This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/f2478f-c503-42c2-94b2-b166ae2ef287/1/O_zLKAo-ZMO-tgxP2QAdS4mIV5k.roa File: O_zLKAo-ZMO-tgxP2QAdS4mIV5k.roa (raw, json) Hash identifier: exFmvEBwttF4QN/C/nqEjfx58jhXHu21SMR83NxxCYg= Subject key identifier: 3B:FC:CB:28:0A:3E:64:C3:BE:B6:0C:4F:D9:00:1D:4B:89:88:57:99 Certificate issuer: /CN=d31dd1a514d3a7e3dfdb8bfb75d7d24ed98d479f Certificate serial: 019B7F1580793EC8579C9B66F4EE4D1F1DC9 Authority key identifier: D3:1D:D1:A5:14:D3:A7:E3:DF:DB:8B:FB:75:D7:D2:4E:D9:8D:47:9F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0x3RpRTTp-Pf24v7ddfSTtmNR58.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/f2478f-c503-42c2-94b2-b166ae2ef287/1/O_zLKAo-ZMO-tgxP2QAdS4mIV5k.roa Signing time: Fri 02 Jan 2026 14:21:14 +0000 ROA not before: Fri 02 Jan 2026 14:21:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8360 IP address blocks: 193.58.218.0/23 maxlen: 23 193.58.220.0/23 maxlen: 23 193.58.220.0/24 maxlen: 24 193.194.8.0/23 maxlen: 23 193.194.10.0/24 maxlen: 24 193.194.11.0/24 maxlen: 24 194.127.21.0/24 maxlen: 24 194.127.30.0/24 maxlen: 24 194.127.31.0/24 maxlen: 24 194.127.68.0/24 maxlen: 24 194.127.69.0/24 maxlen: 24 194.127.70.0/24 maxlen: 24 194.127.71.0/24 maxlen: 24 194.127.72.0/24 maxlen: 24 194.127.73.0/24 maxlen: 24 194.127.74.0/24 maxlen: 24 194.127.75.0/24 maxlen: 24 194.127.77.0/24 maxlen: 24 194.127.78.0/24 maxlen: 24 194.127.79.0/24 maxlen: 24 194.127.80.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/f2478f-c503-42c2-94b2-b166ae2ef287/1/0x3RpRTTp-Pf24v7ddfSTtmNR58.crl rsync://rpki.ripe.net/repository/DEFAULT/ee/f2478f-c503-42c2-94b2-b166ae2ef287/1/0x3RpRTTp-Pf24v7ddfSTtmNR58.mft rsync://rpki.ripe.net/repository/DEFAULT/0x3RpRTTp-Pf24v7ddfSTtmNR58.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 02:01:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:80:79:3e:c8:57:9c:9b:66:f4:ee:4d:1f:1d:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d31dd1a514d3a7e3dfdb8bfb75d7d24ed98d479f Validity Not Before: Jan 2 14:21:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3bfccb280a3e64c3beb60c4fd9001d4b89885799 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:3d:f5:04:88:88:d4:b8:23:05:4c:96:c6:4a: 41:ee:80:12:31:86:b8:cb:bd:f0:bf:c0:20:e9:56: 64:ec:2c:9d:7d:4f:ee:a9:23:d5:1a:ff:9c:9a:86: 07:80:30:fa:6c:9f:27:b4:cc:15:4d:46:e2:10:ac: 33:45:ec:14:24:cf:66:16:e5:70:23:7f:7a:28:30: 0a:22:20:3e:60:86:48:e8:d5:33:81:15:d4:76:05: 8e:2d:cf:ff:13:21:42:8b:01:22:06:d0:5d:38:51: 10:b3:a8:43:ed:24:a5:84:5f:e8:75:d2:ee:95:6d: 5a:cc:e8:e3:08:cd:ee:70:db:35:d8:91:a6:c2:86: 06:3e:39:6f:b5:d5:ad:e2:df:de:f0:47:b1:a5:fd: 26:d6:04:e0:4b:11:26:19:10:45:7d:5c:63:4d:a7: b8:b2:6f:52:eb:33:9b:c1:45:8e:94:86:a9:3c:ef: 46:5a:9c:b8:e3:0f:ae:f7:b9:b0:03:fe:98:d4:12: 89:54:c1:70:60:b4:59:c9:f1:73:5e:d1:b7:eb:e4: 71:24:47:62:09:51:e6:3c:1f:f4:3d:4c:fd:60:65: ca:4e:11:fd:d7:7d:8f:c5:81:30:33:e0:5b:a1:73: e4:56:de:c9:93:d9:fb:d9:39:55:17:93:32:a2:48: 43:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:FC:CB:28:0A:3E:64:C3:BE:B6:0C:4F:D9:00:1D:4B:89:88:57:99 X509v3 Authority Key Identifier: keyid:D3:1D:D1:A5:14:D3:A7:E3:DF:DB:8B:FB:75:D7:D2:4E:D9:8D:47:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0x3RpRTTp-Pf24v7ddfSTtmNR58.