This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/425149-9c68-41fb-8035-d76c8c739861/1/_OkMfangRHHR3pkyqVAWkqY7mag.roa File: _OkMfangRHHR3pkyqVAWkqY7mag.roa (raw, json) Hash identifier: 4q+Nhgpids6AoAL8lqsvtN3qpgNozHDLR3s1mrSSncQ= Subject key identifier: FC:E9:0C:7D:A9:E0:44:71:D1:DE:99:32:A9:50:16:92:A6:3B:99:A8 Certificate issuer: /CN=8ad240603ec6ebcd62f72d46f1dc00cb7e1f0b2e Certificate serial: 019B7B35A100ABEB0364A295FA4735599320 Authority key identifier: 8A:D2:40:60:3E:C6:EB:CD:62:F7:2D:46:F1:DC:00:CB:7E:1F:0B:2E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/itJAYD7G681i9y1G8dwAy34fCy4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/425149-9c68-41fb-8035-d76c8c739861/1/_OkMfangRHHR3pkyqVAWkqY7mag.roa Signing time: Thu 01 Jan 2026 20:17:50 +0000 ROA not before: Thu 01 Jan 2026 20:17:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208689 IP address blocks: 185.92.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/425149-9c68-41fb-8035-d76c8c739861/1/itJAYD7G681i9y1G8dwAy34fCy4.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/425149-9c68-41fb-8035-d76c8c739861/1/itJAYD7G681i9y1G8dwAy34fCy4.mft rsync://rpki.ripe.net/repository/DEFAULT/itJAYD7G681i9y1G8dwAy34fCy4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 14:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:a1:00:ab:eb:03:64:a2:95:fa:47:35:59:93:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8ad240603ec6ebcd62f72d46f1dc00cb7e1f0b2e Validity Not Before: Jan 1 20:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fce90c7da9e04471d1de9932a9501692a63b99a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:24:b6:55:4a:3c:3b:f4:ef:6e:13:59:30:2f: 8f:72:ea:37:ee:33:6c:2c:80:03:6b:8d:aa:e8:17: cb:18:2c:5a:b3:3a:5d:31:a4:cf:21:d1:b7:ff:67: c7:eb:68:33:48:b3:8d:36:46:44:15:f8:35:95:84: d6:a2:71:d7:84:ca:5f:0b:1e:67:c9:06:9e:4d:27: 9b:9f:41:41:b9:20:de:60:7b:b1:3c:a5:99:2e:55: 5f:cb:26:9f:3e:c3:45:af:6b:6b:83:dc:4d:06:60: 31:f7:ef:6b:03:d6:da:52:d1:e2:e9:e2:ff:a5:d7: e3:c1:93:97:a2:08:e0:18:82:3b:50:48:fd:f1:fa: 26:1b:1c:6a:f3:78:38:1e:61:fe:da:b0:4d:0f:8b: 2e:d8:25:67:b5:e0:f4:6a:02:31:25:86:f5:4e:f8: c3:3b:4c:e7:03:bc:12:b8:f3:bb:86:ce:80:eb:30: 8a:d2:ae:f7:15:63:4a:f4:06:12:ef:70:a2:45:d3: 51:a5:e1:db:17:56:00:ec:86:0a:a6:6e:1d:9a:c0: 26:46:9a:8f:d0:a8:c3:49:79:40:96:c8:24:15:e7: 4c:e5:77:e5:ec:06:82:c3:e4:22:97:2b:87:a4:b5: 59:38:d6:ce:d0:79:b9:61:21:89:c4:01:5d:53:cc: 7b:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:E9:0C:7D:A9:E0:44:71:D1:DE:99:32:A9:50:16:92:A6:3B:99:A8 X509v3 Authority Key Identifier: keyid:8A:D2:40:60:3E:C6:EB:CD:62:F7:2D:46:F1:DC:00:CB:7E:1F:0B:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/itJAYD7G681i9y1G8dwAy34fCy4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/425149-9c68-41fb-8035-d76c8c739861/1/_OkMfangRHHR3pkyqVAWkqY7mag.