This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/ob7F2VCJOAAsHnye3Fkfiw3LDrA.roa File: ob7F2VCJOAAsHnye3Fkfiw3LDrA.roa (raw, json) Hash identifier: 73dBJpgeQaRvDu0bCVr2PUKhwsl+BWtyqsuA67uRjtg= Subject key identifier: A1:BE:C5:D9:50:89:38:00:2C:1E:7C:9E:DC:59:1F:8B:0D:CB:0E:B0 Certificate issuer: /CN=9e57f843b17ffceaa9b8636581fe4d54e346ddcc Certificate serial: 019B7EA6F48E015688FD0F0E7D80C9E76DF3 Authority key identifier: 9E:57:F8:43:B1:7F:FC:EA:A9:B8:63:65:81:FE:4D:54:E3:46:DD:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlf4Q7F__OqpuGNlgf5NVONG3cw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/ob7F2VCJOAAsHnye3Fkfiw3LDrA.roa Signing time: Fri 02 Jan 2026 12:20:29 +0000 ROA not before: Fri 02 Jan 2026 12:20:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34399 IP address blocks: 195.114.120.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.crl rsync://rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.mft rsync://rpki.ripe.net/repository/DEFAULT/nlf4Q7F__OqpuGNlgf5NVONG3cw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 21:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:f4:8e:01:56:88:fd:0f:0e:7d:80:c9:e7:6d:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9e57f843b17ffceaa9b8636581fe4d54e346ddcc Validity Not Before: Jan 2 12:20:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a1bec5d9508938002c1e7c9edc591f8b0dcb0eb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:79:d7:78:a7:c3:b0:43:ff:9a:db:82:e8:22: dd:70:db:67:d1:93:73:97:2b:01:51:9c:f7:ec:b6: e2:ae:06:48:9e:ee:dc:39:ba:36:58:a4:20:fc:cb: 60:e4:ef:88:70:63:10:23:33:73:0e:ea:13:37:4c: 77:ba:2d:d0:f9:e5:ef:23:93:54:4b:8b:d4:89:5c: e0:09:9b:f7:e9:3b:da:a7:73:66:ea:70:e6:38:f3: fe:59:6e:a8:41:71:4b:cd:8a:5a:02:a5:d6:7c:2b: a3:6f:8e:6a:30:a2:79:d8:d5:93:e2:5e:db:8d:3b: ed:5e:0b:cf:82:4e:81:4a:4c:e3:63:a4:4e:3c:16: a9:70:2e:9c:89:f2:08:13:3c:42:60:40:08:e6:20: 19:93:4b:8c:6e:72:70:6f:5d:3e:85:3b:a2:f1:d8: 02:5e:55:3e:13:45:0b:8d:f9:1f:4a:75:ee:d5:14: 7f:8d:5a:f8:a8:2c:56:c4:25:14:60:96:1c:1b:89: d0:87:c5:49:54:59:5b:52:11:21:f9:60:3a:a7:86: 33:a9:98:c3:9b:03:7b:72:b5:4f:f9:b9:16:5f:b4: 20:c7:d0:bd:42:42:fb:6c:ee:50:d7:4b:3f:a5:66: b8:4b:89:d9:5e:97:8a:5a:db:36:67:3f:81:4c:b4: d5:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:BE:C5:D9:50:89:38:00:2C:1E:7C:9E:DC:59:1F:8B:0D:CB:0E:B0 X509v3 Authority Key Identifier: keyid:9E:57:F8:43:B1:7F:FC:EA:A9:B8:63:65:81:FE:4D:54:E3:46:DD:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlf4Q7F__OqpuGNlgf5NVONG3cw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/ob7F2VCJOAAsHnye3Fkfiw3LDrA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.114.120.0/23 