3d:40:27:e0:8b:20:c0:b9:92:93:f8:2b:46:29:fd:ae:11:b5: e4:26:ae:82:b6:75:85:f1:e2:0a:bf:08:a5:62:96:39:cd:55: 38:ec:d2:93:d6:b1:74:69:a3:d1:58:e2:eb:ed:f1:ea:f5:b2: 77:43:27:07:7f:6c:65:41:2f:c9:9f:91:cd:f2:3a:bc:c1:ba: b7:a7:96:cc:15:d7:d6:35:7f:60:9a:49:91:e2:df:cd:d5:a6: 71:16:08:8d:2c:6d:2a:9a:1d:d9:41:52:26:6d:d8:27:87:29: d0:d3:00:bd:fa:b5:c3:aa:ea:45:f8:1a:36:89:26:5d:e1:95: dc:9c:82:3f -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISAZt7pP/95XlglpTh8SNv4TG2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY2MDkwYjRkYjA2YTRkNjU5MzUxNDFiYWM5ODA5ODEyN2E4 YjhmNWEwHhcNMjYwMTAxMjIxOTI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzODc4NjIwMWU2MmJmZTUzZTkyNDZlMDQ5NDU0OThiZDNmNTA2OGE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnMuJd6OGKRGOA3rflJNsp7DQKHY7 3C/t/atgpf8J7unfY2xwQ+QvORPqqpBn970xGxPKo+w9I0YmwryUfubmNx/i3KJL KAe65p4v5/E8U1GbTdzbNaXtABOuOQEAKLbxHpLSjQyLgFeY/Gn1Xu8CVjUF2VZK fqdfU6UygVcntWC46R+lOjjYMtgo4x+h8R2v4iJRRZQNQnmFRmTrofVJz5ppzrRu oPIzS5mWyi6oqrux4aPMSSi6SbAhwtnO/kqC4GV+Kqq1srEyTSTwOktlliRowgkJ P07Vw8zBFiFNw4Zk9aMBLZm/PXPdOZwKOjpdQQGWqTF5h3Q7NBGqFixACQIDAQAB o4ICIzCCAh8wHQYDVR0OBBYEFDh4YgHmK/5T6SRuBJRUmL0/UGioMB8GA1UdIwQY MBaAFPYJC02wak1lk1FBusmAmBJ6i49aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOWdrTFRiQnFUV1dUVVVHNnlZQ1lFbnFMajFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC8yZGM3YWYtMmM4Yy00NTdiLWFlYjAt NGUxZGMxNTA1MjYwLzEvT0hoaUFlWXJfbFBwSkc0RWxGU1l2VDlRYUtnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC8yZGM3YWYtMmM4Yy00NTdiLWFlYjAtNGUxZGMxNTA1MjYw LzEvOWdrTFRiQnFUV1dUVVVHNnlZQ1lFbnFMajFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgAwQBTVF4AwQC uUKMMAwDBAC5wH0DBAe5wAADBAHCkdAwDQYJKoZIhvcNAQELBQADggEBADd/4IRi enR1+c/iWTDCe6d9/cLWHL+kFkF4ogx8hd4u5znqj8dXHYobS3HQBZwPd9Cw4eYw edvmPgQDJ/gdbdMA16F91HcWEhUHmN2w40tWDZAlofKGpLB2giohbtKQxk2UCmkK xuUP7hgbjkSQLOFjXdgImt9hIcpGPuwovj1AJ+CLIMC5kpP4K0Yp/a4RteQmroK2 dYXx4gq/CKViljnNVTjs0pPWsXRpo9FY4uvt8er1sndDJwd/bGVBL8mfkc3yOrzB urenlswV19Y1f2CaSZHi383VpnEWCI0sbSqaHdlBUiZt2CeHKdDTAL36tcOq6kX4 GjaJJl3hldycgj8= -----END CERTIFICATE-----Generated at Sun Jan 25 22:14:52 2026 by rpki-client