This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/3HiDrZA7PYUoDOVj2lWK_MTDMy4.roa File: 3HiDrZA7PYUoDOVj2lWK_MTDMy4.roa (raw, json) Hash identifier: VEj0HSUKE42dKjFD2uYohf7XQqVFoN8s8ftve/Xm9PQ= Subject key identifier: DC:78:83:AD:90:3B:3D:85:28:0C:E5:63:DA:55:8A:FC:C4:C3:33:2E Certificate issuer: /CN=d40620ea5daf8a54aaea17f2cb9ecdf35d785306 Certificate serial: 019B7B36EFF3FCE820867488B085733667F2 Authority key identifier: D4:06:20:EA:5D:AF:8A:54:AA:EA:17:F2:CB:9E:CD:F3:5D:78:53:06 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/3HiDrZA7PYUoDOVj2lWK_MTDMy4.roa Signing time: Thu 01 Jan 2026 20:19:16 +0000 ROA not before: Thu 01 Jan 2026 20:19:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211289 IP address blocks: 5.181.52.0/24 maxlen: 24 2a05:3440::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.crl rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:ef:f3:fc:e8:20:86:74:88:b0:85:73:36:67:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d40620ea5daf8a54aaea17f2cb9ecdf35d785306 Validity Not Before: Jan 1 20:19:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dc7883ad903b3d85280ce563da558afcc4c3332e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d5:87:27:f3:32:75:eb:35:66:14:52:85:68: 76:d1:52:7e:4d:7d:1b:cb:6f:de:c1:a1:0d:7c:33: d5:73:4c:ee:1c:9f:75:03:60:02:e1:91:81:52:cb: 38:43:cb:44:ad:f7:97:a4:6c:32:ed:29:2b:23:2f: 6d:23:5a:93:46:ca:a2:01:6c:d7:c5:2a:db:27:ff: cf:70:82:15:75:c6:58:44:82:64:54:49:a3:d1:06: ed:93:b1:14:cf:a3:16:ae:db:f7:c7:77:15:c0:c7: 70:db:bd:75:b2:e5:60:19:cd:8c:2b:27:26:25:47: c5:3d:3d:be:f8:5d:83:fd:81:ca:bc:a1:01:e2:c3: 75:0e:fd:97:49:ca:d5:38:de:60:a3:00:13:08:8f: 85:37:fe:78:6a:33:bb:c7:d0:19:43:21:2d:cc:06: 9d:85:94:aa:d8:aa:91:cf:b4:ac:35:2f:75:f4:3f: c9:d0:2d:f0:80:0e:2e:20:73:3b:e9:fa:8e:68:a1: 20:72:ee:18:d0:43:25:f6:af:9a:92:63:6a:e5:21: 96:67:0e:9a:c5:2d:b3:87:30:1a:e3:a9:97:5d:d5: 92:8d:36:42:50:b3:a7:d6:5f:da:0f:ff:e4:42:88: 32:86:d1:e6:ce:2a:82:0b:cd:31:20:d8:cd:fd:f2: d0:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:78:83:AD:90:3B:3D:85:28:0C:E5:63:DA:55:8A:FC:C4:C3:33:2E X509v3 Authority Key Identifier: keyid:D4:06:20:EA:5D:AF:8A:54:AA:EA:17:F2:CB:9E:CD:F3:5D:78:53:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/3HiDrZA7PYUoDOVj2lWK_MTDMy4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.181.52.0/24 IPv6: 2a05:3440::/29 Signature Algorithm: sha256WithRSAEncryption 86:0d:5f:42:5b:a1:87:35:10:22:3e:c2:14:6e:7e:fe:0f:e5: 