This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/3Op6IBEY3gIrJNcrF_fGEKXZ-lc.roa File: 3Op6IBEY3gIrJNcrF_fGEKXZ-lc.roa (raw, json) Hash identifier: M5VWSQ1XRldGWp06/hwl4sINAHp+AWXgzvQPky9tqeo= Subject key identifier: DC:EA:7A:20:11:18:DE:02:2B:24:D7:2B:17:F7:C6:10:A5:D9:FA:57 Certificate issuer: /CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f Certificate serial: 019AFD07E21142288F9A7C829DA474EBC08A Authority key identifier: 29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/3Op6IBEY3gIrJNcrF_fGEKXZ-lc.roa Signing time: Mon 08 Dec 2025 08:15:43 +0000 ROA not before: Mon 08 Dec 2025 08:15:43 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 44213 IP address blocks: 178.239.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.crl rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.mft rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:fd:07:e2:11:42:28:8f:9a:7c:82:9d:a4:74:eb:c0:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f Validity Not Before: Dec 8 08:15:43 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=dcea7a201118de022b24d72b17f7c610a5d9fa57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ff:b6:05:d3:50:f0:a9:e7:f6:f0:90:09:3e: 88:e0:27:6d:4f:84:84:67:b5:76:c4:24:e2:fd:9e: ac:a7:8f:4f:bf:90:e3:95:88:43:18:17:ce:b6:58: bf:9d:7c:2e:22:bb:79:9b:90:c0:d8:6a:25:b7:64: 07:21:2f:a0:a0:b9:9a:c7:49:7a:ea:68:ae:53:cf: 49:2b:61:5a:50:c1:e4:05:6b:7a:4a:bb:f6:fd:47: 58:b5:11:c5:da:96:0b:48:1b:60:fe:56:13:f1:f1: 61:32:9e:c0:9b:ad:4f:3c:24:6d:93:a8:d6:fc:40: 7a:7b:f9:98:68:8c:a4:f8:ac:94:68:5c:9f:65:d5: 4d:4a:5e:f8:e2:f9:31:a6:4f:5d:c8:dc:3b:1f:5c: dc:22:a5:56:af:ca:67:d2:9b:cd:c9:e9:27:2a:a9: e5:90:92:8c:eb:ff:a4:99:1f:70:3d:c1:1a:a3:d3: ed:95:5d:c4:3d:92:c0:1a:e3:8e:f7:2a:1a:d9:33: 4d:63:36:06:39:91:38:f5:df:d2:c2:99:54:fc:4f: 19:40:a2:90:79:24:f6:27:73:98:12:cf:67:f0:41: 17:68:28:67:ac:6f:f0:94:1f:db:99:7b:c1:a4:95: c2:79:92:03:65:25:38:fe:78:7d:a3:43:18:fb:ce: 38:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:EA:7A:20:11:18:DE:02:2B:24:D7:2B:17:F7:C6:10:A5:D9:FA:57 X509v3 Authority Key Identifier: keyid:29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/3Op6IBEY3gIrJNcrF_fGEKXZ-lc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.239.116.0/24 Signature Algorithm: sha256WithRSAEncryption a2:1c:ef:45:a2:2b:49:d3:9d:62:5d:5a:9f:26:b2:32:86:37: 8c:9f:0b:e1:77:a5:12:1d:b9:4b:cb:ce:f5:3a:78:80:51:2e: 