This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/c2357a-c3e5-4173-bc41-a0646762d567/1/3FyU0x36g_92xZo6PjoVQ0pSzlY.roa File: 3FyU0x36g_92xZo6PjoVQ0pSzlY.roa (raw, json) Hash identifier: N60hitRZnBFmF80ThdHlQ4FJpZTJ3gpcVo3+jeaVQ1E= Subject key identifier: DC:5C:94:D3:1D:FA:83:FF:76:C5:9A:3A:3E:3A:15:43:4A:52:CE:56 Certificate issuer: /CN=afac83e5677b11050dcecbc27730831c5e6f9c6a Certificate serial: 019B76EB82981904DC5E62B9ABC503D421D7 Authority key identifier: AF:AC:83:E5:67:7B:11:05:0D:CE:CB:C2:77:30:83:1C:5E:6F:9C:6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r6yD5Wd7EQUNzsvCdzCDHF5vnGo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/c2357a-c3e5-4173-bc41-a0646762d567/1/3FyU0x36g_92xZo6PjoVQ0pSzlY.roa Signing time: Thu 01 Jan 2026 00:18:24 +0000 ROA not before: Thu 01 Jan 2026 00:18:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15404 IP address blocks: 2001:67c:2b20::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/c2357a-c3e5-4173-bc41-a0646762d567/1/r6yD5Wd7EQUNzsvCdzCDHF5vnGo.crl rsync://rpki.ripe.net/repository/DEFAULT/50/c2357a-c3e5-4173-bc41-a0646762d567/1/r6yD5Wd7EQUNzsvCdzCDHF5vnGo.mft rsync://rpki.ripe.net/repository/DEFAULT/r6yD5Wd7EQUNzsvCdzCDHF5vnGo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 06:01:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:82:98:19:04:dc:5e:62:b9:ab:c5:03:d4:21:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=afac83e5677b11050dcecbc27730831c5e6f9c6a Validity Not Before: Jan 1 00:18:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dc5c94d31dfa83ff76c59a3a3e3a15434a52ce56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:c7:b1:49:c1:0e:5d:d9:86:a6:34:16:e2:97: 4c:3d:c8:bd:7c:44:be:a6:8e:51:6d:93:11:2c:3d: a1:10:92:bf:c3:09:6e:04:78:04:ca:c9:42:62:10: bb:a8:90:41:f3:49:76:ea:52:34:32:11:f7:0a:02: 55:67:95:52:d1:8b:7c:41:f8:97:8c:9a:b9:3e:61: b8:0f:24:2a:87:54:96:b7:dc:82:e7:a4:59:0a:a3: 52:55:c4:96:9b:a5:2a:42:19:ed:85:56:2d:d7:47: fd:c7:7d:26:55:0d:50:00:f6:e3:12:eb:1b:f6:72: 28:6b:e8:b7:14:40:62:78:f2:40:70:eb:fa:fc:48: 4c:d2:36:33:08:9f:f1:23:c4:bb:c9:5d:b5:7a:7b: 33:c0:2c:ad:d7:d8:dc:b7:37:aa:dc:90:06:27:a4: 87:29:bb:a9:c6:46:0c:bc:60:ed:d0:2e:a8:4c:60: ab:97:a3:e8:4b:90:64:5c:a2:47:51:36:71:23:38: cb:63:46:d8:40:f2:85:5a:46:04:ca:9b:7c:db:5a: a3:4e:31:4b:63:83:6d:84:3a:4d:a3:ac:7b:04:86: 29:10:8a:61:9b:e8:f2:ea:cb:a0:78:d8:26:d5:0e: 7e:89:db:a5:42:0b:7d:ec:62:10:bb:2d:0d:48:e4: b8:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:5C:94:D3:1D:FA:83:FF:76:C5:9A:3A:3E:3A:15:43:4A:52:CE:56 X509v3 Authority Key Identifier: