This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/56313f-ec4e-4c1c-b388-be3252ac4980/1/sxT3f0dvZnHHcSZ34lCIOZ9GuVw.roa File: sxT3f0dvZnHHcSZ34lCIOZ9GuVw.roa (raw, json) Hash identifier: pBbjOXEXTBhzJuJASEYw2dI37yzvRUATFTwvTf15Ndw= Subject key identifier: B3:14:F7:7F:47:6F:66:71:C7:71:26:77:E2:50:88:39:9F:46:B9:5C Certificate issuer: /CN=cbf23be1115f022aa269d9cea439bb8b492307e2 Certificate serial: 019B7C11CF8F8ED800172F09FADB413E7A87 Authority key identifier: CB:F2:3B:E1:11:5F:02:2A:A2:69:D9:CE:A4:39:BB:8B:49:23:07:E2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y_I74RFfAiqiadnOpDm7i0kjB-I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/56313f-ec4e-4c1c-b388-be3252ac4980/1/sxT3f0dvZnHHcSZ34lCIOZ9GuVw.roa Signing time: Fri 02 Jan 2026 00:18:20 +0000 ROA not before: Fri 02 Jan 2026 00:18:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3356 IP address blocks: 185.64.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/56313f-ec4e-4c1c-b388-be3252ac4980/1/y_I74RFfAiqiadnOpDm7i0kjB-I.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/56313f-ec4e-4c1c-b388-be3252ac4980/1/y_I74RFfAiqiadnOpDm7i0kjB-I.mft rsync://rpki.ripe.net/repository/DEFAULT/y_I74RFfAiqiadnOpDm7i0kjB-I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 09:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:cf:8f:8e:d8:00:17:2f:09:fa:db:41:3e:7a:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cbf23be1115f022aa269d9cea439bb8b492307e2 Validity Not Before: Jan 2 00:18:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b314f77f476f6671c7712677e25088399f46b95c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4d:32:d5:f9:14:1c:78:0a:3b:d7:f3:40:8a: 87:93:6c:84:e5:b3:56:52:c2:a4:e4:12:62:c2:63: 53:a5:cd:85:c0:f9:54:1a:b1:ae:dd:da:5d:08:6b: 4f:88:09:29:9c:0f:2e:19:ee:eb:e3:a1:db:4b:42: 45:29:2e:0f:47:70:39:9a:07:61:1d:16:a3:d9:dc: 8c:7e:f4:59:e4:2e:19:c8:a2:1f:ad:a5:20:b0:ec: b9:a1:43:a3:da:dd:d7:e8:f4:d0:60:c0:50:a8:a0: 8c:00:98:22:d4:c7:38:e3:96:87:99:a8:a0:4f:c3: 72:02:b4:01:dd:14:cb:dd:f9:25:58:90:f1:d4:a7: 90:65:20:1e:eb:dd:d1:b5:51:87:46:78:1a:bf:4c: 5b:6f:86:16:65:4b:c1:7b:73:0a:f6:a8:06:8a:3b: 18:2d:20:0b:ab:dd:af:1a:f5:d0:db:53:23:3b:80: 0f:c8:35:bc:fb:d0:75:31:c3:d5:5b:71:c2:bc:07: 7b:47:f0:4d:20:30:d9:ce:ef:79:c4:f6:b2:fd:c5: 57:16:5a:26:69:87:2e:63:93:3f:2f:6a:f4:d7:d0: f3:d8:7e:2c:63:da:aa:51:03:64:c1:9c:7c:fa:f6: fb:86:1a:71:02:ed:e2:f9:f4:18:19:49:07:09:22: 96:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:14:F7:7F:47:6F:66:71:C7:71:26:77:E2:50:88:39:9F:46:B9:5C X509v3 Authority Key Identifier: