This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/oSKHmVNGFh3OpJke3WnxdXvCjgc.roa File: oSKHmVNGFh3OpJke3WnxdXvCjgc.roa (raw, json) Hash identifier: Jbe/LRuw53xo+FdeFOv1OWeqAR3sX4SCDTXs5bJaUEE= Subject key identifier: A1:22:87:99:53:46:16:1D:CE:A4:99:1E:DD:69:F1:75:7B:C2:8E:07 Certificate issuer: /CN=c44db8b0983acf97a3255152c2ea592adae7735b Certificate serial: 019B7835617913D75F8C8506430746C69641 Authority key identifier: C4:4D:B8:B0:98:3A:CF:97:A3:25:51:52:C2:EA:59:2A:DA:E7:73:5B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xE24sJg6z5ejJVFSwupZKtrnc1s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/oSKHmVNGFh3OpJke3WnxdXvCjgc.roa Signing time: Thu 01 Jan 2026 06:18:42 +0000 ROA not before: Thu 01 Jan 2026 06:18:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 18046 IP address blocks: 45.112.248.0/22 maxlen: 24 103.52.124.0/22 maxlen: 24 103.210.200.0/22 maxlen: 24 139.84.96.0/19 maxlen: 24 140.209.128.0/18 maxlen: 24 152.114.224.0/22 maxlen: 24 152.114.240.0/21 maxlen: 24 157.239.32.0/19 maxlen: 24 160.20.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/xE24sJg6z5ejJVFSwupZKtrnc1s.crl rsync://rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/xE24sJg6z5ejJVFSwupZKtrnc1s.mft rsync://rpki.ripe.net/repository/DEFAULT/xE24sJg6z5ejJVFSwupZKtrnc1s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 00:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:61:79:13:d7:5f:8c:85:06:43:07:46:c6:96:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c44db8b0983acf97a3255152c2ea592adae7735b Validity Not Before: Jan 1 06:18:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a12287995346161dcea4991edd69f1757bc28e07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:9f:40:a8:96:08:32:fd:be:e4:5b:34:c0:00: 2b:05:47:ca:6f:5d:80:d9:82:a3:f3:b4:66:4e:ce: d3:59:bd:84:f4:0d:03:75:80:99:b6:aa:41:64:b4: dd:77:a2:43:35:5f:ed:87:d9:04:48:1f:43:59:b4: fe:80:1f:99:9a:fe:0c:36:98:c8:b2:42:71:e0:e8: 18:7f:e9:e5:d0:40:6d:4b:f3:38:fd:56:e3:77:c3: df:bb:a2:74:01:54:5c:22:9a:f8:ee:01:89:32:2f: f4:94:78:43:48:a3:85:ff:65:38:26:b5:2c:4f:93: 2b:78:ea:e2:79:8b:c4:ef:be:c4:51:71:2a:dc:99: 1f:42:1a:d8:11:6f:dd:e7:a8:46:11:2b:fc:e4:55: 3b:48:76:e4:b0:c0:a9:92:06:86:7c:a2:e6:00:38: 91:11:db:fd:ee:01:7a:7f:a6:77:90:7b:06:93:a5: 03:cd:ea:2e:cb:fe:75:63:b5:81:86:20:35:33:12: cb:6f:23:b9:05:23:d6:73:6a:3d:7f:c4:9f:39:ab: 8c:08:c4:f3:8c:8a:28:ba:07:bd:b3:ee:7f:92:1e: fb:f3:91:7b:75:79:ce:d0:29:e8:1f:b5:08:12:33: 64:f2:9a:a5:e3:d9:03:4c:75:eb:85:fb:36:99:83: 50:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:22:87:99:53:46:16:1D:CE:A4:99:1E:DD:69:F1:75:7B:C2:8E:07 X509v3 Authority Key Identifier: keyid:C4:4D:B8:B0:98:3A:CF:97:A3:25:51:52:C2:EA:59:2A:DA:E7:73:5B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xE24sJg6z5ejJVFSwupZKtrnc1s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/oSKHmVNGFh3OpJke3WnxdXvCjgc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/xE24sJg6z5ejJVFSwupZKtrnc1s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.112.248.0/22 