This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/6dd756-3899-4a49-b6fe-15515ad9b605/1/oDA53_TqkIEki7vjmeUnbfm3c9Q.roa File: oDA53_TqkIEki7vjmeUnbfm3c9Q.roa (raw, json) Hash identifier: BpchUDcPGzZIpm4ZqgsdohzNj45y1DQKxSYrFxk8C2c= Subject key identifier: A0:30:39:DF:F4:EA:90:81:24:8B:BB:E3:99:E5:27:6D:F9:B7:73:D4 Certificate issuer: /CN=439e4321cf218b9265d563b5bea51dbf1766cec8 Certificate serial: 019B7FF227A2383E111EF81741DC5570F690 Authority key identifier: 43:9E:43:21:CF:21:8B:92:65:D5:63:B5:BE:A5:1D:BF:17:66:CE:C8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q55DIc8hi5Jl1WO1vqUdvxdmzsg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/6dd756-3899-4a49-b6fe-15515ad9b605/1/oDA53_TqkIEki7vjmeUnbfm3c9Q.roa Signing time: Fri 02 Jan 2026 18:22:14 +0000 ROA not before: Fri 02 Jan 2026 18:22:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12552 IP address blocks: 185.134.100.0/22 maxlen: 22 2a06:ecc0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/6dd756-3899-4a49-b6fe-15515ad9b605/1/Q55DIc8hi5Jl1WO1vqUdvxdmzsg.crl rsync://rpki.ripe.net/repository/DEFAULT/b8/6dd756-3899-4a49-b6fe-15515ad9b605/1/Q55DIc8hi5Jl1WO1vqUdvxdmzsg.mft rsync://rpki.ripe.net/repository/DEFAULT/Q55DIc8hi5Jl1WO1vqUdvxdmzsg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:27:a2:38:3e:11:1e:f8:17:41:dc:55:70:f6:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=439e4321cf218b9265d563b5bea51dbf1766cec8 Validity Not Before: Jan 2 18:22:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a03039dff4ea9081248bbbe399e5276df9b773d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:83:08:14:4f:73:72:26:65:c1:a1:28:e5:b0: 6f:84:bb:d3:82:19:ce:ef:1d:c2:dc:11:55:6b:96: 0c:38:4c:01:fc:8a:36:88:ee:5b:ef:66:44:8a:26: cb:2b:b7:1d:db:ad:58:7f:4c:10:36:9d:55:c8:d9: f7:c1:6a:c4:44:b1:a0:5b:03:1d:d4:93:b2:16:3e: 36:74:c4:88:89:67:34:7b:a7:41:b6:45:94:4b:4d: 1d:12:78:b8:e7:21:06:ec:b1:ec:2a:a7:66:ed:28: a2:52:2a:2d:5d:b2:80:06:4e:8b:3d:23:49:02:d1: e1:df:9d:d0:9c:57:49:d4:2d:ed:b6:86:46:bb:f6: 04:8f:1a:91:0a:d6:26:af:dd:ee:d2:34:f3:3c:17: 24:94:cc:b8:f3:60:7f:97:6c:bd:74:a2:a0:ab:ac: b6:2e:1a:47:93:a5:c4:9a:62:2a:f7:28:1a:15:a8: 5b:4b:f8:41:47:0b:a1:bb:43:23:7c:26:10:31:27: ea:a5:dd:40:89:a8:57:56:2b:77:f8:a1:c0:7f:e5: 1a:50:8d:2e:1a:ad:53:3f:82:06:9b:5a:c3:31:18: 3f:06:96:33:a6:09:0d:20:7d:0d:36:fe:f7:b8:0c: 69:b4:bf:e0:ce:77:dd:60:03:07:ff:ee:94:75:d0: af:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:30:39:DF:F4:EA:90:81:24:8B:BB:E3:99:E5:27:6D:F9:B7:73:D4 X509v3 Authority Key Identifier: keyid:43:9E:43:21:CF:21:8B:92:65:D5:63:B5:BE:A5:1D:BF:17:66:CE:C8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q55DIc8hi5Jl1WO1vqUdvxdmzsg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6dd756-3899-4a49-b6fe-15515ad9b605/1/oDA53_TqkIEki7vjmeUnbfm3c9Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6dd756-3899-4a49-b6fe-15515ad9b605/1/Q55DIc8hi5Jl1WO1vqUdvxdmzsg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.134.100.0/22 