This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/j3hTOTMf81Nkcr0TsIH3WU1Dvd4.roa File: j3hTOTMf81Nkcr0TsIH3WU1Dvd4.roa (raw, json) Hash identifier: QfmXcXNN1Wd563NtKkGqTEqV9zXIuZBoL2/KRKrrmGo= Subject key identifier: 8F:78:53:39:33:1F:F3:53:64:72:BD:13:B0:81:F7:59:4D:43:BD:DE Certificate issuer: /CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2 Certificate serial: 019B7D5CC0D6D00B5E17AB07139F1909E87E Authority key identifier: 52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/j3hTOTMf81Nkcr0TsIH3WU1Dvd4.roa Signing time: Fri 02 Jan 2026 06:19:49 +0000 ROA not before: Fri 02 Jan 2026 06:19:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42708 IP address blocks: 195.191.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/UtycIYtRDAe8Zlmwn70yr-aKv9I.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/UtycIYtRDAe8Zlmwn70yr-aKv9I.mft rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:c0:d6:d0:0b:5e:17:ab:07:13:9f:19:09:e8:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2 Validity Not Before: Jan 2 06:19:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8f785339331ff3536472bd13b081f7594d43bdde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c8:7a:fc:cd:14:5c:b9:bc:8f:28:97:f3:a0: 20:85:16:75:6d:95:af:f8:28:71:f8:cc:cc:09:19: 03:1e:5a:3b:e9:d5:5f:e9:49:49:60:dc:d3:48:37: 78:be:2b:c2:05:c1:27:90:b8:7b:c2:7b:ec:79:9a: 1a:72:5f:eb:b6:72:1f:cd:38:80:e7:24:69:a9:e6: 37:2d:1e:40:05:af:f7:93:43:34:b5:c8:03:02:6d: 3b:dd:4e:24:5d:e7:79:0d:59:c2:32:ea:f4:9d:7c: 97:c2:ac:bd:73:59:a4:dd:30:f9:29:ef:2f:6e:56: 4b:12:d1:da:6f:41:dd:7a:6a:54:16:f9:7c:3e:4f: bb:15:47:30:7c:fd:9d:77:35:35:a2:6c:91:31:2b: f3:bc:e3:cc:50:d6:9d:2e:27:6b:3d:26:20:07:ca: 04:f5:9b:fe:66:71:4a:6f:d6:3c:e4:55:ae:bc:19: ba:8e:31:25:98:80:d9:39:fc:83:41:60:61:bc:74: 07:99:18:3f:ce:66:07:c3:98:ed:eb:76:88:09:53: cf:86:0c:84:3d:44:37:84:83:a9:5b:f4:58:10:fa: 9e:d2:c2:37:8d:e6:6e:d6:53:10:b1:df:14:d1:e7: f1:ef:45:6a:cb:2c:d6:89:fe:b6:41:ad:f2:95:d9: f7:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:78:53:39:33:1F:F3:53:64:72:BD:13:B0:81:F7:59:4D:43:BD:DE X509v3 Authority Key Identifier: keyid:52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/j3hTOTMf81Nkcr0TsIH3WU1Dvd4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/UtycIYtRDAe8Zlmwn70yr-aKv9I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.191.145.0/24 Signature Algorithm: sha256WithRSAEncryption 25:17:9e:67:6f:fe:a8:10:ee:d2:57:c0:c1:6e:3b:12:ae:39: 