This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/ocKJplJ8TuRnhY1ntHyuKXdy4Wc.roa File: ocKJplJ8TuRnhY1ntHyuKXdy4Wc.roa (raw, json) Hash identifier: x5RgBiRa8IV4sXp81uZeR5Ywcug7uzjY3FWzh766kPw= Subject key identifier: A1:C2:89:A6:52:7C:4E:E4:67:85:8D:67:B4:7C:AE:29:77:72:E1:67 Certificate issuer: /CN=60661758ce330622470a39ae8d6ef4a2044f83c4 Certificate serial: 019B77590571628A009F3AEF152D6A1D895A Authority key identifier: 60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/ocKJplJ8TuRnhY1ntHyuKXdy4Wc.roa Signing time: Thu 01 Jan 2026 02:18:01 +0000 ROA not before: Thu 01 Jan 2026 02:18:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 138217 IP address blocks: 95.173.53.0/24 maxlen: 24 95.173.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.crl rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.mft rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:05:71:62:8a:00:9f:3a:ef:15:2d:6a:1d:89:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60661758ce330622470a39ae8d6ef4a2044f83c4 Validity Not Before: Jan 1 02:18:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a1c289a6527c4ee467858d67b47cae297772e167 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f6:06:1f:47:1a:7e:7b:6b:c2:32:45:9c:d5: b3:a9:22:4b:a3:ff:e6:15:79:a2:69:a4:24:d2:57: 30:33:ad:19:0d:4b:f9:c1:62:1d:12:46:05:d7:c6: e1:17:76:08:ba:27:89:d8:b8:0b:33:da:02:2e:98: d6:9c:1a:73:4c:15:a2:38:23:96:1c:18:d4:9a:67: 05:09:88:12:26:5f:08:ef:14:35:8b:d2:29:62:54: 49:a1:27:2c:66:00:0a:da:d6:25:18:9f:be:4c:3f: 94:db:7f:dd:6e:f4:b3:cd:a6:62:a4:9f:6d:8d:e4: aa:bd:52:7b:07:e1:af:68:89:6c:3e:6b:25:cd:b4: 98:a8:64:3d:6e:ec:54:4d:70:72:d7:7b:0a:9d:57: 61:bc:3c:da:41:c4:b6:19:ab:ea:30:44:1e:9f:f4: a3:7d:ee:47:15:f5:84:ba:76:25:73:ef:62:43:e7: ad:7e:bf:c5:b8:38:a2:1c:9c:15:0c:9e:76:d9:0d: 8a:67:d7:1e:9d:fd:9a:c4:80:0b:72:c4:bf:10:f5: 45:f8:6a:b2:bb:fb:c7:79:fe:13:8c:15:4f:2e:02: 24:0d:e2:e1:8e:37:0b:c0:a3:7d:b2:4b:d4:43:9b: a8:af:a8:1c:d2:a6:26:d6:72:75:22:50:92:5f:98: 85:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:C2:89:A6:52:7C:4E:E4:67:85:8D:67:B4:7C:AE:29:77:72:E1:67 X509v3 Authority Key Identifier: keyid:60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/ocKJplJ8TuRnhY1ntHyuKXdy4Wc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.173.53.0/24 95.173.61.