103.52.124.0/22 103.210.200.0/22 139.84.96.0/19 140.209.128.0/18 152.114.224.0/22 152.114.240.0/21 157.239.32.0/19 160.20.0.0/22 Signature Algorithm: sha256WithRSAEncryption 67:bb:d0:37:e2:89:9e:1e:b9:ae:3f:57:5a:ab:69:e6:e7:ef: d6:b6:3b:e1:e3:89:18:84:98:2c:75:1e:a3:ef:d7:93:35:35: ec:ac:d9:5a:21:84:bd:09:1e:54:57:60:eb:d8:cd:c1:31:27: 1b:90:f3:f8:45:64:67:ff:d9:5c:86:6e:cb:0e:2f:76:09:12: ee:0f:16:9f:9f:c5:ce:80:02:65:85:71:d6:6b:ff:32:36:0a: de:40:cc:77:4e:dc:24:c4:7d:d6:06:4c:b3:ba:10:6f:91:68: 2b:4a:93:73:64:d8:e2:d1:51:95:a4:6f:b1:c7:9f:89:b2:0c: 07:1d:95:d5:0d:28:f9:62:ed:ff:dc:6d:42:47:28:c9:e6:75: 8c:8f:7e:0d:53:0f:7e:35:a6:3e:85:c8:8a:76:b2:d1:e2:79: 80:78:ce:de:75:b2:39:e6:ae:0d:10:3f:68:33:56:b2:45:9b: de:f4:3e:21:c2:5c:64:2a:16:bb:df:fc:30:c2:80:2d:a2:a2: be:76:eb:17:df:a8:4c:88:ac:66:22:fb:71:8f:27:e2:bf:89: 24:89:b2:96:00:f2:c1:ba:01:45:f8:0e:ea:41:6b:4e:28:1e: aa:57:35:6e:b9:59:59:69:66:2b:f2:a4:68:c2:65:02:f3:41: 39:d1:cc:4e -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgISAZt4NWF5E9dfjIUGQwdGxpZBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM0NGRiOGIwOTgzYWNmOTdhMzI1NTE1MmMyZWE1OTJhZGFl NzczNWIwHhcNMjYwMTAxMDYxODQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMTIyODc5OTUzNDYxNjFkY2VhNDk5MWVkZDY5ZjE3NTdiYzI4ZTA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsJ9AqJYIMv2+5Fs0wAArBUfKb12A 2YKj87RmTs7TWb2E9A0DdYCZtqpBZLTdd6JDNV/th9kESB9DWbT+gB+Zmv4MNpjI skJx4OgYf+nl0EBtS/M4/Vbjd8Pfu6J0AVRcIpr47gGJMi/0lHhDSKOF/2U4JrUs T5MreOrieYvE777EUXEq3JkfQhrYEW/d56hGESv85FU7SHbksMCpkgaGfKLmADiR Edv97gF6f6Z3kHsGk6UDzeouy/51Y7WBhiA1MxLLbyO5BSPWc2o9f8SfOauMCMTz jIoouge9s+5/kh7785F7dXnO0CnoH7UIEjNk8pql49kDTHXrhfs2mYNQEwIDAQAB o4ICOTCCAjUwHQYDVR0OBBYEFKEih5lTRhYdzqSZHt1p8XV7wo4HMB8GA1UdIwQY MBaAFMRNuLCYOs+XoyVRUsLqWSra53NbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveEUyNHNKZzZ6NWVqSlZGU3d1cFpLdHJuYzFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC80Mzc4OTctYWY1OC00OTU5LThlNzYt ZWVkZDk0ZWMxMjhjLzEvb1NLSG1WTkdGaDNPcEprZTNXbnhkWHZDamdjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC80Mzc4OTctYWY1OC00OTU5LThlNzYtZWVkZDk0ZWMxMjhj LzEveEUyNHNKZzZ6NWVqSlZGU3d1cFpLdHJuYzFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME8GCCsGAQUFBwEHAQH/BEAwPjA8BAIAATA2AwQCLXD4AwQC ZzR8AwQCZ9LIAwQFi1RgAwQGjNGAAwQCmHLgAwQDmHLwAwQFne8gAwQCoBQAMA0G CSqGSIb3DQEBCwUAA4IBAQBnu9A34omeHrmuP1daq2nm5+/Wtjvh44kYhJgsdR6j 79eTNTXsrNlaIYS9CR5UV2Dr2M3BMScbkPP4RWRn/9lchm7LDi92CRLuDxafn8XO gAJlhXHWa/8yNgreQMx3TtwkxH3WBkyzuhBvkWgrSpNzZNji0VGVpG+xx5+JsgwH HZXVDSj5Yu3/3G1CRyjJ5nWMj34NUw9+NaY+hciKdrLR4nmAeM7edbI55q4NED9o M1ayRZve9D4hwlxkKha73/wwwoAtoqK+dusX36hMiKxmIvtxjyfiv4kkibKWAPLB ugFF+A7qQWtOKB6qVzVuuVlZaWYr8qRowmUC80E50cxO -----END CERTIFICATE-----Generated at Fri Jan 2 09:49:56 2026 by rpki-client