This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/56a006-919f-487c-9316-0bb6a83f9f40/1/O3jJqwByUIEUnhHlOFee0Yzt6gg.roa File: O3jJqwByUIEUnhHlOFee0Yzt6gg.roa (raw, json) Hash identifier: TX2mHbMp/LUKoxPthyOcmH+FA50JbLoahkLETRZ/Uwg= Subject key identifier: 3B:78:C9:AB:00:72:50:81:14:9E:11:E5:38:57:9E:D1:8C:ED:EA:08 Certificate issuer: /CN=b79c2de3eb309180f4f5a5af2d56fe4258784648 Certificate serial: 019B783439E27D30243504FAEB41EB2536AD Authority key identifier: B7:9C:2D:E3:EB:30:91:80:F4:F5:A5:AF:2D:56:FE:42:58:78:46:48 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t5wt4-swkYD09aWvLVb-Qlh4Rkg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/56a006-919f-487c-9316-0bb6a83f9f40/1/O3jJqwByUIEUnhHlOFee0Yzt6gg.roa Signing time: Thu 01 Jan 2026 06:17:27 +0000 ROA not before: Thu 01 Jan 2026 06:17:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8075 IP address blocks: 91.203.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/56a006-919f-487c-9316-0bb6a83f9f40/1/t5wt4-swkYD09aWvLVb-Qlh4Rkg.crl rsync://rpki.ripe.net/repository/DEFAULT/64/56a006-919f-487c-9316-0bb6a83f9f40/1/t5wt4-swkYD09aWvLVb-Qlh4Rkg.mft rsync://rpki.ripe.net/repository/DEFAULT/t5wt4-swkYD09aWvLVb-Qlh4Rkg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 06:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:39:e2:7d:30:24:35:04:fa:eb:41:eb:25:36:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b79c2de3eb309180f4f5a5af2d56fe4258784648 Validity Not Before: Jan 1 06:17:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3b78c9ab00725081149e11e538579ed18cedea08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:99:9c:3f:90:0c:bb:7f:98:e8:8f:2a:34:ed: 7e:9a:12:06:a3:9b:2b:b4:77:25:d6:d4:19:48:94: 3b:b0:f9:03:c5:19:5a:1a:cb:21:43:0d:da:32:be: d1:73:aa:34:c0:c7:07:50:c6:3c:33:05:32:c9:cd: 8b:51:62:94:69:f0:69:58:67:cf:02:76:57:6b:e4: 25:b7:59:67:a3:08:dd:cd:ac:97:9d:1a:da:a1:80: f3:ce:82:2c:4c:a6:a7:1a:b5:5e:08:6a:b6:cb:48: cb:c3:d9:ab:87:e7:a0:38:d4:e2:cf:b7:02:e4:03: c8:34:d2:1a:86:30:54:38:aa:b3:a3:ba:e3:a5:85: d4:18:82:1f:82:59:d1:55:0c:74:fd:5f:58:f6:9b: 41:cb:62:9a:dd:f5:23:50:b9:1c:28:47:46:32:00: c9:56:16:2a:6e:12:4b:fc:3d:5d:07:8a:02:60:f3: aa:77:12:5c:a7:b0:1c:cd:b0:6f:eb:51:d1:b4:a3: cc:96:93:c6:59:8c:a0:7b:e5:d0:16:bd:9b:80:94: 48:f5:57:d7:e3:b5:a2:50:fa:2e:c0:bb:79:c9:24: 79:67:6c:13:98:17:72:5b:21:48:ea:9b:66:6e:43: 1c:07:93:77:52:97:91:9b:d0:99:78:c4:e5:00:a5: 64:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:78:C9:AB:00:72:50:81:14:9E:11:E5:38:57:9E:D1:8C:ED:EA:08 X509v3 Authority Key Identifier: