This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/OT8ciThviWG76oS0x4VT1DU7_CM.roa File: OT8ciThviWG76oS0x4VT1DU7_CM.roa (raw, json) Hash identifier: z/3tt6KD2m+nhRRFPABZHX2/tqaQ7t/vcbTbJ5OkeGs= Subject key identifier: 39:3F:1C:89:38:6F:89:61:BB:EA:84:B4:C7:85:53:D4:35:3B:FC:23 Certificate issuer: /CN=922208b47b6a864d9d1ff33e06aa81d13819a74e Certificate serial: 019B7C7FBF3FE0518E0A08F446FA4703F00A Authority key identifier: 92:22:08:B4:7B:6A:86:4D:9D:1F:F3:3E:06:AA:81:D1:38:19:A7:4E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kiIItHtqhk2dH_M-BqqB0TgZp04.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/OT8ciThviWG76oS0x4VT1DU7_CM.roa Signing time: Fri 02 Jan 2026 02:18:25 +0000 ROA not before: Fri 02 Jan 2026 02:18:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43513 IP address blocks: 80.246.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/kiIItHtqhk2dH_M-BqqB0TgZp04.crl rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/kiIItHtqhk2dH_M-BqqB0TgZp04.mft rsync://rpki.ripe.net/repository/DEFAULT/kiIItHtqhk2dH_M-BqqB0TgZp04.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 01:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:bf:3f:e0:51:8e:0a:08:f4:46:fa:47:03:f0:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=922208b47b6a864d9d1ff33e06aa81d13819a74e Validity Not Before: Jan 2 02:18:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=393f1c89386f8961bbea84b4c78553d4353bfc23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9f:e7:9e:2b:ec:af:ed:e2:46:b5:6a:5d:86: a0:e8:cc:f1:6e:f2:67:37:68:9a:01:e4:cd:79:54: 9b:16:10:ec:ab:49:0b:a3:85:2e:d3:5c:49:15:36: cf:bc:6d:3b:c3:d2:ef:98:08:18:93:08:21:58:da: 6c:14:0e:9d:bb:84:2d:be:31:ff:17:d6:dd:4c:1c: 20:de:7e:12:a5:a6:1f:12:a4:ad:48:19:e7:07:a8: 25:38:9f:f2:a5:6d:22:57:51:ee:88:f7:3c:6f:5f: 0c:d3:f0:81:7f:93:0f:e8:4d:da:1e:6a:12:19:85: 14:e6:64:56:58:fd:0b:93:26:d2:2d:ee:50:5d:51: 8d:ba:eb:cd:b7:c9:72:c4:77:02:2b:9d:7a:73:cd: 23:6d:2c:df:32:8f:29:a5:83:b9:1b:00:5c:36:10: e3:ce:0e:c6:cc:2d:fa:30:cb:28:10:14:1e:ee:85: bb:45:fa:a8:b2:fd:3e:39:a9:3f:d7:4d:8a:76:44: 0c:a3:21:74:bd:b4:0d:65:c1:bf:27:f5:2b:11:47: 40:68:04:97:25:93:fd:b8:6a:3b:b8:23:bf:c0:cf: aa:48:ae:f2:6f:25:60:1b:c5:b8:b9:30:44:c6:9f: 7a:9b:1a:c8:a1:79:f9:cf:18:89:72:e1:cc:88:ec: a1:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:3F:1C:89:38:6F:89:61:BB:EA:84:B4:C7:85:53:D4:35:3B:FC:23 X509v3 Authority Key Identifier: keyid:92:22:08:B4:7B:6A:86:4D:9D:1F:F3:3E:06:AA:81:D1:38:19:A7:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kiIItHtqhk2dH_M-BqqB0TgZp04.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/OT8ciThviWG76oS0x4VT1DU7_CM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/kiIItHtqhk2dH_M-BqqB0TgZp04.