This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/ogEjhX2zW6tgVtz_pOmSPCqvyBk.roa File: ogEjhX2zW6tgVtz_pOmSPCqvyBk.roa (raw, json) Hash identifier: dF9i4unUQNdYa+sgOQav50pelR9XCvdYshIMM/dzsiM= Subject key identifier: A2:01:23:85:7D:B3:5B:AB:60:56:DC:FF:A4:E9:92:3C:2A:AF:C8:19 Certificate issuer: /CN=230340d27e4b24f9124977322edb36942e2d160c Certificate serial: 019B77C6F07C85C5BF61A07BE7822BC2C2B6 Authority key identifier: 23:03:40:D2:7E:4B:24:F9:12:49:77:32:2E:DB:36:94:2E:2D:16:0C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IwNA0n5LJPkSSXcyLts2lC4tFgw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/ogEjhX2zW6tgVtz_pOmSPCqvyBk.roa Signing time: Thu 01 Jan 2026 04:18:04 +0000 ROA not before: Thu 01 Jan 2026 04:18:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43386 IP address blocks: 81.6.139.0/24 maxlen: 24 81.6.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/IwNA0n5LJPkSSXcyLts2lC4tFgw.crl rsync://rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/IwNA0n5LJPkSSXcyLts2lC4tFgw.mft rsync://rpki.ripe.net/repository/DEFAULT/IwNA0n5LJPkSSXcyLts2lC4tFgw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 07:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:f0:7c:85:c5:bf:61:a0:7b:e7:82:2b:c2:c2:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=230340d27e4b24f9124977322edb36942e2d160c Validity Not Before: Jan 1 04:18:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a20123857db35bab6056dcffa4e9923c2aafc819 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:7d:b2:cc:6e:ad:8f:97:17:8c:e8:0a:f0:e8: 3e:20:58:39:59:ad:c6:44:30:e4:2a:a4:95:4e:93: 90:89:b4:20:df:db:75:4b:e2:33:ba:7b:9b:bb:04: 30:ad:d4:b5:eb:8f:55:a7:4d:84:3a:67:37:8d:52: 55:21:df:ff:c3:ff:f6:ba:ad:ce:1f:51:0a:a4:8d: 25:9c:25:26:87:08:43:f2:ee:93:87:36:db:0a:28: a3:79:1b:19:19:5e:76:4c:67:23:44:a3:de:e0:3a: b9:00:3b:c6:af:9a:17:79:03:00:76:f3:13:aa:2d: b1:d0:ec:ed:9e:ea:c4:a3:f5:58:84:0e:7c:62:af: 3d:87:8a:8a:2c:66:29:24:b7:8a:99:3a:dd:ef:9d: c8:82:6e:e9:02:f0:f5:3f:e8:62:b3:c4:9e:ec:07: 90:52:75:ff:00:90:0a:4a:5f:7e:e5:a5:f8:8e:d0: 16:49:69:a8:42:57:85:d0:52:1a:ad:16:c6:8a:43: 0d:30:9d:8c:c3:b5:fe:96:9f:e0:6b:ee:4f:ff:8d: 3f:c8:e4:a1:12:90:e3:ff:6f:55:7f:e8:5f:55:93: 9c:2e:1c:50:3e:42:c3:62:56:88:36:3c:1f:f0:2f: 0b:18:2a:ac:1e:7d:83:16:b5:ff:6b:29:99:aa:f9: 41:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:01:23:85:7D:B3:5B:AB:60:56:DC:FF:A4:E9:92:3C:2A:AF:C8:19 X509v3 Authority Key Identifier: keyid:23:03:40:D2:7E:4B:24:F9:12:49:77:32:2E:DB:36:94:2E:2D:16:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IwNA0n5LJPkSSXcyLts2lC4tFgw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/ogEjhX2zW6tgVtz_pOmSPCqvyBk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/IwNA0n5LJPkSSXcyLts2lC4tFgw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.6.139.0-81.6.140.255 