8b:2b:56:26:4c:84:b1:63:9e:da:5e:e4:5b:c0:eb:c2:e8:b4: c7:9f:95:a4:74:cf:d4:5d:c9:4e:d1:6d:ea:19:25:37:d2:04: ca:e2:81:34:77:52:b2:65:8b:d6:9e:57:bd:a9:2d:8a:0b:7a: cd:1b:98:6e:b5:36:14:6c:5d:f0:79:3e:cf:46:b0:a2:f4:45: 09:67:98:d0:7f:19:e1:36:7a:6c:55:94:2d:05:44:a9:9c:80: 92:69:89:25:51:f3:dc:28:6b:ad:a8:e9:e8:00:27:d1:b8:96: 42:8a:4f:cd:8e:12:61:95:c1:1d:ca:1c:14:a8:56:fd:ca:6b: 9f:da:cc:ca:11:18:65:84:02:6b:e3:0e:9f:28:24:ee:92:23: aa:97:2c:e2:fe:f2:0d:00:fd:4c:6b:eb:5c:17:41:eb:5c:01: 7b:08:ac:28:d1:c7:09:6d:ef:64:79:bb:0d:0b:19:86:31:6a: ca:e0:1d:4f:a1:fe:95:55:dc:e2:eb:f0:74:c1:72:63:cf:c0: 11:e1:00:ac:d6:7b:39:4f:65:fd:63:63:30:24:79:eb:04:c5: 5e:0f:fc:c6 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZr9B+IRQiiPmnyCnaR068CKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ZDJkYWZmMWM1YmI2MWEwYWM4YjNjYWVhZDRiOGExZmEy ODRkMGYwHhcNMjUxMjA4MDgxNTQzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkY2VhN2EyMDExMThkZTAyMmIyNGQ3MmIxN2Y3YzYxMGE1ZDlmYTU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqv+2BdNQ8Knn9vCQCT6I4CdtT4SE Z7V2xCTi/Z6sp49Pv5DjlYhDGBfOtli/nXwuIrt5m5DA2Golt2QHIS+goLmax0l6 6miuU89JK2FaUMHkBWt6Srv2/UdYtRHF2pYLSBtg/lYT8fFhMp7Am61PPCRtk6jW /EB6e/mYaIyk+KyUaFyfZdVNSl744vkxpk9dyNw7H1zcIqVWr8pn0pvNyeknKqnl kJKM6/+kmR9wPcEao9PtlV3EPZLAGuOO9yoa2TNNYzYGOZE49d/SwplU/E8ZQKKQ eST2J3OYEs9n8EEXaChnrG/wlB/bmXvBpJXCeZIDZSU4/nh9o0MY+8445QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNzqeiARGN4CKyTXKxf3xhCl2fpXMB8GA1UdIwQY MBaAFCnS2v8cW7YaCsizyurUuKH6KE0PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2RMYV94eGJ0aG9LeUxQSzZ0UzRvZm9vVFE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9lNWVhOTgtOTYwMS00YWRkLWE3Zjgt NGY1N2Q5Y2Y1Y2FhLzEvM09wNklCRVkzZ0lySk5jckZfZkdFS1haLWxjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy9lNWVhOTgtOTYwMS00YWRkLWE3ZjgtNGY1N2Q5Y2Y1Y2Fh LzEvS2RMYV94eGJ0aG9LeUxQSzZ0UzRvZm9vVFE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsu90MA0G CSqGSIb3DQEBCwUAA4IBAQCiHO9FoitJ051iXVqfJrIyhjeMnwvhd6USHblLy871 OniAUS6LK1YmTISxY57aXuRbwOvC6LTHn5WkdM/UXclO0W3qGSU30gTK4oE0d1Ky ZYvWnle9qS2KC3rNG5hutTYUbF3weT7PRrCi9EUJZ5jQfxnhNnpsVZQtBUSpnICS aYklUfPcKGutqOnoACfRuJZCik/NjhJhlcEdyhwUqFb9ymuf2szKERhlhAJr4w6f KCTukiOqlyzi/vINAP1Ma+tcF0HrXAF7CKwo0ccJbe9kebsNCxmGMWrK4B1Pof6V Vdzi6/B0wXJjz8AR4QCs1ns5T2X9Y2MwJHnrBMVeD/zG -----END CERTIFICATE-----Generated at Fri Dec 19 03:40:30 2025 by rpki-client