This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/3fsO2B5vgNbgc1ylzCjmk4YwFY4.roa File: 3fsO2B5vgNbgc1ylzCjmk4YwFY4.roa (raw, json) Hash identifier: pH/jmnyRRRJWz/5uh87gHrIOJvcbi1U0X4XzPOTDOiU= Subject key identifier: DD:FB:0E:D8:1E:6F:80:D6:E0:73:5C:A5:CC:28:E6:93:86:30:15:8E Certificate issuer: /CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f Certificate serial: 019B7F160E2769A3370851972703FBA67350 Authority key identifier: 29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/3fsO2B5vgNbgc1ylzCjmk4YwFY4.roa Signing time: Fri 02 Jan 2026 14:21:50 +0000 ROA not before: Fri 02 Jan 2026 14:21:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206226 IP address blocks: 92.62.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.crl rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.mft rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 06:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:16:0e:27:69:a3:37:08:51:97:27:03:fb:a6:73:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f Validity Not Before: Jan 2 14:21:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ddfb0ed81e6f80d6e0735ca5cc28e6938630158e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:12:a8:b3:be:dd:8e:22:cc:82:20:98:18:21: a0:27:09:4c:59:7f:15:81:15:ec:f0:40:e7:a8:a5: ec:de:58:b1:3a:1b:af:90:e8:37:d6:9f:f3:fa:13: e8:57:d2:bb:1f:ec:bc:8b:af:c5:4b:65:dc:66:b9: 67:b6:d4:d9:42:db:4c:cb:c2:5f:6a:6d:37:95:25: f2:89:4c:90:58:56:34:26:dd:92:b3:e9:a7:21:7e: 01:6b:5e:0a:be:de:16:10:6a:d1:f3:19:a6:42:e6: a9:84:1c:d5:09:3f:6e:b7:75:2b:ee:0e:65:b9:d5: c5:bc:08:f5:73:52:89:59:3c:72:a0:0e:d5:15:10: 09:d4:ae:b6:29:6e:a4:b2:74:45:eb:52:fc:19:3f: 05:fa:a9:5d:cb:61:65:1f:68:5b:fa:eb:27:35:2b: 7d:e1:64:8e:1d:05:50:b9:e9:99:06:3c:e9:a8:0e: a5:59:63:75:80:0d:08:73:c7:d5:69:98:03:5a:50: c0:00:7f:97:95:0e:be:60:e4:ff:61:c6:c8:f9:c2: b5:dd:2a:ae:f5:bb:c5:48:0c:59:8b:b8:37:af:5a: e6:16:d7:fc:fd:27:9f:49:0d:1c:81:58:f6:17:64: ca:19:96:a0:15:db:bd:c0:e3:3c:9a:c3:e4:c0:5e: d5:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:FB:0E:D8:1E:6F:80:D6:E0:73:5C:A5:CC:28:E6:93:86:30:15:8E X509v3 Authority Key Identifier: keyid:29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/3fsO2B5vgNbgc1ylzCjmk4YwFY4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 92.62.247.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:68:e1:bf:d6:59:0b:41:3e:ed:a9:fa:b4:83:ef:a2:4f:f2: 0a:3f:01:2b:54:10:18:4c:a1:ef:e1:57:19:03:09:30:ec:a0: ad:d7:03:4e:fd:36:28:e4:52:cc:89:8b:5c:be:b6:5f:8f:19: 22:3a:85:86:c8:79:35:7e:1e:5f:f8:73:e4:cb:7a:98:d1:16: f6:b9:ba:f5:1b:55:be:22:42:60:35:39:9b:8f:85:35:39:63: 8d:12:81:39:6e:f6:64:be:29:67:11:61:be:b5:01:1a:5d:dd: 8d:b4:76:43:93:34:46:78:c3:6f:f5:79:86:a2:3d:1c:74:77: d2:f4:0c:fd:b2:65:56:4b:b0:62:73:98:03:73:cb:b7:2b:2c: c8:21:5b:6a:34:a5:af:4f:d8:d7:80:6e:bb:32:8b:b9:7d:81: 87:0d:f7:b9:d5:fb:8b:85:87:d9:ed:01:07:14:2b:87:f4:1b: 73:86:31:8e:b7:f3:a6:46:b1:67:7d:85:6f:bc:78:4d:54:ec: 6f:ef:d0:1c:23:65:16:ea:78:b0:31:06:f3:bd:c3:f2:ae:d7: a1:fe:c8:a1:01:c8:54:3b:5c:41:f5:cd:5c:cc:f6:be:e4:ea: e2:59:03:3f:2e:5d:4b:eb:69:98:b7:f5:e8:eb:e4:ce:7c:bf: 00:b5:f4:3f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/Fg4naaM3CFGXJwP7pnNQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ZDJkYWZmMWM1YmI2MWEwYWM4YjNjYWVhZDRiOGExZmEy ODRkMGYwHhcNMjYwMTAyMTQyMTUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZGZiMGVkODFlNmY4MGQ2ZTA3MzVjYTVjYzI4ZTY5Mzg2MzAxNThlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsRKos77djiLMgiCYGCGgJwlMWX8V gRXs8EDnqKXs3lixOhuvkOg31p/z+hPoV9K7H+y8i6/FS2XcZrlnttTZQttMy8Jf am03lSXyiUyQWFY0Jt2Ss+mnIX4Ba14Kvt4WEGrR8xmmQuaphBzVCT9ut3Ur7g5l udXFvAj1c1KJWTxyoA7VFRAJ1K62KW6ksnRF61L8GT8F+qldy2FlH2hb+usnNSt9 4WSOHQVQuemZBjzpqA6lWWN1gA0Ic8fVaZgDWlDAAH+XlQ6+YOT/YcbI+cK13Squ 9bvFSAxZi7g3r1rmFtf8/SefSQ0cgVj2F2TKGZagFdu9wOM8msPkwF7VLwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFN37Dtgeb4DW4HNcpcwo5pOGMBWOMB8GA1UdIwQY MBaAFCnS2v8cW7YaCsizyurUuKH6KE0PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2RMYV94eGJ0aG9LeUxQSzZ0UzRvZm9vVFE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9lNWVhOTgtOTYwMS00YWRkLWE3Zjgt NGY1N2Q5Y2Y1Y2FhLzEvM2ZzTzJCNXZnTmJnYzF5bHpDam1rNFl3Rlk0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy9lNWVhOTgtOTYwMS00YWRkLWE3ZjgtNGY1N2Q5Y2Y1Y2Fh LzEvS2RMYV94eGJ0aG9LeUxQSzZ0UzRvZm9vVFE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXD73MA0G CSqGSIb3DQEBCwUAA4IBAQCfaOG/1lkLQT7tqfq0g++iT/IKPwErVBAYTKHv4VcZ Awkw7KCt1wNO/TYo5FLMiYtcvrZfjxkiOoWGyHk1fh5f+HPky3qY0Rb2ubr1G1W+ IkJgNTmbj4U1OWONEoE5bvZkvilnEWG+tQEaXd2NtHZDkzRGeMNv9XmGoj0cdHfS 9Az9smVWS7Bic5gDc8u3KyzIIVtqNKWvT9jXgG67Mou5fYGHDfe51fuLhYfZ7QEH FCuH9BtzhjGOt/OmRrFnfYVvvHhNVOxv79AcI2UW6niwMQbzvcPyrteh/sihAchU O1xB9c1czPa+5OriWQM/Ll1L62mYt/Xo6+TOfL8AtfQ/ -----END CERTIFICATE-----Generated at Sun Jan 18 12:03:41 2026 by rpki-client