Signature Algorithm: sha256WithRSAEncryption 40:89:c6:de:c7:1f:e7:37:81:90:15:08:0e:b1:21:91:8a:6c: 59:d3:6f:d7:1f:e5:49:a9:e0:1e:c8:88:0e:f6:d4:26:11:ac: 42:12:1e:d0:c4:0e:ca:fe:d3:8b:71:d3:31:95:81:dc:25:62: ee:d1:18:f4:4b:86:c8:29:a6:8f:ba:dc:c7:fe:a6:cd:f8:1d: 4f:3b:d3:d9:3a:74:39:4d:9b:7e:cd:29:2b:d9:e5:70:59:e4: 92:d7:d2:bb:72:d4:3f:27:04:03:08:3c:2c:b0:80:34:ad:6d: a1:2b:6d:2e:1c:16:13:68:a4:dc:60:b0:8a:a1:45:80:7e:51: 34:37:6b:55:80:0a:19:dc:6f:22:77:63:0a:1e:a9:fb:e4:2a: d4:fa:fe:02:e9:29:02:2f:d1:b8:c5:dd:0a:e5:fe:e5:fe:f3: 9b:7a:12:2e:8f:28:78:ee:f0:f4:fd:98:dc:3a:4c:6f:f1:6c: a5:3a:47:9d:f4:2a:73:a9:ca:94:5b:8c:1f:e5:68:83:f4:23: 2f:50:5c:9d:e9:28:2a:5b:73:81:72:86:75:7f:0c:6f:58:4b: 8c:a5:50:d2:d8:85:44:cc:ed:2c:3e:38:15:88:34:dd:a6:b6: 75:5f:18:2d:a7:a0:9f:1e:ce:e1:4a:72:9f:a8:20:04:52:13: 7b:a7:8c:8e -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt3xvB8hcW/YaB754IrwsK2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzMDM0MGQyN2U0YjI0ZjkxMjQ5NzczMjJlZGIzNjk0MmUy ZDE2MGMwHhcNMjYwMTAxMDQxODA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMjAxMjM4NTdkYjM1YmFiNjA1NmRjZmZhNGU5OTIzYzJhYWZjODE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1H2yzG6tj5cXjOgK8Og+IFg5Wa3G RDDkKqSVTpOQibQg39t1S+IzunubuwQwrdS1649Vp02EOmc3jVJVId//w//2uq3O H1EKpI0lnCUmhwhD8u6ThzbbCiijeRsZGV52TGcjRKPe4Dq5ADvGr5oXeQMAdvMT qi2x0OztnurEo/VYhA58Yq89h4qKLGYpJLeKmTrd753Igm7pAvD1P+his8Se7AeQ UnX/AJAKSl9+5aX4jtAWSWmoQleF0FIarRbGikMNMJ2Mw7X+lp/ga+5P/40/yOSh EpDj/29Vf+hfVZOcLhxQPkLDYlaINjwf8C8LGCqsHn2DFrX/aymZqvlB5wIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFKIBI4V9s1urYFbc/6Tpkjwqr8gZMB8GA1UdIwQY MBaAFCMDQNJ+SyT5Ekl3Mi7bNpQuLRYMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXdOQTBuNUxKUGtTU1hjeUx0czJsQzR0Rmd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS83YmRmNTItNmFjNS00YzI0LWJmZDAt YjU3MDkwN2I1OWViLzEvb2dFamhYMnpXNnRnVnR6X3BPbVNQQ3F2eUJrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOS83YmRmNTItNmFjNS00YzI0LWJmZDAtYjU3MDkwN2I1OWVi LzEvSXdOQTBuNUxKUGtTU1hjeUx0czJsQzR0Rmd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBABRBosD BABRBowwDQYJKoZIhvcNAQELBQADggEBAECJxt7HH+c3gZAVCA6xIZGKbFnTb9cf 5Ump4B7IiA721CYRrEISHtDEDsr+04tx0zGVgdwlYu7RGPRLhsgppo+63Mf+ps34 HU8709k6dDlNm37NKSvZ5XBZ5JLX0rty1D8nBAMIPCywgDStbaErbS4cFhNopNxg sIqhRYB+UTQ3a1WAChncbyJ3YwoeqfvkKtT6/gLpKQIv0bjF3Qrl/uX+85t6Ei6P KHju8PT9mNw6TG/xbKU6R530KnOpypRbjB/laIP0Iy9QXJ3pKCpbc4FyhnV/DG9Y S4ylUNLYhUTM7Sw+OBWINN2mtnVfGC2noJ8ezuFKcp+oIARSE3unjI4= -----END CERTIFICATE-----Generated at Mon Jan 26 15:18:48 2026 by rpki-client