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/425149-9c68-41fb-8035-d76c8c739861/1/itJAYD7G681i9y1G8dwAy34fCy4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.92.103.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:08:fc:73:9a:9d:81:b0:cf:0c:b7:e9:f9:f6:49:f8:eb:9a: 5e:30:8f:ea:a1:67:b6:c3:9b:22:9c:79:a7:8f:df:e9:f8:90: b9:ac:88:b4:bc:dc:ab:d5:fe:27:c1:65:30:7a:bb:2c:3b:1b: 81:6d:62:28:7f:9a:4a:cf:9e:ad:6f:82:a3:99:3a:34:86:1f: c5:61:87:29:da:aa:b7:ba:3e:55:88:bd:8b:e0:48:52:8c:d6: 29:88:c5:bf:b2:3f:14:16:be:3e:42:e1:a3:15:a1:25:22:68: 02:e2:a4:1d:ca:61:86:8f:56:c0:85:09:f3:dd:3c:28:4a:0a: 42:3e:47:97:37:d9:5e:1f:e3:e3:99:0b:ae:32:1a:e8:25:aa: 16:58:7c:c4:0e:8d:cf:f3:d1:f5:de:39:7c:a0:2e:99:62:d0: f2:e8:8e:78:9c:56:62:c4:be:f7:22:8c:a3:27:81:1f:bf:d6: c0:29:c7:63:25:66:08:2a:ce:d6:1c:db:d0:b9:de:bd:4f:ff: ab:f9:2d:ad:ed:57:fc:8b:56:3d:37:a2:20:b4:71:9c:d1:12: c6:90:fd:d3:fa:4d:8e:9f:c4:1f:e5:e4:57:8f:e9:30:6f:14: f8:85:91:50:a1:d9:da:b2:6f:30:26:30:a1:3e:14:44:6f:9d: 56:3b:33:22 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7NaEAq+sDZKKV+kc1WZMgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhZDI0MDYwM2VjNmViY2Q2MmY3MmQ0NmYxZGMwMGNiN2Ux ZjBiMmUwHhcNMjYwMTAxMjAxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmY2U5MGM3ZGE5ZTA0NDcxZDFkZTk5MzJhOTUwMTY5MmE2M2I5OWE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyiS2VUo8O/TvbhNZMC+Pcuo37jNs LIADa42q6BfLGCxaszpdMaTPIdG3/2fH62gzSLONNkZEFfg1lYTWonHXhMpfCx5n yQaeTSebn0FBuSDeYHuxPKWZLlVfyyafPsNFr2trg9xNBmAx9+9rA9baUtHi6eL/ pdfjwZOXogjgGII7UEj98fomGxxq83g4HmH+2rBND4su2CVnteD0agIxJYb1TvjD O0znA7wSuPO7hs6A6zCK0q73FWNK9AYS73CiRdNRpeHbF1YA7IYKpm4dmsAmRpqP 0KjDSXlAlsgkFedM5Xfl7AaCw+QilyuHpLVZONbO0Hm5YSGJxAFdU8x7QwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFPzpDH2p4ERx0d6ZMqlQFpKmO5moMB8GA1UdIwQY MBaAFIrSQGA+xuvNYvctRvHcAMt+HwsuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXRKQVlEN0c2ODFpOXkxRzhkd0F5MzRmQ3k0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy80MjUxNDktOWM2OC00MWZiLTgwMzUt ZDc2YzhjNzM5ODYxLzEvX09rTWZhbmdSSEhSM3BreXFWQVdrcVk3bWFnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy80MjUxNDktOWM2OC00MWZiLTgwMzUtZDc2YzhjNzM5ODYx LzEvaXRKQVlEN0c2ODFpOXkxRzhkd0F5MzRmQ3k0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuVxnMA0G CSqGSIb3DQEBCwUAA4IBAQA/CPxzmp2BsM8Mt+n59kn465peMI/qoWe2w5sinHmn j9/p+JC5rIi0vNyr1f4nwWUwerssOxuBbWIof5pKz56tb4KjmTo0hh/FYYcp2qq3 uj5ViL2L4EhSjNYpiMW/sj8UFr4+QuGjFaElImgC4qQdymGGj1bAhQnz3TwoSgpC PkeXN9leH+PjmQuuMhroJaoWWHzEDo3P89H13jl8oC6ZYtDy6I54nFZixL73Ioyj J4Efv9bAKcdjJWYIKs7WHNvQud69T/+r+S2t7Vf8i1Y9N6IgtHGc0RLGkP3T+k2O n8Qf5eRXj+kwbxT4hZFQodnasm8wJjChPhREb51WOzMi -----END CERTIFICATE-----Generated at Mon Jan 26 22:36:47 2026 by rpki-client