This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/3e3b4b-f827-4347-9022-2818f6578d1b/1/OMxShmSN_MmgdqjB3FCH456QPyw.roa File: OMxShmSN_MmgdqjB3FCH456QPyw.roa (raw, json) Hash identifier: Vm7cRKSz6QpnQGwyuo2jJgMyLFID06ztzYaKVdmY098= Subject key identifier: 38:CC:52:86:64:8D:FC:C9:A0:76:A8:C1:DC:50:87:E3:9E:90:3F:2C Certificate issuer: /CN=41b8c2f37bd8d7e04e76985a4ced4559d7651c43 Certificate serial: 019B7C12E1BBE23264F29E3374FC7B0073FA Authority key identifier: 41:B8:C2:F3:7B:D8:D7:E0:4E:76:98:5A:4C:ED:45:59:D7:65:1C:43 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QbjC83vY1-BOdphaTO1FWddlHEM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/3e3b4b-f827-4347-9022-2818f6578d1b/1/OMxShmSN_MmgdqjB3FCH456QPyw.roa Signing time: Fri 02 Jan 2026 00:19:30 +0000 ROA not before: Fri 02 Jan 2026 00:19:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12348 IP address blocks: 2a00:12e8:f141::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/3e3b4b-f827-4347-9022-2818f6578d1b/1/QbjC83vY1-BOdphaTO1FWddlHEM.crl rsync://rpki.ripe.net/repository/DEFAULT/e1/3e3b4b-f827-4347-9022-2818f6578d1b/1/QbjC83vY1-BOdphaTO1FWddlHEM.mft rsync://rpki.ripe.net/repository/DEFAULT/QbjC83vY1-BOdphaTO1FWddlHEM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:e1:bb:e2:32:64:f2:9e:33:74:fc:7b:00:73:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41b8c2f37bd8d7e04e76985a4ced4559d7651c43 Validity Not Before: Jan 2 00:19:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=38cc5286648dfcc9a076a8c1dc5087e39e903f2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:41:0c:a6:f8:73:61:16:55:e3:cb:71:1f:b0: cf:ca:5a:bf:e6:54:93:4a:72:16:52:c1:0e:c9:03: 1f:71:23:7d:fb:f0:4c:27:b0:4b:40:b7:e8:4e:22: 1b:44:7a:73:5d:6e:0a:ca:94:87:4e:2d:63:42:2f: 9d:3f:14:8b:19:b9:81:f0:ff:90:43:24:1b:50:65: 2d:dd:27:87:0b:27:8a:7f:50:44:e9:f3:b8:9b:2f: 06:bf:08:40:ed:e1:0e:2e:35:93:f2:9d:e6:9c:e1: c8:68:d5:2e:56:7a:39:d5:0c:8d:40:a9:e1:32:2c: 52:37:74:ad:43:77:c1:31:bb:c4:e3:69:3d:65:40: 05:f5:7d:d4:2e:1b:e1:2d:48:50:43:b4:c6:82:13: d1:b9:3a:9f:fb:b4:52:15:4f:03:6f:1c:61:56:7d: b5:c0:49:36:cb:45:6c:4f:b7:0c:f7:5b:5b:1e:f1: aa:d9:e7:6e:79:ab:1e:52:58:a1:32:dc:e3:4e:4a: 8f:a0:af:19:9b:cd:68:4e:74:b2:06:81:2b:4f:e2: 25:80:36:d1:c5:a0:f2:d3:ac:e9:26:68:e6:22:c2: de:8c:70:7d:8f:15:30:1f:f5:46:06:48:e3:e2:14: b5:65:db:dd:51:f5:88:ef:4e:72:13:0f:ac:3b:47: 4a:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:CC:52:86:64:8D:FC:C9:A0:76:A8:C1:DC:50:87:E3:9E:90:3F:2C X509v3 Authority Key Identifier: keyid:41:B8:C2:F3:7B:D8:D7:E0:4E:76:98:5A:4C:ED:45:59:D7:65:1C:43 