This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/0d3b13-c4a1-41c0-a839-aede3ffa4457/1/3kDRvhyYGLhqA-55XbpAGrLNvl0.roa File: 3kDRvhyYGLhqA-55XbpAGrLNvl0.roa (raw, json) Hash identifier: Kd1IvjvDoUSLBaI4Td/hVyTLL9UmLBvq34CNcLf8TLU= Subject key identifier: DE:40:D1:BE:1C:98:18:B8:6A:03:EE:79:5D:BA:40:1A:B2:CD:BE:5D Certificate issuer: /CN=658290fe9814fcb062ab71e32ec1f96da9973a33 Certificate serial: 019B7C8065C13552A65EEFCF22B80536CB9C Authority key identifier: 65:82:90:FE:98:14:FC:B0:62:AB:71:E3:2E:C1:F9:6D:A9:97:3A:33 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZYKQ_pgU_LBiq3HjLsH5bamXOjM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/0d3b13-c4a1-41c0-a839-aede3ffa4457/1/3kDRvhyYGLhqA-55XbpAGrLNvl0.roa Signing time: Fri 02 Jan 2026 02:19:08 +0000 ROA not before: Fri 02 Jan 2026 02:19:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209568 IP address blocks: 194.187.24.0/22 maxlen: 22 2a09:1840::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/0d3b13-c4a1-41c0-a839-aede3ffa4457/1/ZYKQ_pgU_LBiq3HjLsH5bamXOjM.crl rsync://rpki.ripe.net/repository/DEFAULT/57/0d3b13-c4a1-41c0-a839-aede3ffa4457/1/ZYKQ_pgU_LBiq3HjLsH5bamXOjM.mft rsync://rpki.ripe.net/repository/DEFAULT/ZYKQ_pgU_LBiq3HjLsH5bamXOjM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:65:c1:35:52:a6:5e:ef:cf:22:b8:05:36:cb:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=658290fe9814fcb062ab71e32ec1f96da9973a33 Validity Not Before: Jan 2 02:19:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=de40d1be1c9818b86a03ee795dba401ab2cdbe5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:a2:62:9e:17:26:e7:df:a1:f7:37:e8:e2:54: a2:d0:ae:38:3d:18:0e:cd:f3:21:ed:81:29:83:cc: de:b5:51:b2:2e:29:89:e2:3a:9d:53:15:30:bb:f2: cc:04:3e:fa:65:46:f1:51:97:6f:b6:06:47:85:7e: 3c:9b:2e:d9:cd:22:a1:40:a2:2d:96:aa:4b:9d:8f: 48:2a:c0:53:67:19:c8:40:5f:07:a6:6a:cd:97:80: 15:63:5b:6b:4b:a7:60:73:dd:96:6d:3c:f9:86:bf: 3e:c3:43:d2:f6:e3:7b:0c:fb:0e:68:55:9d:02:60: f5:52:fe:60:b9:78:7c:97:9d:bf:91:ed:35:94:9c: 6b:0f:d0:5e:bc:5f:bf:ec:19:cf:f2:84:b7:97:f7: 18:c2:7b:43:c4:07:13:c4:ab:6e:e9:11:2d:e9:0d: 79:c4:76:60:4a:a0:64:de:a0:39:ef:ed:2e:c6:1c: 41:e3:52:d3:af:71:a7:d8:3b:e0:bb:33:6e:9d:8f: c2:3c:0f:78:35:0e:1b:9d:77:6f:c7:6a:7d:da:b7: 03:16:0a:d7:7f:2a:ae:14:4e:e2:03:fb:1c:3f:e5: 1f:08:f8:9f:52:33:64:d6:32:77:a9:82:7f:e1:ca: b1:3e:3c:41:95:6b:72:f6:7d:f7:39:d3:a0:5b:f7: aa:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:40:D1:BE:1C:98:18:B8:6A:03:EE:79:5D:BA:40:1A:B2:CD:BE:5D X509v3 Authority Key Identifier: keyid:65:82:90:FE:98:14:FC:B0:62:AB:71:E3:2E:C1:F9:6D:A9:97:3A:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZYKQ_pgU_LBiq3HjLsH5bamXOjM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/0d3b13-c4a1-41c0-a839-aede3ffa4457/1/3kDRvhyYGLhqA-55XbpAGrLNvl0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/0d3b13-c4a1-41c0-a839-aede3ffa4457/1/ZYKQ_pgU_LBiq3HjLsH5bamXOjM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.187.24.0/22 