This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/O7LM0apoNc8yapnRZlk8VGA28hw.roa File: O7LM0apoNc8yapnRZlk8VGA28hw.roa (raw, json) Hash identifier: NpHeYL6tyORB44tYt+zITmVQrWJ2N6/lscYnxLjgtOk= Subject key identifier: 3B:B2:CC:D1:AA:68:35:CF:32:6A:99:D1:66:59:3C:54:60:36:F2:1C Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Certificate serial: 019B7834821C81E6C68EF22ADCAD131117AC Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/O7LM0apoNc8yapnRZlk8VGA28hw.roa Signing time: Thu 01 Jan 2026 06:17:45 +0000 ROA not before: Thu 01 Jan 2026 06:17:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203426 IP address blocks: 193.235.52.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 05:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:82:1c:81:e6:c6:8e:f2:2a:dc:ad:13:11:17:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Validity Not Before: Jan 1 06:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3bb2ccd1aa6835cf326a99d166593c546036f21c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:ae:22:35:a6:44:d1:5e:ac:3e:1a:9b:6b:75: b2:8f:8d:6d:33:1d:65:71:dd:eb:59:2b:5d:11:00: 9e:da:50:24:90:12:a3:0c:67:45:b2:eb:cb:41:98: 83:04:f9:cc:25:b9:9c:f7:d8:ad:95:81:f4:16:db: 26:6a:bd:bd:16:39:c5:27:90:54:ab:42:40:e5:06: e7:cc:80:ac:2e:2e:05:6e:e8:99:9f:85:3f:35:ff: 15:32:03:af:35:1d:cb:0a:3f:91:e3:33:24:fc:07: 63:b3:8f:18:84:54:30:f3:8c:e0:c5:b5:41:7b:32: 54:22:9f:8f:48:2d:9e:ef:63:65:a0:7a:01:d6:c7: 92:1e:99:33:56:e4:19:be:c7:f5:23:fc:86:67:67: b0:60:2d:b8:e4:27:42:73:11:5c:99:f3:dc:ec:15: 34:7c:15:93:91:82:bc:fd:06:51:eb:b0:96:3c:68: 45:99:5c:7b:1f:32:49:ce:8f:1b:a6:ec:35:2e:02: 5a:02:8a:5c:3f:dd:5f:46:27:91:fd:90:9a:5a:12: ff:5d:ac:a2:a4:05:43:ec:a1:63:f1:2b:7a:f5:68: 36:b4:2f:d6:8d:1d:89:7a:e2:ab:d2:54:dc:e0:f1: 73:d3:3e:f1:ba:76:54:25:97:88:18:8a:77:1e:58: e0:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:B2:CC:D1:AA:68:35:CF:32:6A:99:D1:66:59:3C:54:60:36:F2:1C X509v3 Authority Key Identifier: keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/O7LM0apoNc8yapnRZlk8VGA28hw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.235.52.0/23 Signature Algorithm: sha256WithRSAEncryption 68:01:6d:96:00:d4:03:c2:68:f9:ad:f2:1b:58:62:1c:7d:c0: eb:9b:ac:11:1f:6c:f0:ca:83:87:c0:c4:77:17:9e:68:88:38: 4a:e5:6c:f8:b7:5e:22:b0:b0:35:10:0d:81:d9:f7:5f:4a:2b: 50:5c:18:f4:38:c0:1c:8b:8e:2c:18:57:54:f8:5b:ad:45:b7: 19:20:86:db:de:64:7d:4c:10:09:bc:f1:95:9e:78:61:6c:14: f3:c2:4c:e2:99:59:ad:90:f0:1a:2d:b8:55:25:ac:84:bd:db: 4d:7c:9f:c8:23:4a:94:aa:da:f3:c0:4d:62:b2:c5:00:73:00: 6f:5b:bb:f7:59:61:c1:1c:72:e1:90:d7:cf:7c:bc:3a:b1:60: 4c:94:7d:bc:c2:76:17:22:8c:18:6c:4b:9b:02:3f:41:5b:e9: 13:42:e2:e6:5e:d6:f1:a1:4b:83:48:c7:7d:c2:21:2b:d4:cc: f4:be:33:76:4d:c3:a4:4f:9f:55:28:53:d0:bb:f4:1a:06:40: b2:1c:e4:a4:2d:3b:f4:25:10:80:4f:19:8c:ac:d8:3e:6e:7f: 63:08:17:26:31:17:91:96:de:24:d9:e4:be:7b:d4:c6:52:7d: 2a:ab:7a:89:21:66:11:6c:67:74:39:f4:2e:5e:04:33:33:d2: a6:0c:cc:fb -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NIIcgebGjvIq3K0TEResMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh ZGFmMWIwHhcNMjYwMTAxMDYxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYmIyY2NkMWFhNjgzNWNmMzI2YTk5ZDE2NjU5M2M1NDYwMzZmMjFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAja4iNaZE0V6sPhqba3Wyj41tMx1l cd3rWStdEQCe2lAkkBKjDGdFsuvLQZiDBPnMJbmc99itlYH0Ftsmar29FjnFJ5BU q0JA5QbnzICsLi4FbuiZn4U/Nf8VMgOvNR3LCj+R4zMk/Adjs48YhFQw84zgxbVB ezJUIp+PSC2e72NloHoB1seSHpkzVuQZvsf1I/yGZ2ewYC245CdCcxFcmfPc7BU0 fBWTkYK8/QZR67CWPGhFmVx7HzJJzo8bpuw1LgJaAopcP91fRieR/ZCaWhL/Xayi pAVD7KFj8St69Wg2tC/WjR2JeuKr0lTc4PFz0z7xunZUJZeIGIp3HljgZwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDuyzNGqaDXPMmqZ0WZZPFRgNvIcMB8GA1UdIwQY MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt OTQzZDAzMzIxMzI2LzEvTzdMTTBhcG9OYzh5YXBuUlpsazhWR0EyOGh3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2 LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwes0MA0G CSqGSIb3DQEBCwUAA4IBAQBoAW2WANQDwmj5rfIbWGIcfcDrm6wRH2zwyoOHwMR3 F55oiDhK5Wz4t14isLA1EA2B2fdfSitQXBj0OMAci44sGFdU+FutRbcZIIbb3mR9 TBAJvPGVnnhhbBTzwkzimVmtkPAaLbhVJayEvdtNfJ/II0qUqtrzwE1issUAcwBv W7v3WWHBHHLhkNfPfLw6sWBMlH28wnYXIowYbEubAj9BW+kTQuLmXtbxoUuDSMd9 wiEr1Mz0vjN2TcOkT59VKFPQu/QaBkCyHOSkLTv0JRCATxmMrNg+bn9jCBcmMReR lt4k2eS+e9TGUn0qq3qJIWYRbGd0OfQuXgQzM9KmDMz7 -----END CERTIFICATE-----Generated at Sun Jan 25 13:43:32 2026 by rpki-client