This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/3_GL8U_Fsm5xEho2IIlVQMkPgn8.roa File: 3_GL8U_Fsm5xEho2IIlVQMkPgn8.roa (raw, json) Hash identifier: YNgxCxCA/9czC4k0GKBQ1EDuFx+jlokBzztmoSXKQJA= Subject key identifier: DF:F1:8B:F1:4F:C5:B2:6E:71:12:1A:36:20:89:55:40:C9:0F:82:7F Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9 Certificate serial: 019B79113F9B6EBD442ADADEBDC984855A8F Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/3_GL8U_Fsm5xEho2IIlVQMkPgn8.roa Signing time: Thu 01 Jan 2026 10:18:52 +0000 ROA not before: Thu 01 Jan 2026 10:18:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20473 IP address blocks: 64.137.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.mft rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 02 Jan 2026 18:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:3f:9b:6e:bd:44:2a:da:de:bd:c9:84:85:5a:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9 Validity Not Before: Jan 1 10:18:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dff18bf14fc5b26e71121a3620895540c90f827f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:06:2a:e9:07:72:18:00:eb:60:f5:f1:b9:ec: fb:74:e4:f6:0e:3d:ea:ac:25:91:5f:1f:bf:7e:57: 11:e7:3f:2a:a6:39:2e:40:38:fb:1f:b0:48:58:54: 0e:8b:13:d2:84:07:d8:3e:42:5f:52:42:62:58:54: 4c:ff:ab:84:80:f0:c3:71:a6:14:40:6c:4c:5e:81: 8f:9c:68:9d:67:52:d1:bd:e8:de:92:c7:1c:79:e7: 39:6d:54:49:ef:8c:d8:50:6a:b7:5b:b1:d6:0b:e3: 8f:62:03:5b:99:cc:19:59:2f:89:62:80:98:a1:19: 4f:eb:3a:52:c2:f9:b6:96:27:07:97:2c:36:7e:3a: 0c:eb:5c:77:a0:cf:5c:2e:dc:e8:5e:66:f5:0e:ea: 63:d3:64:57:b4:6b:10:43:46:d0:df:d2:97:86:aa: fe:98:16:48:dd:e0:0f:c0:e3:f1:3b:cc:e6:f7:0b: b5:bf:d2:b7:22:db:7c:36:d1:cb:4f:2b:b3:22:74: 76:e2:8d:b3:3e:e3:c7:c3:80:64:7d:3c:c4:47:c3: dd:68:6d:51:30:79:64:73:d0:07:f6:5b:03:20:08: 30:0d:97:fc:a8:62:d6:44:c3:a2:5c:a2:d8:73:ff: e5:51:67:cc:c3:b9:95:d5:3e:64:a3:b3:64:2f:80: 47:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:F1:8B:F1:4F:C5:B2:6E:71:12:1A:36:20:89:55:40:C9:0F:82:7F X509v3 Authority Key Identifier: keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/3_GL8U_Fsm5xEho2IIlVQMkPgn8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.137.29.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:71:44:d3:4d:db:26:82:e0:c7:cd:68:69:b0:6c:ee:46:a6: 9c:25:0a:6c:6f:fe:6a:8e:50:8a:b7:20:48:24:9d:58:fa:bb: e7:63:47:c4:ed:4e:ca:8c:57:e4:8e:5a:65:d9:5c:74:41:f5: 3c:fc:46:d5:66:dd:13:47:0a:25:2b:1f:c9:48:59:ff:a8:88: 3e:ed:55:dd:51:d7:5c:2f:12:48:43:3d:83:40:23:6c:0e:0a: 1c:49:54:9e:c4:ca:b8:8b:89:67:cf:4d:17:42:fb:86:5b:3f: 66:dd:8c:88:aa:06:5e:bb:0b:0f:c2:41:00:b8:c8:d6:71:fb: 14:46:3e:35:6d:f3:8a:c9:13:2e:e4:db:fb:4a:6e:17:51:5d: 57:3b:ad:67:1e:6a:23:48:9e:37:97:54:5e:e9:56:aa:73:7f: 78:2f:58:1d:7b:ba:06:10:ad:18:2b:36:c0:36:56:95:fa:fd: 2a:7c:ca:a9:89:4e:76:10:54:04:02:97:7c:36:b1:37:e9:30: 61:dc:e4:36:c9:ae:44:3a:03:77:bb:9f:96:0f:45:de:16:b4: ff:23:47:42:9e:81:35:f9:28:41:c1:13:82:13:52:11:18:40: 30:0a:ba:4c:a7:a8:cc:24:fa:b1:bc:f8:9a:73:f8:15:6e:49: 77:7e:20:99 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5ET+bbr1EKtrevcmEhVqPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNTgxZTY3M2Q4MGY3NDc0OTM2YjIxMzM3ZWFmY2MxYmRj Mzg1ZTkwHhcNMjYwMTAxMTAxODUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZmYxOGJmMTRmYzViMjZlNzExMjFhMzYyMDg5NTU0MGM5MGY4MjdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0AYq6QdyGADrYPXxuez7dOT2Dj3q rCWRXx+/flcR5z8qpjkuQDj7H7BIWFQOixPShAfYPkJfUkJiWFRM/6uEgPDDcaYU QGxMXoGPnGidZ1LRvejekscceec5bVRJ74zYUGq3W7HWC+OPYgNbmcwZWS+JYoCY oRlP6zpSwvm2licHlyw2fjoM61x3oM9cLtzoXmb1Dupj02RXtGsQQ0bQ39KXhqr+ mBZI3eAPwOPxO8zm9wu1v9K3Itt8NtHLTyuzInR24o2zPuPHw4BkfTzER8PdaG1R MHlkc9AH9lsDIAgwDZf8qGLWRMOiXKLYc//lUWfMw7mV1T5ko7NkL4BHpQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFN/xi/FPxbJucRIaNiCJVUDJD4J/MB8GA1UdIwQY MBaAFGBYHmc9gPdHSTayEzfq/MG9w4XpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUZnZVp6MkE5MGRKTnJJVE4tcjh3YjNEaGVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9mZGQ2MzMtYzY1OC00OWM1LTllOGYt ZmIwNzk1NWYzYWFhLzEvM19HTDhVX0ZzbTV4RWhvMklJbFZRTWtQZ244LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS9mZGQ2MzMtYzY1OC00OWM1LTllOGYtZmIwNzk1NWYzYWFh LzEvWUZnZVp6MkE5MGRKTnJJVE4tcjh3YjNEaGVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAQIkdMA0G CSqGSIb3DQEBCwUAA4IBAQAacUTTTdsmguDHzWhpsGzuRqacJQpsb/5qjlCKtyBI JJ1Y+rvnY0fE7U7KjFfkjlpl2Vx0QfU8/EbVZt0TRwolKx/JSFn/qIg+7VXdUddc LxJIQz2DQCNsDgocSVSexMq4i4lnz00XQvuGWz9m3YyIqgZeuwsPwkEAuMjWcfsU Rj41bfOKyRMu5Nv7Sm4XUV1XO61nHmojSJ43l1Re6Vaqc394L1gde7oGEK0YKzbA NlaV+v0qfMqpiU52EFQEApd8NrE36TBh3OQ2ya5EOgN3u5+WD0XeFrT/I0dCnoE1 +ShBwROCE1IRGEAwCrpMp6jMJPqxvPiac/gVbkl3fiCZ -----END CERTIFICATE-----Generated at Fri Jan 2 02:37:36 2026 by rpki-client