This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/24015f-091c-4c5d-b5c1-bcf77026939d/1/P3ksiU6dR-MB5dwO9grj0b7EMXU.roa File: P3ksiU6dR-MB5dwO9grj0b7EMXU.roa (raw, json) Hash identifier: bIr8a6sPdRjwwSD8CC5kO5ixUwkkeuD93IkwxtBRKV4= Subject key identifier: 3F:79:2C:89:4E:9D:47:E3:01:E5:DC:0E:F6:0A:E3:D1:BE:C4:31:75 Certificate issuer: /CN=c64fa0ad8987149f05534724b45a2f4d5ebf475d Certificate serial: 019BB2D1376716C3AC63701124BDCBE8FE46 Authority key identifier: C6:4F:A0:AD:89:87:14:9F:05:53:47:24:B4:5A:2F:4D:5E:BF:47:5D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xk-grYmHFJ8FU0cktFovTV6_R10.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/24015f-091c-4c5d-b5c1-bcf77026939d/1/P3ksiU6dR-MB5dwO9grj0b7EMXU.roa Signing time: Mon 12 Jan 2026 15:26:54 +0000 ROA not before: Mon 12 Jan 2026 15:26:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 62078 IP address blocks: 45.91.14.0/24 maxlen: 24 2a06:d1c1:103::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/24015f-091c-4c5d-b5c1-bcf77026939d/1/xk-grYmHFJ8FU0cktFovTV6_R10.crl rsync://rpki.ripe.net/repository/DEFAULT/38/24015f-091c-4c5d-b5c1-bcf77026939d/1/xk-grYmHFJ8FU0cktFovTV6_R10.mft rsync://rpki.ripe.net/repository/DEFAULT/xk-grYmHFJ8FU0cktFovTV6_R10.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:b2:d1:37:67:16:c3:ac:63:70:11:24:bd:cb:e8:fe:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c64fa0ad8987149f05534724b45a2f4d5ebf475d Validity Not Before: Jan 12 15:26:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3f792c894e9d47e301e5dc0ef60ae3d1bec43175 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:6d:ff:63:f1:e5:49:a9:ae:ff:f5:bc:b4:be: 03:56:1b:30:78:d1:4b:5d:cb:1b:6f:e9:17:08:92: d6:b8:71:2f:10:0b:96:32:74:97:97:65:18:f5:4c: 88:ac:9f:1f:10:52:b5:0d:a9:52:6a:a6:f6:98:60: e9:c2:e0:d1:c1:f9:47:6a:34:40:fb:fb:c8:18:6b: 15:9b:80:9f:55:55:f4:18:12:e6:85:f1:de:45:90: 31:9b:39:2c:d2:eb:20:ad:60:ed:ac:04:8b:ae:69: 6d:79:4d:11:21:15:08:81:b1:9f:0e:bf:11:90:c5: 03:d6:78:05:61:30:8e:53:e5:33:ed:c7:b1:7a:dc: 12:15:94:5f:68:22:0b:41:7f:1b:a9:6d:bb:e6:b5: 59:01:22:66:f8:6d:2a:10:ff:b8:bc:75:15:50:49: d1:a8:2d:57:c9:6e:75:34:88:56:d1:cb:b7:f1:06: 89:9e:b5:44:3e:fe:69:d9:3f:50:51:b1:1c:86:e3: f7:8e:83:3c:b2:f2:a9:a4:c2:c0:57:c5:32:71:1e: 17:5f:8b:02:ca:bb:0e:f2:82:77:8d:ce:39:63:b2: 76:61:8e:eb:25:87:80:d5:ac:c8:1c:49:df:3e:b4: 0e:79:1b:72:a9:c9:92:84:3a:2c:e0:be:f4:15:64: c4:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:79:2C:89:4E:9D:47:E3:01:E5:DC:0E:F6:0A:E3:D1:BE:C4:31:75 X509v3 Authority Key Identifier: keyid:C6:4F:A0:AD:89:87:14:9F:05:53:47:24:B4:5A:2F:4D:5E:BF:47:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xk-grYmHFJ8FU0cktFovTV6_R10.