This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/22f1d5-f269-4f4f-bf8a-1fbc641b50b1/1/OJ0Ryazj-aordFIxit1Bui-oJcw.roa File: OJ0Ryazj-aordFIxit1Bui-oJcw.roa (raw, json) Hash identifier: h0zTVrZOKT+350ZtHmP3C0wVqFaZWHFThI4Ful5AAsA= Subject key identifier: 38:9D:11:C9:AC:E3:F9:AA:2B:74:52:31:8A:DD:41:BA:2F:A8:25:CC Certificate issuer: /CN=70e5b30272e43053208978dbe44bfee10a5d007e Certificate serial: 019AFD5ABF8D1F512A110464FE26900FF32D Authority key identifier: 70:E5:B3:02:72:E4:30:53:20:89:78:DB:E4:4B:FE:E1:0A:5D:00:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cOWzAnLkMFMgiXjb5Ev-4QpdAH4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/22f1d5-f269-4f4f-bf8a-1fbc641b50b1/1/OJ0Ryazj-aordFIxit1Bui-oJcw.roa Signing time: Mon 08 Dec 2025 09:46:14 +0000 ROA not before: Mon 08 Dec 2025 09:46:14 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 48018 IP address blocks: 31.172.64.0/24 maxlen: 24 31.172.66.0/24 maxlen: 24 31.172.67.0/24 maxlen: 24 31.172.76.0/24 maxlen: 24 81.85.78.0/24 maxlen: 24 199.68.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/22f1d5-f269-4f4f-bf8a-1fbc641b50b1/1/cOWzAnLkMFMgiXjb5Ev-4QpdAH4.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/22f1d5-f269-4f4f-bf8a-1fbc641b50b1/1/cOWzAnLkMFMgiXjb5Ev-4QpdAH4.mft rsync://rpki.ripe.net/repository/DEFAULT/cOWzAnLkMFMgiXjb5Ev-4QpdAH4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 06:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:fd:5a:bf:8d:1f:51:2a:11:04:64:fe:26:90:0f:f3:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70e5b30272e43053208978dbe44bfee10a5d007e Validity Not Before: Dec 8 09:46:14 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=389d11c9ace3f9aa2b7452318add41ba2fa825cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:6c:4d:ce:9f:01:1c:3e:f4:c5:f4:b3:5e:9c: e3:a6:25:02:e1:d2:e0:7f:3c:67:01:fc:02:ce:bf: 67:95:b4:3e:60:40:c0:74:0b:1c:ec:2c:41:3e:11: 99:96:e7:6a:6d:50:85:f7:38:df:c8:5c:36:a0:3d: b4:56:03:70:a9:a6:02:18:0a:ee:47:db:94:22:9a: cd:31:ea:fd:e2:a6:77:65:09:80:68:63:dc:a7:5f: 59:aa:41:3b:05:90:9e:f8:3c:35:b3:3c:62:ca:b9: 92:28:b6:ed:2e:d0:6a:a0:48:0b:f2:26:fc:a3:aa: 1d:cf:1b:2b:a6:9e:91:99:df:7d:d1:34:df:2c:ff: e2:2c:f8:da:8e:81:f2:1d:1d:73:85:05:dc:0a:4e: 55:4e:65:8a:e4:41:23:9f:02:93:f5:09:94:6d:1e: 52:80:5b:e9:8f:e0:43:5c:65:0f:fa:7e:b1:63:e2: 51:5f:97:dc:a7:1f:72:c8:f5:90:87:10:45:1b:44: 55:c9:7c:1b:00:8f:cc:9c:4a:72:99:14:5b:88:99: 17:20:ff:d6:09:08:35:1f:ac:7b:40:8c:78:ba:84: 24:32:b9:15:27:d9:e9:b3:3f:b0:2b:fe:3f:05:60: 8c:8e:f7:1e:25:dd:6c:e6:25:82:ae:fb:be:d9:e4: aa:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:9D:11:C9:AC:E3:F9:AA:2B:74:52:31:8A:DD:41:BA:2F:A8:25:CC X509v3 Authority Key Identifier: keyid:70:E5:B3:02:72:E4:30:53:20:89:78:DB:E4:4B:FE:E1:0A:5D:00:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cOWzAnLkMFMgiXjb5Ev-4QpdAH4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/22f1d5-f269-4f4f-bf8a-1fbc641b50b1/1/OJ0Ryazj-aordFIxit1Bui-oJcw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/22f1d5-f269-4f4f-bf8a-1fbc641b50b1/1/cOWzAnLkMFMgiXjb5Ev-4QpdAH4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.172.64.0/24 31.172.66.0/23 31.172.76.0/24 81.85.78.0/24 199.68.197.