This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/e09181-2643-414c-8fbe-1e5e430dd711/1/ohKELa4D7u4-F5h5znUYEfXBTrQ.roa File: ohKELa4D7u4-F5h5znUYEfXBTrQ.roa (raw, json) Hash identifier: fMVIcUvcrWF7H5I6/6miPXqqmQnLYpDWZI9AaMxyhp4= Subject key identifier: A2:12:84:2D:AE:03:EE:EE:3E:17:98:79:CE:75:18:11:F5:C1:4E:B4 Certificate issuer: /CN=83479514959397c5e3fa76e1ea495e8e1f6c319b Certificate serial: 019B78A3356C322A183555FF5E79E9D9FE6A Authority key identifier: 83:47:95:14:95:93:97:C5:E3:FA:76:E1:EA:49:5E:8E:1F:6C:31:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g0eVFJWTl8Xj-nbh6klejh9sMZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/e09181-2643-414c-8fbe-1e5e430dd711/1/ohKELa4D7u4-F5h5znUYEfXBTrQ.roa Signing time: Thu 01 Jan 2026 08:18:40 +0000 ROA not before: Thu 01 Jan 2026 08:18:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16221 IP address blocks: 217.118.206.0/23 maxlen: 24 2a07:600::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/e09181-2643-414c-8fbe-1e5e430dd711/1/g0eVFJWTl8Xj-nbh6klejh9sMZs.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/e09181-2643-414c-8fbe-1e5e430dd711/1/g0eVFJWTl8Xj-nbh6klejh9sMZs.mft rsync://rpki.ripe.net/repository/DEFAULT/g0eVFJWTl8Xj-nbh6klejh9sMZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:35:6c:32:2a:18:35:55:ff:5e:79:e9:d9:fe:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83479514959397c5e3fa76e1ea495e8e1f6c319b Validity Not Before: Jan 1 08:18:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a212842dae03eeee3e179879ce751811f5c14eb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:cd:8f:61:1d:ed:4f:49:86:a2:a4:6e:65:f5: 94:7a:af:9f:eb:e4:09:0f:ff:28:17:57:34:5d:d5: f4:65:27:eb:ed:24:7f:1a:ea:c1:9b:96:ea:15:e7: 65:84:0a:18:df:f8:45:38:4e:59:e3:09:5b:7b:9b: 3c:6c:77:13:75:6f:a0:1a:79:32:32:eb:86:ec:f5: 77:91:a4:30:fb:9f:55:e6:1f:33:aa:7e:17:6e:3d: 1b:62:e8:0b:e7:a8:00:ad:57:af:96:c6:15:7e:7a: ba:0e:f6:22:13:92:7f:14:3c:d9:56:65:d2:7f:b9: fd:52:df:65:68:8e:9e:98:87:33:8a:b6:54:ea:f0: 2b:26:9d:fb:b3:69:ab:c9:7b:2a:0d:42:30:b8:69: 65:1c:af:83:64:5f:34:f8:ff:e9:d0:e4:c2:6d:17: 08:74:7b:dd:32:54:9d:26:16:8c:ee:68:f3:4f:f8: 19:00:cf:a0:5b:a9:a1:8b:4a:a9:30:37:a5:cf:29: 26:47:51:c2:eb:45:0a:72:00:f8:65:06:c4:b9:97: 5d:71:d5:13:7d:75:3c:77:00:fa:e7:61:a8:d9:c0: 0d:89:74:85:c3:b4:f7:47:11:c1:95:77:a8:93:ce: 9e:6e:1b:31:7c:d5:e1:d0:2f:4c:2b:7c:57:94:5f: 3f:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:12:84:2D:AE:03:EE:EE:3E:17:98:79:CE:75:18:11:F5:C1:4E:B4 X509v3 Authority Key Identifier: keyid:83:47:95:14:95:93:97:C5:E3:FA:76:E1:EA:49:5E:8E:1F:6C:31:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g0eVFJWTl8Xj-nbh6klejh9sMZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/e09181-2643-414c-8fbe-1e5e430dd711/1/ohKELa4D7u4-F5h5znUYEfXBTrQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/e09181-2643-414c-8fbe-1e5e430dd711/1/g0eVFJWTl8Xj-nbh6klejh9sMZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.118.206.0/23 