Signature Algorithm: sha256WithRSAEncryption 09:46:99:c1:69:36:06:5c:e7:89:36:71:fb:65:6c:0f:70:b8: 82:c8:e7:3f:d1:3b:6f:69:36:e5:fd:be:c2:4a:8c:2c:59:37: 61:fd:44:ce:e2:ed:0b:7a:01:02:d4:44:d8:2d:9c:62:e9:83: 89:1a:88:49:6d:ef:04:a8:a2:d4:61:3c:64:b4:0f:a6:c5:47: 5d:08:b9:67:8f:a6:bd:91:cc:3a:2e:1c:98:48:9b:7a:6c:03: 1f:3e:bc:22:53:59:15:f0:12:32:c8:0b:f9:98:df:9a:55:d5: f3:64:cf:ab:4a:b9:62:b6:3e:9a:2f:59:ba:49:1c:9f:37:0f: 49:1d:8a:e9:95:f7:da:4a:df:37:53:00:b9:79:99:e2:a8:42: 2d:af:d9:8a:64:0b:41:a8:da:c3:fa:46:da:02:71:4c:f6:f4: 5e:d2:81:d5:b1:b2:61:8f:fb:d7:2e:47:35:f1:24:13:0c:cc: 48:78:1a:99:27:fd:cf:ea:f2:7f:b4:34:87:a7:ad:1d:2b:bc: f7:52:2b:d5:ee:6a:9d:5a:46:62:6c:22:28:3c:cb:92:02:ee: 5c:74:2e:2e:24:ab:78:9c:45:4c:1f:7d:69:9b:03:83:a3:e7: e9:3f:d5:06:cc:a9:34:b4:a1:0f:84:ee:59:98:21:53:e0:1f: 52:54:ed:c0 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+pvSOAVaI/Q8OfYDJ523zMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDllNTdmODQzYjE3ZmZjZWFhOWI4NjM2NTgxZmU0ZDU0ZTM0 NmRkY2MwHhcNMjYwMTAyMTIyMDI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMWJlYzVkOTUwODkzODAwMmMxZTdjOWVkYzU5MWY4YjBkY2IwZWIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvXnXeKfDsEP/mtuC6CLdcNtn0ZNz lysBUZz37LbirgZInu7cObo2WKQg/Mtg5O+IcGMQIzNzDuoTN0x3ui3Q+eXvI5NU S4vUiVzgCZv36Tvap3Nm6nDmOPP+WW6oQXFLzYpaAqXWfCujb45qMKJ52NWT4l7b jTvtXgvPgk6BSkzjY6ROPBapcC6cifIIEzxCYEAI5iAZk0uMbnJwb10+hTui8dgC XlU+E0ULjfkfSnXu1RR/jVr4qCxWxCUUYJYcG4nQh8VJVFlbUhEh+WA6p4YzqZjD mwN7crVP+bkWX7Qgx9C9QkL7bO5Q10s/pWa4S4nZXpeKWts2Zz+BTLTVGQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKG+xdlQiTgALB58ntxZH4sNyw6wMB8GA1UdIwQY MBaAFJ5X+EOxf/zqqbhjZYH+TVTjRt3MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbmxmNFE3Rl9fT3FwdUdObGdmNU5WT05HM2N3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC83ZDBlZmUtNzA5ZC00ZDExLWI2OTIt MGUyMzA4MDZiNTc5LzEvb2I3RjJWQ0pPQUFzSG55ZTNGa2ZpdzNMRHJBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC83ZDBlZmUtNzA5ZC00ZDExLWI2OTItMGUyMzA4MDZiNTc5 LzEvbmxmNFE3Rl9fT3FwdUdObGdmNU5WT05HM2N3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBw3J4MA0G CSqGSIb3DQEBCwUAA4IBAQAJRpnBaTYGXOeJNnH7ZWwPcLiCyOc/0TtvaTbl/b7C SowsWTdh/UTO4u0LegEC1ETYLZxi6YOJGohJbe8EqKLUYTxktA+mxUddCLlnj6a9 kcw6LhyYSJt6bAMfPrwiU1kV8BIyyAv5mN+aVdXzZM+rSrlitj6aL1m6SRyfNw9J HYrplffaSt83UwC5eZniqEItr9mKZAtBqNrD+kbaAnFM9vRe0oHVsbJhj/vXLkc1 8SQTDMxIeBqZJ/3P6vJ/tDSHp60dK7z3UivV7mqdWkZibCIoPMuSAu5cdC4uJKt4 nEVMH31pmwODo+fpP9UGzKk0tKEPhO5ZmCFT4B9SVO3A -----END CERTIFICATE-----Generated at Sat Jan 3 04:13:12 2026 by rpki-client