This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/3EmSE7jSrz9alDtJ0vGCUn6A6IU.roa File: 3EmSE7jSrz9alDtJ0vGCUn6A6IU.roa (raw, json) Hash identifier: NV94FzMPItdIDJjKpij9nhfnHkaXrrZY64QGphy2Rik= Subject key identifier: DC:49:92:13:B8:D2:AF:3F:5A:94:3B:49:D2:F1:82:52:7E:80:E8:85 Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467 Certificate serial: 019B7C13348252DD5B0D6E6C72C29C75BD2B Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/3EmSE7jSrz9alDtJ0vGCUn6A6IU.roa Signing time: Fri 02 Jan 2026 00:19:51 +0000 ROA not before: Fri 02 Jan 2026 00:19:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209835 IP address blocks: 185.227.100.0/23 maxlen: 23 185.227.100.0/24 maxlen: 24 185.227.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.mft rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 11:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:34:82:52:dd:5b:0d:6e:6c:72:c2:9c:75:bd:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467 Validity Not Before: Jan 2 00:19:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dc499213b8d2af3f5a943b49d2f182527e80e885 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d2:66:dc:fb:bc:70:a8:2b:8d:a9:81:7d:27: c4:a4:11:02:4b:e9:02:1d:fa:99:da:7b:6f:26:ee: 5c:e3:41:99:ee:fd:01:64:9f:53:b3:e7:3f:1f:49: 01:e6:20:fa:e2:13:72:89:bb:09:59:84:2b:dc:4e: bb:21:e3:3a:5a:39:3a:8f:3b:66:d0:d1:02:c0:d5: a1:3d:d5:b2:27:1a:27:d8:73:f1:1b:22:0d:90:bb: 44:a0:dd:6c:23:03:2e:a6:e5:3f:ad:5c:15:80:66: 7f:19:e1:d4:66:93:a7:ed:dc:03:e4:1d:be:2f:c6: fe:65:fd:f5:79:2f:48:fe:bc:71:5d:88:37:7b:2a: 2c:9f:d7:18:a2:d2:e8:a0:44:05:25:d2:a8:0b:cd: ec:15:13:fb:60:76:96:42:d2:8b:94:92:ed:8b:39: 5a:a1:71:c7:f9:26:e8:01:e9:ca:59:32:37:09:8c: d1:47:f5:7d:c6:ce:0f:46:ff:c9:f7:0c:a7:3c:47: 62:cd:11:9a:3e:2e:0c:f4:b7:1e:99:8d:ee:0b:45: 53:2d:29:97:f8:15:23:11:f8:6d:85:3c:a2:42:19: 08:84:3c:bd:98:b1:1b:12:e1:cf:77:7a:ce:13:72: 46:52:64:ce:f0:13:92:47:e7:67:c5:3e:8d:a4:69: 7c:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:49:92:13:B8:D2:AF:3F:5A:94:3B:49:D2:F1:82:52:7E:80:E8:85 X509v3 Authority Key Identifier: keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/3EmSE7jSrz9alDtJ0vGCUn6A6IU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.227.100.0/23 Signature Algorithm: sha256WithRSAEncryption 7b:b7:e1:42:fa:b9:13:76:13:47:9f:a5:b3:50:0e:25:dd:3e: 94:8d:69:09:22:3f:e2:3e:c6:51:41:84:04:39:46:9b:c8:33: fb:b1:bb:c1:1a:33:1e:18:46:df:80:3b:43:de:3d:bf:60:5d: 17:4f:93:54:0b:af:fc:8b:fc:d8:4e:e0:59:96:0d:79:fd:80: 67:ff:62:32:1f:05:bd:f1:38:7d:bf:a7:10:24:3c:f7:e3:e6: 9d:92:fa:a8:cd:c1:c1:2a:fa:cf:ff:dd:7d:c6:d8:8b:d5:3a: 10:98:2d:44:2b:b4:0c:50:78:de:7f:c1:0f:74:76:11:a5:92: f4:a1:76:17:e3:71:9a:8f:31:6c:1d:d5:f1:14:6f:92:c3:5a: 11:bb:66:f0:99:a5:f0:81:85:45:37:27:f9:58:3a:9c:16:fd: d2:a5:84:ba:9d:86:c8:bf:36:4f:61:f5:ff:2f:7d:74:d6:62: 80:42:92:b0:27:33:e7:ac:11:72:84:a4:a4:4e:64:9e:31:0c: 42:27:6b:2b:78:03:9b:30:41:10:37:76:ac:6b:4c:3b:fa:b1: 5c:1a:94:2f:fd:30:26:8b:b0:d9:8e:3e:29:95:24:b3:ad:82: 31:d8:3a:70:31:83:73:dc:a8:cf:2e:a0:07:b2:3d:e6:35:c1: bd:6a:8c:dc -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EzSCUt1bDW5scsKcdb0rMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1MzRjNDlmY2ZhOGE0NTA0MWQ5NWVkNGQ4ZDRmYzY5Yzcy N2E0NjcwHhcNMjYwMTAyMDAxOTUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYzQ5OTIxM2I4ZDJhZjNmNWE5NDNiNDlkMmYxODI1MjdlODBlODg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArtJm3Pu8cKgrjamBfSfEpBECS+kC HfqZ2ntvJu5c40GZ7v0BZJ9Ts+c/H0kB5iD64hNyibsJWYQr3E67IeM6Wjk6jztm 0NECwNWhPdWyJxon2HPxGyINkLtEoN1sIwMupuU/rVwVgGZ/GeHUZpOn7dwD5B2+ L8b+Zf31eS9I/rxxXYg3eyosn9cYotLooEQFJdKoC83sFRP7YHaWQtKLlJLtizla oXHH+SboAenKWTI3CYzRR/V9xs4PRv/J9wynPEdizRGaPi4M9LcemY3uC0VTLSmX +BUjEfhthTyiQhkIhDy9mLEbEuHPd3rOE3JGUmTO8BOSR+dnxT6NpGl8lwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNxJkhO40q8/WpQ7SdLxglJ+gOiFMB8GA1UdIwQY MBaAFAU0xJ/PqKRQQdle1NjU/GnHJ6RnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYt Y2Q3ZTA2Y2JiNTMxLzEvM0VtU0U3alNyejlhbER0SjB2R0NVbjZBNklVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYtY2Q3ZTA2Y2JiNTMx LzEvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBueNkMA0G CSqGSIb3DQEBCwUAA4IBAQB7t+FC+rkTdhNHn6WzUA4l3T6UjWkJIj/iPsZRQYQE OUabyDP7sbvBGjMeGEbfgDtD3j2/YF0XT5NUC6/8i/zYTuBZlg15/YBn/2IyHwW9 8Th9v6cQJDz34+adkvqozcHBKvrP/919xtiL1ToQmC1EK7QMUHjef8EPdHYRpZL0 oXYX43GajzFsHdXxFG+Sw1oRu2bwmaXwgYVFNyf5WDqcFv3SpYS6nYbIvzZPYfX/ L3101mKAQpKwJzPnrBFyhKSkTmSeMQxCJ2sreAObMEEQN3asa0w7+rFcGpQv/TAm i7DZjj4plSSzrYIx2DpwMYNz3KjPLqAHsj3mNcG9aozc -----END CERTIFICATE-----Generated at Fri Jan 23 21:37:11 2026 by rpki-client