keyid:B7:9C:2D:E3:EB:30:91:80:F4:F5:A5:AF:2D:56:FE:42:58:78:46:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t5wt4-swkYD09aWvLVb-Qlh4Rkg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/56a006-919f-487c-9316-0bb6a83f9f40/1/O3jJqwByUIEUnhHlOFee0Yzt6gg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/56a006-919f-487c-9316-0bb6a83f9f40/1/t5wt4-swkYD09aWvLVb-Qlh4Rkg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.203.230.0/24 Signature Algorithm: sha256WithRSAEncryption 63:04:f4:f5:e4:76:35:b8:5b:83:76:98:91:69:8a:38:fc:85: 05:a7:b4:fe:1d:8a:80:06:b5:15:7b:25:6d:8e:5e:7e:58:e6: be:35:14:84:46:54:24:b2:ea:f1:44:8a:4a:ba:98:28:37:36: 1d:8e:00:55:d1:a0:ae:bf:20:8d:a8:66:7d:66:18:1d:5f:f3: 71:f0:a1:a1:f1:e3:0b:91:2b:e5:b5:8e:60:a7:4c:e6:9b:5c: cc:de:ef:f8:41:95:7c:22:46:15:a6:c4:ae:78:07:99:cc:c5: df:1e:3b:54:ba:cd:fa:fa:11:20:09:e4:da:5a:1d:d8:79:8f: c8:33:8f:b3:91:b7:a5:8c:68:18:4e:24:85:d7:c7:58:3b:b9: 1a:da:55:6b:f6:ec:bc:2d:06:9e:11:7b:f0:cf:0b:3c:b7:62: 89:1c:96:de:bb:04:83:24:2a:74:20:67:73:db:a3:ce:de:56: 28:d6:d4:7e:7c:88:28:26:0b:19:36:ab:7b:a4:cc:97:bd:a2: 97:e2:1a:74:10:52:9d:6d:6c:c6:36:e6:0a:a4:71:9e:2f:4c: 6c:77:a1:4f:27:5e:86:ab:02:a1:61:09:a6:e4:83:6d:80:c8: 3e:ac:b2:62:dd:40:64:74:8a:81:6e:b4:3f:0b:63:c6:7c:d8: ee:42:71:75 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NDnifTAkNQT660HrJTatMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3OWMyZGUzZWIzMDkxODBmNGY1YTVhZjJkNTZmZTQyNTg3 ODQ2NDgwHhcNMjYwMTAxMDYxNzI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYjc4YzlhYjAwNzI1MDgxMTQ5ZTExZTUzODU3OWVkMThjZWRlYTA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzpmcP5AMu3+Y6I8qNO1+mhIGo5sr tHcl1tQZSJQ7sPkDxRlaGsshQw3aMr7Rc6o0wMcHUMY8MwUyyc2LUWKUafBpWGfP AnZXa+Qlt1lnowjdzayXnRraoYDzzoIsTKanGrVeCGq2y0jLw9mrh+egONTiz7cC 5APINNIahjBUOKqzo7rjpYXUGIIfglnRVQx0/V9Y9ptBy2Ka3fUjULkcKEdGMgDJ VhYqbhJL/D1dB4oCYPOqdxJcp7AczbBv61HRtKPMlpPGWYyge+XQFr2bgJRI9VfX 47WiUPouwLt5ySR5Z2wTmBdyWyFI6ptmbkMcB5N3UpeRm9CZeMTlAKVkdwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDt4yasAclCBFJ4R5ThXntGM7eoIMB8GA1UdIwQY MBaAFLecLePrMJGA9PWlry1W/kJYeEZIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDV3dDQtc3drWUQwOWFXdkxWYi1RbGg0UmtnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC81NmEwMDYtOTE5Zi00ODdjLTkzMTYt MGJiNmE4M2Y5ZjQwLzEvTzNqSnF3QnlVSUVVbmhIbE9GZWUwWXp0NmdnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC81NmEwMDYtOTE5Zi00ODdjLTkzMTYtMGJiNmE4M2Y5ZjQw LzEvdDV3dDQtc3drWUQwOWFXdkxWYi1RbGg0UmtnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8vmMA0G CSqGSIb3DQEBCwUAA4IBAQBjBPT15HY1uFuDdpiRaYo4/IUFp7T+HYqABrUVeyVt jl5+WOa+NRSERlQksurxRIpKupgoNzYdjgBV0aCuvyCNqGZ9ZhgdX/Nx8KGh8eML kSvltY5gp0zmm1zM3u/4QZV8IkYVpsSueAeZzMXfHjtUus36+hEgCeTaWh3YeY/I M4+zkbeljGgYTiSF18dYO7ka2lVr9uy8LQaeEXvwzws8t2KJHJbeuwSDJCp0IGdz 26PO3lYo1tR+fIgoJgsZNqt7pMyXvaKX4hp0EFKdbWzGNuYKpHGeL0xsd6FPJ16G qwKhYQmm5INtgMg+rLJi3UBkdIqBbrQ/C2PGfNjuQnF1 -----END CERTIFICATE-----Generated at Sun Jan 18 15:29:25 2026 by rpki-client