IPv6: 2a09:1840::/32 Signature Algorithm: sha256WithRSAEncryption 88:a8:eb:f1:ed:a9:20:f2:a2:d0:c1:17:45:ac:94:17:e6:86: e6:e4:c4:67:c4:a4:92:77:2a:c0:f3:8c:7c:d5:d2:bd:52:94: 89:1c:11:02:7f:20:d7:8e:08:a4:0f:4b:f9:6f:81:4d:06:57: d0:4a:29:f4:87:19:b2:6e:bc:82:17:46:b5:32:22:2b:f3:bc: 80:e8:21:0d:6f:e0:8c:10:6f:b1:3d:b2:34:88:b7:21:90:fa: 0c:6a:4c:f4:e0:ea:37:8d:e5:99:6e:df:8d:88:91:53:f0:ae: c4:99:c8:41:89:a7:0e:24:09:cd:63:27:35:79:7d:3f:a7:2e: 05:6c:29:98:ec:94:7d:98:31:b7:6f:95:70:c5:a1:a2:dd:0e: 13:2c:2e:3b:bc:37:9c:95:cc:e2:70:33:2e:f1:6d:89:f3:50: 66:3d:bc:ae:27:a4:76:5f:0e:43:4b:fe:63:b9:ef:ba:77:3d: 5a:15:36:27:b6:a4:27:63:c5:b3:b1:7b:a4:a4:60:6d:0d:d8: 6c:48:8a:4a:0e:06:56:e9:4a:99:85:fb:1d:05:e2:f2:22:1c: 73:0d:e6:bc:40:ff:1c:86:de:aa:0f:7d:a3:0a:ac:2b:03:e0: d3:b3:07:70:5c:6a:12:12:7a:93:e1:77:63:87:e7:65:5e:94: a2:73:11:cd -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt8gGXBNVKmXu/PIrgFNsucMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY1ODI5MGZlOTgxNGZjYjA2MmFiNzFlMzJlYzFmOTZkYTk5 NzNhMzMwHhcNMjYwMTAyMDIxOTA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZTQwZDFiZTFjOTgxOGI4NmEwM2VlNzk1ZGJhNDAxYWIyY2RiZTVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj6Jinhcm59+h9zfo4lSi0K44PRgO zfMh7YEpg8zetVGyLimJ4jqdUxUwu/LMBD76ZUbxUZdvtgZHhX48my7ZzSKhQKIt lqpLnY9IKsBTZxnIQF8HpmrNl4AVY1trS6dgc92WbTz5hr8+w0PS9uN7DPsOaFWd AmD1Uv5guXh8l52/ke01lJxrD9BevF+/7BnP8oS3l/cYwntDxAcTxKtu6REt6Q15 xHZgSqBk3qA57+0uxhxB41LTr3Gn2DvguzNunY/CPA94NQ4bnXdvx2p92rcDFgrX fyquFE7iA/scP+UfCPifUjNk1jJ3qYJ/4cqxPjxBlWty9n33OdOgW/eqiQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFN5A0b4cmBi4agPueV26QBqyzb5dMB8GA1UdIwQY MBaAFGWCkP6YFPywYqtx4y7B+W2plzozMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWllLUV9wZ1VfTEJpcTNIakxzSDViYW1YT2pNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny8wZDNiMTMtYzRhMS00MWMwLWE4Mzkt YWVkZTNmZmE0NDU3LzEvM2tEUnZoeVlHTGhxQS01NVhicEFHckxOdmwwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny8wZDNiMTMtYzRhMS00MWMwLWE4MzktYWVkZTNmZmE0NDU3 LzEvWllLUV9wZ1VfTEJpcTNIakxzSDViYW1YT2pNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCwrsYMA0E AgACMAcDBQAqCRhAMA0GCSqGSIb3DQEBCwUAA4IBAQCIqOvx7akg8qLQwRdFrJQX 5obm5MRnxKSSdyrA84x81dK9UpSJHBECfyDXjgikD0v5b4FNBlfQSin0hxmybryC F0a1MiIr87yA6CENb+CMEG+xPbI0iLchkPoMakz04Oo3jeWZbt+NiJFT8K7EmchB iacOJAnNYyc1eX0/py4FbCmY7JR9mDG3b5VwxaGi3Q4TLC47vDeclczicDMu8W2J 81BmPbyuJ6R2Xw5DS/5jue+6dz1aFTYntqQnY8WzsXukpGBtDdhsSIpKDgZW6UqZ hfsdBeLyIhxzDea8QP8cht6qD32jCqwrA+DTswdwXGoSEnqT4Xdjh+dlXpSicxHN -----END CERTIFICATE-----Generated at Mon Feb 9 18:23:42 2026 by rpki-client