This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/X3-dZhB0b8N8A-y7vWPRPFORF5I.roa File: X3-dZhB0b8N8A-y7vWPRPFORF5I.roa (raw, json) Hash identifier: x29A2Dz8zR7EPeWjjL0C8ACFYTMfKuQIQWw0JaB67F4= Subject key identifier: 5F:7F:9D:66:10:74:6F:C3:7C:03:EC:BB:BD:63:D1:3C:53:91:17:92 Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722 Certificate serial: 019B7B35608799CEEB50F7871908ABEF2F66 Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/X3-dZhB0b8N8A-y7vWPRPFORF5I.roa Signing time: Thu 01 Jan 2026 20:17:34 +0000 ROA not before: Thu 01 Jan 2026 20:17:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20616 IP address blocks: 81.180.200.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.mft rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:60:87:99:ce:eb:50:f7:87:19:08:ab:ef:2f:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722 Validity Not Before: Jan 1 20:17:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5f7f9d6610746fc37c03ecbbbd63d13c53911792 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:01:15:67:9e:17:03:c0:26:58:de:dc:72:e3: 01:e9:14:9d:ad:12:83:72:86:4f:0b:9e:ab:9a:7b: 4e:29:3e:23:b7:49:89:52:ab:7d:d6:9a:21:c5:84: 51:d3:26:cb:47:dc:2d:aa:8c:4e:3b:2f:3b:8d:db: 24:b3:9f:a0:b9:45:65:4a:f2:f3:37:86:58:91:3e: 2c:fe:cc:ce:0b:35:1a:db:39:12:fc:e8:7b:a6:c1: f4:b7:30:bf:ee:8a:2a:4a:c0:8b:b3:33:0c:ae:68: 4a:80:29:37:3f:66:16:b3:da:9a:97:43:33:e4:6b: ff:eb:db:c4:e7:85:ee:ec:7a:a4:21:62:4e:70:33: 62:4a:c9:7d:38:17:36:18:65:c5:f1:d5:bb:a0:c1: f9:67:78:4c:e4:21:3f:e2:58:9d:de:e1:02:e0:e0: 54:73:17:c5:e8:76:40:c8:b3:16:d5:fa:6f:27:d7: 63:81:6b:a1:21:11:f1:23:2d:fb:77:dd:ae:88:1d: 4c:df:cc:b8:3f:a2:a5:49:c3:44:2d:91:77:b0:66: af:3c:7e:10:26:4a:76:b0:a0:c5:2b:98:82:4c:7a: 3c:68:23:35:e3:b7:98:e2:a7:74:ea:04:e8:36:0b: 98:da:65:85:49:9e:42:18:f8:a9:1c:cc:50:af:c7: b8:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:7F:9D:66:10:74:6F:C3:7C:03:EC:BB:BD:63:D1:3C:53:91:17:92 X509v3 Authority Key Identifier: keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/X3-dZhB0b8N8A-y7vWPRPFORF5I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.180.200.0/24 Signature Algorithm: sha256WithRSAEncryption 28:73:bf:3e:ee:d7:c0:8d:e7:11:37:1d:7f:55:d5:20:11:a4: e6:32:c0:47:8b:ef:ab:ff:c7:9c:ab:b4:68:07:3e:6f:10:cf: a0:69:52:44:b6:80:59:78:45:38:66:62:8f:cd:0e:ff:79:53: 3e:8b:64:8c:2a:85:cf:59:2b:c0:c9:8b:49:2b:37:9f:81:27: 25:15:73:6a:5e:93:c2:5a:58:ac:74:0e:91:82:e9:69:60:72: 35:24:18:1a:01:26:ee:e1:be:be:e7:c0:23:db:ba:c1:1e:85: 76:6d:09:e9:9d:c7:2a:53:6c:77:42:5b:6a:08:12:d8:44:21: bb:01:38:fd:16:59:18:eb:cd:de:c8:39:d7:f2:e9:53:9f:c6: 84:0d:76:7c:c4:fc:f1:d6:fc:76:b8:52:7f:ae:da:fe:1a:c5: 12:66:2c:64:0d:7c:f0:42:2b:c2:23:0d:b5:ca:46:0a:85:bd: 93:83:c4:03:48:1d:f4:ba:3c:84:da:66:fe:72:b7:3c:d4:32: 07:b2:68:ff:57:fd:05:88:77:2c:85:97:50:8b:1c:8e:0d:c6: e5:0a:50:9c:8e:17:79:51:69:45:63:73:42:7d:1d:8c:ed:e8: 5e:57:4e:09:a7:ec:5c:5a:42:e0:3d:8f:0e:ad:4b:68:d7:3e: 3f:36:9d:6b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7NWCHmc7rUPeHGQir7y9mMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMxODM3ODU5MTZjZDk4ZDdjNzcwZDY4NTE0NTQ5OWE4YTBh MTU3MjIwHhcNMjYwMTAxMjAxNzM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZjdmOWQ2NjEwNzQ2ZmMzN2MwM2VjYmJiZDYzZDEzYzUzOTExNzkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyQEVZ54XA8AmWN7ccuMB6RSdrRKD coZPC56rmntOKT4jt0mJUqt91pohxYRR0ybLR9wtqoxOOy87jdsks5+guUVlSvLz N4ZYkT4s/szOCzUa2zkS/Oh7psH0tzC/7ooqSsCLszMMrmhKgCk3P2YWs9qal0Mz 5Gv/69vE54Xu7HqkIWJOcDNiSsl9OBc2GGXF8dW7oMH5Z3hM5CE/4lid3uEC4OBU cxfF6HZAyLMW1fpvJ9djgWuhIRHxIy37d92uiB1M38y4P6KlScNELZF3sGavPH4Q Jkp2sKDFK5iCTHo8aCM147eY4qd06gToNguY2mWFSZ5CGPipHMxQr8e4KQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFF9/nWYQdG/DfAPsu71j0TxTkReSMB8GA1UdIwQY MBaAFDGDeFkWzZjXx3DWhRRUmaigoVciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEt ZjUyYzQ3YzIyNWRiLzEvWDMtZFpoQjBiOE44QS15N3ZXUFJQRk9SRjVJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEtZjUyYzQ3YzIyNWRi LzEvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUbTIMA0G CSqGSIb3DQEBCwUAA4IBAQAoc78+7tfAjecRNx1/VdUgEaTmMsBHi++r/8ecq7Ro Bz5vEM+gaVJEtoBZeEU4ZmKPzQ7/eVM+i2SMKoXPWSvAyYtJKzefgSclFXNqXpPC WlisdA6RgulpYHI1JBgaASbu4b6+58Aj27rBHoV2bQnpnccqU2x3QltqCBLYRCG7 ATj9FlkY683eyDnX8ulTn8aEDXZ8xPzx1vx2uFJ/rtr+GsUSZixkDXzwQivCIw21 ykYKhb2Tg8QDSB30ujyE2mb+crc81DIHsmj/V/0FiHcshZdQixyODcblClCcjhd5 UWlFY3NCfR2M7eheV04Jp+xcWkLgPY8OrUto1z4/Np1r -----END CERTIFICATE-----Generated at Tue Jan 20 02:46:33 2026 by rpki-client