This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/bbd64b-ebb8-46d8-b4e3-62eafed5922e/1/owMZq8FjMrGcWydVPo2XzsNX_wE.roa File: owMZq8FjMrGcWydVPo2XzsNX_wE.roa (raw, json) Hash identifier: oerV8Rk8gelATCf/K/1z5Pi6X6k6wK997b4CHySJpco= Subject key identifier: A3:03:19:AB:C1:63:32:B1:9C:5B:27:55:3E:8D:97:CE:C3:57:FF:01 Certificate issuer: /CN=4f3bf7ac28e830656cf6e999c4993ba76cb1a98a Certificate serial: 019B7910085C6359D42167AC3B1A68B43D3E Authority key identifier: 4F:3B:F7:AC:28:E8:30:65:6C:F6:E9:99:C4:99:3B:A7:6C:B1:A9:8A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tzv3rCjoMGVs9umZxJk7p2yxqYo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/bbd64b-ebb8-46d8-b4e3-62eafed5922e/1/owMZq8FjMrGcWydVPo2XzsNX_wE.roa Signing time: Thu 01 Jan 2026 10:17:32 +0000 ROA not before: Thu 01 Jan 2026 10:17:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 21263 IP address blocks: 5.154.226.0/23 maxlen: 24 5.154.230.0/23 maxlen: 24 128.0.35.0/24 maxlen: 24 178.157.80.0/23 maxlen: 24 178.157.83.0/24 maxlen: 24 185.4.232.0/22 maxlen: 24 185.68.188.0/24 maxlen: 24 185.124.220.0/22 maxlen: 24 188.119.150.0/23 maxlen: 23 188.119.152.0/24 maxlen: 24 217.73.152.0/21 maxlen: 24 2a05:7ac0::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/bbd64b-ebb8-46d8-b4e3-62eafed5922e/1/Tzv3rCjoMGVs9umZxJk7p2yxqYo.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/bbd64b-ebb8-46d8-b4e3-62eafed5922e/1/Tzv3rCjoMGVs9umZxJk7p2yxqYo.mft rsync://rpki.ripe.net/repository/DEFAULT/Tzv3rCjoMGVs9umZxJk7p2yxqYo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 10:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:08:5c:63:59:d4:21:67:ac:3b:1a:68:b4:3d:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f3bf7ac28e830656cf6e999c4993ba76cb1a98a Validity Not Before: Jan 1 10:17:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a30319abc16332b19c5b27553e8d97cec357ff01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f5:d6:03:48:8c:cb:b7:0b:46:14:c4:b8:78: 23:08:bf:65:f9:2b:9f:d1:94:d5:84:da:59:36:a3: 56:82:3b:56:e2:cf:22:46:4f:ec:1b:0c:b8:82:1c: 6f:89:f6:54:3c:56:e2:88:88:80:f7:a9:70:32:64: ad:d6:e7:5c:03:74:f3:6a:33:eb:a4:e0:d2:c5:87: 5f:de:eb:16:2d:b1:de:45:21:8f:1e:ca:3a:c1:87: 42:65:c1:6d:5c:e0:85:87:fd:a3:75:e3:bc:cb:a7: 1e:0f:82:a7:1a:ee:2a:f9:50:e9:10:50:58:a6:a7: 18:1f:2c:4d:b4:8d:80:2f:85:45:49:e9:38:dc:cc: 97:ad:58:d0:f3:62:f7:ed:40:5b:9b:d8:86:f8:c8: c5:ca:ab:28:6b:60:0b:f7:5a:b6:66:d5:9e:56:c7: 67:95:aa:f1:bc:d8:1a:ed:8e:71:91:38:0e:31:6c: 55:bd:11:a8:a2:94:96:76:9f:e9:a8:f6:d5:ce:85: 64:1e:ac:29:fe:90:6a:70:56:07:84:9b:ae:16:41: fc:ed:78:df:c9:58:72:18:ee:86:fa:9f:35:da:71: 09:78:60:c4:32:6e:32:1c:d1:81:d5:25:fd:ed:3d: 2d:63:d1:68:55:14:6d:cc:e8:c9:46:55:0b:90:8d: da:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:03:19:AB:C1:63:32:B1:9C:5B:27:55:3E:8D:97:CE:C3:57:FF:01 X509v3 Authority Key Identifier: keyid:4F:3B:F7:AC:28:E8:30:65:6C:F6:E9:99:C4:99:3B:A7:6C:B1:A9:8A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tzv3rCjoMGVs9umZxJk7p2yxqYo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/bbd64b-ebb8-46d8-b4e3-62eafed5922e/1/owMZq8FjMrGcWydVPo2XzsNX_wE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/bbd64b-ebb8-46d8-b4e3-62eafed5922e/1/Tzv3rCjoMGVs9umZxJk7p2yxqYo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.154.226.0/23 5.154.230.0/23 128.0.35.0/24 178.157.80.0/23 178.157.83.0/24 185.4.232.0/22 185.68.188.0/24 185.124.220.0/22 188.119.150.0-188.119.152.255 217.73.152.0/21 IPv6: 2a05:7ac0::/29 Signature Algorithm: sha256WithRSAEncryption 00:b6:a3:c1:1f:ef:b7:af:d0:28:7b:6a:c2:dd:83:4f:cc:f0: 3d:8b:42:d1:b8:90:6c:79:66:6a:96:26:ba:9d:ad:bb:73:74: 0c:a5:98:48:6a:14:07:58:32:a7:b1:5b:26:13:77:ec:e5:85: 1a:f6:4a:e6:3f:eb:a0:4c:fd:77:1c:45:78:bd:04:45:d8:d8: 91:27:10:f5:ce:2d:fa:db:7a:bf:e8:dd:66:1a:87:a2:36:1e: 8b:0a:27:d6:9d:c3:b5:c0:42:23:33:dc:5f:3e:74:da:60:e5: 28:3f:eb:5d:9e:df:96:43:d5:ab:26:c5:e4:52:80:fe:dd:67: b8:64:1a:ac:30:44:5b:ee:5a:a9:74:65:e7:d0:b9:e6:23:37: 31:3e:bb:44:ca:28:d5:f5:d5:04:65:65:c8:0c:e4:8c:7e:af: 35:d4:2f:2c:d1:59:4d:f3:2d:37:48:da:64:3d:8e:dc:da:12: 11:3f:63:a8:ba:61:d9:5e:25:7f:9f:b8:90:42:21:d3:41:74: df:d0:4e:df:91:e3:81:96:13:15:c1:86:a1:42:f9:28:bb:4f: 30:8f:64:c6:fd:7f:9f:e8:67:29:da:e9:6c:ee:e5:ef:87:c0: a6:24:f4:d4:3c:e7:52:f4:2a:6d:1d:07:55:da:d4:a8:df:43: 35:88:72:71 -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgISAZt5EAhcY1nUIWesOxpotD0+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmM2JmN2FjMjhlODMwNjU2Y2Y2ZTk5OWM0OTkzYmE3NmNi MWE5OGEwHhcNMjYwMTAxMTAxNzMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMzAzMTlhYmMxNjMzMmIxOWM1YjI3NTUzZThkOTdjZWMzNTdmZjAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0PXWA0iMy7cLRhTEuHgjCL9l+Suf 0ZTVhNpZNqNWgjtW4s8iRk/sGwy4ghxvifZUPFbiiIiA96lwMmSt1udcA3TzajPr pODSxYdf3usWLbHeRSGPHso6wYdCZcFtXOCFh/2jdeO8y6ceD4KnGu4q+VDpEFBY pqcYHyxNtI2AL4VFSek43MyXrVjQ82L37UBbm9iG+MjFyqsoa2AL91q2ZtWeVsdn larxvNga7Y5xkTgOMWxVvRGoopSWdp/pqPbVzoVkHqwp/pBqcFYHhJuuFkH87Xjf yVhyGO6G+p812nEJeGDEMm4yHNGB1SX97T0tY9FoVRRtzOjJRlULkI3a0wIDAQAB o4ICVjCCAlIwHQYDVR0OBBYEFKMDGavBYzKxnFsnVT6Nl87DV/8BMB8GA1UdIwQY MBaAFE8796wo6DBlbPbpmcSZO6dssamKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHp2M3JDam9NR1ZzOXVtWnhKazdwMnl4cVlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC9iYmQ2NGItZWJiOC00NmQ4LWI0ZTMt NjJlYWZlZDU5MjJlLzEvb3dNWnE4RmpNckdjV3lkVlBvMlh6c05YX3dFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC9iYmQ2NGItZWJiOC00NmQ4LWI0ZTMtNjJlYWZlZDU5MjJl LzEvVHp2M3JDam9NR1ZzOXVtWnhKazdwMnl4cVlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGwGCCsGAQUFBwEHAQH/BF0wWzBKBAIAATBEAwQBBZriAwQB BZrmAwQAgAAjAwQBsp1QAwQAsp1TAwQCuQToAwQAuUS8AwQCuXzcMAwDBAG8d5YD BAC8d5gDBAPZSZgwDQQCAAIwBwMFAyoFesAwDQYJKoZIhvcNAQELBQADggEBAAC2 o8Ef77ev0Ch7asLdg0/M8D2LQtG4kGx5ZmqWJrqdrbtzdAylmEhqFAdYMqexWyYT d+zlhRr2SuY/66BM/XccRXi9BEXY2JEnEPXOLfrber/o3WYah6I2HosKJ9adw7XA QiMz3F8+dNpg5Sg/612e35ZD1asmxeRSgP7dZ7hkGqwwRFvuWql0ZefQueYjNzE+ u0TKKNX11QRlZcgM5Ix+rzXULyzRWU3zLTdI2mQ9jtzaEhE/Y6i6YdleJX+fuJBC IdNBdN/QTt+R44GWExXBhqFC+Si7TzCPZMb9f5/oZyna6Wzu5e+HwKYk9NQ851L0 Km0dB1Xa1KjfQzWIcnE= -----END CERTIFICATE-----Generated at Sun Jan 25 19:37:05 2026 by rpki-client