This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/oige68hRBiXUkOK8iHHDWo8nk74.roa File: oige68hRBiXUkOK8iHHDWo8nk74.roa (raw, json) Hash identifier: j1qWPqgO+nK+2rkNLUIphbABAHPc6uAzHBH1FOhC3L4= Subject key identifier: A2:28:1E:EB:C8:51:06:25:D4:90:E2:BC:88:71:C3:5A:8F:27:93:BE Certificate issuer: /CN=ca41fdb7e016d960efe29c0b4894b873aa4d21e2 Certificate serial: 019B7D5CBDCF110DA613B74B1731458B5453 Authority key identifier: CA:41:FD:B7:E0:16:D9:60:EF:E2:9C:0B:48:94:B8:73:AA:4D:21:E2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/oige68hRBiXUkOK8iHHDWo8nk74.roa Signing time: Fri 02 Jan 2026 06:19:48 +0000 ROA not before: Fri 02 Jan 2026 06:19:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201424 IP address blocks: 185.61.196.0/22 maxlen: 22 185.61.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 09:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:bd:cf:11:0d:a6:13:b7:4b:17:31:45:8b:54:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca41fdb7e016d960efe29c0b4894b873aa4d21e2 Validity Not Before: Jan 2 06:19:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a2281eebc8510625d490e2bc8871c35a8f2793be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f2:97:1c:04:cd:92:57:49:1d:c6:21:e5:71: e0:cb:9d:82:35:f5:2a:7c:b9:bd:a7:7f:fc:e2:6c: 70:09:09:66:04:ce:9b:4d:d1:a6:14:45:dc:8d:10: 43:93:e2:b6:56:73:b7:35:97:0d:e8:11:50:ce:d6: 5f:6b:4a:69:12:b1:8a:1c:13:0c:32:52:cc:a9:ad: 63:47:64:74:79:f2:35:99:c9:d2:c1:18:38:26:bd: c3:ea:67:09:42:51:94:ef:89:3d:7b:12:cf:0f:43: 73:8b:6c:b8:47:33:1a:42:30:f3:9f:20:e0:05:67: 23:19:a9:67:1f:46:c7:f6:88:44:c5:60:66:69:d5: aa:73:42:03:ce:20:99:bc:ba:c9:0d:6a:ef:19:eb: ce:bc:fa:bd:32:3d:b9:6f:39:7c:39:37:bc:0c:34: 2d:1e:17:d9:ad:6a:95:77:a8:e6:b9:2d:05:81:69: 63:7f:15:55:db:b5:8e:5a:c7:ce:5b:d8:82:25:4f: c7:f2:12:d8:d6:71:55:b0:56:56:b3:21:ae:0a:c2: f5:b6:99:db:25:33:8a:75:5e:c5:a8:5c:0b:56:c1: c5:5c:62:93:85:5d:ad:eb:77:e8:14:1d:cf:78:69: 0a:04:79:5a:44:8c:27:e2:3a:10:47:3a:56:12:74: 8c:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:28:1E:EB:C8:51:06:25:D4:90:E2:BC:88:71:C3:5A:8F:27:93:BE X509v3 Authority Key Identifier: keyid:CA:41:FD:B7:E0:16:D9:60:EF:E2:9C:0B:48:94:B8:73:AA:4D:21:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/oige68hRBiXUkOK8iHHDWo8nk74.