This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/3btmal0FGWEex-qQvHQ8b1inIzk.roa File: 3btmal0FGWEex-qQvHQ8b1inIzk.roa (raw, json) Hash identifier: 2KHWL+1kOL0ERi1UxHehlpgoMj9HUsu2zWKP7hiWicw= Subject key identifier: DD:BB:66:6A:5D:05:19:61:1E:C7:EA:90:BC:74:3C:6F:58:A7:23:39 Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497 Certificate serial: 019C1B2CDB5D2AD0BF6BF1F978D6C9DF48C1 Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/3btmal0FGWEex-qQvHQ8b1inIzk.roa Signing time: Sun 01 Feb 2026 21:47:30 +0000 ROA not before: Sun 01 Feb 2026 21:47:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 834 IP address blocks: 79.172.200.0/23 maxlen: 24 79.172.250.0/23 maxlen: 24 87.229.8.0/22 maxlen: 22 87.229.11.0/24 maxlen: 24 87.229.37.0/24 maxlen: 24 87.229.70.0/24 maxlen: 24 87.229.80.0/23 maxlen: 24 87.229.81.0/24 maxlen: 24 87.229.124.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.mft rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 06:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1b:2c:db:5d:2a:d0:bf:6b:f1:f9:78:d6:c9:df:48:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497 Validity Not Before: Feb 1 21:47:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ddbb666a5d0519611ec7ea90bc743c6f58a72339 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d2:71:41:ac:f6:10:2a:3e:fc:e9:b5:02:15: d5:95:40:f9:22:a7:8e:33:0f:6f:3f:d2:26:48:4f: 38:6b:8a:39:e2:d5:d9:b1:00:5f:99:53:56:6a:eb: 93:01:7b:68:8c:81:74:3a:52:e4:89:7b:4a:98:3f: ab:b6:cf:44:22:9b:8e:27:1d:46:56:d3:64:51:a1: 3e:2f:95:5f:13:a9:43:9b:f6:91:26:fc:07:7e:47: 39:04:ef:ab:03:18:cb:88:84:9d:43:ee:ea:10:c6: 94:f6:1c:46:b7:73:75:89:fa:57:27:01:1f:dd:41: b1:d0:c5:c8:c4:6c:dc:b0:e3:24:64:85:71:9f:f9: 47:e1:15:c3:a7:11:e6:af:df:aa:4b:c5:19:20:1e: b4:65:5d:b4:a9:c4:1c:02:06:f4:47:9b:6c:49:35: 7d:ae:eb:e9:36:f9:32:16:e1:91:5a:80:0e:fb:1a: ff:ad:2e:e8:4a:6c:ad:42:86:a1:e6:67:11:b6:db: 85:a6:61:85:93:2d:31:86:8c:07:c7:62:41:62:99: d2:c9:97:a2:77:d1:e6:9a:4f:b4:23:b6:9e:55:0b: 19:61:53:e2:98:ca:72:90:cb:a5:d5:ea:18:c3:2b: 74:45:1e:a0:d4:4e:de:f9:79:87:6d:7c:5f:81:60: e8:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:BB:66:6A:5D:05:19:61:1E:C7:EA:90:BC:74:3C:6F:58:A7:23:39 X509v3 Authority Key Identifier: keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/3btmal0FGWEex-qQvHQ8b1inIzk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.172.200.0/23 79.172.250.0/23 87.229.8.0/22 87.229.37.0/24 87.229.70.0/24 87.229.80.0/23 87.229.124.0/23 Signature Algorithm: sha256WithRSAEncryption 