This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3d93a5-5fbd-402e-ad87-e986904c8d0c/1/x3o94WH-TgOrV8YIjfYebD2ph7I.roa File: x3o94WH-TgOrV8YIjfYebD2ph7I.roa (raw, json) Hash identifier: CyAtLVMGC2bxnLh65hikiQFqfdhP3gxbZnIoqvK7pGA= Subject key identifier: C7:7A:3D:E1:61:FE:4E:03:AB:57:C6:08:8D:F6:1E:6C:3D:A9:87:B2 Certificate issuer: /CN=31bb730b1b3f53e73a257422e5bbece43b677fe3 Certificate serial: 019B7DCACA5766BC8AC60847628C37038132 Authority key identifier: 31:BB:73:0B:1B:3F:53:E7:3A:25:74:22:E5:BB:EC:E4:3B:67:7F:E3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MbtzCxs_U-c6JXQi5bvs5Dtnf-M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3d93a5-5fbd-402e-ad87-e986904c8d0c/1/x3o94WH-TgOrV8YIjfYebD2ph7I.roa Signing time: Fri 02 Jan 2026 08:20:00 +0000 ROA not before: Fri 02 Jan 2026 08:20:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59723 IP address blocks: 217.9.28.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/3d93a5-5fbd-402e-ad87-e986904c8d0c/1/MbtzCxs_U-c6JXQi5bvs5Dtnf-M.crl rsync://rpki.ripe.net/repository/DEFAULT/1e/3d93a5-5fbd-402e-ad87-e986904c8d0c/1/MbtzCxs_U-c6JXQi5bvs5Dtnf-M.mft rsync://rpki.ripe.net/repository/DEFAULT/MbtzCxs_U-c6JXQi5bvs5Dtnf-M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:ca:57:66:bc:8a:c6:08:47:62:8c:37:03:81:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=31bb730b1b3f53e73a257422e5bbece43b677fe3 Validity Not Before: Jan 2 08:20:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c77a3de161fe4e03ab57c6088df61e6c3da987b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:7b:be:bd:f5:13:53:6f:87:44:0d:21:47:52: b6:6d:d8:ad:b8:da:1c:fe:bb:32:18:41:06:36:30: e9:30:c8:52:be:e6:43:9e:d7:eb:8d:65:6e:a5:8b: ba:4d:47:e1:ea:45:b8:64:4d:d3:ee:e3:39:97:a9: c7:94:f9:07:99:40:01:5e:54:15:f5:63:dc:c2:08: 3c:c7:32:75:15:e6:bf:01:f4:72:2f:22:e6:a5:c1: 56:d3:89:af:3b:f4:fe:60:13:35:39:85:d0:c8:cd: 16:b2:4b:ad:be:4a:fc:d0:e4:27:c5:9a:e4:39:77: da:99:2e:21:71:ec:0a:d7:ff:30:70:e1:09:c7:27: b2:e8:9b:5c:e4:e1:6b:8c:9b:90:d8:a9:93:0d:e3: fa:bc:af:98:90:59:24:6d:6b:0c:59:18:d9:03:e1: 0b:50:b1:fb:7c:75:ca:52:1b:09:77:d5:49:67:78: f0:79:07:00:d9:be:af:d5:80:e7:6b:80:aa:08:23: db:05:cb:1f:bc:15:70:55:80:db:31:e8:25:01:2f: d8:7d:3b:65:ee:fb:e2:f2:b2:3d:59:86:10:b3:af: 3f:f8:72:8c:78:a0:40:bf:f8:fd:64:1c:c0:46:cd: a3:9b:e3:c3:9b:7c:47:8e:70:e5:ed:ee:79:2b:fc: b8:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:7A:3D:E1:61:FE:4E:03:AB:57:C6:08:8D:F6:1E:6C:3D:A9:87:B2 X509v3 Authority Key Identifier: keyid:31:BB:73:0B:1B:3F:53:E7:3A:25:74:22:E5:BB:EC:E4:3B:67:7F:E3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MbtzCxs_U-c6JXQi5bvs5Dtnf-M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3d93a5-5fbd-402e-ad87-e986904c8d0c/1/x3o94WH-TgOrV8YIjfYebD2ph7I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3d93a5-5fbd-402e-ad87-e986904c8d0c/1/MbtzCxs_U-c6JXQi5bvs5Dtnf-M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.9.28.0/22 