This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/373eca-ca43-4d62-a10f-bc7fc719d31b/1/s8m3AyH2NlTDR3fTgsQPhcOlx7E.roa File: s8m3AyH2NlTDR3fTgsQPhcOlx7E.roa (raw, json) Hash identifier: Kh2PCRdzGOujvxuGu8QsoDuJDZuroFKBTb7iTvPyMic= Subject key identifier: B3:C9:B7:03:21:F6:36:54:C3:47:77:D3:82:C4:0F:85:C3:A5:C7:B1 Certificate issuer: /CN=5a1d45edd7edde9a8b862a739ada8e78b7dc82b9 Certificate serial: 019B78A286833D1A8124E79720ABA1EB6C03 Authority key identifier: 5A:1D:45:ED:D7:ED:DE:9A:8B:86:2A:73:9A:DA:8E:78:B7:DC:82:B9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wh1F7dft3pqLhipzmtqOeLfcgrk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/373eca-ca43-4d62-a10f-bc7fc719d31b/1/s8m3AyH2NlTDR3fTgsQPhcOlx7E.roa Signing time: Thu 01 Jan 2026 08:17:55 +0000 ROA not before: Thu 01 Jan 2026 08:17:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211113 IP address blocks: 2.58.116.0/22 maxlen: 22 5.61.212.0/22 maxlen: 22 37.25.40.0/22 maxlen: 22 37.25.40.0/24 maxlen: 24 37.25.41.0/24 maxlen: 24 37.25.42.0/24 maxlen: 24 37.25.43.0/24 maxlen: 24 94.101.102.0/24 maxlen: 24 185.89.28.0/22 maxlen: 22 185.89.28.0/24 maxlen: 24 185.89.29.0/24 maxlen: 24 185.89.30.0/24 maxlen: 24 185.89.31.0/24 maxlen: 24 2a06:ea80::/29 maxlen: 29 2a06:ea80::/32 maxlen: 32 2a06:ea80:bdf::/48 maxlen: 48 2a06:ea81::/32 maxlen: 32 2a06:ea82::/32 maxlen: 32 2a06:ea83::/32 maxlen: 32 2a06:ea84::/32 maxlen: 32 2a06:ea85::/32 maxlen: 32 2a06:ea86::/32 maxlen: 32 2a06:ea87::/32 maxlen: 32 2a06:ea87:bdf::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/373eca-ca43-4d62-a10f-bc7fc719d31b/1/Wh1F7dft3pqLhipzmtqOeLfcgrk.crl rsync://rpki.ripe.net/repository/DEFAULT/3e/373eca-ca43-4d62-a10f-bc7fc719d31b/1/Wh1F7dft3pqLhipzmtqOeLfcgrk.mft rsync://rpki.ripe.net/repository/DEFAULT/Wh1F7dft3pqLhipzmtqOeLfcgrk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:86:83:3d:1a:81:24:e7:97:20:ab:a1:eb:6c:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5a1d45edd7edde9a8b862a739ada8e78b7dc82b9 Validity Not Before: Jan 1 08:17:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b3c9b70321f63654c34777d382c40f85c3a5c7b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:a6:00:fe:ca:89:b7:ae:d7:5e:f6:91:1a:c8: 31:90:25:cd:c3:96:11:ad:cc:8a:49:a5:c3:da:77: 23:c8:b9:60:4f:3b:9a:fe:be:5d:d5:3a:18:54:44: 26:71:76:49:08:02:f1:32:2a:11:7e:b2:80:4b:4c: c6:37:75:00:4a:69:b4:a7:a3:1a:4b:af:73:05:cb: 88:88:a9:14:98:87:c0:27:93:ec:26:a1:74:d7:8e: ef:90:3c:97:3c:69:ef:71:5b:7d:ce:aa:db:6c:88: e8:54:45:e4:14:84:ab:93:e2:32:36:ad:cc:34:b1: 3e:78:10:51:87:ef:28:e0:7f:c9:f4:e8:b2:11:0e: 91:bc:3d:d8:bd:48:b1:bb:50:5e:b0:64:2d:b3:17: 89:01:ac:e1:38:ea:5c:bc:52:fb:97:94:ed:6b:cc: 7f:00:c7:ef:c0:5f:aa:4c:ec:95:57:cb:21:ef:27: 37:d8:d4:d7:c3:30:33:ef:f7:e7:86:16:30:1a:97: e0:10:c0:e4:db:0c:ef:0d:d8:a1:ad:e7:6b:ef:d1: 98:7d:2c:04:bd:21:ff:31:10:54:a8:7c:6c:bb:9a: 69:a2:2d:da:cc:a2:c4:77:40:e6:2c:cf:ab:96:54: 6f:f2:d1:73:af:3e:0f:3c:80:35:04:c0:a7:05:4c: bb:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:C9:B7:03:21:F6:36:54:C3:47:77:D3:82:C4:0F:85:C3:A5:C7:B1 X509v3 Authority Key Identifier: keyid:5A:1D:45:ED:D7:ED:DE:9A:8B:86:2A:73:9A:DA:8E:78:B7:DC:82:B9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wh1F7dft3pqLhipzmtqOeLfcgrk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/373eca-ca43-4d62-a10f-bc7fc719d31b/1/s8m3AyH2NlTDR3fTgsQPhcOlx7E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/373eca-ca43-4d62-a10f-bc7fc719d31b/1/Wh1F7dft3pqLhipzmtqOeLfcgrk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.58.116.0/22 5.61.212.0/22 37.25.40.0/22 94.101.102.0/24 185.89.28.0/22 IPv6: 2a06:ea80::/29 Signature Algorithm: sha256WithRSAEncryption 98:de:50:4c:30:fb:1b:a3:6f:fd:1c:f2:11:db:53:60:e1:92: 70:10:e6:63:e6:33:c1:26:e2:26:45:e7:7e:34:71:ba:e8:f3: 89:bc:f2:80:12:aa:e0:19:80:b1:e7:05:22:82:fc:16:02:5d: b5:63:7d:fc:73:9d:9e:de:49:3c:97:23:90:fb:50:96:8f:34: 6b:4e:f3:1b:7e:bd:6f:ab:57:d8:68:05:82:8f:d2:f2:4b:2f: a0:14:3b:8f:b0:5d:aa:fd:23:40:14:cb:e1:6f:03:83:2a:d5: f3:19:73:a4:f9:94:f6:be:81:19:5a:37:8d:44:db:5c:3a:db: 75:63:24:ce:3b:6c:3c:e4:0d:c8:36:76:b5:50:00:89:73:12: 56:ec:a1:55:1b:ee:60:dc:74:27:8e:02:bd:c9:a6:e0:24:36: 22:bf:a8:3f:92:fb:8b:8a:c8:d8:52:cd:84:ba:df:04:b2:05: 4d:0b:22:aa:c3:fd:f4:a4:7f:e2:88:15:66:ee:b9:9f:ba:f0: 08:54:e7:73:3b:10:cc:a2:4c:b9:12:d5:5e:dc:b8:dc:08:e4: 5e:ea:60:3c:94:31:26:56:88:85:03:14:2c:1c:5f:03:98:c0: 7a:d1:ab:8a:62:a9:14:a7:43:75:1c:61:a5:2b:92:1e:0b:0a: 01:a5:fd:df -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgISAZt4ooaDPRqBJOeXIKuh62wDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVhMWQ0NWVkZDdlZGRlOWE4Yjg2MmE3MzlhZGE4ZTc4Yjdk YzgyYjkwHhcNMjYwMTAxMDgxNzU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiM2M5YjcwMzIxZjYzNjU0YzM0Nzc3ZDM4MmM0MGY4NWMzYTVjN2IxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8aYA/sqJt67XXvaRGsgxkCXNw5YR rcyKSaXD2ncjyLlgTzua/r5d1ToYVEQmcXZJCALxMioRfrKAS0zGN3UASmm0p6Ma S69zBcuIiKkUmIfAJ5PsJqF0147vkDyXPGnvcVt9zqrbbIjoVEXkFISrk+IyNq3M NLE+eBBRh+8o4H/J9OiyEQ6RvD3YvUixu1BesGQtsxeJAazhOOpcvFL7l5Tta8x/ AMfvwF+qTOyVV8sh7yc32NTXwzAz7/fnhhYwGpfgEMDk2wzvDdihredr79GYfSwE vSH/MRBUqHxsu5ppoi3azKLEd0DmLM+rllRv8tFzrz4PPIA1BMCnBUy74QIDAQAB o4ICMDCCAiwwHQYDVR0OBBYEFLPJtwMh9jZUw0d304LED4XDpcexMB8GA1UdIwQY MBaAFFodRe3X7d6ai4Yqc5rajni33IK5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV2gxRjdkZnQzcHFMaGlwem10cU9lTGZjZ3JrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS8zNzNlY2EtY2E0My00ZDYyLWExMGYt YmM3ZmM3MTlkMzFiLzEvczhtM0F5SDJObFREUjNmVGdzUVBoY09seDdFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZS8zNzNlY2EtY2E0My00ZDYyLWExMGYtYmM3ZmM3MTlkMzFi LzEvV2gxRjdkZnQzcHFMaGlwem10cU9lTGZjZ3JrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQCAjp0AwQC BT3UAwQCJRkoAwQAXmVmAwQCuVkcMA0EAgACMAcDBQMqBuqAMA0GCSqGSIb3DQEB CwUAA4IBAQCY3lBMMPsbo2/9HPIR21Ng4ZJwEOZj5jPBJuImRed+NHG66POJvPKA EqrgGYCx5wUigvwWAl21Y338c52e3kk8lyOQ+1CWjzRrTvMbfr1vq1fYaAWCj9Ly Sy+gFDuPsF2q/SNAFMvhbwODKtXzGXOk+ZT2voEZWjeNRNtcOtt1YyTOO2w85A3I Nna1UACJcxJW7KFVG+5g3HQnjgK9yabgJDYiv6g/kvuLisjYUs2Eut8EsgVNCyKq w/30pH/iiBVm7rmfuvAIVOdzOxDMoky5EtVe3LjcCORe6mA8lDEmVoiFAxQsHF8D mMB60auKYqkUp0N1HGGlK5IeCwoBpf3f -----END CERTIFICATE-----Generated at Mon Feb 2 07:58:47 2026 by rpki-client