8b:e4:3b:10:e8:e1:c7:67:9a:0d:84:fc:ef:5a:a1:c7:ed:8d: 65:be:1f:db:38:a5:b4:7b:20:32:dc:77:42:83:59:5e:60:17: 99:d1:3e:7d:bb:25:b8:98:e1:ce:97:61:40:3b:f0:dc:1d:39: e8:dc:41:cc:92:4f:ea:4c:3c:f9:49:c1:9e:22:00:d2:a0:7a: e5:43:5d:29:7e:c7:c9:7c:61:4a:74:b7:e9:10:b6:ed:cc:80: af:9d:9c:f8:71:8d:cf:44:1e:e0:b6:aa:60:04:cd:5b:3f:14: 68:ec:1b:9f:c1:5a:cb:15:5d:f4:e3:02:86:73:24:ba:df:79: 2e:78:c0:5e:14:b2:28:ce:60:63:c1:52:fd:b1:77:25:eb:47: 64:b9:87:17:3b:f7:2c:e0:75:59:9c:46:e8:39:d0:65:a1:e6: 9b:53:1c:11:db:06:67:e3:01:1d:a2:fe:52:22:66:ae:32:10: 66:7e:bf:72:12:8d:48:dc:f5:96:ea:a5:be:cd:32:f9:a2:02: 96:64:70:ad:3e:9a:64:02:35:43:0e:2b:d9:99:c4:8b:00:ba: e2:f9:10:35:11:55:93:e1:82:aa:c4:45:d8:66:64:9c:18:2d: 46:22:99:22:c3:51:da:64:b7:89:88:1a:06:19:3c:18:04:9b: 00:83:a3:95 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZwbLNtdKtC/a/H5eNbJ30jBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdiNWUzN2Y2ZTNiOWJkMWNmMzY4NGI5YzAzYzAzYWQxY2E2 NDI0OTcwHhcNMjYwMjAxMjE0NzMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZGJiNjY2YTVkMDUxOTYxMWVjN2VhOTBiYzc0M2M2ZjU4YTcyMzM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwdJxQaz2ECo+/Om1AhXVlUD5IqeO Mw9vP9ImSE84a4o54tXZsQBfmVNWauuTAXtojIF0OlLkiXtKmD+rts9EIpuOJx1G VtNkUaE+L5VfE6lDm/aRJvwHfkc5BO+rAxjLiISdQ+7qEMaU9hxGt3N1ifpXJwEf 3UGx0MXIxGzcsOMkZIVxn/lH4RXDpxHmr9+qS8UZIB60ZV20qcQcAgb0R5tsSTV9 ruvpNvkyFuGRWoAO+xr/rS7oSmytQoah5mcRttuFpmGFky0xhowHx2JBYpnSyZei d9Hmmk+0I7aeVQsZYVPimMpykMul1eoYwyt0RR6g1E7e+XmHbXxfgWDoEQIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFN27ZmpdBRlhHsfqkLx0PG9YpyM5MB8GA1UdIwQY MBaAFHteN/bjub0c82hLnAPAOtHKZCSXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZTE0Mzl1TzV2Unp6YUV1Y0E4QTYwY3BrSkpjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny8yNjcyOGUtZGRjNy00YjBmLTlkMWUt OTU5M2E0ODhhZmNjLzEvM2J0bWFsMEZHV0VleC1xUXZIUThiMWluSXprLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny8yNjcyOGUtZGRjNy00YjBmLTlkMWUtOTU5M2E0ODhhZmNj LzEvZTE0Mzl1TzV2Unp6YUV1Y0E4QTYwY3BrSkpjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQBT6zIAwQB T6z6AwQCV+UIAwQAV+UlAwQAV+VGAwQBV+VQAwQBV+V8MA0GCSqGSIb3DQEBCwUA A4IBAQCL5DsQ6OHHZ5oNhPzvWqHH7Y1lvh/bOKW0eyAy3HdCg1leYBeZ0T59uyW4 mOHOl2FAO/DcHTno3EHMkk/qTDz5ScGeIgDSoHrlQ10pfsfJfGFKdLfpELbtzICv nZz4cY3PRB7gtqpgBM1bPxRo7BufwVrLFV304wKGcyS633kueMBeFLIozmBjwVL9 sXcl60dkuYcXO/cs4HVZnEboOdBloeabUxwR2wZn4wEdov5SImauMhBmfr9yEo1I 3PWW6qW+zTL5ogKWZHCtPppkAjVDDivZmcSLALri+RA1EVWT4YKqxEXYZmScGC1G Ipkiw1HaZLeJiBoGGTwYBJsAg6OV -----END CERTIFICATE-----Generated at Mon Feb 2 14:02:45 2026 by rpki-client