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/24015f-091c-4c5d-b5c1-bcf77026939d/1/P3ksiU6dR-MB5dwO9grj0b7EMXU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/38/24015f-091c-4c5d-b5c1-bcf77026939d/1/xk-grYmHFJ8FU0cktFovTV6_R10.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.91.14.0/24 IPv6: 2a06:d1c1:103::/48 Signature Algorithm: sha256WithRSAEncryption 7e:a3:2c:43:79:cc:b7:35:43:23:8f:eb:bc:36:3e:82:f9:72: 0b:81:08:09:97:1c:d8:d0:b5:12:61:22:04:0a:fc:11:70:fa: e1:e9:be:a2:ac:87:be:89:38:c0:aa:58:75:c0:2a:ff:55:20: b1:1f:63:9c:82:71:dd:97:d2:ef:b1:ad:fd:e3:86:60:5b:a0: 6b:55:0a:e0:c3:66:3a:63:a3:49:d5:0c:b9:d1:21:76:1e:ad: 49:68:a5:bc:de:33:11:85:6d:a4:5a:29:b1:2d:19:87:77:67: b2:69:9c:e5:e3:5f:e1:bc:70:a4:75:ae:36:29:4f:12:d0:b5: fe:fb:74:0d:16:38:5f:53:27:48:09:d7:8c:ba:6f:31:95:00: 99:f5:e3:37:a0:e4:b8:18:54:2b:ee:e2:fa:28:1c:e4:35:fc: b8:9f:d2:56:aa:0d:3f:4d:b6:4a:db:a7:cb:f4:ad:22:0f:9f: 56:f8:37:64:84:db:0e:e9:59:6e:50:98:fc:21:e8:fd:13:47: 13:4e:e7:04:c2:8d:38:78:15:75:ad:c7:44:65:99:c2:95:aa: 8f:8a:ef:22:ca:ab:85:10:80:17:44:ee:90:f0:3d:b2:bf:fe: 01:fd:6b:1f:b9:47:86:51:f9:d2:1d:89:97:e3:ff:36:73:86: 84:19:08:64 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZuy0TdnFsOsY3ARJL3L6P5GMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NGZhMGFkODk4NzE0OWYwNTUzNDcyNGI0NWEyZjRkNWVi ZjQ3NWQwHhcNMjYwMTEyMTUyNjU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZjc5MmM4OTRlOWQ0N2UzMDFlNWRjMGVmNjBhZTNkMWJlYzQzMTc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArW3/Y/HlSamu//W8tL4DVhsweNFL Xcsbb+kXCJLWuHEvEAuWMnSXl2UY9UyIrJ8fEFK1DalSaqb2mGDpwuDRwflHajRA +/vIGGsVm4CfVVX0GBLmhfHeRZAxmzks0usgrWDtrASLrmlteU0RIRUIgbGfDr8R kMUD1ngFYTCOU+Uz7cexetwSFZRfaCILQX8bqW275rVZASJm+G0qEP+4vHUVUEnR qC1XyW51NIhW0cu38QaJnrVEPv5p2T9QUbEchuP3joM8svKppMLAV8UycR4XX4sC yrsO8oJ3jc45Y7J2YY7rJYeA1azIHEnfPrQOeRtyqcmShDos4L70FWTENQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFD95LIlOnUfjAeXcDvYK49G+xDF1MB8GA1UdIwQY MBaAFMZPoK2JhxSfBVNHJLRaL01ev0ddMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveGstZ3JZbUhGSjhGVTBja3RGb3ZUVjZfUjEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC8yNDAxNWYtMDkxYy00YzVkLWI1YzEt YmNmNzcwMjY5MzlkLzEvUDNrc2lVNmRSLU1CNWR3TzlncmowYjdFTVhVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOC8yNDAxNWYtMDkxYy00YzVkLWI1YzEtYmNmNzcwMjY5Mzlk LzEveGstZ3JZbUhGSjhGVTBja3RGb3ZUVjZfUjEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQALVsOMA8E AgACMAkDBwAqBtHBAQMwDQYJKoZIhvcNAQELBQADggEBAH6jLEN5zLc1QyOP67w2 PoL5cguBCAmXHNjQtRJhIgQK/BFw+uHpvqKsh76JOMCqWHXAKv9VILEfY5yCcd2X 0u+xrf3jhmBboGtVCuDDZjpjo0nVDLnRIXYerUlopbzeMxGFbaRaKbEtGYd3Z7Jp nOXjX+G8cKR1rjYpTxLQtf77dA0WOF9TJ0gJ14y6bzGVAJn14zeg5LgYVCvu4voo HOQ1/Lif0laqDT9Ntkrbp8v0rSIPn1b4N2SE2w7pWW5QmPwh6P0TRxNO5wTCjTh4 FXWtx0RlmcKVqo+K7yLKq4UQgBdE7pDwPbK//gH9ax+5R4ZR+dIdiZfj/zZzhoQZ CGQ= -----END CERTIFICATE-----Generated at Mon Feb 2 08:07:41 2026 by rpki-client