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:63:55:05:4a:1e:3b:84:33:02:c7:b9:e1:44:a2:79:06:14: 92:86:fe:b9:ac:4e:70:2f:ff:d7:f2:4b:5b:fe:d2:77:a5:c6: d7:78:f2:b0:2c:b7:3e:e8:bb:40:26:3f:d9:93:03:4f:8d:89: 2b:d3:97:2e:57:a4:22:16:c1:bc:dd:75:dc:80:2f:11:30:02: 25:d5:49:f4:7c:5c:7c:17:dc:6e:58:75:b7:50:6c:71:41:89: 30:03:73:42:59:8b:2f:b5:47:f0:e9:96:76:e8:f8:f6:99:13: 0e:24:2f:55:d2:9f:65:00:ac:62:10:90:84:c7:f5:34:30:e9: 86:57:d7:db:d3:62:4d:f1:bc:9f:b5:ae:dd:42:fc:9f:53:b8: b4:ad:fe:aa:1f:23:c2:9f:42:28:00:68:87:3d:5c:78:e3:66: 28:d9:91:d9:2b:5b:72:f4:8c:59:fe:b7:98:16:02:fd:42:0b: 7f:04:78:f3:7f:e9:29:35:40:6f:df:8d:a7:01:6c:f7:fe:99: 72:d9:00:e0:fb:b9:d8:f2:4f:0a:21:ef:f1:40:ef:70:6e:a3: ae:d4:82:25:37:14:63:bf:3a:12:0c:2f:61:07:84:7c:60:d2: 04:25:4b:d1:a5:00:d1:ea:2d:3f:26:80:36:8b:8c:26:dd:6e: 69:17:68:21 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt3WQVxYooAnzrvFS1qHYlaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNjYxNzU4Y2UzMzA2MjI0NzBhMzlhZThkNmVmNGEyMDQ0 ZjgzYzQwHhcNMjYwMTAxMDIxODAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMWMyODlhNjUyN2M0ZWU0Njc4NThkNjdiNDdjYWUyOTc3NzJlMTY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx/YGH0cafntrwjJFnNWzqSJLo//m FXmiaaQk0lcwM60ZDUv5wWIdEkYF18bhF3YIuieJ2LgLM9oCLpjWnBpzTBWiOCOW HBjUmmcFCYgSJl8I7xQ1i9IpYlRJoScsZgAK2tYlGJ++TD+U23/dbvSzzaZipJ9t jeSqvVJ7B+GvaIlsPmslzbSYqGQ9buxUTXBy13sKnVdhvDzaQcS2GavqMEQen/Sj fe5HFfWEunYlc+9iQ+etfr/FuDiiHJwVDJ522Q2KZ9cenf2axIALcsS/EPVF+Gqy u/vHef4TjBVPLgIkDeLhjjcLwKN9skvUQ5uor6gc0qYm1nJ1IlCSX5iFOQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFKHCiaZSfE7kZ4WNZ7R8ril3cuFnMB8GA1UdIwQY MBaAFGBmF1jOMwYiRwo5ro1u9KIET4PEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUdZWFdNNHpCaUpIQ2ptdWpXNzBvZ1JQZzhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9lZGQxMjgtNmQ2ZS00OWUzLWI3N2Ut MWY4NzQ2OTQ1NDgzLzEvb2NLSnBsSjhUdVJuaFkxbnRIeXVLWGR5NFdjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi9lZGQxMjgtNmQ2ZS00OWUzLWI3N2UtMWY4NzQ2OTQ1NDgz LzEvWUdZWFdNNHpCaUpIQ2ptdWpXNzBvZ1JQZzhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAX601AwQA X609MA0GCSqGSIb3DQEBCwUAA4IBAQArY1UFSh47hDMCx7nhRKJ5BhSShv65rE5w L//X8ktb/tJ3pcbXePKwLLc+6LtAJj/ZkwNPjYkr05cuV6QiFsG83XXcgC8RMAIl 1Un0fFx8F9xuWHW3UGxxQYkwA3NCWYsvtUfw6ZZ26Pj2mRMOJC9V0p9lAKxiEJCE x/U0MOmGV9fb02JN8byfta7dQvyfU7i0rf6qHyPCn0IoAGiHPVx442Yo2ZHZK1ty 9IxZ/reYFgL9Qgt/BHjzf+kpNUBv342nAWz3/ply2QDg+7nY8k8KIe/xQO9wbqOu 1IIlNxRjvzoSDC9hB4R8YNIEJUvRpQDR6i0/JoA2i4wm3W5pF2gh -----END CERTIFICATE-----Generated at Sun Jan 25 10:20:39 2026 by rpki-client