This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/46358e-54f7-4f4b-a747-f735e3dafd53/1/Ao2Uwt4oKwQ1-c1Gu8SWHTMD-K8.roa File: Ao2Uwt4oKwQ1-c1Gu8SWHTMD-K8.roa (raw, json) Hash identifier: uT0NSIRsA25cgjDuo3tHzZ3LPFFy7ZkJaOtpYRZPqbE= Subject key identifier: 02:8D:94:C2:DE:28:2B:04:35:F9:CD:46:BB:C4:96:1D:33:03:F8:AF Certificate issuer: /CN=a0dae7678a396969e6340c9dcb65cde9e329554a Certificate serial: 019B7B36D87642264B4C9B7B14ED22D1FC58 Authority key identifier: A0:DA:E7:67:8A:39:69:69:E6:34:0C:9D:CB:65:CD:E9:E3:29:55:4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNrnZ4o5aWnmNAydy2XN6eMpVUo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/46358e-54f7-4f4b-a747-f735e3dafd53/1/Ao2Uwt4oKwQ1-c1Gu8SWHTMD-K8.roa Signing time: Thu 01 Jan 2026 20:19:10 +0000 ROA not before: Thu 01 Jan 2026 20:19:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211664 IP address blocks: 91.232.22.0/24 maxlen: 24 91.232.23.0/24 maxlen: 24 185.226.241.0/24 maxlen: 24 185.226.242.0/24 maxlen: 24 2a0c:7680:1337::/48 maxlen: 48 2a12:84c0:1::/48 maxlen: 48 2a12:84c0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/46358e-54f7-4f4b-a747-f735e3dafd53/1/oNrnZ4o5aWnmNAydy2XN6eMpVUo.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/46358e-54f7-4f4b-a747-f735e3dafd53/1/oNrnZ4o5aWnmNAydy2XN6eMpVUo.mft rsync://rpki.ripe.net/repository/DEFAULT/oNrnZ4o5aWnmNAydy2XN6eMpVUo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:d8:76:42:26:4b:4c:9b:7b:14:ed:22:d1:fc:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0dae7678a396969e6340c9dcb65cde9e329554a Validity Not Before: Jan 1 20:19:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=028d94c2de282b0435f9cd46bbc4961d3303f8af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:61:11:a6:8c:7d:c7:bd:91:e5:8f:f9:90:68: ff:ad:2a:5c:19:1c:37:f0:c1:f7:a5:b9:36:2a:8e: d3:71:c1:61:0a:73:36:24:8f:46:bd:28:95:04:2c: b3:7f:ea:1d:52:de:a3:bd:91:05:4e:0f:f9:78:a1: c1:73:b2:48:89:bb:bb:ad:d4:02:5e:ac:84:db:45: 91:30:6c:86:b1:aa:e4:d7:f3:a6:22:12:ab:83:bb: aa:d1:8c:c5:59:ad:d1:d2:8a:27:51:8e:18:1f:fb: 32:44:4c:57:75:56:1d:99:55:11:4a:94:73:2e:68: c4:d1:7c:dd:f1:e6:1b:08:24:06:7d:86:7e:6e:24: b0:18:15:ac:bb:06:76:2b:ee:b4:63:07:41:88:bb: c2:c5:e6:27:ad:15:48:3e:37:69:6d:5a:20:d5:7a: 84:7b:a9:fe:11:15:2d:d9:ac:49:6f:4b:98:be:54: ac:b9:f5:33:e0:4a:2f:be:84:bb:f8:df:90:20:38: e1:e2:65:de:3e:89:e3:02:27:b7:45:c0:d2:dd:42: b8:1e:9b:8e:bb:e0:b9:bd:31:d6:ab:07:ec:61:55: e7:db:76:14:e5:36:88:22:d6:59:c2:86:6c:dc:42: 52:34:f0:7b:74:a5:2d:02:ab:a6:56:7c:eb:66:c0: 86:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:8D:94:C2:DE:28:2B:04:35:F9:CD:46:BB:C4:96:1D:33:03:F8:AF X509v3 Authority Key Identifier: keyid:A0:DA:E7:67:8A:39:69:69:E6:34:0C:9D:CB:65:CD:E9:E3:29:55:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNrnZ4o5aWnmNAydy2XN6eMpVUo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/46358e-54f7-4f4b-a747-f735e3dafd53/1/Ao2Uwt4oKwQ1-c1Gu8SWHTMD-K8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/46358e-54f7-4f4b-a747-f735e3dafd53/1/oNrnZ4o5aWnmNAydy2XN6eMpVUo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.232.22.0/23 