This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/dU3zqgb7vuBH76hZhD-_LAZKOJY.roa File: dU3zqgb7vuBH76hZhD-_LAZKOJY.roa (raw, json) Hash identifier: 0T2PrdnDPiWDBAADvBln3++fNTnd88s0ap0TcfxzoV8= Subject key identifier: 75:4D:F3:AA:06:FB:BE:E0:47:EF:A8:59:84:3F:BF:2C:06:4A:38:96 Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Certificate serial: 019B78A32DC7B3D003F91EAD8736BFB27491 Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/dU3zqgb7vuBH76hZhD-_LAZKOJY.roa Signing time: Thu 01 Jan 2026 08:18:38 +0000 ROA not before: Thu 01 Jan 2026 08:18:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204227 IP address blocks: 2a00:1728:2f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 02:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:2d:c7:b3:d0:03:f9:1e:ad:87:36:bf:b2:74:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Validity Not Before: Jan 1 08:18:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=754df3aa06fbbee047efa859843fbf2c064a3896 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:fc:6c:6d:c3:48:35:5f:65:75:07:a1:23:65: 79:e5:b7:74:21:a0:41:2e:5b:12:af:1f:8b:c8:19: 58:fc:0a:ff:2b:90:98:0d:12:db:64:23:75:2a:21: 47:e8:6d:81:70:70:39:4c:bb:e8:bf:49:07:b0:44: 09:04:26:7c:4d:76:cd:7e:9f:1d:44:db:92:0d:b3: e7:b0:04:9a:68:d7:f6:8a:be:cb:61:87:ae:3d:04: ca:1a:3e:70:5c:15:5e:ea:02:79:d0:e2:d6:18:d2: 2c:74:9a:20:4d:62:b1:10:2a:bc:38:56:c5:e7:5f: e5:e6:10:29:14:45:92:e7:29:e5:b3:68:b1:0c:45: b4:aa:0f:a9:69:3f:e1:67:f1:fd:ba:89:75:cc:70: d8:a0:e9:0e:f0:38:34:81:64:29:a4:49:74:f8:e6: 2f:64:44:7a:41:0a:db:1b:6f:d7:4b:85:7f:94:02: 30:cf:f9:8c:5f:32:f3:ec:84:f5:ac:96:77:35:b9: 45:3a:c1:a1:0e:29:1d:9e:4e:30:47:9f:65:21:94: 81:e1:81:85:ba:4d:d5:a4:6d:11:ae:25:d8:b1:a2: 55:32:0c:83:89:aa:28:54:89:67:13:6b:db:8b:3a: f6:61:89:47:8e:06:06:52:3f:0b:bc:91:dc:c0:5c: c9:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:4D:F3:AA:06:FB:BE:E0:47:EF:A8:59:84:3F:BF:2C:06:4A:38:96 X509v3 Authority Key Identifier: keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/dU3zqgb7vuBH76hZhD-_LAZKOJY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a00:1728:2f::/48 Signature Algorithm: sha256WithRSAEncryption 78:b7:24:a4:cd:e7:6c:d4:6d:ea:af:e5:7a:38:16:ab:dc:ed: 93:f8:48:ed:48:ea:6b:10:79:73:19:a0:7d:41:02:2b:7e:96: c8:56:de:7a:f9:02:ae:30:79:17:73:76:61:9a:ff:6a:1d:9b: 98:8f:54:6c:b5:44:e2:d5:eb:80:02:9f:91:f5:4e:36:35:29: 21:ae:5c:85:26:05:6b:1f:5f:33:fc:91:9b:7f:b4:d2:c9:bc: 34:ca:0c:f8:6c:c7:89:ee:b2:5b:ed:4b:d9:ee:b5:6c:57:92: 9e:bd:a7:40:84:8b:4a:cb:40:c9:8c:fe:cb:4a:32:31:a4:48: 3e:db:b7:5b:7d:cb:68:c3:b1:f3:74:c5:92:c2:68:01:f5:e2: 0b:d8:07:b6:60:cb:e6:60:8e:c9:30:85:d2:9f:df:08:b2:f7: b2:11:c7:84:e7:94:6f:38:d0:b0:09:8c:02:c3:07:ae:67:9d: ea:09:d5:4c:8f:d7:8a:f0:39:6c:19:b4:b9:f6:ed:0e:be:7d: c5:68:e2:c9:9f:e2:16:a5:e1:7e:c3:c3:5a:f4:09:ed:1b:e1: 26:34:bd:59:19:2c:ea:43:f0:1f:76:e0:41:1a:62:0b:28:67: 08:b3:fb:d0:51:de:28:2c:fb:1e:e9:f4:ea:92:d1:97:ed:39: 2b:b7:a9:60 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt4oy3Hs9AD+R6thza/snSRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3 NzVlOWQwHhcNMjYwMTAxMDgxODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NTRkZjNhYTA2ZmJiZWUwNDdlZmE4NTk4NDNmYmYyYzA2NGEzODk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7vxsbcNINV9ldQehI2V55bd0IaBB LlsSrx+LyBlY/Ar/K5CYDRLbZCN1KiFH6G2BcHA5TLvov0kHsEQJBCZ8TXbNfp8d RNuSDbPnsASaaNf2ir7LYYeuPQTKGj5wXBVe6gJ50OLWGNIsdJogTWKxECq8OFbF 51/l5hApFEWS5ynls2ixDEW0qg+paT/hZ/H9uol1zHDYoOkO8Dg0gWQppEl0+OYv ZER6QQrbG2/XS4V/lAIwz/mMXzLz7IT1rJZ3NblFOsGhDikdnk4wR59lIZSB4YGF uk3VpG0RriXYsaJVMgyDiaooVIlnE2vbizr2YYlHjgYGUj8LvJHcwFzJkwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFHVN86oG+77gR++oWYQ/vywGSjiWMB8GA1UdIwQY MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct Y2QzY2E1OTc1NzEyLzEvZFUzenFnYjd2dUJINzZoWmhELV9MQVpLT0pZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgAXKAAv MA0GCSqGSIb3DQEBCwUAA4IBAQB4tySkzeds1G3qr+V6OBar3O2T+EjtSOprEHlz GaB9QQIrfpbIVt56+QKuMHkXc3Zhmv9qHZuYj1RstUTi1euAAp+R9U42NSkhrlyF JgVrH18z/JGbf7TSybw0ygz4bMeJ7rJb7UvZ7rVsV5KevadAhItKy0DJjP7LSjIx pEg+27dbfctow7HzdMWSwmgB9eIL2Ae2YMvmYI7JMIXSn98IsveyEceE55RvONCw CYwCwweuZ53qCdVMj9eK8DlsGbS59u0Ovn3FaOLJn+IWpeF+w8Na9AntG+EmNL1Z GSzqQ/AfduBBGmILKGcIs/vQUd4oLPse6fTqktGX7Tkrt6lg -----END CERTIFICATE-----Generated at Fri Jan 2 12:09:36 2026 by rpki-client