keyid:AF:AC:83:E5:67:7B:11:05:0D:CE:CB:C2:77:30:83:1C:5E:6F:9C:6A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r6yD5Wd7EQUNzsvCdzCDHF5vnGo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/c2357a-c3e5-4173-bc41-a0646762d567/1/3FyU0x36g_92xZo6PjoVQ0pSzlY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/50/c2357a-c3e5-4173-bc41-a0646762d567/1/r6yD5Wd7EQUNzsvCdzCDHF5vnGo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:2b20::/48 Signature Algorithm: sha256WithRSAEncryption ab:96:17:89:e5:85:98:82:c2:be:4d:c0:66:c6:c1:34:86:b4: e3:07:bd:d8:5f:77:cc:6f:0d:bb:7c:b3:71:68:17:a3:8c:a0: c4:50:5b:d2:ee:9a:6c:57:b0:37:7c:3d:3b:bd:f1:ae:75:d9: 55:c5:8a:ac:b4:c4:6a:d1:13:e7:b7:0f:85:b8:7b:de:51:33: 77:5f:2a:1e:83:e2:0b:c4:c0:4a:d6:9d:e5:90:ae:2f:a0:35: e8:8b:a7:73:da:37:91:bd:bd:fa:a9:5e:f2:28:cc:9c:8f:64: da:ba:6d:54:30:e4:0f:e6:64:cf:02:a2:56:a8:34:ed:87:a1: 47:23:ab:5d:96:fa:e4:64:0d:ea:22:81:67:a4:30:08:be:06: 89:e5:8f:0b:a4:ec:58:ce:d5:eb:6e:d8:1a:d4:c0:f0:b5:d9: e4:98:f1:5b:bd:c9:03:83:b1:ad:e3:b3:33:79:a6:ae:e1:20: 71:5c:16:db:f1:ea:e1:e2:10:36:ed:7d:77:af:45:30:04:2c: 24:c9:3d:39:b6:75:70:d6:4d:b8:0d:ed:f1:bd:f8:b1:83:79: 06:1a:6a:90:2a:0a:93:40:84:84:4c:0b:ee:d7:d8:e8:62:79: e4:54:05:2f:0d:33:a2:67:ec:ac:e5:a8:2b:ff:6e:1e:de:03: 0b:3e:0f:7e -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt264KYGQTcXmK5q8UD1CHXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmYWM4M2U1Njc3YjExMDUwZGNlY2JjMjc3MzA4MzFjNWU2 ZjljNmEwHhcNMjYwMTAxMDAxODI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYzVjOTRkMzFkZmE4M2ZmNzZjNTlhM2EzZTNhMTU0MzRhNTJjZTU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp8exScEOXdmGpjQW4pdMPci9fES+ po5RbZMRLD2hEJK/wwluBHgEyslCYhC7qJBB80l26lI0MhH3CgJVZ5VS0Yt8QfiX jJq5PmG4DyQqh1SWt9yC56RZCqNSVcSWm6UqQhnthVYt10f9x30mVQ1QAPbjEusb 9nIoa+i3FEBiePJAcOv6/EhM0jYzCJ/xI8S7yV21enszwCyt19jctzeq3JAGJ6SH KbupxkYMvGDt0C6oTGCrl6PoS5BkXKJHUTZxIzjLY0bYQPKFWkYEypt821qjTjFL Y4NthDpNo6x7BIYpEIphm+jy6sugeNgm1Q5+idulQgt97GIQuy0NSOS4qQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFNxclNMd+oP/dsWaOj46FUNKUs5WMB8GA1UdIwQY MBaAFK+sg+VnexEFDc7Lwncwgxxeb5xqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcjZ5RDVXZDdFUVVOenN2Q2R6Q0RIRjV2bkdvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC9jMjM1N2EtYzNlNS00MTczLWJjNDEt YTA2NDY3NjJkNTY3LzEvM0Z5VTB4MzZnXzkyeFpvNlBqb1ZRMHBTemxZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MC9jMjM1N2EtYzNlNS00MTczLWJjNDEtYTA2NDY3NjJkNTY3 LzEvcjZ5RDVXZDdFUVVOenN2Q2R6Q0RIRjV2bkdvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfCsg MA0GCSqGSIb3DQEBCwUAA4IBAQCrlheJ5YWYgsK+TcBmxsE0hrTjB73YX3fMbw27 fLNxaBejjKDEUFvS7ppsV7A3fD07vfGuddlVxYqstMRq0RPntw+FuHveUTN3Xyoe g+ILxMBK1p3lkK4voDXoi6dz2jeRvb36qV7yKMycj2Taum1UMOQP5mTPAqJWqDTt h6FHI6tdlvrkZA3qIoFnpDAIvgaJ5Y8LpOxYztXrbtga1MDwtdnkmPFbvckDg7Gt 47Mzeaau4SBxXBbb8erh4hA27X13r0UwBCwkyT05tnVw1k24De3xvfixg3kGGmqQ KgqTQISETAvu19joYnnkVAUvDTOiZ+ys5agr/24e3gMLPg9+ -----END CERTIFICATE-----Generated at Wed Jan 21 13:19:27 2026 by rpki-client