This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/85928f-5f19-41d9-8238-5c54cdad19f1/1/0oxdyMukMZaAGBeo9l9rFsh78pk.roa File: 0oxdyMukMZaAGBeo9l9rFsh78pk.roa (raw, json) Hash identifier: DX6ZwX+iC1cN81KUv6aS7NPJaf7Awa86RPypXOmFS5E= Subject key identifier: D2:8C:5D:C8:CB:A4:31:96:80:18:17:A8:F6:5F:6B:16:C8:7B:F2:99 Certificate issuer: /CN=27b8dbd97de4cd4059b52e513dcf35cd381a32b3 Certificate serial: 019B78346C1DF36F83E66C665BD55DB6F014 Authority key identifier: 27:B8:DB:D9:7D:E4:CD:40:59:B5:2E:51:3D:CF:35:CD:38:1A:32:B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J7jb2X3kzUBZtS5RPc81zTgaMrM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/85928f-5f19-41d9-8238-5c54cdad19f1/1/0oxdyMukMZaAGBeo9l9rFsh78pk.roa Signing time: Thu 01 Jan 2026 06:17:40 +0000 ROA not before: Thu 01 Jan 2026 06:17:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205862 IP address blocks: 185.204.40.0/24 maxlen: 24 185.204.41.0/24 maxlen: 24 185.204.42.0/24 maxlen: 24 185.204.43.0/24 maxlen: 24 2a0d:b00:2901::/48 maxlen: 48 2a0d:b00:3501::/48 maxlen: 48 2a0d:b00:3502::/48 maxlen: 48 2a0d:b00:9201::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/85928f-5f19-41d9-8238-5c54cdad19f1/1/J7jb2X3kzUBZtS5RPc81zTgaMrM.crl rsync://rpki.ripe.net/repository/DEFAULT/ec/85928f-5f19-41d9-8238-5c54cdad19f1/1/J7jb2X3kzUBZtS5RPc81zTgaMrM.mft rsync://rpki.ripe.net/repository/DEFAULT/J7jb2X3kzUBZtS5RPc81zTgaMrM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 09:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:6c:1d:f3:6f:83:e6:6c:66:5b:d5:5d:b6:f0:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27b8dbd97de4cd4059b52e513dcf35cd381a32b3 Validity Not Before: Jan 1 06:17:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d28c5dc8cba43196801817a8f65f6b16c87bf299 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d9:f8:d1:ef:c2:29:81:d5:10:07:b1:88:60: 26:7b:41:1e:ed:f7:7c:ad:a6:59:93:68:87:fd:a1: 37:b0:a3:d0:c7:91:3a:4d:cd:6e:69:72:99:1a:71: 56:ba:23:b3:3f:2f:05:54:57:15:60:85:00:6b:e6: 59:34:c7:db:04:e8:4e:9c:44:3f:fa:ee:2e:5e:5a: 4c:30:92:e4:04:22:83:fb:a4:8d:79:0a:dd:89:8a: 7b:71:50:60:60:ab:2a:89:52:ff:12:a1:b7:2f:54: b3:cc:9c:12:77:8f:68:d4:d8:96:42:bb:eb:eb:0a: e1:a7:8c:4d:a9:df:c4:50:3d:ef:4e:31:1b:ac:42: 43:a4:b6:d6:1f:9f:5f:9f:f0:a4:6a:42:41:06:ef: a3:38:f6:a2:b3:07:9a:2a:91:7e:f1:28:8c:97:99: 80:a9:b8:b2:64:2f:59:0c:57:64:5a:3d:c3:e8:a6: c5:f9:c0:56:7b:ee:4f:d1:d2:96:13:30:72:19:3e: ca:da:54:0e:ae:0a:ba:45:4a:03:ad:7e:5a:61:15: d8:5e:7c:8d:53:c3:3e:8a:19:2d:7d:44:44:ca:5c: 77:09:a4:b2:55:ee:c9:3b:2e:42:d3:98:0c:7e:48: 42:20:14:fb:ad:43:ac:be:03:a5:f5:11:fc:9a:d3: 6b:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:8C:5D:C8:CB:A4:31:96:80:18:17:A8:F6:5F:6B:16:C8:7B:F2:99 X509v3 Authority Key Identifier: