This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/osz01AXCWqkRPtzIYMUQWKTMMJ8.roa File: osz01AXCWqkRPtzIYMUQWKTMMJ8.roa (raw, json) Hash identifier: KLcT7lVwoj4JB4KkT7RDb0xKUAiC/uxIGgjyXIRVit0= Subject key identifier: A2:CC:F4:D4:05:C2:5A:A9:11:3E:DC:C8:60:C5:10:58:A4:CC:30:9F Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Certificate serial: 019B783494BF5D192925EA563733703D9B20 Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/osz01AXCWqkRPtzIYMUQWKTMMJ8.roa Signing time: Thu 01 Jan 2026 06:17:50 +0000 ROA not before: Thu 01 Jan 2026 06:17:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211551 IP address blocks: 194.71.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:94:bf:5d:19:29:25:ea:56:37:33:70:3d:9b:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Validity Not Before: Jan 1 06:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a2ccf4d405c25aa9113edcc860c51058a4cc309f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:06:5a:c1:70:3a:7a:8c:36:db:dd:c3:e5:6b: 80:e4:27:8f:8c:91:78:3d:51:a2:5a:9a:c3:b8:e1: 73:f3:bc:26:88:41:2d:74:71:1a:fc:e6:f8:5c:ae: a6:3e:ea:a7:d2:f1:11:7f:0d:80:0c:43:e0:59:75: 9d:76:6d:57:3b:54:3a:96:f1:8d:bb:27:ff:b6:1d: bd:1e:10:a1:d0:7b:3b:ad:ce:52:62:6f:b6:89:f1: c2:61:04:59:0f:37:8a:3e:5d:bd:07:f2:4e:a9:4f: 39:f4:61:07:73:b4:ba:df:c8:3d:c3:9c:1b:9c:c5: fe:b2:11:51:d5:ad:48:4a:66:15:bc:af:ec:11:c2: e9:ea:a3:13:ef:dc:18:7d:a2:e1:09:a8:fe:d6:c1: 03:22:9e:86:45:81:69:66:be:8a:6a:16:a9:d4:e2: 40:d3:f5:3d:20:22:8a:5b:bd:ba:7c:82:5c:95:8d: 5a:af:dc:37:c3:8a:08:e2:56:41:ed:89:ef:09:d0: 37:f8:20:b3:fb:d7:78:74:16:da:da:29:2e:94:2e: 2e:70:41:5e:2e:94:7d:22:5f:8f:9b:38:5b:ef:25: 93:c4:c5:75:03:1a:f3:73:34:c3:b4:ba:9e:a5:24: b9:59:9c:28:b6:d8:96:7a:c8:b8:fc:d9:d3:21:06: fd:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:CC:F4:D4:05:C2:5A:A9:11:3E:DC:C8:60:C5:10:58:A4:CC:30:9F X509v3 Authority Key Identifier: keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/osz01AXCWqkRPtzIYMUQWKTMMJ8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.71.139.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:15:2d:22:f7:2c:92:71:4d:9b:c7:66:0e:f3:55:bc:42:a6: 42:ce:ce:a2:b5:17:e9:17:aa:92:08:5b:59:a9:74:b6:35:45: ed:f3:3b:ba:32:8d:54:eb:89:65:08:0c:55:45:22:4c:59:80: a3:a9:1b:e9:86:f8:b5:4b:17:4a:51:97:0c:98:96:de:dc:68: e7:ab:d7:32:fe:e3:fb:9c:9f:32:33:94:13:6c:37:61:3f:08: 02:57:47:69:3f:e1:7f:a3:8a:d9:15:64:d0:14:20:1a:95:11: 58:80:3b:4c:ff:22:a2:e6:35:42:5f:34:06:5a:b9:05:4f:4b: bf:50:a4:52:15:f1:e5:6e:b1:20:11:a6:f5:36:b2:c8:5b:1b: 37:c0:75:03:52:a9:d4:d5:a0:ef:f7:b2:35:45:90:6c:4a:a7: 7b:45:92:d3:2e:a1:2b:c4:ba:40:14:84:f8:8c:9e:f0:f9:9d: 66:ae:cf:53:13:97:f9:7a:a2:5f:a8:bb:85:b9:0f:81:f6:18: 74:ea:57:f6:84:d1:29:37:94:2b:d9:ef:f5:fd:c0:ff:45:bb: 39:c3:5e:93:02:af:50:0f:cf:b2:c2:e1:54:f0:7e:5a:58:ca: 1f:16:3b:47:c2:11:e5:25:c2:47:85:cd:5a:05:6b:bc:78:9d: 64:5d:b2:b1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NJS/XRkpJepWNzNwPZsgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh ZGFmMWIwHhcNMjYwMTAxMDYxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMmNjZjRkNDA1YzI1YWE5MTEzZWRjYzg2MGM1MTA1OGE0Y2MzMDlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuQZawXA6eow2293D5WuA5CePjJF4 PVGiWprDuOFz87wmiEEtdHEa/Ob4XK6mPuqn0vERfw2ADEPgWXWddm1XO1Q6lvGN uyf/th29HhCh0Hs7rc5SYm+2ifHCYQRZDzeKPl29B/JOqU859GEHc7S638g9w5wb nMX+shFR1a1ISmYVvK/sEcLp6qMT79wYfaLhCaj+1sEDIp6GRYFpZr6Kahap1OJA 0/U9ICKKW726fIJclY1ar9w3w4oI4lZB7YnvCdA3+CCz+9d4dBba2ikulC4ucEFe LpR9Il+Pmzhb7yWTxMV1AxrzczTDtLqepSS5WZwottiWesi4/NnTIQb9ZQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKLM9NQFwlqpET7cyGDFEFikzDCfMB8GA1UdIwQY MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt OTQzZDAzMzIxMzI2LzEvb3N6MDFBWENXcWtSUHR6SVlNVVFXS1RNTUo4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2 LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwkeLMA0G CSqGSIb3DQEBCwUAA4IBAQCKFS0i9yyScU2bx2YO81W8QqZCzs6itRfpF6qSCFtZ qXS2NUXt8zu6Mo1U64llCAxVRSJMWYCjqRvphvi1SxdKUZcMmJbe3Gjnq9cy/uP7 nJ8yM5QTbDdhPwgCV0dpP+F/o4rZFWTQFCAalRFYgDtM/yKi5jVCXzQGWrkFT0u/ UKRSFfHlbrEgEab1NrLIWxs3wHUDUqnU1aDv97I1RZBsSqd7RZLTLqErxLpAFIT4 jJ7w+Z1mrs9TE5f5eqJfqLuFuQ+B9hh06lf2hNEpN5Qr2e/1/cD/Rbs5w16TAq9Q D8+ywuFU8H5aWMofFjtHwhHlJcJHhc1aBWu8eJ1kXbKx -----END CERTIFICATE-----Generated at Sun Jan 25 09:03:30 2026 by rpki-client