This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/3xkUgPDW1_nU5u-zQWPWFuXblOU.roa File: 3xkUgPDW1_nU5u-zQWPWFuXblOU.roa (raw, json) Hash identifier: TwymWVxNW7YipwcwZomXLwsBqGn5JSf6tMGWjIIvIuA= Subject key identifier: DF:19:14:80:F0:D6:D7:F9:D4:E6:EF:B3:41:63:D6:16:E5:DB:94:E5 Certificate issuer: /CN=ba8861e17ebed57950ff32c7b377fc430413dbe4 Certificate serial: 019B7D5CF5C17D1AB4D1FE9BA3547B30D25D Authority key identifier: BA:88:61:E1:7E:BE:D5:79:50:FF:32:C7:B3:77:FC:43:04:13:DB:E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/3xkUgPDW1_nU5u-zQWPWFuXblOU.roa Signing time: Fri 02 Jan 2026 06:20:02 +0000 ROA not before: Fri 02 Jan 2026 06:20:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49763 IP address blocks: 193.164.196.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft rsync://rpki.ripe.net/repository/DEFAULT/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 Jan 2026 12:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:f5:c1:7d:1a:b4:d1:fe:9b:a3:54:7b:30:d2:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba8861e17ebed57950ff32c7b377fc430413dbe4 Validity Not Before: Jan 2 06:20:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=df191480f0d6d7f9d4e6efb34163d616e5db94e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:79:33:22:9b:3f:01:45:a8:68:11:23:47:9d: e8:d4:8e:8a:78:fa:03:93:48:15:52:8c:84:c1:00: f3:fa:3e:5b:1b:26:09:a2:ed:ef:8d:8a:e2:96:53: 8f:2c:42:e8:32:54:10:82:7c:09:0a:ec:ff:3a:c2: 0d:a4:b1:ad:1a:74:31:76:5d:d5:cc:df:4a:b5:11: 65:79:e8:fb:a1:f6:30:af:94:4a:4c:5a:cb:01:03: 81:83:6b:1c:de:d2:1c:a8:3c:14:a1:fc:e4:10:2a: 26:0d:c0:96:ac:09:5a:56:b6:05:f6:e7:a9:4a:0b: 8b:7e:6f:d5:aa:a4:9d:b4:9e:d8:7c:92:09:7a:53: f7:63:1b:78:dd:be:c5:3b:97:26:c9:37:5b:d3:b5: f3:bc:38:c2:88:59:bd:71:49:11:f6:66:b1:da:7b: 9c:ca:4f:26:53:b4:fa:d2:81:e6:2f:2e:20:0f:15: 01:1f:75:3f:6b:90:64:f8:d8:5f:ce:a6:72:13:81: f4:30:40:0d:78:1e:22:1d:38:a6:4c:07:90:c2:88: 61:55:c1:15:9f:a1:14:81:f5:f2:b0:de:6d:96:8b: 1a:5d:8d:51:f1:bd:22:65:10:0e:da:78:2c:d9:99: c6:ae:6c:2f:34:38:55:b1:d2:af:10:fc:24:65:54: c0:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:19:14:80:F0:D6:D7:F9:D4:E6:EF:B3:41:63:D6:16:E5:DB:94:E5 X509v3 Authority Key Identifier: keyid:BA:88:61:E1:7E:BE:D5:79:50:FF:32:C7:B3:77:FC:43:04:13:DB:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/3xkUgPDW1_nU5u-zQWPWFuXblOU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.164.196.0/23 Signature Algorithm: sha256WithRSAEncryption 