Signature Algorithm: sha256WithRSAEncryption 32:8c:50:a6:8c:06:9d:8e:fb:71:1b:5b:53:db:55:04:6f:03: f7:ce:96:27:6e:ba:ce:04:5d:d2:60:f9:24:af:26:d9:de:3a: 38:e5:43:c3:cc:04:3d:0c:e5:28:59:06:6b:a7:48:7d:d5:c8: 40:2f:65:2f:69:70:82:6e:64:ee:a2:48:08:cc:36:b9:f9:00: e1:8c:45:96:c1:77:8f:fd:af:95:3f:f6:30:37:8f:23:64:0c: 91:9f:e2:ab:d3:b1:c0:41:88:74:e6:9d:db:ad:cd:15:bb:ac: 6e:ed:78:8d:50:c9:e4:31:c1:04:70:83:0a:ec:f4:a6:dd:4f: 3a:43:3d:cc:22:a5:89:08:2b:7d:fc:03:a3:48:36:16:b3:a7: 1d:a7:29:12:a9:a3:cd:9d:65:ad:75:0b:a4:f7:b3:9d:bf:2a: 99:dd:1e:b9:25:29:13:f8:15:d4:11:29:92:2c:86:52:07:54: c6:12:6e:55:bf:d1:cf:08:fb:a8:52:b3:91:bf:61:2d:99:bc: d1:fc:b4:8c:17:01:b6:05:bb:e6:80:3e:04:22:9f:9d:c9:b9: 6d:9b:f5:50:dc:91:a7:f1:fe:87:43:73:23:6f:ba:d9:dc:fc: 5b:8a:4d:ea:e8:d1:6a:06:12:8f:84:de:a1:f9:53:d5:fc:f3: d5:6a:ae:2c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9yspXZryKxghHYow3A4EyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMxYmI3MzBiMWIzZjUzZTczYTI1NzQyMmU1YmJlY2U0M2I2 NzdmZTMwHhcNMjYwMTAyMDgyMDAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNzdhM2RlMTYxZmU0ZTAzYWI1N2M2MDg4ZGY2MWU2YzNkYTk4N2IyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsXu+vfUTU2+HRA0hR1K2bdituNoc /rsyGEEGNjDpMMhSvuZDntfrjWVupYu6TUfh6kW4ZE3T7uM5l6nHlPkHmUABXlQV 9WPcwgg8xzJ1Fea/AfRyLyLmpcFW04mvO/T+YBM1OYXQyM0Wskutvkr80OQnxZrk OXfamS4hcewK1/8wcOEJxyey6Jtc5OFrjJuQ2KmTDeP6vK+YkFkkbWsMWRjZA+EL ULH7fHXKUhsJd9VJZ3jweQcA2b6v1YDna4CqCCPbBcsfvBVwVYDbMeglAS/YfTtl 7vvi8rI9WYYQs68/+HKMeKBAv/j9ZBzARs2jm+PDm3xHjnDl7e55K/y4lQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMd6PeFh/k4Dq1fGCI32Hmw9qYeyMB8GA1UdIwQY MBaAFDG7cwsbP1PnOiV0IuW77OQ7Z3/jMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWJ0ekN4c19VLWM2SlhRaTVidnM1RHRuZi1NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS8zZDkzYTUtNWZiZC00MDJlLWFkODct ZTk4NjkwNGM4ZDBjLzEveDNvOTRXSC1UZ09yVjhZSWpmWWViRDJwaDdJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZS8zZDkzYTUtNWZiZC00MDJlLWFkODctZTk4NjkwNGM4ZDBj LzEvTWJ0ekN4c19VLWM2SlhRaTVidnM1RHRuZi1NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC2QkcMA0G CSqGSIb3DQEBCwUAA4IBAQAyjFCmjAadjvtxG1tT21UEbwP3zpYnbrrOBF3SYPkk rybZ3jo45UPDzAQ9DOUoWQZrp0h91chAL2UvaXCCbmTuokgIzDa5+QDhjEWWwXeP /a+VP/YwN48jZAyRn+Kr07HAQYh05p3brc0Vu6xu7XiNUMnkMcEEcIMK7PSm3U86 Qz3MIqWJCCt9/AOjSDYWs6cdpykSqaPNnWWtdQuk97OdvyqZ3R65JSkT+BXUESmS LIZSB1TGEm5Vv9HPCPuoUrORv2EtmbzR/LSMFwG2BbvmgD4EIp+dybltm/VQ3JGn 8f6HQ3Mjb7rZ3Pxbik3q6NFqBhKPhN6h+VPV/PPVaq4s -----END CERTIFICATE-----Generated at Mon Feb 9 18:42:51 2026 by rpki-client