This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/3ms-IK0LVVUDnXctkTa0SELHslg.roa File: 3ms-IK0LVVUDnXctkTa0SELHslg.roa (raw, json) Hash identifier: BB92h24CY6CLJCTC2tXULjpPS9sYCkfGRMaAVEmqSM4= Subject key identifier: DE:6B:3E:20:AD:0B:55:55:03:9D:77:2D:91:36:B4:48:42:C7:B2:58 Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Certificate serial: 019B7D5D4C738188D1BA74826BCF16384B66 Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/3ms-IK0LVVUDnXctkTa0SELHslg.roa Signing time: Fri 02 Jan 2026 06:20:25 +0000 ROA not before: Fri 02 Jan 2026 06:20:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212194 IP address blocks: 2a10:2f00:15f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:4c:73:81:88:d1:ba:74:82:6b:cf:16:38:4b:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Validity Not Before: Jan 2 06:20:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=de6b3e20ad0b5555039d772d9136b44842c7b258 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:6f:9b:75:32:65:8a:37:e9:3e:04:d1:ff:1e: 21:66:03:bb:ff:fa:fd:22:de:1f:1b:6a:0b:55:0a: 44:b4:5f:dd:5d:24:35:fd:db:47:aa:f3:06:4a:9b: 9a:3e:4e:0e:a7:6b:1b:ce:e9:41:97:c0:74:82:79: 59:15:3d:67:bd:5d:a9:a2:c8:37:83:8c:67:e6:5c: 0d:ef:ae:73:bf:6e:d3:0d:ec:4d:8c:e6:12:19:57: 09:51:9e:9f:0e:09:ff:5a:cc:c5:51:cb:af:7f:c5: dd:b4:18:f6:de:a3:b7:fc:d2:00:95:f3:53:a7:d0: d6:52:85:90:14:47:f2:1b:3b:40:85:d1:28:96:d9: 5d:e0:6f:77:c6:61:94:fb:6b:36:d3:a5:f2:ff:65: c7:f6:ec:52:35:36:55:3b:0a:87:ca:1c:e7:2c:47: 29:5d:56:6d:b6:48:eb:cf:5d:f8:92:de:81:07:fc: 9b:23:de:4a:12:82:a2:16:a3:93:e7:64:8b:15:3b: da:41:f2:01:36:af:63:3c:1e:16:b0:6f:14:24:92: 6f:3b:e4:96:4f:f7:67:08:9a:4c:cc:e5:99:52:23: 01:b6:16:03:5c:fa:02:fe:cb:d6:e0:74:b2:df:fe: 46:f7:c9:8b:67:75:79:b1:35:d3:08:e4:8a:c0:d6: 48:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:6B:3E:20:AD:0B:55:55:03:9D:77:2D:91:36:B4:48:42:C7:B2:58 X509v3 Authority Key Identifier: keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/3ms-IK0LVVUDnXctkTa0SELHslg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a10:2f00:15f::/48 Signature Algorithm: sha256WithRSAEncryption 83:bc:40:05:ed:25:c3:60:a7:5a:57:80:34:99:04:3e:ee:53: 9f:b9:93:c5:2d:43:0e:c1:c9:49:aa:38:9d:99:fd:32:1a:bb: e4:75:20:f7:ba:3d:58:54:4b:44:fc:cd:82:ca:ba:bf:0d:94: 6a:79:60:04:9e:a4:eb:ac:9e:a8:40:eb:f6:b0:0b:98:60:00: 9a:42:b1:83:4f:23:71:9d:7c:54:f8:05:a2:51:d3:f0:c2:2d: 0b:1a:76:97:a5:e7:bc:45:76:52:00:66:2f:f5:fd:f4:c5:81: 9a:f5:ac:10:c9:75:4c:3c:b5:9a:3e:46:34:9c:b3:0d:b8:e5: 7b:ba:03:c1:5d:e5:24:f3:e5:7c:2c:c7:56:76:5a:b7:b5:4c: f8:f4:44:87:ea:cb:39:86:94:3e:3a:d9:1d:fd:93:bf:a2:13: dd:51:e4:f3:15:ff:2a:7f:9e:76:59:e0:8c:d9:a7:69:ad:fd: 61:ce:71:45:e8:d1:c6:4c:ba:a0:32:4c:14:52:a1:4b:ba:03: 98:79:52:f3:2e:4e:4b:16:39:ab:bf:0c:5e:1e:10:3a:64:a7: ed:1f:65:61:4f:8b:0d:56:04:c3:9e:25:95:86:2c:9b:a5:f0: 2f:0f:9e:6a:db:63:a6:cd:4e:4d:9d:c5:35:0e:a2:4d:a1:a9: a4:32:18:17 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9XUxzgYjRunSCa88WOEtmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw ZmFkOWIwHhcNMjYwMTAyMDYyMDI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZTZiM2UyMGFkMGI1NTU1MDM5ZDc3MmQ5MTM2YjQ0ODQyYzdiMjU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApW+bdTJlijfpPgTR/x4hZgO7//r9 It4fG2oLVQpEtF/dXSQ1/dtHqvMGSpuaPk4Op2sbzulBl8B0gnlZFT1nvV2posg3 g4xn5lwN765zv27TDexNjOYSGVcJUZ6fDgn/WszFUcuvf8XdtBj23qO3/NIAlfNT p9DWUoWQFEfyGztAhdEoltld4G93xmGU+2s206Xy/2XH9uxSNTZVOwqHyhznLEcp XVZttkjrz134kt6BB/ybI95KEoKiFqOT52SLFTvaQfIBNq9jPB4WsG8UJJJvO+SW T/dnCJpMzOWZUiMBthYDXPoC/svW4HSy3/5G98mLZ3V5sTXTCOSKwNZI+QIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFN5rPiCtC1VVA513LZE2tEhCx7JYMB8GA1UdIwQY MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt ZGM1ZWM3NDhmNmE1LzEvM21zLUlLMExWVlVEblhjdGtUYTBTRUxIc2xnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1 LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhAvAAFf MA0GCSqGSIb3DQEBCwUAA4IBAQCDvEAF7SXDYKdaV4A0mQQ+7lOfuZPFLUMOwclJ qjidmf0yGrvkdSD3uj1YVEtE/M2Cyrq/DZRqeWAEnqTrrJ6oQOv2sAuYYACaQrGD TyNxnXxU+AWiUdPwwi0LGnaXpee8RXZSAGYv9f30xYGa9awQyXVMPLWaPkY0nLMN uOV7ugPBXeUk8+V8LMdWdlq3tUz49ESH6ss5hpQ+Otkd/ZO/ohPdUeTzFf8qf552 WeCM2adprf1hznFF6NHGTLqgMkwUUqFLugOYeVLzLk5LFjmrvwxeHhA6ZKftH2Vh T4sNVgTDniWVhiybpfAvD55q22OmzU5NncU1DqJNoamkMhgX -----END CERTIFICATE-----Generated at Fri Jan 9 13:11:54 2026 by rpki-client