keyid:27:B8:DB:D9:7D:E4:CD:40:59:B5:2E:51:3D:CF:35:CD:38:1A:32:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J7jb2X3kzUBZtS5RPc81zTgaMrM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/85928f-5f19-41d9-8238-5c54cdad19f1/1/0oxdyMukMZaAGBeo9l9rFsh78pk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/85928f-5f19-41d9-8238-5c54cdad19f1/1/J7jb2X3kzUBZtS5RPc81zTgaMrM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.204.40.0/22 IPv6: 2a0d:b00:2901::/48 2a0d:b00:3501::-2a0d:b00:3502:ffff:ffff:ffff:ffff:ffff 2a0d:b00:9201::/48 Signature Algorithm: sha256WithRSAEncryption ba:db:d4:a9:6f:af:af:ee:d0:34:68:87:26:92:67:b9:5d:79: dc:45:73:b3:cd:bc:5d:b7:b6:45:a8:41:4f:60:dd:9f:7f:f7: 28:ed:1d:57:cf:23:77:50:49:44:9a:c8:5c:d4:62:f1:1c:a5: d1:f3:56:ca:fa:89:ef:cf:53:d0:96:5b:27:0a:70:ab:ab:99: 34:8c:a1:79:34:3a:34:f9:0a:54:51:78:a1:f9:56:d0:e7:cd: 91:f7:76:f6:f4:10:e1:d6:a2:dc:6f:e1:18:0c:ff:bc:76:cb: e7:31:8e:c2:11:f5:ac:da:30:9e:28:00:1f:94:7a:4c:69:b1: 86:79:27:0c:58:69:fc:8c:dc:ac:c7:5a:b4:e7:2b:f7:2b:ab: 01:c3:42:28:09:02:f1:e4:be:c8:73:b4:f6:b1:99:b7:ed:e2: 0e:35:5a:0c:d7:21:53:29:bb:52:39:88:bd:df:e9:32:ae:7b: 33:7e:c3:dc:4e:b5:3c:d9:2e:81:8d:b2:6e:a5:ba:2f:bc:41: eb:9f:c2:d0:6b:3f:29:ca:59:8e:54:a3:01:fb:f9:61:79:6e: 88:bf:3d:7d:22:79:4c:42:7c:3e:97:fd:e1:5a:19:91:00:0f: cf:e8:b0:b7:b2:ea:a2:81:2a:4a:61:ac:6a:c4:07:cd:c4:b3: 19:a1:fd:90 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgISAZt4NGwd82+D5mxmW9VdtvAUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI3YjhkYmQ5N2RlNGNkNDA1OWI1MmU1MTNkY2YzNWNkMzgx YTMyYjMwHhcNMjYwMTAxMDYxNzQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMjhjNWRjOGNiYTQzMTk2ODAxODE3YThmNjVmNmIxNmM4N2JmMjk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArNn40e/CKYHVEAexiGAme0Ee7fd8 raZZk2iH/aE3sKPQx5E6Tc1uaXKZGnFWuiOzPy8FVFcVYIUAa+ZZNMfbBOhOnEQ/ +u4uXlpMMJLkBCKD+6SNeQrdiYp7cVBgYKsqiVL/EqG3L1SzzJwSd49o1NiWQrvr 6wrhp4xNqd/EUD3vTjEbrEJDpLbWH59fn/CkakJBBu+jOPaisweaKpF+8SiMl5mA qbiyZC9ZDFdkWj3D6KbF+cBWe+5P0dKWEzByGT7K2lQOrgq6RUoDrX5aYRXYXnyN U8M+ihktfUREylx3CaSyVe7JOy5C05gMfkhCIBT7rUOsvgOl9RH8mtNrnQIDAQAB o4ICNzCCAjMwHQYDVR0OBBYEFNKMXcjLpDGWgBgXqPZfaxbIe/KZMB8GA1UdIwQY MBaAFCe429l95M1AWbUuUT3PNc04GjKzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSjdqYjJYM2t6VUJadFM1UlBjODF6VGdhTXJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy84NTkyOGYtNWYxOS00MWQ5LTgyMzgt NWM1NGNkYWQxOWYxLzEvMG94ZHlNdWtNWmFBR0JlbzlsOXJGc2g3OHBrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYy84NTkyOGYtNWYxOS00MWQ5LTgyMzgtNWM1NGNkYWQxOWYx LzEvSjdqYjJYM2t6VUJadFM1UlBjODF6VGdhTXJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME0GCCsGAQUFBwEHAQH/BD4wPDAMBAIAATAGAwQCucwoMCwE AgACMCYDBwAqDQsAKQEwEgMHACoNCwA1AQMHACoNCwA1AgMHACoNCwCSATANBgkq hkiG9w0BAQsFAAOCAQEAutvUqW+vr+7QNGiHJpJnuV153EVzs828Xbe2RahBT2Dd n3/3KO0dV88jd1BJRJrIXNRi8Ryl0fNWyvqJ789T0JZbJwpwq6uZNIyheTQ6NPkK VFF4oflW0OfNkfd29vQQ4dai3G/hGAz/vHbL5zGOwhH1rNownigAH5R6TGmxhnkn DFhp/IzcrMdatOcr9yurAcNCKAkC8eS+yHO09rGZt+3iDjVaDNchUym7UjmIvd/p Mq57M37D3E61PNkugY2ybqW6L7xB65/C0Gs/KcpZjlSjAfv5YXluiL89fSJ5TEJ8 Ppf94VoZkQAPz+iwt7LqooEqSmGsasQHzcSzGaH9kA== -----END CERTIFICATE-----Generated at Mon Jan 26 12:26:58 2026 by rpki-client