This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/OUCRotg0H54KkWlKfw-xtRQ8RVc.roa File: OUCRotg0H54KkWlKfw-xtRQ8RVc.roa (raw, json) Hash identifier: ybdEGkExDB9ByrXNPF/2CIDiKasxiW+oeI/1uUC3I/A= Subject key identifier: 39:40:91:A2:D8:34:1F:9E:0A:91:69:4A:7F:0F:B1:B5:14:3C:45:57 Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003 Certificate serial: 019B7FCBC0112C8ABF9FCDF7C5938BB5A0F3 Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/OUCRotg0H54KkWlKfw-xtRQ8RVc.roa Signing time: Fri 02 Jan 2026 17:40:17 +0000 ROA not before: Fri 02 Jan 2026 17:40:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207957 IP address blocks: 64.188.89.0/24 maxlen: 24 64.188.90.0/24 maxlen: 24 64.188.98.0/24 maxlen: 24 64.188.127.0/24 maxlen: 24 77.239.107.0/24 maxlen: 24 144.31.82.0/24 maxlen: 24 144.31.83.0/24 maxlen: 24 144.31.93.0/24 maxlen: 24 144.31.103.0/24 maxlen: 24 144.31.107.0/24 maxlen: 24 144.31.108.0/24 maxlen: 24 144.31.213.0/24 maxlen: 24 144.31.214.0/24 maxlen: 24 144.31.216.0/24 maxlen: 24 144.31.217.0/24 maxlen: 24 144.31.218.0/24 maxlen: 24 144.31.219.0/24 maxlen: 24 150.241.82.0/24 maxlen: 24 150.241.83.0/24 maxlen: 24 185.170.153.0/24 maxlen: 24 185.170.154.0/24 maxlen: 24 193.23.195.0/24 maxlen: 24 193.23.200.0/24 maxlen: 24 193.23.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.mft rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:cb:c0:11:2c:8a:bf:9f:cd:f7:c5:93:8b:b5:a0:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003 Validity Not Before: Jan 2 17:40:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=394091a2d8341f9e0a91694a7f0fb1b5143c4557 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b2:e0:05:7e:f7:d3:8a:e0:e9:03:10:cf:f4: 07:a9:1c:03:59:b0:17:2f:a6:7b:8b:3d:8c:16:b5: c1:b1:c5:e8:39:f2:d7:33:a1:9d:3c:44:33:da:a2: 16:a9:43:a3:97:e3:3d:28:af:ad:0e:b4:51:c7:23: 61:1c:2d:66:96:46:fb:41:7c:5e:27:39:9b:f4:22: 06:9f:6a:be:05:2e:ca:1c:e8:ed:f0:63:34:c8:b5: 8d:06:ff:1f:f9:99:00:8e:e3:a5:38:30:7b:fa:20: a6:d2:23:bd:34:ef:55:4f:5f:74:37:7e:be:4e:ec: cc:5f:0c:68:e3:34:1d:9e:b4:78:e1:67:a8:5e:97: cf:8c:ab:7e:a6:17:89:27:61:fc:f6:f4:85:7c:ef: e9:47:e3:f3:ca:f9:eb:e1:ea:b3:79:f9:2e:c1:08: 02:28:94:7b:56:b3:f6:2b:1c:14:f2:bf:4c:46:08: 72:8f:7b:c5:46:aa:5e:75:04:82:c5:79:6e:a7:3e: cb:70:ac:8b:d6:06:43:55:99:5c:e0:d5:06:90:59: 57:8f:69:6d:4e:cb:ed:20:82:77:f2:fa:e6:53:3b: b0:3a:05:c1:6f:d2:44:82:07:44:14:64:ad:e1:82: cd:9f:26:af:6b:22:f2:79:4e:e7:5b:75:4c:38:84: 60:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:40:91:A2:D8:34:1F:9E:0A:91:69:4A:7F:0F:B1:B5:14:3C:45:57 X509v3 Authority Key Identifier: keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/OUCRotg0H54KkWlKfw-xtRQ8RVc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.188.89.0-64.188.90.255 64.188.98.0/24 64.188.127.0/24 