10:ed:d1:37:e8:92:be:53:1d:32:a9:d2:d3:c4:44:d2:f5:ff: 2f:6f:14:87:f8:a9:b4:38:a6:9b:75:1e:a2:17:32:c8:d3:68: cb:e7:05:dd:fc:2b:b8:e8:52:2d:22:93:72:eb:14:19:49:83: c3:0b:5b:17:62:8a:23:87:84:08:dd:56:f5:e1:3b:82:8a:52: 60:29:db:a2:5e:1d:58:75:f0:4e:f2:0e:4f:7f:e9:a1:5b:b0: 08:b3:a4:3d:18:2e:f5:d0:e7:d1:f7:55:04:5b:af:f8:af:cb: e0:a7:26:2e:5a:53:03:5a:de:f5:df:e9:7f:fb:d3:bb:1a:75: 87:be:3e:48:b1:c0:e4:19:74:3e:8e:ff:96:aa:c2:88:ff:1d: 60:b3:2a:23:80:c8:7b:00:e5:16:4e:bb:24:4f:3b:92:8c:1b: 26:d2:64:31:78:cf:b8:8f:e1:bb:6b:3f:ac:74:04:22:f5:a4: 84:b7:cd:d5:14:93:17:fc:f9:e5:9e:b6:af:e8:b9:3a:34:a2: 50:a4:ac:38:c7:07:ac:21:98:46:13:95:32:2d:64:c0:4a:7f: e1:5c:a6:65:53:9c:28:e0:cb:61:27:66:8b:ad:12:36:ce:2b: 34:1a:1b:a5 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt7Nu/z/OgghnSIsIVzNmfyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0MDYyMGVhNWRhZjhhNTRhYWVhMTdmMmNiOWVjZGYzNWQ3 ODUzMDYwHhcNMjYwMTAxMjAxOTE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYzc4ODNhZDkwM2IzZDg1MjgwY2U1NjNkYTU1OGFmY2M0YzMzMzJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt9WHJ/Mydes1ZhRShWh20VJ+TX0b y2/ewaENfDPVc0zuHJ91A2AC4ZGBUss4Q8tErfeXpGwy7SkrIy9tI1qTRsqiAWzX xSrbJ//PcIIVdcZYRIJkVEmj0Qbtk7EUz6MWrtv3x3cVwMdw2711suVgGc2MKycm JUfFPT2++F2D/YHKvKEB4sN1Dv2XScrVON5gowATCI+FN/54ajO7x9AZQyEtzAad hZSq2KqRz7SsNS919D/J0C3wgA4uIHM76fqOaKEgcu4Y0EMl9q+akmNq5SGWZw6a xS2zhzAa46mXXdWSjTZCULOn1l/aD//kQogyhtHmziqCC80xINjN/fLQlwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFNx4g62QOz2FKAzlY9pVivzEwzMuMB8GA1UdIwQY MBaAFNQGIOpdr4pUquoX8suezfNdeFMGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUFZZzZsMnZpbFNxNmhmeXk1N044MTE0VXdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi83OThmYzUtYjU0Yy00MWMxLThhZmUt ZjA5ZTQ2YzY5YmY4LzEvM0hpRHJaQTdQWVVvRE9WajJsV0tfTVRETXk0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMi83OThmYzUtYjU0Yy00MWMxLThhZmUtZjA5ZTQ2YzY5YmY4 LzEvMUFZZzZsMnZpbFNxNmhmeXk1N044MTE0VXdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQABbU0MA0E AgACMAcDBQMqBTRAMA0GCSqGSIb3DQEBCwUAA4IBAQCGDV9CW6GHNRAiPsIUbn7+ D+UQ7dE36JK+Ux0yqdLTxETS9f8vbxSH+Km0OKabdR6iFzLI02jL5wXd/Cu46FIt IpNy6xQZSYPDC1sXYoojh4QI3Vb14TuCilJgKduiXh1YdfBO8g5Pf+mhW7AIs6Q9 GC710OfR91UEW6/4r8vgpyYuWlMDWt713+l/+9O7GnWHvj5IscDkGXQ+jv+WqsKI /x1gsyojgMh7AOUWTrskTzuSjBsm0mQxeM+4j+G7az+sdAQi9aSEt83VFJMX/Pnl nrav6Lk6NKJQpKw4xwesIZhGE5UyLWTASn/hXKZlU5wo4MthJ2aLrRI2zis0Ghul -----END CERTIFICATE-----Generated at Mon Feb 9 18:44:22 2026 by rpki-client