This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/A3LobdPOZ7HejpQ_FMCpYizUx_w.roa File: A3LobdPOZ7HejpQ_FMCpYizUx_w.roa (raw, json) Hash identifier: ufpnhQSUHaLon4166f4aCj0fe7h4Tal7d8HPyF5uiJg= Subject key identifier: 03:72:E8:6D:D3:CE:67:B1:DE:8E:94:3F:14:C0:A9:62:2C:D4:C7:FC Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d Certificate serial: 019B7F8451E490D2BA906723A7F41C1F9618 Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/A3LobdPOZ7HejpQ_FMCpYizUx_w.roa Signing time: Fri 02 Jan 2026 16:22:16 +0000 ROA not before: Fri 02 Jan 2026 16:22:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211177 IP address blocks: 185.228.80.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.mft rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:24:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:51:e4:90:d2:ba:90:67:23:a7:f4:1c:1f:96:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d Validity Not Before: Jan 2 16:22:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0372e86dd3ce67b1de8e943f14c0a9622cd4c7fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:7a:65:b7:08:a7:cd:5a:c8:98:d2:d3:1f:25: 1f:37:57:ec:56:8b:33:13:82:8e:2c:cd:b0:8e:8a: 75:84:49:9f:d5:5c:7c:04:5e:be:25:73:a0:c5:06: ec:b4:a0:0e:0e:30:3d:53:3d:0c:8d:c4:2e:a5:c8: 6f:7d:b7:c6:3f:28:68:39:b8:4b:ab:de:a0:4f:32: ec:f6:08:d3:ae:bc:39:09:7c:19:b4:91:54:cd:c7: cb:3f:a1:d4:94:2e:0f:41:2a:ff:e0:f3:82:50:b9: d3:1d:dd:da:23:ad:a3:bf:5a:2c:50:8f:b3:4f:b7: 32:93:a0:c2:fc:9b:d7:a0:04:e7:a4:72:ed:9c:20: 8d:f2:01:25:7d:03:da:ae:af:13:aa:59:fa:2c:c5: 89:41:74:7b:5f:0b:e7:29:4a:34:be:0f:9d:14:85: 42:08:0a:78:35:51:27:b1:bd:35:f6:ec:4c:cf:60: 49:9f:3b:58:67:74:d5:00:7f:0f:56:00:db:03:c3: bf:e7:87:fe:31:d9:1e:cc:1e:fd:ff:2d:05:ce:02: 06:85:1c:07:78:b9:a8:d2:57:c4:2f:0c:5b:2e:04: f4:91:43:b2:bc:bd:cf:25:15:be:15:aa:b1:05:d2: 57:85:e2:87:c5:b2:f1:5f:a5:6d:28:eb:bd:60:a0: ea:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:72:E8:6D:D3:CE:67:B1:DE:8E:94:3F:14:C0:A9:62:2C:D4:C7:FC X509v3 Authority Key Identifier: keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/A3LobdPOZ7HejpQ_FMCpYizUx_w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.228.80.0/24 Signature Algorithm: sha256WithRSAEncryption 92:7e:6c:f5:a0:d8:fd:be:3d:06:e4:84:33:43:1c:3d:95:9c: 9e:e3:83:df:e5:35:49:4c:e5:34:9e:30:17:8f:f1:e1:73:c9: 76:a1:71:be:b4:3a:bb:26:91:f1:b2:65:ea:21:68:7b:4c:94: 5a:0e:cd:2f:7b:84:97:18:33:7e:04:0f:c5:61:96:b8:40:8c: 00:a8:f2:68:bc:82:e8:0e:37:81:71:f8:b5:3b:3b:6e:df:5e: 88:ff:a2:d0:c4:e1:29:43:f7:66:6b:6b:c2:5a:76:a8:19:ca: 1d:67:1c:34:09:19:48:d8:b2:d1:2f:4d:1b:c6:37:4d:0f:62: aa:c9:fa:eb:d7:9a:c2:8d:9e:64:11:68:4c:2c:f9:bf:bd:a6: 7d:32:bc:65:93:ec:d8:bf:13:5b:01:5d:cb:65:ca:0b:b8:52: fc:6f:58:7b:8b:9e:e7:9a:59:a0:41:e3:e2:2d:4f:4a:58:45: 30:a8:0d:21:f3:b1:2c:f4:9d:c1:35:f1:48:39:04:d8:94:8e: e7:01:ed:20:1d:e2:7d:2e:1e:62:0f:6d:0c:c8:32:20:68:fc: 39:5d:b5:a6:10:74:67:99:3f:67:4c:b6:f2:04:8e:91:44:22: 03:14:6b:03:ca:d1:26:ab:b7:ff:9c:48:7a:99:6a:32:98:0a: f6:84:2f:a3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hFHkkNK6kGcjp/QcH5YYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1NTdjY2Q0M2FmZTgxNmU0OTUzMjI4YmYxNGE3NWRjMjkw MTRiOGQwHhcNMjYwMTAyMTYyMjE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMzcyZTg2ZGQzY2U2N2IxZGU4ZTk0M2YxNGMwYTk2MjJjZDRjN2ZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApXpltwinzVrImNLTHyUfN1fsVosz E4KOLM2wjop1hEmf1Vx8BF6+JXOgxQbstKAODjA9Uz0MjcQupchvfbfGPyhoObhL q96gTzLs9gjTrrw5CXwZtJFUzcfLP6HUlC4PQSr/4POCULnTHd3aI62jv1osUI+z T7cyk6DC/JvXoATnpHLtnCCN8gElfQParq8Tqln6LMWJQXR7XwvnKUo0vg+dFIVC CAp4NVEnsb019uxMz2BJnztYZ3TVAH8PVgDbA8O/54f+MdkezB79/y0FzgIGhRwH eLmo0lfELwxbLgT0kUOyvL3PJRW+FaqxBdJXheKHxbLxX6VtKOu9YKDqBwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFANy6G3Tzmex3o6UPxTAqWIs1Mf8MB8GA1UdIwQY MBaAFLVXzNQ6/oFuSVMii/FKddwpAUuNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUt NmJjNzU1NzhiNGMzLzEvQTNMb2JkUE9aN0hlanBRX0ZNQ3BZaXpVeF93LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUtNmJjNzU1NzhiNGMz LzEvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAueRQMA0G CSqGSIb3DQEBCwUAA4IBAQCSfmz1oNj9vj0G5IQzQxw9lZye44Pf5TVJTOU0njAX j/Hhc8l2oXG+tDq7JpHxsmXqIWh7TJRaDs0ve4SXGDN+BA/FYZa4QIwAqPJovILo DjeBcfi1Oztu316I/6LQxOEpQ/dma2vCWnaoGcodZxw0CRlI2LLRL00bxjdND2Kq yfrr15rCjZ5kEWhMLPm/vaZ9Mrxlk+zYvxNbAV3LZcoLuFL8b1h7i57nmlmgQePi LU9KWEUwqA0h87Es9J3BNfFIOQTYlI7nAe0gHeJ9Lh5iD20MyDIgaPw5XbWmEHRn mT9nTLbyBI6RRCIDFGsDytEmq7f/nEh6mWoymAr2hC+j -----END CERTIFICATE-----Generated at Wed Jan 21 16:57:57 2026 by rpki-client