This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/0c2ec3-3844-4b5f-9f58-5f1b69048fe2/1/oEGHzzf1fvFVFaFctvR_EGF3YRU.roa File: oEGHzzf1fvFVFaFctvR_EGF3YRU.roa (raw, json) Hash identifier: w6zWg3Nf+b7IZjvHBsFGQ9oohPa6DL7QQgOqamD3en8= Subject key identifier: A0:41:87:CF:37:F5:7E:F1:55:15:A1:5C:B6:F4:7F:10:61:77:61:15 Certificate issuer: /CN=423d93054f063cf8a291861735f90059ab9ec169 Certificate serial: 019B7F151A1D14FC4413A2C0F3C837927536 Authority key identifier: 42:3D:93:05:4F:06:3C:F8:A2:91:86:17:35:F9:00:59:AB:9E:C1:69 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qj2TBU8GPPiikYYXNfkAWauewWk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/0c2ec3-3844-4b5f-9f58-5f1b69048fe2/1/oEGHzzf1fvFVFaFctvR_EGF3YRU.roa Signing time: Fri 02 Jan 2026 14:20:47 +0000 ROA not before: Fri 02 Jan 2026 14:20:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204834 IP address blocks: 178.157.0.0/24 maxlen: 24 185.188.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/0c2ec3-3844-4b5f-9f58-5f1b69048fe2/1/Qj2TBU8GPPiikYYXNfkAWauewWk.crl rsync://rpki.ripe.net/repository/DEFAULT/b5/0c2ec3-3844-4b5f-9f58-5f1b69048fe2/1/Qj2TBU8GPPiikYYXNfkAWauewWk.mft rsync://rpki.ripe.net/repository/DEFAULT/Qj2TBU8GPPiikYYXNfkAWauewWk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:1a:1d:14:fc:44:13:a2:c0:f3:c8:37:92:75:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=423d93054f063cf8a291861735f90059ab9ec169 Validity Not Before: Jan 2 14:20:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a04187cf37f57ef15515a15cb6f47f1061776115 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e0:0f:ed:d3:72:e7:cd:01:75:9c:2f:a6:08: 48:cf:49:7d:58:c1:a8:c8:19:f9:92:33:82:0a:56: d4:5c:db:bd:35:2b:29:40:f5:a7:c5:48:d6:93:4f: 3b:9c:a1:79:6b:79:c6:8b:e8:07:9d:b9:12:9e:58: 36:cf:64:bc:a3:9f:1c:c3:41:f9:19:c4:78:9e:8e: 62:56:7d:43:f4:ae:cf:38:3b:1d:58:53:dd:40:9f: db:23:f0:d0:64:09:5d:04:32:d2:5a:24:f3:13:ee: 35:5f:8f:f1:01:74:d4:ec:c8:f0:a3:cf:96:7d:01: 55:22:7f:03:f9:21:f8:b3:95:9d:b2:b8:ee:0a:24: c8:50:d4:00:6e:23:6c:f8:2a:70:f8:b8:a0:7a:a0: ef:75:eb:19:33:38:4e:0b:5f:b5:a7:2a:8f:4b:c4: 37:9a:dd:b7:d6:2f:6b:55:f1:5c:8a:76:e2:36:c5: 51:ad:9f:4e:07:ce:38:3b:6e:f2:e2:70:50:f3:b8: b0:78:ac:d0:3f:f3:a1:6e:5c:d7:83:1b:58:e9:50: ff:08:e7:fd:92:60:24:5e:c7:27:c9:e6:f6:c9:25: 42:43:96:b4:84:37:cd:3a:31:7e:cb:e5:76:94:e7: aa:b8:2b:9e:92:ed:b5:3a:9c:83:d3:0b:3b:dd:2c: e7:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:41:87:CF:37:F5:7E:F1:55:15:A1:5C:B6:F4:7F:10:61:77:61:15 X509v3 Authority Key Identifier: keyid:42:3D:93:05:4F:06:3C:F8:A2:91:86:17:35:F9:00:59:AB:9E:C1:69 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qj2TBU8GPPiikYYXNfkAWauewWk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/0c2ec3-3844-4b5f-9f58-5f1b69048fe2/1/oEGHzzf1fvFVFaFctvR_EGF3YRU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/0c2ec3-3844-4b5f-9f58-5f1b69048fe2/1/Qj2TBU8GPPiikYYXNfkAWauewWk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.157.0.0/24 185.188.112.