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QbjC83vY1-BOdphaTO1FWddlHEM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/3e3b4b-f827-4347-9022-2818f6578d1b/1/OMxShmSN_MmgdqjB3FCH456QPyw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/3e3b4b-f827-4347-9022-2818f6578d1b/1/QbjC83vY1-BOdphaTO1FWddlHEM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a00:12e8:f141::/48 Signature Algorithm: sha256WithRSAEncryption 18:c1:f7:c0:05:fa:7e:c3:9f:26:23:70:25:81:12:6c:6d:e6: b1:4f:de:66:c9:5c:bc:79:08:3d:4e:c5:93:28:66:21:8e:c0: c8:03:ee:04:87:eb:f4:eb:8d:fa:f8:c5:4d:ac:d5:6a:67:70: 6d:aa:b7:a5:d5:39:9a:50:34:dd:df:74:39:47:13:29:26:53: d9:21:4e:ae:51:a4:aa:5e:00:1c:b0:2e:25:3c:fc:a4:cd:41: 3f:8f:6b:b5:08:5e:53:48:8b:51:7b:ab:98:e0:d3:ab:ec:c9: 95:ec:ab:4e:93:4a:9f:f3:c7:99:ba:8c:a0:5b:d1:58:84:83: f5:ba:2e:90:79:23:00:03:38:e5:a8:f8:cd:57:8d:0d:6a:d1: 07:ab:0f:9f:05:0e:6c:45:12:22:18:03:4c:55:48:4e:55:0b: 22:ce:e8:a4:c8:5e:36:c1:1a:f7:6d:57:2e:2f:c3:5d:09:cd: fb:d6:37:fa:98:09:3e:8a:b0:2c:bd:47:ef:bf:77:c0:56:97: 0a:be:c3:b4:99:7a:68:07:10:93:63:21:3f:d8:0d:0c:e5:88: ef:a3:0c:58:51:7f:e7:8f:49:58:45:f1:06:d6:66:a5:f5:bf: 84:66:dd:d8:11:b6:06:da:d9:40:a0:c5:85:fd:e1:fa:76:0c: cb:48:bf:4b -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt8EuG74jJk8p4zdPx7AHP6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxYjhjMmYzN2JkOGQ3ZTA0ZTc2OTg1YTRjZWQ0NTU5ZDc2 NTFjNDMwHhcNMjYwMTAyMDAxOTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzOGNjNTI4NjY0OGRmY2M5YTA3NmE4YzFkYzUwODdlMzllOTAzZjJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp0EMpvhzYRZV48txH7DPylq/5lST SnIWUsEOyQMfcSN9+/BMJ7BLQLfoTiIbRHpzXW4KypSHTi1jQi+dPxSLGbmB8P+Q QyQbUGUt3SeHCyeKf1BE6fO4my8GvwhA7eEOLjWT8p3mnOHIaNUuVno51QyNQKnh MixSN3StQ3fBMbvE42k9ZUAF9X3ULhvhLUhQQ7TGghPRuTqf+7RSFU8DbxxhVn21 wEk2y0VsT7cM91tbHvGq2edueaseUlihMtzjTkqPoK8Zm81oTnSyBoErT+IlgDbR xaDy06zpJmjmIsLejHB9jxUwH/VGBkjj4hS1ZdvdUfWI705yEw+sO0dKLwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFDjMUoZkjfzJoHaowdxQh+OekD8sMB8GA1UdIwQY MBaAFEG4wvN72NfgTnaYWkztRVnXZRxDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWJqQzgzdlkxLUJPZHBoYVRPMUZXZGRsSEVNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS8zZTNiNGItZjgyNy00MzQ3LTkwMjIt MjgxOGY2NTc4ZDFiLzEvT014U2htU05fTW1nZHFqQjNGQ0g0NTZRUHl3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMS8zZTNiNGItZjgyNy00MzQ3LTkwMjItMjgxOGY2NTc4ZDFi LzEvUWJqQzgzdlkxLUJPZHBoYVRPMUZXZGRsSEVNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgAS6PFB MA0GCSqGSIb3DQEBCwUAA4IBAQAYwffABfp+w58mI3AlgRJsbeaxT95myVy8eQg9 TsWTKGYhjsDIA+4Eh+v06436+MVNrNVqZ3Btqrel1TmaUDTd33Q5RxMpJlPZIU6u UaSqXgAcsC4lPPykzUE/j2u1CF5TSItRe6uY4NOr7MmV7KtOk0qf88eZuoygW9FY hIP1ui6QeSMAAzjlqPjNV40NatEHqw+fBQ5sRRIiGANMVUhOVQsizuikyF42wRr3 bVcuL8NdCc371jf6mAk+irAsvUfvv3fAVpcKvsO0mXpoBxCTYyE/2A0M5YjvowxY UX/nj0lYRfEG1mal9b+EZt3YEbYG2tlAoMWF/eH6dgzLSL9L -----END CERTIFICATE-----Generated at Sun Jan 25 19:16:36 2026 by rpki-client