This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/3EYB4SbMVHdMhCq70a6ejKZsMN0.roa File: 3EYB4SbMVHdMhCq70a6ejKZsMN0.roa (raw, json) Hash identifier: NJfScRcI5yCFqJURBzE7llnPi6QGlIrFyulKcSCZkq8= Subject key identifier: DC:46:01:E1:26:CC:54:77:4C:84:2A:BB:D1:AE:9E:8C:A6:6C:30:DD Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Certificate serial: 019B7E391CF5892F612166AB433285F4590B Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/3EYB4SbMVHdMhCq70a6ejKZsMN0.roa Signing time: Fri 02 Jan 2026 10:20:30 +0000 ROA not before: Fri 02 Jan 2026 10:20:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25198 IP address blocks: 163.5.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.mft rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:1c:f5:89:2f:61:21:66:ab:43:32:85:f4:59:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Validity Not Before: Jan 2 10:20:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dc4601e126cc54774c842abbd1ae9e8ca66c30dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ba:60:f0:d6:bf:71:20:df:15:68:55:37:57: 11:07:4c:aa:39:2c:5f:0a:a3:28:b3:ae:db:69:58: f5:8a:20:07:5a:5b:12:9e:c3:19:10:2c:ae:30:b2: d2:33:92:a3:48:45:b6:37:d1:fe:47:3a:1c:14:f8: 94:ef:bf:c2:cd:9b:e1:2c:dd:b5:f8:25:4d:dd:57: ba:56:b8:c4:68:85:c0:af:52:e0:83:80:96:3b:37: 73:11:98:cf:d7:68:01:d7:30:0e:33:45:b1:63:74: ed:96:e0:47:b3:c3:25:84:18:00:d0:52:74:28:73: ff:d9:04:a8:3b:59:70:06:47:6c:47:1d:36:2d:2b: fe:9e:77:6a:76:c8:11:81:f2:4a:33:40:1b:97:87: 66:3d:20:8e:4f:6f:1e:06:a5:43:2b:06:3a:6a:b0: 9e:bf:2c:34:2f:eb:26:a2:a5:8e:98:27:b0:87:34: 97:3e:53:f2:04:20:29:de:74:78:94:d2:e7:b9:4c: 36:25:3f:ba:21:24:01:38:94:66:ef:76:4f:73:0a: 36:a6:95:b0:b2:50:63:ce:a5:ef:55:8a:4f:4b:93: d5:36:0a:f7:df:99:45:bc:15:74:71:08:2c:d2:52: 5b:3b:99:54:c7:65:02:b3:7a:80:1f:14:c8:8e:e0: c2:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:46:01:E1:26:CC:54:77:4C:84:2A:BB:D1:AE:9E:8C:A6:6C:30:DD X509v3 Authority Key Identifier: keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/3EYB4SbMVHdMhCq70a6ejKZsMN0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.5.214.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:7e:f3:25:96:00:11:df:e3:65:65:c9:1f:e0:5b:c1:95:7d: 3d:df:8f:2b:19:75:ff:02:39:57:c7:78:f1:ee:72:6b:79:1f: 5d:c1:63:d9:92:30:09:dc:f7:3f:ee:a2:d4:27:96:78:59:26: e4:41:6e:fa:a4:93:33:da:53:fe:1f:20:9f:b5:d9:13:c8:35: 58:ab:b3:d1:5b:f3:f8:4b:80:cc:11:ff:02:0c:94:e0:bf:75: ab:3c:29:2e:d2:bf:b7:a9:b6:b3:e1:c3:5a:61:ff:44:e5:e6: ff:56:2e:80:16:9c:5b:8e:06:86:4e:ae:cf:00:2b:27:2c:44: 66:ed:65:ec:a1:3a:d8:c0:ce:f7:26:ee:79:9e:ec:e1:b5:21: 73:bd:09:47:f4:1e:1a:ad:73:49:d9:7a:02:c9:38:d4:6d:b9: 88:a8:89:d3:49:6a:38:84:a1:87:79:e2:8a:2d:5b:e3:5f:0b: 09:be:b6:3d:14:66:56:93:3d:b0:73:85:a8:c0:46:af:d4:a0: 4d:48:7b:13:74:fc:85:65:2b:d8:d0:d5:f4:33:e4:02:f7:8a: d6:9c:69:ac:96:08:63:28:13:9a:70:92:36:89:3b:ea:92:3a: 84:27:ff:1a:7d:d2:49:a6:0b:be:01:c4:a4:3d:d7:3f:8b:63: cc:37:eb:82 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+ORz1iS9hIWarQzKF9FkLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2 MjRiY2IwHhcNMjYwMTAyMTAyMDMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYzQ2MDFlMTI2Y2M1NDc3NGM4NDJhYmJkMWFlOWU4Y2E2NmMzMGRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtrpg8Na/cSDfFWhVN1cRB0yqOSxf CqMos67baVj1iiAHWlsSnsMZECyuMLLSM5KjSEW2N9H+RzocFPiU77/CzZvhLN21 +CVN3Ve6VrjEaIXAr1Lgg4CWOzdzEZjP12gB1zAOM0WxY3TtluBHs8MlhBgA0FJ0 KHP/2QSoO1lwBkdsRx02LSv+nndqdsgRgfJKM0Abl4dmPSCOT28eBqVDKwY6arCe vyw0L+smoqWOmCewhzSXPlPyBCAp3nR4lNLnuUw2JT+6ISQBOJRm73ZPcwo2ppWw slBjzqXvVYpPS5PVNgr335lFvBV0cQgs0lJbO5lUx2UCs3qAHxTIjuDCqwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNxGAeEmzFR3TIQqu9GunoymbDDdMB8GA1UdIwQY MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt OWZlOTQxMDhmZjAxLzEvM0VZQjRTYk1WSGRNaENxNzBhNmVqS1pzTU4wLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowXWMA0G CSqGSIb3DQEBCwUAA4IBAQA6fvMllgAR3+NlZckf4FvBlX09348rGXX/AjlXx3jx 7nJreR9dwWPZkjAJ3Pc/7qLUJ5Z4WSbkQW76pJMz2lP+HyCftdkTyDVYq7PRW/P4 S4DMEf8CDJTgv3WrPCku0r+3qbaz4cNaYf9E5eb/Vi6AFpxbjgaGTq7PACsnLERm 7WXsoTrYwM73Ju55nuzhtSFzvQlH9B4arXNJ2XoCyTjUbbmIqInTSWo4hKGHeeKK LVvjXwsJvrY9FGZWkz2wc4WowEav1KBNSHsTdPyFZSvY0NX0M+QC94rWnGmslghj KBOacJI2iTvqkjqEJ/8afdJJpgu+AcSkPdc/i2PMN+uC -----END CERTIFICATE-----Generated at Mon Jan 19 16:52:00 2026 by rpki-client