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:5f:ee:ad:f9:a2:1f:75:11:98:19:90:43:43:3e:70:27:1c: 8e:1a:b7:9f:06:f9:f9:d1:33:ea:c6:cd:e0:1b:bc:b2:f0:86: a6:10:81:e3:e2:b3:09:7b:11:73:06:83:75:e2:09:fa:e1:df: 71:60:67:65:d2:f7:d7:5b:79:1c:61:eb:2c:76:c9:ec:08:57: 68:69:ed:ff:8b:6f:f4:6c:05:fb:52:38:e7:1d:ce:2e:67:0d: 01:d1:98:1c:1d:ea:a3:9d:27:dc:86:fd:fa:eb:ac:8d:5b:ae: fe:ab:dc:34:11:c6:fc:a8:a3:01:20:03:a8:52:f3:51:5d:7b: bd:0e:e0:c3:0f:fb:7f:7f:cc:02:48:d8:6e:6f:2c:da:7e:4d: df:0c:40:94:b5:c7:bf:1f:6e:d6:fd:8e:67:51:25:15:6d:e3: 4d:3c:74:0d:32:84:15:f1:bb:9e:22:ae:9b:cb:98:e8:53:c9: dc:84:d3:5b:30:34:d5:49:61:ec:b9:a2:cc:12:18:0c:6f:4e: 9f:0a:0e:d8:a3:cb:e0:22:36:78:46:77:53:15:76:9a:26:cb: 38:f1:2b:f3:d6:c4:c3:dd:34:41:81:28:f9:20:ea:c9:f0:db: 9c:80:fb:18:3c:8a:6f:62:45:39:a7:92:9b:30:c1:94:0c:71: 7f:87:25:d9 -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZr9Wr+NH1EqEQRk/iaQD/MtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwZTViMzAyNzJlNDMwNTMyMDg5NzhkYmU0NGJmZWUxMGE1 ZDAwN2UwHhcNMjUxMjA4MDk0NjE0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzODlkMTFjOWFjZTNmOWFhMmI3NDUyMzE4YWRkNDFiYTJmYTgyNWNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzGxNzp8BHD70xfSzXpzjpiUC4dLg fzxnAfwCzr9nlbQ+YEDAdAsc7CxBPhGZludqbVCF9zjfyFw2oD20VgNwqaYCGAru R9uUIprNMer94qZ3ZQmAaGPcp19ZqkE7BZCe+Dw1szxiyrmSKLbtLtBqoEgL8ib8 o6odzxsrpp6Rmd990TTfLP/iLPjajoHyHR1zhQXcCk5VTmWK5EEjnwKT9QmUbR5S gFvpj+BDXGUP+n6xY+JRX5fcpx9yyPWQhxBFG0RVyXwbAI/MnEpymRRbiJkXIP/W CQg1H6x7QIx4uoQkMrkVJ9npsz+wK/4/BWCMjvceJd1s5iWCrvu+2eSqiQIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFDidEcms4/mqK3RSMYrdQbovqCXMMB8GA1UdIwQY MBaAFHDlswJy5DBTIIl42+RL/uEKXQB+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY09XekFuTGtNRk1naVhqYjVFdi00UXBkQUg0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS8yMmYxZDUtZjI2OS00ZjRmLWJmOGEt MWZiYzY0MWI1MGIxLzEvT0owUnlhemotYW9yZEZJeGl0MUJ1aS1vSmN3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS8yMmYxZDUtZjI2OS00ZjRmLWJmOGEtMWZiYzY0MWI1MGIx LzEvY09XekFuTGtNRk1naVhqYjVFdi00UXBkQUg0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAH6xAAwQB H6xCAwQAH6xMAwQAUVVOAwQAx0TFMA0GCSqGSIb3DQEBCwUAA4IBAQAtX+6t+aIf dRGYGZBDQz5wJxyOGrefBvn50TPqxs3gG7yy8IamEIHj4rMJexFzBoN14gn64d9x YGdl0vfXW3kcYessdsnsCFdoae3/i2/0bAX7UjjnHc4uZw0B0ZgcHeqjnSfchv36 66yNW67+q9w0Ecb8qKMBIAOoUvNRXXu9DuDDD/t/f8wCSNhubyzafk3fDECUtce/ H27W/Y5nUSUVbeNNPHQNMoQV8bueIq6by5joU8nchNNbMDTVSWHsuaLMEhgMb06f Cg7Yo8vgIjZ4RndTFXaaJss48Svz1sTD3TRBgSj5IOrJ8NucgPsYPIpvYkU5p5Kb MMGUDHF/hyXZ -----END CERTIFICATE-----Generated at Fri Dec 19 16:27:18 2025 by rpki-client