This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/577b11-7009-486c-9010-a70412fbc832/1/ObhdsLoa75B_QVzex3UCt65oqHE.roa File: ObhdsLoa75B_QVzex3UCt65oqHE.roa (raw, json) Hash identifier: 7Rfm5BnnQZXvsHH1k9k4V3PGLN/GXjrUrEyjZS8MwJc= Subject key identifier: 39:B8:5D:B0:BA:1A:EF:90:7F:41:5C:DE:C7:75:02:B7:AE:68:A8:71 Certificate issuer: /CN=d1010da3576242324cefb2c81c1339a6c0e3b403 Certificate serial: 019B77C71D3DF1D16030B014C647FD2BE75F Authority key identifier: D1:01:0D:A3:57:62:42:32:4C:EF:B2:C8:1C:13:39:A6:C0:E3:B4:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0QENo1diQjJM77LIHBM5psDjtAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/577b11-7009-486c-9010-a70412fbc832/1/ObhdsLoa75B_QVzex3UCt65oqHE.roa Signing time: Thu 01 Jan 2026 04:18:16 +0000 ROA not before: Thu 01 Jan 2026 04:18:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203055 IP address blocks: 31.216.144.0/21 maxlen: 24 89.44.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/577b11-7009-486c-9010-a70412fbc832/1/0QENo1diQjJM77LIHBM5psDjtAM.crl rsync://rpki.ripe.net/repository/DEFAULT/fb/577b11-7009-486c-9010-a70412fbc832/1/0QENo1diQjJM77LIHBM5psDjtAM.mft rsync://rpki.ripe.net/repository/DEFAULT/0QENo1diQjJM77LIHBM5psDjtAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:1d:3d:f1:d1:60:30:b0:14:c6:47:fd:2b:e7:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d1010da3576242324cefb2c81c1339a6c0e3b403 Validity Not Before: Jan 1 04:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=39b85db0ba1aef907f415cdec77502b7ae68a871 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:bc:b1:bf:00:46:84:f3:a2:23:1f:1b:11:6c: fe:93:c8:d1:25:66:a8:5b:8e:ac:25:1e:36:1c:a0: ef:51:be:1e:df:28:cb:64:cc:1e:d8:4c:62:f6:fe: 20:60:6f:26:02:b2:69:86:bb:92:f2:45:70:10:c4: f3:51:f5:48:b5:0f:2b:7f:e3:20:48:a9:a9:65:f8: 43:0a:a4:fd:f7:e3:94:15:60:06:ca:59:0d:4b:8d: 11:e2:a8:ca:b8:e5:7f:87:9f:92:06:f6:47:6a:42: bd:af:1a:23:bd:35:b7:d0:ac:6b:06:1d:61:10:6e: 93:d0:70:34:3e:33:f4:16:dd:e3:3c:05:0d:d5:20: 50:af:57:76:64:1c:4a:32:6e:23:8f:26:67:03:4c: 20:0f:38:82:47:d2:9d:3f:7f:0d:d5:b2:7c:d8:40: fd:98:80:1a:66:e7:e0:8f:b1:e6:11:20:bd:a4:ad: 69:dc:1a:bf:bd:92:59:25:00:5b:ca:ff:e9:f8:c0: 02:6b:b5:c2:05:52:de:fe:f6:e5:a7:85:eb:15:07: 0c:ec:8b:3e:b4:c9:5a:e5:c4:1d:35:08:88:2b:1b: d3:2d:f0:2f:ea:df:0b:98:9c:a9:1b:d1:7a:d8:47: a5:05:e3:27:13:17:a5:2b:d4:76:da:20:4c:80:6c: de:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:B8:5D:B0:BA:1A:EF:90:7F:41:5C:DE:C7:75:02:B7:AE:68:A8:71 X509v3 Authority Key Identifier: keyid:D1:01:0D:A3:57:62:42:32:4C:EF:B2:C8:1C:13:39:A6:C0:E3:B4:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0QENo1diQjJM77LIHBM5psDjtAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/577b11-7009-486c-9010-a70412fbc832/1/ObhdsLoa75B_QVzex3UCt65oqHE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/577b11-7009-486c-9010-a70412fbc832/1/0QENo1diQjJM77LIHBM5psDjtAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.216.144.0/21 