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.61.196.0/22 Signature Algorithm: sha256WithRSAEncryption aa:07:8c:32:ca:26:62:e3:90:d4:3f:d1:4b:2d:f4:60:21:12: 9b:33:d6:b3:7c:cb:83:4b:4c:35:05:77:63:0e:b6:22:04:a9: 07:e3:28:f3:e2:c0:b7:72:10:54:97:cd:c1:30:70:33:ff:9d: 03:ae:33:8a:70:c7:98:c1:2d:e8:42:dd:27:60:54:a0:dc:ca: 1b:38:2b:7e:71:ea:4a:3f:8b:a1:1f:08:31:eb:bc:a4:5b:79: 9d:57:c2:8b:a2:47:55:8a:53:f6:7f:11:a1:08:af:b2:40:a7: c5:e0:d8:db:11:7a:47:28:a1:f5:c6:25:f4:46:8a:1d:51:66: c0:7e:c1:ff:21:89:69:41:4d:fd:70:31:ee:75:91:e7:4d:ee: 79:ca:13:25:29:1f:5e:a9:fc:86:cc:59:22:41:df:b2:45:65: 10:61:04:77:f0:e0:ce:dd:56:67:bb:8a:c3:df:a9:d5:9b:f8: 50:28:f4:58:a3:11:ee:0a:8d:74:1f:d0:c7:4a:76:e1:c5:aa: 55:6d:bf:af:52:b1:d4:35:dd:82:99:57:b1:12:4e:88:6a:05: 50:f6:66:76:82:7e:64:84:8d:89:22:87:96:f1:88:fa:5a:1c: 15:7e:3d:55:8f:dc:50:42:ad:79:3d:1a:00:09:4c:79:bb:43: 3a:b4:28:05 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XL3PEQ2mE7dLFzFFi1RTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhNDFmZGI3ZTAxNmQ5NjBlZmUyOWMwYjQ4OTRiODczYWE0 ZDIxZTIwHhcNMjYwMTAyMDYxOTQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMjI4MWVlYmM4NTEwNjI1ZDQ5MGUyYmM4ODcxYzM1YThmMjc5M2JlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsvKXHATNkldJHcYh5XHgy52CNfUq fLm9p3/84mxwCQlmBM6bTdGmFEXcjRBDk+K2VnO3NZcN6BFQztZfa0ppErGKHBMM MlLMqa1jR2R0efI1mcnSwRg4Jr3D6mcJQlGU74k9exLPD0Nzi2y4RzMaQjDznyDg BWcjGalnH0bH9ohExWBmadWqc0IDziCZvLrJDWrvGevOvPq9Mj25bzl8OTe8DDQt HhfZrWqVd6jmuS0FgWljfxVV27WOWsfOW9iCJU/H8hLY1nFVsFZWsyGuCsL1tpnb JTOKdV7FqFwLVsHFXGKThV2t63foFB3PeGkKBHlaRIwn4joQRzpWEnSMkQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKIoHuvIUQYl1JDivIhxw1qPJ5O+MB8GA1UdIwQY MBaAFMpB/bfgFtlg7+KcC0iUuHOqTSHiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWtIOXQtQVcyV0R2NHB3TFNKUzRjNnBOSWVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi8wMzEwNDctOGM3NC00YWVlLWIwNjUt NDgyODYyZGU3MzBlLzEvb2lnZTY4aFJCaVhVa09LOGlISERXbzhuazc0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi8wMzEwNDctOGM3NC00YWVlLWIwNjUtNDgyODYyZGU3MzBl LzEveWtIOXQtQVcyV0R2NHB3TFNKUzRjNnBOSWVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuT3EMA0G CSqGSIb3DQEBCwUAA4IBAQCqB4wyyiZi45DUP9FLLfRgIRKbM9azfMuDS0w1BXdj DrYiBKkH4yjz4sC3chBUl83BMHAz/50DrjOKcMeYwS3oQt0nYFSg3MobOCt+cepK P4uhHwgx67ykW3mdV8KLokdVilP2fxGhCK+yQKfF4NjbEXpHKKH1xiX0RoodUWbA fsH/IYlpQU39cDHudZHnTe55yhMlKR9eqfyGzFkiQd+yRWUQYQR38ODO3VZnu4rD 36nVm/hQKPRYoxHuCo10H9DHSnbhxapVbb+vUrHUNd2CmVexEk6IagVQ9mZ2gn5k hI2JIoeW8Yj6WhwVfj1Vj9xQQq15PRoACUx5u0M6tCgF -----END CERTIFICATE-----Generated at Mon Jan 12 16:07:29 2026 by rpki-client