This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/b8d400-e6e8-41ef-ad24-55c3a28e62c3/1/OiSs6p_pMw-RkTCH8cl25jqlqss.roa File: OiSs6p_pMw-RkTCH8cl25jqlqss.roa (raw, json) Hash identifier: OkhpMtYFSv0mu3dYYZ0ArKlLefWyhEpIfy2Vf7AK76Q= Subject key identifier: 3A:24:AC:EA:9F:E9:33:0F:91:91:30:87:F1:C9:76:E6:3A:A5:AA:CB Certificate issuer: /CN=660c32996ae12461897222e2d9cc093930927ddd Certificate serial: 019AB53894AD8DE4F6BB3D277538CC836EF1 Authority key identifier: 66:0C:32:99:6A:E1:24:61:89:72:22:E2:D9:CC:09:39:30:92:7D:DD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZgwymWrhJGGJciLi2cwJOTCSfd0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/b8d400-e6e8-41ef-ad24-55c3a28e62c3/1/OiSs6p_pMw-RkTCH8cl25jqlqss.roa Signing time: Mon 24 Nov 2025 09:36:15 +0000 ROA not before: Mon 24 Nov 2025 09:36:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 198325 IP address blocks: 89.145.184.0/24 maxlen: 24 89.145.185.0/24 maxlen: 24 89.145.186.0/24 maxlen: 24 89.145.187.0/24 maxlen: 24 89.145.188.0/24 maxlen: 24 89.145.189.0/24 maxlen: 24 89.145.190.0/24 maxlen: 24 89.145.191.0/24 maxlen: 24 185.251.32.0/24 maxlen: 24 185.251.33.0/24 maxlen: 24 185.251.35.0/24 maxlen: 24 2a04:6680::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/b8d400-e6e8-41ef-ad24-55c3a28e62c3/1/ZgwymWrhJGGJciLi2cwJOTCSfd0.crl rsync://rpki.ripe.net/repository/DEFAULT/59/b8d400-e6e8-41ef-ad24-55c3a28e62c3/1/ZgwymWrhJGGJciLi2cwJOTCSfd0.mft rsync://rpki.ripe.net/repository/DEFAULT/ZgwymWrhJGGJciLi2cwJOTCSfd0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 13:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:b5:38:94:ad:8d:e4:f6:bb:3d:27:75:38:cc:83:6e:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=660c32996ae12461897222e2d9cc093930927ddd Validity Not Before: Nov 24 09:36:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=3a24acea9fe9330f91913087f1c976e63aa5aacb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:9b:c1:35:d7:a8:8b:3e:c2:7e:7a:1b:c2:f6: f5:51:9a:1c:c4:d7:c6:8d:26:15:ee:57:28:a3:ba: d7:4f:2c:c9:db:37:8c:84:e8:af:b8:6c:11:d3:17: 40:99:6b:a1:7c:50:38:2e:96:cf:a2:05:7a:5c:e2: ba:fd:5f:f3:e3:40:62:49:e5:79:1d:73:d4:65:ae: 00:c7:7b:39:fc:d8:78:92:01:85:e3:e4:b3:5f:af: fa:69:48:66:33:f2:26:0c:98:e6:cd:64:27:d7:8a: 52:4e:9b:d4:e3:ba:2d:8d:85:63:34:31:8f:b6:10: 38:c5:a4:5b:12:08:02:db:3e:8f:ac:8b:21:52:fa: cf:60:9e:d5:e7:1d:84:38:46:e6:4e:76:6e:ea:b0: f1:52:7c:4e:f5:c7:a1:a5:01:4e:01:f7:63:ba:b5: 58:ca:d8:45:17:c0:29:ec:62:c0:32:ff:98:32:fa: d6:d2:96:96:2c:7b:5a:2b:db:e4:0c:59:16:c1:ab: ef:9b:c2:37:f5:ef:2f:0b:ba:87:2b:cb:c1:6e:38: 54:79:cb:b7:85:11:5f:a1:47:27:48:c9:e0:17:d9: 66:51:ba:10:b4:2c:c9:76:5d:14:20:9a:49:09:ff: 30:da:94:d0:71:83:8d:cf:74:d2:ed:6c:e7:8c:09: 7e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:24:AC:EA:9F:E9:33:0F:91:91:30:87:F1:C9:76:E6:3A:A5:AA:CB X509v3 Authority Key Identifier: keyid:66:0C:32:99:6A:E1:24:61:89:72:22:E2:D9:CC:09:39:30:92:7D:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZgwymWrhJGGJciLi2cwJOTCSfd0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b8d400-e6e8-41ef-ad24-55c3a28e62c3/1/OiSs6p_pMw-RkTCH8cl25jqlqss.