IPv6: 2a06:ecc0::/29 Signature Algorithm: sha256WithRSAEncryption 55:f9:e5:cb:a7:3a:76:ca:2b:f1:be:b6:53:72:6a:48:5d:83: a0:56:6a:7f:34:6c:2a:99:ea:c7:5a:49:e5:da:5c:d1:73:92: 9e:c1:cc:10:97:ec:fa:fb:78:63:4d:b2:51:d6:fb:cb:03:dc: b4:99:51:13:b2:e5:71:41:35:4c:1d:9b:32:16:a7:7e:89:9d: 3d:e0:2f:58:64:3d:bb:c1:d5:24:3b:f5:b1:56:5d:16:27:77: 74:2b:fc:ca:0c:c5:c4:d8:e4:a9:c2:12:95:b9:7d:6d:e2:05: 72:df:d9:f8:5b:72:d4:7c:0b:3b:9e:47:03:c2:f1:bb:3a:1f: fd:56:89:4d:88:7a:1a:92:06:aa:cc:21:09:cb:20:b5:20:c1: f5:c2:81:8b:5b:5e:2a:d1:b8:c8:48:91:f3:d9:d3:f8:53:df: 25:6a:e3:d9:6d:9a:87:4b:2a:55:23:a3:ed:7c:d0:3b:e9:c6: a3:b9:ff:a3:f4:7f:65:b4:c9:d3:46:d7:a9:9b:8f:05:79:91: 7a:41:9c:fa:ef:9b:07:73:af:fc:fb:92:71:d7:1c:93:1c:bf: 7d:12:7a:d4:f7:ef:36:b9:a8:c1:cd:f7:a4:c1:cd:77:9d:9b: 15:5f:af:e1:46:dc:ff:b8:7e:cf:be:d8:8f:81:ae:40:f5:c2: 3d:c3:90:48 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/8ieiOD4RHvgXQdxVcPaQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzOWU0MzIxY2YyMThiOTI2NWQ1NjNiNWJlYTUxZGJmMTc2 NmNlYzgwHhcNMjYwMTAyMTgyMjE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMDMwMzlkZmY0ZWE5MDgxMjQ4YmJiZTM5OWU1Mjc2ZGY5Yjc3M2Q0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnYMIFE9zciZlwaEo5bBvhLvTghnO 7x3C3BFVa5YMOEwB/Io2iO5b72ZEiibLK7cd261Yf0wQNp1VyNn3wWrERLGgWwMd 1JOyFj42dMSIiWc0e6dBtkWUS00dEni45yEG7LHsKqdm7SiiUiotXbKABk6LPSNJ AtHh353QnFdJ1C3ttoZGu/YEjxqRCtYmr93u0jTzPBcklMy482B/l2y9dKKgq6y2 LhpHk6XEmmIq9ygaFahbS/hBRwuhu0MjfCYQMSfqpd1AiahXVit3+KHAf+UaUI0u Gq1TP4IGm1rDMRg/BpYzpgkNIH0NNv73uAxptL/gznfdYAMH/+6UddCv0wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFKAwOd/06pCBJIu745nlJ235t3PUMB8GA1UdIwQY MBaAFEOeQyHPIYuSZdVjtb6lHb8XZs7IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTU1REljOGhpNUpsMVdPMXZxVWR2eGRtenNnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC82ZGQ3NTYtMzg5OS00YTQ5LWI2ZmUt MTU1MTVhZDliNjA1LzEvb0RBNTNfVHFrSUVraTd2am1lVW5iZm0zYzlRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOC82ZGQ3NTYtMzg5OS00YTQ5LWI2ZmUtMTU1MTVhZDliNjA1 LzEvUTU1REljOGhpNUpsMVdPMXZxVWR2eGRtenNnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuYZkMA0E AgACMAcDBQMqBuzAMA0GCSqGSIb3DQEBCwUAA4IBAQBV+eXLpzp2yivxvrZTcmpI XYOgVmp/NGwqmerHWknl2lzRc5KewcwQl+z6+3hjTbJR1vvLA9y0mVETsuVxQTVM HZsyFqd+iZ094C9YZD27wdUkO/WxVl0WJ3d0K/zKDMXE2OSpwhKVuX1t4gVy39n4 W3LUfAs7nkcDwvG7Oh/9VolNiHoakgaqzCEJyyC1IMH1woGLW14q0bjISJHz2dP4 U98lauPZbZqHSypVI6PtfNA76cajuf+j9H9ltMnTRtepm48FeZF6QZz675sHc6/8 +5Jx1xyTHL99EnrU9+82uajBzfekwc13nZsVX6/hRtz/uH7PvtiPga5A9cI9w5BI -----END CERTIFICATE-----Generated at Sun Jan 25 19:37:05 2026 by rpki-client