185.226.241.0-185.226.242.255 IPv6: 2a0c:7680:1337::/48 2a12:84c0:1::-2a12:84c0:2:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 46:d4:00:5d:22:69:ca:12:ac:f4:8e:67:8e:4a:bb:25:85:e0: 2b:70:e6:84:5e:8d:63:6c:42:8f:47:60:56:34:1e:a2:2d:b9: 1b:f7:f6:0d:6f:5a:a6:81:8a:ea:22:f3:49:db:ce:0e:20:65: e2:7b:e5:25:ce:92:32:a6:80:81:9c:a7:a1:96:02:3d:d7:8a: f8:53:83:71:91:76:86:fc:bc:af:46:76:d0:67:ce:8e:49:1a: df:22:5b:6c:2a:13:97:51:99:3a:bd:1b:48:91:34:ec:70:c8: 61:6b:68:22:07:8f:4d:6e:7a:39:dd:65:2b:6e:6e:26:e5:78: e5:2a:5f:fd:62:36:db:5e:6e:f5:0d:5e:2a:0b:c6:f9:ab:5b: 33:68:98:aa:40:66:17:2f:e2:b3:a6:41:ed:26:b5:18:19:c5: 64:38:07:c8:cf:58:41:00:e5:3e:d1:13:47:39:e2:fe:ae:4e: dc:42:47:07:30:98:1e:ab:d1:23:1e:bf:6f:60:19:28:75:26: 4a:c4:04:98:78:9c:16:d6:66:48:43:21:5f:79:05:fe:cf:59: 36:ac:b7:f1:57:69:c9:ff:3b:07:63:e6:70:6a:be:d5:2e:6b: 35:9a:93:3d:7f:ef:e7:ea:06:fc:df:b6:e2:34:87:d6:e5:00: ba:ca:6b:3d -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgISAZt7Nth2QiZLTJt7FO0i0fxYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwZGFlNzY3OGEzOTY5NjllNjM0MGM5ZGNiNjVjZGU5ZTMy OTU1NGEwHhcNMjYwMTAxMjAxOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMjhkOTRjMmRlMjgyYjA0MzVmOWNkNDZiYmM0OTYxZDMzMDNmOGFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsWERpox9x72R5Y/5kGj/rSpcGRw3 8MH3pbk2Ko7TccFhCnM2JI9GvSiVBCyzf+odUt6jvZEFTg/5eKHBc7JIibu7rdQC XqyE20WRMGyGsark1/OmIhKrg7uq0YzFWa3R0oonUY4YH/syRExXdVYdmVURSpRz LmjE0Xzd8eYbCCQGfYZ+biSwGBWsuwZ2K+60YwdBiLvCxeYnrRVIPjdpbVog1XqE e6n+ERUt2axJb0uYvlSsufUz4EovvoS7+N+QIDjh4mXePonjAie3RcDS3UK4HpuO u+C5vTHWqwfsYVXn23YU5TaIItZZwoZs3EJSNPB7dKUtAqumVnzrZsCGIwIDAQAB o4ICPDCCAjgwHQYDVR0OBBYEFAKNlMLeKCsENfnNRrvElh0zA/ivMB8GA1UdIwQY MBaAFKDa52eKOWlp5jQMnctlzenjKVVKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb05yblo0bzVhV25tTkF5ZHkyWE42ZU1wVlVvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy80NjM1OGUtNTRmNy00ZjRiLWE3NDct ZjczNWUzZGFmZDUzLzEvQW8yVXd0NG9Ld1ExLWMxR3U4U1dIVE1ELUs4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy80NjM1OGUtNTRmNy00ZjRiLWE3NDctZjczNWUzZGFmZDUz LzEvb05yblo0bzVhV25tTkF5ZHkyWE42ZU1wVlVvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFIGCCsGAQUFBwEHAQH/BEMwQTAaBAIAATAUAwQBW+gWMAwD BAC54vEDBAC54vIwIwQCAAIwHQMHACoMdoATNzASAwcAKhKEwAABAwcAKhKEwAAC MA0GCSqGSIb3DQEBCwUAA4IBAQBG1ABdImnKEqz0jmeOSrslheArcOaEXo1jbEKP R2BWNB6iLbkb9/YNb1qmgYrqIvNJ284OIGXie+UlzpIypoCBnKehlgI914r4U4Nx kXaG/LyvRnbQZ86OSRrfIltsKhOXUZk6vRtIkTTscMhha2giB49Nbno53WUrbm4m 5XjlKl/9YjbbXm71DV4qC8b5q1szaJiqQGYXL+KzpkHtJrUYGcVkOAfIz1hBAOU+ 0RNHOeL+rk7cQkcHMJgeq9EjHr9vYBkodSZKxASYeJwW1mZIQyFfeQX+z1k2rLfx V2nJ/zsHY+Zwar7VLms1mpM9f+/n6gb837biNIfW5QC6yms9 -----END CERTIFICATE-----Generated at Sun Jan 25 21:19:42 2026 by rpki-client