keyid:CB:F2:3B:E1:11:5F:02:2A:A2:69:D9:CE:A4:39:BB:8B:49:23:07:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y_I74RFfAiqiadnOpDm7i0kjB-I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/56313f-ec4e-4c1c-b388-be3252ac4980/1/sxT3f0dvZnHHcSZ34lCIOZ9GuVw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/56313f-ec4e-4c1c-b388-be3252ac4980/1/y_I74RFfAiqiadnOpDm7i0kjB-I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.64.252.0/22 Signature Algorithm: sha256WithRSAEncryption aa:b1:16:fe:d9:d6:76:60:f3:bc:95:37:13:26:82:12:00:ed: 4f:7d:dd:3f:dc:97:82:66:91:ce:5f:98:df:f3:fa:d2:cc:85: 11:7b:45:9b:30:76:5b:73:fe:00:c9:fb:71:93:31:81:5e:66: 80:73:bc:85:ed:40:57:52:0b:e0:38:c1:9a:34:3f:82:b5:11: aa:a5:46:03:e9:f8:9f:a0:6a:f3:19:24:31:21:c0:21:d2:df: ac:0d:e8:fe:85:3c:dc:a0:36:5b:a4:ee:e4:68:6e:d6:b7:86: 18:0d:67:51:b7:22:8d:02:ae:fa:48:0b:6f:45:1d:3f:ef:27: a6:54:85:05:6d:62:6b:a9:13:0a:20:82:9b:98:66:b9:de:73: ba:fb:a3:f5:7c:94:47:9a:b1:a8:3a:4d:82:3c:f2:e2:1f:51: 9b:4c:a1:f0:a2:2c:cb:ea:1d:81:8a:0f:6b:95:95:e9:9b:fe: f0:57:b8:d3:07:1e:c2:47:e5:68:2a:89:b7:f6:bc:33:f6:ab: 0e:d6:67:5b:7d:e7:1a:0b:18:91:20:22:7a:f6:68:13:cc:88: 84:d7:37:57:91:f3:3c:dc:3c:46:38:be:1e:96:fd:29:12:ff: 5c:26:a4:e0:36:4e:5b:ca:6f:e7:d0:d7:fb:e1:a2:dd:d2:cd: ca:e0:38:bf -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8Ec+PjtgAFy8J+ttBPnqHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiZjIzYmUxMTE1ZjAyMmFhMjY5ZDljZWE0MzliYjhiNDky MzA3ZTIwHhcNMjYwMTAyMDAxODIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMzE0Zjc3ZjQ3NmY2NjcxYzc3MTI2NzdlMjUwODgzOTlmNDZiOTVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvk0y1fkUHHgKO9fzQIqHk2yE5bNW UsKk5BJiwmNTpc2FwPlUGrGu3dpdCGtPiAkpnA8uGe7r46HbS0JFKS4PR3A5mgdh HRaj2dyMfvRZ5C4ZyKIfraUgsOy5oUOj2t3X6PTQYMBQqKCMAJgi1Mc445aHmaig T8NyArQB3RTL3fklWJDx1KeQZSAe693RtVGHRngav0xbb4YWZUvBe3MK9qgGijsY LSALq92vGvXQ21MjO4APyDW8+9B1McPVW3HCvAd7R/BNIDDZzu95xPay/cVXFlom aYcuY5M/L2r019Dz2H4sY9qqUQNkwZx8+vb7hhpxAu3i+fQYGUkHCSKW2QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLMU939Hb2Zxx3Emd+JQiDmfRrlcMB8GA1UdIwQY MBaAFMvyO+ERXwIqomnZzqQ5u4tJIwfiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveV9JNzRSRmZBaXFpYWRuT3BEbTdpMGtqQi1JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi81NjMxM2YtZWM0ZS00YzFjLWIzODgt YmUzMjUyYWM0OTgwLzEvc3hUM2YwZHZabkhIY1NaMzRsQ0lPWjlHdVZ3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yi81NjMxM2YtZWM0ZS00YzFjLWIzODgtYmUzMjUyYWM0OTgw LzEveV9JNzRSRmZBaXFpYWRuT3BEbTdpMGtqQi1JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuUD8MA0G CSqGSIb3DQEBCwUAA4IBAQCqsRb+2dZ2YPO8lTcTJoISAO1Pfd0/3JeCZpHOX5jf 8/rSzIURe0WbMHZbc/4AyftxkzGBXmaAc7yF7UBXUgvgOMGaND+CtRGqpUYD6fif oGrzGSQxIcAh0t+sDej+hTzcoDZbpO7kaG7Wt4YYDWdRtyKNAq76SAtvRR0/7yem VIUFbWJrqRMKIIKbmGa53nO6+6P1fJRHmrGoOk2CPPLiH1GbTKHwoizL6h2Big9r lZXpm/7wV7jTBx7CR+VoKom39rwz9qsO1mdbfecaCxiRICJ69mgTzIiE1zdXkfM8 3DxGOL4elv0pEv9cJqTgNk5bym/n0Nf74aLd0s3K4Di/ -----END CERTIFICATE-----Generated at Fri Jan 23 16:01:56 2026 by rpki-client