77.239.107.0/24 144.31.82.0/23 144.31.93.0/24 144.31.103.0/24 144.31.107.0-144.31.108.255 144.31.213.0-144.31.214.255 144.31.216.0/22 150.241.82.0/23 185.170.153.0-185.170.154.255 193.23.195.0/24 193.23.200.0/24 193.23.202.0/24 Signature Algorithm: sha256WithRSAEncryption a8:fa:ea:08:65:10:61:43:7c:88:0d:9a:a7:60:06:cb:ad:79: b1:8d:60:5c:9c:45:5f:8f:73:f7:61:a0:d2:48:21:18:6b:e3: d0:63:d6:c9:12:54:2b:cc:d0:ca:34:8a:ed:d7:91:bf:16:34: 83:03:4e:80:a3:fc:ff:bc:4f:24:23:21:43:73:18:6b:c2:7c: 62:5e:ee:f3:d8:59:e7:18:9e:f1:78:c5:02:9b:e0:39:ab:81: 05:06:af:8c:38:16:90:65:1f:e0:1b:30:5d:1f:8d:cc:dc:db: 17:4e:91:9a:8e:66:8a:50:40:18:3a:b5:94:8f:c4:9f:1e:1a: 75:58:19:e0:7b:7f:0b:70:8d:13:a9:f2:50:d9:df:8e:4c:22: 7a:cb:ea:62:00:e1:60:f4:65:d7:c1:ea:46:2e:30:03:a5:30: a2:44:9b:cb:89:86:29:45:0d:61:45:cb:d7:2f:22:e4:a8:c0: a7:7c:48:f8:b2:34:75:c1:60:2a:4d:ba:f4:82:5f:82:88:2a: 1c:5c:dd:03:e3:c3:0a:3d:ae:05:a0:83:45:a1:44:df:4f:b2: 57:fc:72:87:9e:3b:8c:13:4c:03:37:ea:fc:89:92:7b:cd:d3: 09:fc:a5:f9:38:5e:52:f6:bd:dd:97:61:12:89:bf:39:e5:48: f2:de:65:3b -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgISAZt/y8ARLIq/n833xZOLtaDzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjOTYzZTNkMjI4NDdkNDY2YzI2MmMyMDg3OGMyNzgwZDg4 NDAwMDMwHhcNMjYwMTAyMTc0MDE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzOTQwOTFhMmQ4MzQxZjllMGE5MTY5NGE3ZjBmYjFiNTE0M2M0NTU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqbLgBX7304rg6QMQz/QHqRwDWbAX L6Z7iz2MFrXBscXoOfLXM6GdPEQz2qIWqUOjl+M9KK+tDrRRxyNhHC1mlkb7QXxe Jzmb9CIGn2q+BS7KHOjt8GM0yLWNBv8f+ZkAjuOlODB7+iCm0iO9NO9VT190N36+ TuzMXwxo4zQdnrR44WeoXpfPjKt+pheJJ2H89vSFfO/pR+Pzyvnr4eqzefkuwQgC KJR7VrP2KxwU8r9MRghyj3vFRqpedQSCxXlupz7LcKyL1gZDVZlc4NUGkFlXj2lt TsvtIIJ38vrmUzuwOgXBb9JEggdEFGSt4YLNnyavayLyeU7nW3VMOIRgXQIDAQAB o4ICgTCCAn0wHQYDVR0OBBYEFDlAkaLYNB+eCpFpSn8PsbUUPEVXMB8GA1UdIwQY MBaAFByWPj0ihH1GbCYsIIeMJ4DYhAADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQt MTQzOTY3YThmZTA4LzEvT1VDUm90ZzBINTRLa1dsS2Z3LXh0UlE4UlZjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQtMTQzOTY3YThmZTA4 LzEvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIGWBggrBgEFBQcBBwEB/wSBhjCBgzCBgAQCAAEwejAMAwQA QLxZAwQAQLxaAwQAQLxiAwQAQLx/AwQATe9rAwQBkB9SAwQAkB9dAwQAkB9nMAwD BACQH2sDBACQH2wwDAMEAJAf1QMEAJAf1gMEApAf2AMEAZbxUjAMAwQAuaqZAwQA uaqaAwQAwRfDAwQAwRfIAwQAwRfKMA0GCSqGSIb3DQEBCwUAA4IBAQCo+uoIZRBh Q3yIDZqnYAbLrXmxjWBcnEVfj3P3YaDSSCEYa+PQY9bJElQrzNDKNIrt15G/FjSD A06Ao/z/vE8kIyFDcxhrwnxiXu7z2FnnGJ7xeMUCm+A5q4EFBq+MOBaQZR/gGzBd H43M3NsXTpGajmaKUEAYOrWUj8SfHhp1WBnge38LcI0TqfJQ2d+OTCJ6y+piAOFg 9GXXwepGLjADpTCiRJvLiYYpRQ1hRcvXLyLkqMCnfEj4sjR1wWAqTbr0gl+CiCoc XN0D48MKPa4FoINFoUTfT7JX/HKHnjuME0wDN+r8iZJ7zdMJ/KX5OF5S9r3dl2ES ib855Ujy3mU7 -----END CERTIFICATE-----Generated at Sun Jan 25 12:06:35 2026 by rpki-client