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/f2478f-c503-42c2-94b2-b166ae2ef287/1/O_zLKAo-ZMO-tgxP2QAdS4mIV5k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/f2478f-c503-42c2-94b2-b166ae2ef287/1/0x3RpRTTp-Pf24v7ddfSTtmNR58.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.58.218.0-193.58.221.255 193.194.8.0/22 194.127.21.0/24 194.127.30.0/23 194.127.68.0-194.127.75.255 194.127.77.0-194.127.80.255 Signature Algorithm: sha256WithRSAEncryption 69:e7:48:30:a4:e4:5d:75:52:ea:da:e2:51:c3:31:65:49:d4: 5d:24:ee:e8:24:b6:0d:47:7d:8b:f5:f0:ce:b5:14:e5:2b:a4: aa:d6:15:22:b6:85:c8:ea:aa:4a:75:a5:72:15:6c:54:5c:c8: cf:af:6d:36:41:05:e7:07:55:9f:12:cc:9a:73:99:e9:89:25: 65:d8:fe:52:28:c5:5f:d8:c4:e9:b3:fa:98:1e:c5:79:6c:2d: 59:ee:b4:2e:1d:40:c5:13:ea:d5:d9:e8:91:28:18:63:ea:9a: 5c:e3:68:5d:48:2d:78:a6:66:d0:5c:69:16:04:29:5d:9c:7f: 7b:70:83:a0:ad:b0:98:d4:4a:48:c9:65:a1:83:60:34:7b:59: 0f:78:5e:43:a8:ba:b1:aa:bf:f9:11:10:f2:7a:7a:ef:62:87: 85:ba:28:d1:06:2d:db:bb:29:a9:95:67:67:11:36:46:e8:b2: ad:71:76:2d:7e:ec:52:07:3b:3f:54:40:c0:11:21:b3:b8:9c: 66:61:aa:d8:89:eb:e1:87:57:b7:46:2e:66:10:fa:60:4c:a1: de:b3:25:f2:9c:98:86:c1:6e:91:17:90:d8:c5:8c:ef:1b:eb: f0:38:5d:06:84:60:19:04:1d:bb:3e:83:f9:b6:4e:d1:fe:6f: 84:c5:52:a5 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgISAZt/FYB5PshXnJtm9O5NHx3JMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQzMWRkMWE1MTRkM2E3ZTNkZmRiOGJmYjc1ZDdkMjRlZDk4 ZDQ3OWYwHhcNMjYwMTAyMTQyMTE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYmZjY2IyODBhM2U2NGMzYmViNjBjNGZkOTAwMWQ0Yjg5ODg1Nzk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApT31BIiI1LgjBUyWxkpB7oASMYa4 y73wv8Ag6VZk7CydfU/uqSPVGv+cmoYHgDD6bJ8ntMwVTUbiEKwzRewUJM9mFuVw I396KDAKIiA+YIZI6NUzgRXUdgWOLc//EyFCiwEiBtBdOFEQs6hD7SSlhF/oddLu lW1azOjjCM3ucNs12JGmwoYGPjlvtdWt4t/e8Eexpf0m1gTgSxEmGRBFfVxjTae4 sm9S6zObwUWOlIapPO9GWpy44w+u97mwA/6Y1BKJVMFwYLRZyfFzXtG36+RxJEdi CVHmPB/0PUz9YGXKThH9132PxYEwM+BboXPkVt7Jk9n72TlVF5MyokhD+QIDAQAB o4ICPzCCAjswHQYDVR0OBBYEFDv8yygKPmTDvrYMT9kAHUuJiFeZMB8GA1UdIwQY MBaAFNMd0aUU06fj39uL+3XX0k7ZjUefMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMHgzUnBSVFRwLVBmMjR2N2RkZlNUdG1OUjU4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS9mMjQ3OGYtYzUwMy00MmMyLTk0YjIt YjE2NmFlMmVmMjg3LzEvT196TEtBby1aTU8tdGd4UDJRQWRTNG1JVjVrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZS9mMjQ3OGYtYzUwMy00MmMyLTk0YjItYjE2NmFlMmVmMjg3 LzEvMHgzUnBSVFRwLVBmMjR2N2RkZlNUdG1OUjU4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFUGCCsGAQUFBwEHAQH/BEYwRDBCBAIAATA8MAwDBAHBOtoD BAHBOtwDBALBwggDBADCfxUDBAHCfx4wDAMEAsJ/RAMEAsJ/SDAMAwQAwn9NAwQA wn9QMA0GCSqGSIb3DQEBCwUAA4IBAQBp50gwpORddVLq2uJRwzFlSdRdJO7oJLYN R32L9fDOtRTlK6Sq1hUitoXI6qpKdaVyFWxUXMjPr202QQXnB1WfEsyac5npiSVl 2P5SKMVf2MTps/qYHsV5bC1Z7rQuHUDFE+rV2eiRKBhj6ppc42hdSC14pmbQXGkW BCldnH97cIOgrbCY1EpIyWWhg2A0e1kPeF5DqLqxqr/5ERDyenrvYoeFuijRBi3b uymplWdnETZG6LKtcXYtfuxSBzs/VEDAESGzuJxmYarYievhh1e3Ri5mEPpgTKHe syXynJiGwW6RF5DYxYzvG+vwOF0GhGAZBB27PoP5tk7R/m+ExVKl -----END CERTIFICATE-----Generated at Sun Jan 25 12:17:39 2026 by rpki-client