89.44.168.0/21 Signature Algorithm: sha256WithRSAEncryption 59:6e:e7:8e:bf:fa:b0:f9:69:a0:1b:e1:70:91:e8:ae:0b:7e: ef:a9:87:10:a0:7e:c1:46:94:f8:ff:2f:1b:09:15:02:a9:18: e5:ac:ea:06:81:9b:d5:63:52:b3:83:b7:ee:de:ba:d7:2c:09: 8e:b9:d8:a3:70:7a:92:99:0e:09:82:2c:f5:a3:87:a4:26:4b: 6d:df:3a:70:32:b0:6c:83:c6:ad:e5:7b:e4:00:72:88:a5:08: d6:b0:ae:22:93:be:7f:2d:1f:34:6a:3f:7e:bc:a6:17:6c:e0: 2c:79:b5:1b:2a:56:f6:37:ef:46:38:b0:87:e3:44:23:2a:d7: 30:3e:93:79:07:5a:08:91:00:56:a3:92:2c:75:fc:4d:be:ad: e8:13:65:71:14:9e:0d:a4:66:95:59:42:b1:52:21:40:fd:df: a0:9e:f3:04:2f:db:08:8e:1e:74:66:06:61:07:48:d3:9e:2b: 9d:5d:93:6c:5a:08:ad:06:98:da:f1:02:22:91:7a:c7:70:6d: 86:8b:33:0b:b0:5f:b1:cb:1b:06:dc:ff:a1:b6:14:99:cc:a4: 1d:49:21:d8:89:be:b4:9a:3c:35:42:8e:05:51:1d:1b:1a:7a: a1:ff:ad:9a:3a:f3:05:41:4d:6a:e6:95:b3:63:bf:ec:38:1f: 3f:d8:ef:11 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt3xx098dFgMLAUxkf9K+dfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxMDEwZGEzNTc2MjQyMzI0Y2VmYjJjODFjMTMzOWE2YzBl M2I0MDMwHhcNMjYwMTAxMDQxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzOWI4NWRiMGJhMWFlZjkwN2Y0MTVjZGVjNzc1MDJiN2FlNjhhODcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAubyxvwBGhPOiIx8bEWz+k8jRJWao W46sJR42HKDvUb4e3yjLZMwe2Exi9v4gYG8mArJphruS8kVwEMTzUfVItQ8rf+Mg SKmpZfhDCqT99+OUFWAGylkNS40R4qjKuOV/h5+SBvZHakK9rxojvTW30KxrBh1h EG6T0HA0PjP0Ft3jPAUN1SBQr1d2ZBxKMm4jjyZnA0wgDziCR9KdP38N1bJ82ED9 mIAaZufgj7HmESC9pK1p3Bq/vZJZJQBbyv/p+MACa7XCBVLe/vblp4XrFQcM7Is+ tMla5cQdNQiIKxvTLfAv6t8LmJypG9F62EelBeMnExelK9R22iBMgGzeUwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFDm4XbC6Gu+Qf0Fc3sd1AreuaKhxMB8GA1UdIwQY MBaAFNEBDaNXYkIyTO+yyBwTOabA47QDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMFFFTm8xZGlRakpNNzdMSUhCTTVwc0RqdEFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi81NzdiMTEtNzAwOS00ODZjLTkwMTAt YTcwNDEyZmJjODMyLzEvT2JoZHNMb2E3NUJfUVZ6ZXgzVUN0NjVvcUhFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYi81NzdiMTEtNzAwOS00ODZjLTkwMTAtYTcwNDEyZmJjODMy LzEvMFFFTm8xZGlRakpNNzdMSUhCTTVwc0RqdEFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDH9iQAwQD WSyoMA0GCSqGSIb3DQEBCwUAA4IBAQBZbueOv/qw+WmgG+FwkeiuC37vqYcQoH7B RpT4/y8bCRUCqRjlrOoGgZvVY1Kzg7fu3rrXLAmOudijcHqSmQ4Jgiz1o4ekJktt 3zpwMrBsg8at5XvkAHKIpQjWsK4ik75/LR80aj9+vKYXbOAsebUbKlb2N+9GOLCH 40QjKtcwPpN5B1oIkQBWo5IsdfxNvq3oE2VxFJ4NpGaVWUKxUiFA/d+gnvMEL9sI jh50ZgZhB0jTniudXZNsWgitBpja8QIikXrHcG2GizMLsF+xyxsG3P+hthSZzKQd SSHYib60mjw1Qo4FUR0bGnqh/62aOvMFQU1q5pWzY7/sOB8/2O8R -----END CERTIFICATE-----Generated at Mon Jan 26 05:06:02 2026 by rpki-client