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.246.31.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:70:e4:f4:58:62:db:26:9f:5a:50:2a:29:ea:48:a1:20:ad: 4b:d6:1b:a5:2e:72:6d:1a:f2:ea:60:1c:04:9c:ec:ed:72:94: c1:80:be:b9:f2:22:fc:55:b7:53:f5:46:d4:67:1f:cb:dd:25: 31:c9:4e:95:72:e2:71:c0:96:29:16:3b:d3:c8:50:85:61:a7: 8a:6e:13:75:62:b4:66:e8:cf:53:18:e9:b5:f1:18:2e:8d:54: 4a:db:e4:35:37:b4:13:74:30:50:e9:c4:f9:9f:b0:0d:8e:a7: 74:fb:73:1b:74:95:06:54:14:cd:80:85:a1:bf:fb:8c:1e:61: 11:aa:37:1d:45:fe:e3:5a:95:3a:1a:4b:be:8b:89:d5:83:a7: 76:e9:46:b4:28:ec:17:54:d7:23:64:ce:f3:d9:f6:bc:03:2b: 1f:5c:d0:1f:ad:d9:8c:b8:71:f7:e3:4d:24:39:e7:23:46:65: dd:0e:28:81:23:a2:4e:5f:6c:13:cc:40:a6:cc:71:20:32:4c: fe:91:81:35:61:64:84:05:00:b4:92:3a:64:f7:7d:98:52:4e: c4:60:22:ba:ca:a5:34:04:1b:32:53:43:b0:8e:ba:95:ab:79: e1:b7:4f:3a:76:c5:07:34:c0:e8:eb:e1:f0:cf:47:42:7c:bd: ce:71:59:17 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8f78/4FGOCgj0RvpHA/AKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyMjIwOGI0N2I2YTg2NGQ5ZDFmZjMzZTA2YWE4MWQxMzgx OWE3NGUwHhcNMjYwMTAyMDIxODI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzOTNmMWM4OTM4NmY4OTYxYmJlYTg0YjRjNzg1NTNkNDM1M2JmYzIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtp/nnivsr+3iRrVqXYag6MzxbvJn N2iaAeTNeVSbFhDsq0kLo4Uu01xJFTbPvG07w9LvmAgYkwghWNpsFA6du4QtvjH/ F9bdTBwg3n4SpaYfEqStSBnnB6glOJ/ypW0iV1HuiPc8b18M0/CBf5MP6E3aHmoS GYUU5mRWWP0LkybSLe5QXVGNuuvNt8lyxHcCK516c80jbSzfMo8ppYO5GwBcNhDj zg7GzC36MMsoEBQe7oW7Rfqosv0+Oak/102KdkQMoyF0vbQNZcG/J/UrEUdAaASX JZP9uGo7uCO/wM+qSK7ybyVgG8W4uTBExp96mxrIoXn5zxiJcuHMiOyhKwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDk/HIk4b4lhu+qEtMeFU9Q1O/wjMB8GA1UdIwQY MBaAFJIiCLR7aoZNnR/zPgaqgdE4GadOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2lJSXRIdHFoazJkSF9NLUJxcUIwVGdacDA0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS82OTkwZTktYzNjMC00NzhhLTk5OTct OTViMDhlMzY2MGNmLzEvT1Q4Y2lUaHZpV0c3Nm9TMHg0VlQxRFU3X0NNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNS82OTkwZTktYzNjMC00NzhhLTk5OTctOTViMDhlMzY2MGNm LzEva2lJSXRIdHFoazJkSF9NLUJxcUIwVGdacDA0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUPYfMA0G CSqGSIb3DQEBCwUAA4IBAQAvcOT0WGLbJp9aUCop6kihIK1L1hulLnJtGvLqYBwE nOztcpTBgL658iL8VbdT9UbUZx/L3SUxyU6VcuJxwJYpFjvTyFCFYaeKbhN1YrRm 6M9TGOm18RgujVRK2+Q1N7QTdDBQ6cT5n7ANjqd0+3MbdJUGVBTNgIWhv/uMHmER qjcdRf7jWpU6Gku+i4nVg6d26Ua0KOwXVNcjZM7z2fa8AysfXNAfrdmMuHH3400k OecjRmXdDiiBI6JOX2wTzECmzHEgMkz+kYE1YWSEBQC0kjpk932YUk7EYCK6yqU0 BBsyU0OwjrqVq3nht086dsUHNMDo6+Hwz0dCfL3OcVkX -----END CERTIFICATE-----Generated at Sun Jan 25 12:01:44 2026 by rpki-client