IPv6: 2a07:600::/32 Signature Algorithm: sha256WithRSAEncryption 27:2e:18:77:f7:23:20:02:0f:32:6e:ea:54:0e:49:06:35:5d: af:3f:14:fd:64:8e:2b:49:df:c6:30:87:fe:09:d1:4c:64:3b: 60:35:dd:e0:ab:05:4a:a4:84:da:85:95:8c:c1:16:17:32:28: ce:e8:81:76:7b:a7:a6:87:d8:ed:21:c4:20:41:34:2c:0a:9d: 93:fc:0b:15:eb:f2:2c:e3:3e:fb:2d:3e:88:d7:0f:8c:19:78: 62:75:9d:77:ba:37:dc:51:49:f2:9d:aa:9e:29:3e:a8:8c:0b: e5:d8:cc:4a:59:e5:67:78:1e:ca:1a:f9:2c:e0:d3:3b:61:fe: 5c:ae:99:1a:0e:81:5a:6b:4b:e1:1f:0e:fe:ff:8b:21:e6:93: ad:ff:f5:ae:c4:8b:a6:00:e6:ea:87:39:23:99:e0:86:63:ec: dd:a2:7b:f5:02:27:e1:c2:77:b6:47:38:ff:26:c3:d0:ad:3d: 26:ac:b1:e4:cd:14:8e:2f:62:d7:56:a7:0f:7c:cc:98:87:be: 2b:3f:3c:96:11:fa:84:72:b3:68:76:73:0c:e0:76:bf:66:19: fd:4c:a7:4a:d1:58:32:a0:4c:4d:33:c1:56:cb:5d:90:86:9f: 4d:12:80:0a:36:db:a1:8b:86:80:d2:9c:3d:37:d3:48:5b:9b: f9:fd:ef:6e -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4ozVsMioYNVX/Xnnp2f5qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgzNDc5NTE0OTU5Mzk3YzVlM2ZhNzZlMWVhNDk1ZThlMWY2 YzMxOWIwHhcNMjYwMTAxMDgxODQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMjEyODQyZGFlMDNlZWVlM2UxNzk4NzljZTc1MTgxMWY1YzE0ZWI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhM2PYR3tT0mGoqRuZfWUeq+f6+QJ D/8oF1c0XdX0ZSfr7SR/GurBm5bqFedlhAoY3/hFOE5Z4wlbe5s8bHcTdW+gGnky MuuG7PV3kaQw+59V5h8zqn4Xbj0bYugL56gArVevlsYVfnq6DvYiE5J/FDzZVmXS f7n9Ut9laI6emIczirZU6vArJp37s2mryXsqDUIwuGllHK+DZF80+P/p0OTCbRcI dHvdMlSdJhaM7mjzT/gZAM+gW6mhi0qpMDelzykmR1HC60UKcgD4ZQbEuZddcdUT fXU8dwD652Go2cANiXSFw7T3RxHBlXeok86ebhsxfNXh0C9MK3xXlF8/awIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFKIShC2uA+7uPheYec51GBH1wU60MB8GA1UdIwQY MBaAFINHlRSVk5fF4/p24epJXo4fbDGbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZzBlVkZKV1RsOFhqLW5iaDZrbGVqaDlzTVpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy9lMDkxODEtMjY0My00MTRjLThmYmUt MWU1ZTQzMGRkNzExLzEvb2hLRUxhNEQ3dTQtRjVoNXpuVVlFZlhCVHJRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy9lMDkxODEtMjY0My00MTRjLThmYmUtMWU1ZTQzMGRkNzEx LzEvZzBlVkZKV1RsOFhqLW5iaDZrbGVqaDlzTVpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQB2XbOMA0E AgACMAcDBQAqBwYAMA0GCSqGSIb3DQEBCwUAA4IBAQAnLhh39yMgAg8ybupUDkkG NV2vPxT9ZI4rSd/GMIf+CdFMZDtgNd3gqwVKpITahZWMwRYXMijO6IF2e6emh9jt IcQgQTQsCp2T/AsV6/Is4z77LT6I1w+MGXhidZ13ujfcUUnynaqeKT6ojAvl2MxK WeVneB7KGvks4NM7Yf5crpkaDoFaa0vhHw7+/4sh5pOt//WuxIumAObqhzkjmeCG Y+zdonv1Aifhwne2Rzj/JsPQrT0mrLHkzRSOL2LXVqcPfMyYh74rPzyWEfqEcrNo dnMM4Ha/Zhn9TKdK0VgyoExNM8FWy12Qhp9NEoAKNtuhi4aA0pw9N9NIW5v5/e9u -----END CERTIFICATE-----Generated at Mon Jan 26 07:08:30 2026 by rpki-client