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:ed:36:06:ac:5c:d7:da:f2:74:d1:2a:9f:80:2e:ba:92:98: 2c:21:1e:ff:f7:ab:ef:8a:bf:51:70:34:ac:b1:0c:9d:0d:6a: 45:52:d2:52:bd:c0:83:ad:8b:aa:a3:c9:42:fe:26:19:35:4d: 6f:a5:d0:50:42:81:b4:93:06:cc:29:ac:d2:71:8f:d6:07:31: 85:e3:a5:ff:bf:d6:4d:89:bf:67:2a:9d:66:0f:24:ee:b3:b6: 91:f6:0c:6c:70:6d:c8:9a:ab:47:d7:e7:5f:27:5c:e3:54:99: 78:0e:e6:67:f9:b4:9a:02:09:1a:6b:ab:21:30:7f:02:e7:47: 76:70:2f:dc:27:d1:63:79:a8:56:5d:09:c6:92:a6:a3:6d:5b: 5e:d6:c3:f5:fe:09:df:e1:43:fa:19:75:be:cc:05:ce:21:4e: b5:fe:30:c7:ce:22:21:e2:43:a4:8d:80:4d:bf:c3:2a:da:af: a2:7d:6f:3f:92:e3:8e:0a:35:96:31:76:1b:23:09:cd:a6:78: b8:df:b9:9c:7f:77:e7:0a:74:21:73:96:ee:25:9c:63:30:69: d3:2d:04:dd:fd:5c:5c:de:46:af:8e:b9:9b:8e:9a:79:58:36: 0c:30:e6:0a:83:f9:dc:33:be:22:fd:56:6f:65:79:5e:b9:9e: 32:a1:a8:88 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/FRodFPxEE6LA88g3knU2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyM2Q5MzA1NGYwNjNjZjhhMjkxODYxNzM1ZjkwMDU5YWI5 ZWMxNjkwHhcNMjYwMTAyMTQyMDQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMDQxODdjZjM3ZjU3ZWYxNTUxNWExNWNiNmY0N2YxMDYxNzc2MTE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxeAP7dNy580BdZwvpghIz0l9WMGo yBn5kjOCClbUXNu9NSspQPWnxUjWk087nKF5a3nGi+gHnbkSnlg2z2S8o58cw0H5 GcR4no5iVn1D9K7PODsdWFPdQJ/bI/DQZAldBDLSWiTzE+41X4/xAXTU7Mjwo8+W fQFVIn8D+SH4s5WdsrjuCiTIUNQAbiNs+Cpw+LigeqDvdesZMzhOC1+1pyqPS8Q3 mt231i9rVfFcinbiNsVRrZ9OB844O27y4nBQ87iweKzQP/OhblzXgxtY6VD/COf9 kmAkXscnyeb2ySVCQ5a0hDfNOjF+y+V2lOequCueku21OpyD0ws73SznNQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFKBBh8839X7xVRWhXLb0fxBhd2EVMB8GA1UdIwQY MBaAFEI9kwVPBjz4opGGFzX5AFmrnsFpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWoyVEJVOEdQUGlpa1lZWE5ma0FXYXVld1drLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS8wYzJlYzMtMzg0NC00YjVmLTlmNTgt NWYxYjY5MDQ4ZmUyLzEvb0VHSHp6ZjFmdkZWRmFGY3R2Ul9FR0YzWVJVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNS8wYzJlYzMtMzg0NC00YjVmLTlmNTgtNWYxYjY5MDQ4ZmUy LzEvUWoyVEJVOEdQUGlpa1lZWE5ma0FXYXVld1drLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAsp0AAwQA ubxwMA0GCSqGSIb3DQEBCwUAA4IBAQA+7TYGrFzX2vJ00SqfgC66kpgsIR7/96vv ir9RcDSssQydDWpFUtJSvcCDrYuqo8lC/iYZNU1vpdBQQoG0kwbMKazScY/WBzGF 46X/v9ZNib9nKp1mDyTus7aR9gxscG3ImqtH1+dfJ1zjVJl4DuZn+bSaAgkaa6sh MH8C50d2cC/cJ9FjeahWXQnGkqajbVte1sP1/gnf4UP6GXW+zAXOIU61/jDHziIh 4kOkjYBNv8Mq2q+ifW8/kuOOCjWWMXYbIwnNpni437mcf3fnCnQhc5buJZxjMGnT LQTd/Vxc3kavjrmbjpp5WDYMMOYKg/ncM74i/VZvZXleuZ4yoaiI -----END CERTIFICATE-----Generated at Sun Jan 25 23:48:40 2026 by rpki-client