33:69:5f:f2:a0:08:c4:b3:fc:f4:36:1c:29:da:84:31:82:aa: 36:70:61:aa:cf:11:10:ae:f9:50:cd:72:9e:bb:08:6e:ac:bf: 64:c1:3a:40:75:77:f2:67:af:05:aa:a3:cd:b7:18:ea:55:ad: 33:93:93:f3:94:d0:df:7e:e6:e6:be:43:a4:82:03:b3:b7:8b: 25:db:65:9a:76:77:ea:77:b7:a2:2c:98:1a:16:27:07:14:22: f1:30:a5:ae:e0:b8:2b:62:f0:86:0c:81:07:f4:74:20:43:83: 51:1d:70:fe:d2:1a:86:de:10:3e:e0:a4:e5:0f:cc:1d:66:df: ae:07:fd:41:84:fa:3f:36:ed:56:7d:fd:3f:dd:ec:95:6e:c2: 9e:05:65:6b:56:46:46:ac:f2:f8:56:84:da:90:43:40:09:05: 79:1e:5b:c6:95:e5:1e:ea:44:30:95:c1:e4:ea:b9:22:79:0d: f9:3a:30:27:c8:49:67:cb:5f:19:13:1c:af:20:de:b2:ac:8e: 4b:94:67:e9:e2:44:72:98:e8:1c:a7:e2:d2:7e:00:29:86:4c: 32:b6:5d:49:a3:c0:81:65:f2:51:2a:14:18:61:7a:16:84:f0: 92:68:67:9c:73:57:32:07:48:e5:1a:22:e2:cf:ec:c6:24:54: 6b:fa:38:2b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XPXBfRq00f6bo1R7MNJdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhODg2MWUxN2ViZWQ1Nzk1MGZmMzJjN2IzNzdmYzQzMDQx M2RiZTQwHhcNMjYwMTAyMDYyMDAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZjE5MTQ4MGYwZDZkN2Y5ZDRlNmVmYjM0MTYzZDYxNmU1ZGI5NGU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlnkzIps/AUWoaBEjR53o1I6KePoD k0gVUoyEwQDz+j5bGyYJou3vjYrillOPLELoMlQQgnwJCuz/OsINpLGtGnQxdl3V zN9KtRFleej7ofYwr5RKTFrLAQOBg2sc3tIcqDwUofzkEComDcCWrAlaVrYF9uep SguLfm/VqqSdtJ7YfJIJelP3Yxt43b7FO5cmyTdb07XzvDjCiFm9cUkR9max2nuc yk8mU7T60oHmLy4gDxUBH3U/a5Bk+NhfzqZyE4H0MEANeB4iHTimTAeQwohhVcEV n6EUgfXysN5tlosaXY1R8b0iZRAO2ngs2ZnGrmwvNDhVsdKvEPwkZVTASwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFN8ZFIDw1tf51Obvs0Fj1hbl25TlMB8GA1UdIwQY MBaAFLqIYeF+vtV5UP8yx7N3/EMEE9vkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdW9oaDRYNi0xWGxRX3pMSHMzZjhRd1FUMi1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi8xMGQxNTMtYzNjMy00MDExLTk3Y2Yt MTBmZGNhMzg1ZWE0LzEvM3hrVWdQRFcxX25VNXUtelFXUFdGdVhibE9VLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi8xMGQxNTMtYzNjMy00MDExLTk3Y2YtMTBmZGNhMzg1ZWE0 LzEvdW9oaDRYNi0xWGxRX3pMSHMzZjhRd1FUMi1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwaTEMA0G CSqGSIb3DQEBCwUAA4IBAQAzaV/yoAjEs/z0Nhwp2oQxgqo2cGGqzxEQrvlQzXKe uwhurL9kwTpAdXfyZ68FqqPNtxjqVa0zk5PzlNDffubmvkOkggOzt4sl22Wadnfq d7eiLJgaFicHFCLxMKWu4LgrYvCGDIEH9HQgQ4NRHXD+0hqG3hA+4KTlD8wdZt+u B/1BhPo/Nu1Wff0/3eyVbsKeBWVrVkZGrPL4VoTakENACQV5HlvGleUe6kQwlcHk 6rkieQ35OjAnyElny18ZExyvIN6yrI5LlGfp4kRymOgcp+LSfgAphkwytl1Jo8CB ZfJRKhQYYXoWhPCSaGecc1cyB0jlGiLiz+zGJFRr+jgr -----END CERTIFICATE-----Generated at Sat Jan 10 22:34:37 2026 by rpki-client