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b8d400-e6e8-41ef-ad24-55c3a28e62c3/1/ZgwymWrhJGGJciLi2cwJOTCSfd0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.145.184.0/21 185.251.32.0/23 185.251.35.0/24 IPv6: 2a04:6680::/48 Signature Algorithm: sha256WithRSAEncryption 44:c6:a9:2f:d0:8a:a6:6f:a7:54:f3:56:fb:4d:f1:92:e8:bb: 97:2a:4c:35:d7:c3:94:67:15:16:a0:29:c2:20:35:8e:2b:c4: 00:43:0e:2f:18:34:20:7c:bd:f5:36:e1:96:0f:de:84:df:ba: 34:d4:29:84:a9:c5:10:8c:3d:cc:b1:8b:f1:f5:81:14:d8:56: 7b:37:d3:55:6d:1b:40:eb:ca:25:32:c8:c6:75:9d:7b:97:0e: 12:6e:67:fa:ba:b0:76:05:bb:17:f1:2a:b4:6c:de:78:79:9e: 7e:1f:cf:cc:e2:bc:ba:8f:2f:b2:f5:71:ab:b1:7f:46:cd:7b: 1d:59:14:07:74:61:3e:53:13:80:52:4f:9c:e7:5e:6c:a2:3b: 26:7b:3d:aa:df:ca:f9:50:4c:d1:ba:68:76:e9:52:b5:35:fd: 94:97:29:4a:95:25:27:52:9e:2c:a6:70:c5:b8:60:79:39:e3: a9:e4:fa:bd:18:74:c3:c0:17:96:e7:fc:9e:bf:68:f3:b5:e4: 5b:3d:3d:f4:a3:ef:75:eb:54:a6:fd:d3:6c:a6:c0:1e:8b:08: 8b:0e:f5:f4:76:bb:3b:0d:82:77:84:51:6c:24:17:ba:07:f2: 07:29:44:82:ad:b1:49:8d:47:9c:3d:eb:8e:62:c6:de:ff:c4: d9:bb:43:83 -----BEGIN CERTIFICATE----- MIIFGjCCBAKgAwIBAgISAZq1OJStjeT2uz0ndTjMg27xMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2MGMzMjk5NmFlMTI0NjE4OTcyMjJlMmQ5Y2MwOTM5MzA5 MjdkZGQwHhcNMjUxMTI0MDkzNjE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYTI0YWNlYTlmZTkzMzBmOTE5MTMwODdmMWM5NzZlNjNhYTVhYWNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnpvBNdeoiz7Cfnobwvb1UZocxNfG jSYV7lcoo7rXTyzJ2zeMhOivuGwR0xdAmWuhfFA4LpbPogV6XOK6/V/z40BiSeV5 HXPUZa4Ax3s5/Nh4kgGF4+SzX6/6aUhmM/ImDJjmzWQn14pSTpvU47otjYVjNDGP thA4xaRbEggC2z6PrIshUvrPYJ7V5x2EOEbmTnZu6rDxUnxO9cehpQFOAfdjurVY ythFF8Ap7GLAMv+YMvrW0paWLHtaK9vkDFkWwavvm8I39e8vC7qHK8vBbjhUecu3 hRFfoUcnSMngF9lmUboQtCzJdl0UIJpJCf8w2pTQcYONz3TS7WznjAl+twIDAQAB o4ICJjCCAiIwHQYDVR0OBBYEFDokrOqf6TMPkZEwh/HJduY6parLMB8GA1UdIwQY MBaAFGYMMplq4SRhiXIi4tnMCTkwkn3dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWmd3eW1XcmhKR0dKY2lMaTJjd0pPVENTZmQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9iOGQ0MDAtZTZlOC00MWVmLWFkMjQt NTVjM2EyOGU2MmMzLzEvT2lTczZwX3BNdy1Sa1RDSDhjbDI1anFscXNzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS9iOGQ0MDAtZTZlOC00MWVmLWFkMjQtNTVjM2EyOGU2MmMz LzEvWmd3eW1XcmhKR0dKY2lMaTJjd0pPVENTZmQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDwGCCsGAQUFBwEHAQH/BC0wKzAYBAIAATASAwQDWZG4AwQB ufsgAwQAufsjMA8EAgACMAkDBwAqBGaAAAAwDQYJKoZIhvcNAQELBQADggEBAETG qS/QiqZvp1TzVvtN8ZLou5cqTDXXw5RnFRagKcIgNY4rxABDDi8YNCB8vfU24ZYP 3oTfujTUKYSpxRCMPcyxi/H1gRTYVns301VtG0DryiUyyMZ1nXuXDhJuZ/q6sHYF uxfxKrRs3nh5nn4fz8zivLqPL7L1cauxf0bNex1ZFAd0YT5TE4BST5znXmyiOyZ7 ParfyvlQTNG6aHbpUrU1/ZSXKUqVJSdSniymcMW4YHk546nk+r0YdMPAF5bn/J6/ aPO15Fs9PfSj73XrVKb902ymwB6LCIsO9fR2uzsNgneEUWwkF7oH8gcpRIKtsUmN R5w9645ixt7/xNm7Q4M= -----END CERTIFICATE-----Generated at Thu Dec 18 20:16:08 2025 by rpki-client