This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oTJ_SiNI-sTWNycV04ya44fLP9Q.roa File: oTJ_SiNI-sTWNycV04ya44fLP9Q.roa (raw, json) Hash identifier: oQAMQxzLon76LhylB305yCYYWrb8zMDw4+N6NR6rHCY= Subject key identifier: A1:32:7F:4A:23:48:FA:C4:D6:37:27:15:D3:8C:9A:E3:87:CB:3F:D4 Certificate issuer: /CN=a0d3216cccc863eca0c3dd189941b1b9ea37cacd Certificate serial: 019B7BA5190DD19CC69A343956A38B0C8EFC Authority key identifier: A0:D3:21:6C:CC:C8:63:EC:A0:C3:DD:18:99:41:B1:B9:EA:37:CA:CD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oTJ_SiNI-sTWNycV04ya44fLP9Q.roa Signing time: Thu 01 Jan 2026 22:19:35 +0000 ROA not before: Thu 01 Jan 2026 22:19:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16347 IP address blocks: 185.98.130.0/24 maxlen: 24 185.135.132.0/23 maxlen: 24 185.135.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:19:0d:d1:9c:c6:9a:34:39:56:a3:8b:0c:8e:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0d3216cccc863eca0c3dd189941b1b9ea37cacd Validity Not Before: Jan 1 22:19:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a1327f4a2348fac4d6372715d38c9ae387cb3fd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:90:ae:cd:47:07:f9:65:a2:8e:bc:77:d4:88: 54:2a:16:f0:18:82:79:f8:a1:b2:9f:33:fc:c4:78: bd:e5:bc:3a:39:0d:c3:d7:1a:7d:f4:a1:0f:3b:2e: 03:a5:25:d9:97:40:1d:32:ac:21:10:05:5e:5f:2d: e5:5d:8d:81:3d:85:8e:81:b6:5c:be:43:0c:8c:c1: ae:aa:35:dd:91:55:7b:48:a0:ac:cb:ac:a8:d8:8e: 57:56:ae:58:3c:39:08:61:02:bf:f7:bb:35:72:d7: 4f:79:5c:5d:5d:dc:51:79:9b:9c:b5:ee:7b:42:07: 78:27:99:f5:fd:7a:7d:9e:3f:94:05:26:85:99:ac: db:ae:ca:7a:d0:91:ce:d4:6b:b4:29:fe:1e:b3:28: e4:31:35:d1:1e:82:cd:4b:b5:4e:85:16:65:f6:44: 42:e6:3f:28:b2:39:5a:fc:30:e2:d6:02:3b:bb:a1: 79:1a:19:e5:e1:df:92:ba:f7:71:da:87:74:81:d5: c3:2e:07:87:d9:54:63:e8:2a:a0:bb:85:ac:e4:df: 17:ee:68:71:fb:3c:b7:f8:f8:85:06:bc:6d:07:73: ad:0c:c4:ce:cb:c3:df:c5:28:f2:b4:2e:d8:9b:e2: 4d:1d:76:b6:3b:29:ce:fe:5b:1e:2d:31:66:7b:ca: 2a:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:32:7F:4A:23:48:FA:C4:D6:37:27:15:D3:8C:9A:E3:87:CB:3F:D4 X509v3 Authority Key Identifier: keyid:A0:D3:21:6C:CC:C8:63:EC:A0:C3:DD:18:99:41:B1:B9:EA:37:CA:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oTJ_SiNI-sTWNycV04ya44fLP9Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.98.130.0/24 185.135.132.0/23 Signature Algorithm: sha256WithRSAEncryption 52:68:f7:33:38:86:a6:6b:a7:75:7d:59:ee:0c:36:1b:c3:7d: cc:bb:5a:1a:e4:56:d0:76:12:44:e3:b6:07:8b:e9:07:7b:5f: 8e:a8:aa:91:fb:27:d5:94:27:1d:45:de:86:d0:ac:d1:f8:6f: 65:ab:6d:94:cf:2b:7e:e7:fd:53:27:80:68:57:6c:fb:76:4c: b3:a7:63:f2:4f:30:83:8e:36:6f:b1:f0:ed:84:4c:a4:4a:f7: 26:91:3b:e1:c8:c4:4e:62:8c:08:fa:4c:cc:1d:d3:6b:99:83: e6:97:8c:e3:ad:3c:bd:1f:88:51:4f:a0:fb:02:5b:91:2f:e1: aa:e5:02:ff:f6:30:43:60:23:16:27:c0:d6:78:19:d5:3b:ce: 23:df:5f:9d:87:01:7e:ab:3c:ce:1c:34:fb:d2:26:22:82:8d: c9:ed:46:ae:12:59:ed:e0:ec:e3:76:05:66:26:33:f6:f8:ca: 20:41:6b:89:ed:fd:96:9b:fe:5b:dc:4d:03:43:6b:8a:a3:5a: d7:9a:1f:56:32:df:63:2b:cd:ce:c7:be:08:57:25:37:19:4e: de:ed:95:3a:b6:69:fc:67:6b:59:18:aa:e4:e4:d4:e8:77:6e: 98:22:f7:a2:81:e2:5f:4a:03:ab:3f:f1:0f:2b:b3:4a:22:61: 1b:b1:ee:26 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7pRkN0ZzGmjQ5VqOLDI78MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwZDMyMTZjY2NjODYzZWNhMGMzZGQxODk5NDFiMWI5ZWEz N2NhY2QwHhcNMjYwMTAxMjIxOTM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMTMyN2Y0YTIzNDhmYWM0ZDYzNzI3MTVkMzhjOWFlMzg3Y2IzZmQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuJCuzUcH+WWijrx31IhUKhbwGIJ5 +KGynzP8xHi95bw6OQ3D1xp99KEPOy4DpSXZl0AdMqwhEAVeXy3lXY2BPYWOgbZc vkMMjMGuqjXdkVV7SKCsy6yo2I5XVq5YPDkIYQK/97s1ctdPeVxdXdxReZucte57 Qgd4J5n1/Xp9nj+UBSaFmazbrsp60JHO1Gu0Kf4esyjkMTXRHoLNS7VOhRZl9kRC 5j8osjla/DDi1gI7u6F5Ghnl4d+Suvdx2od0gdXDLgeH2VRj6Cqgu4Ws5N8X7mhx +zy3+PiFBrxtB3OtDMTOy8PfxSjytC7Ym+JNHXa2OynO/lseLTFme8oq1wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFKEyf0ojSPrE1jcnFdOMmuOHyz/UMB8GA1UdIwQY MBaAFKDTIWzMyGPsoMPdGJlBsbnqN8rNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb05NaGJNeklZLXlndzkwWW1VR3h1ZW8zeXMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9hNWIyZDEtY2JhMC00YTU0LWI0Mzgt MGQ0NGMwNGE4NDQ4LzEvb1RKX1NpTkktc1RXTnljVjA0eWE0NGZMUDlRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC9hNWIyZDEtY2JhMC00YTU0LWI0MzgtMGQ0NGMwNGE4NDQ4 LzEvb05NaGJNeklZLXlndzkwWW1VR3h1ZW8zeXMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuWKCAwQB uYeEMA0GCSqGSIb3DQEBCwUAA4IBAQBSaPczOIama6d1fVnuDDYbw33Mu1oa5FbQ dhJE47YHi+kHe1+OqKqR+yfVlCcdRd6G0KzR+G9lq22Uzyt+5/1TJ4BoV2z7dkyz p2PyTzCDjjZvsfDthEykSvcmkTvhyMROYowI+kzMHdNrmYPml4zjrTy9H4hRT6D7 AluRL+Gq5QL/9jBDYCMWJ8DWeBnVO84j31+dhwF+qzzOHDT70iYigo3J7UauElnt 4OzjdgVmJjP2+MogQWuJ7f2Wm/5b3E0DQ2uKo1rXmh9WMt9jK83Ox74IVyU3GU7e 7ZU6tmn8Z2tZGKrk5NTod26YIveigeJfSgOrP/EPK7NKImEbse4m -----END CERTIFICATE-----Generated at Sun Jan 25 23:48:47 2026 by rpki-client