5a:27:ed:8e:d4:b7:a7:85:0b:33:e1:66:95:68:a8:85:34:07: ea:af:1f:25:a7:d3:8e:20:33:7e:bf:0b:ad:a1:fb:48:79:65: 84:7c:5f:70:de:8d:bc:43:5e:73:78:4c:35:c5:78:97:2c:31: 6c:cb:6c:98:00:f3:c1:3c:b8:3d:49:65:10:b5:de:e3:33:a3: 8f:3d:bd:63:d4:ce:a9:a1:22:eb:23:cf:77:b5:b6:c3:be:64: f3:b4:81:82:4e:e9:19:e3:19:a0:60:90:00:44:8e:20:41:93: 35:33:36:87:79:29:03:fe:36:2c:fd:72:34:c0:f8:47:64:f7: 47:34:6d:dd:e5:c6:2a:09:ae:50:34:aa:4b:6b:7c:9c:8e:76: e7:4c:82:43:9f:ba:38:0a:6c:ba:33:fa:ee:d1:93:f6:8c:2c: 56:65:93:e1:5f:87:2b:54:81:ad:c0:d3:26:5e:9c:d4:34:36: 08:5e:34:42:cb:21:a1:14:83:af:70:89:ab:ac:20:9f:8c:26: 2d:c2:6b:37:b5:28:ff:aa:53:2b:fa:4c:a7:93:96:f9:16:26: 99:66:b3:90:f7:13:1b:34:d8:0c:fe:35:5e:3f:61:a2:7e:8b: cf:b7:8b:dd -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XMDW0AteF6sHE58ZCeh+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyZGM5YzIxOGI1MTBjMDdiYzY2NTliMDlmYmQzMmFmZTY4 YWJmZDIwHhcNMjYwMTAyMDYxOTQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4Zjc4NTMzOTMzMWZmMzUzNjQ3MmJkMTNiMDgxZjc1OTRkNDNiZGRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAush6/M0UXLm8jyiX86AghRZ1bZWv +Chx+MzMCRkDHlo76dVf6UlJYNzTSDd4vivCBcEnkLh7wnvseZoacl/rtnIfzTiA 5yRpqeY3LR5ABa/3k0M0tcgDAm073U4kXed5DVnCMur0nXyXwqy9c1mk3TD5Ke8v blZLEtHab0HdempUFvl8Pk+7FUcwfP2ddzU1omyRMSvzvOPMUNadLidrPSYgB8oE 9Zv+ZnFKb9Y85FWuvBm6jjElmIDZOfyDQWBhvHQHmRg/zmYHw5jt63aICVPPhgyE PUQ3hIOpW/RYEPqe0sI3jeZu1lMQsd8U0efx70VqyyzWif62Qa3yldn3xwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFI94UzkzH/NTZHK9E7CB91lNQ73eMB8GA1UdIwQY MBaAFFLcnCGLUQwHvGZZsJ+9Mq/mir/SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXR5Y0lZdFJEQWU4Wmxtd243MHlyLWFLdjlJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC80MDliN2UtMTI3NS00M2VkLWFmMGYt NTJmOTdiMjc3ZDFmLzEvajNoVE9UTWY4MU5rY3IwVHNJSDNXVTFEdmQ0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC80MDliN2UtMTI3NS00M2VkLWFmMGYtNTJmOTdiMjc3ZDFm LzEvVXR5Y0lZdFJEQWU4Wmxtd243MHlyLWFLdjlJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw7+RMA0G CSqGSIb3DQEBCwUAA4IBAQAlF55nb/6oEO7SV8DBbjsSrjlaJ+2O1LenhQsz4WaV aKiFNAfqrx8lp9OOIDN+vwutoftIeWWEfF9w3o28Q15zeEw1xXiXLDFsy2yYAPPB PLg9SWUQtd7jM6OPPb1j1M6poSLrI893tbbDvmTztIGCTukZ4xmgYJAARI4gQZM1 MzaHeSkD/jYs/XI0wPhHZPdHNG3d5cYqCa5QNKpLa3ycjnbnTIJDn7o4Cmy6M/ru 0ZP2jCxWZZPhX4crVIGtwNMmXpzUNDYIXjRCyyGhFIOvcImrrCCfjCYtwms3tSj/ qlMr+kynk5b5FiaZZrOQ9xMbNNgM/jVeP2GifovPt4vd -----END CERTIFICATE-----Generated at Mon Jan 19 17:52:27 2026 by rpki-client