This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/436aa1-f47a-4cd5-87a2-1f34efb5b7d1/1/c3TZ80LQFPNTdNL7tvVVaimWE50.roa File: c3TZ80LQFPNTdNL7tvVVaimWE50.roa (raw, json) Hash identifier: BloeRWk/RRwEgQcAGk6aFEwqm1qphUForCGmrYa3jto= Subject key identifier: 73:74:D9:F3:42:D0:14:F3:53:74:D2:FB:B6:F5:55:6A:29:96:13:9D Certificate issuer: /CN=12868f5e34eefefce655c1bb8383299fa56c5c82 Certificate serial: 019B76EB8D24F125C96C9585CCAC889E16EB Authority key identifier: 12:86:8F:5E:34:EE:FE:FC:E6:55:C1:BB:83:83:29:9F:A5:6C:5C:82 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EoaPXjTu_vzmVcG7g4Mpn6VsXII.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/436aa1-f47a-4cd5-87a2-1f34efb5b7d1/1/c3TZ80LQFPNTdNL7tvVVaimWE50.roa Signing time: Thu 01 Jan 2026 00:18:27 +0000 ROA not before: Thu 01 Jan 2026 00:18:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 680 IP address blocks: 128.176.0.0/16 maxlen: 16 185.151.152.0/22 maxlen: 22 2001:4cf0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/436aa1-f47a-4cd5-87a2-1f34efb5b7d1/1/EoaPXjTu_vzmVcG7g4Mpn6VsXII.crl rsync://rpki.ripe.net/repository/DEFAULT/6b/436aa1-f47a-4cd5-87a2-1f34efb5b7d1/1/EoaPXjTu_vzmVcG7g4Mpn6VsXII.mft rsync://rpki.ripe.net/repository/DEFAULT/EoaPXjTu_vzmVcG7g4Mpn6VsXII.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:8d:24:f1:25:c9:6c:95:85:cc:ac:88:9e:16:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=12868f5e34eefefce655c1bb8383299fa56c5c82 Validity Not Before: Jan 1 00:18:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7374d9f342d014f35374d2fbb6f5556a2996139d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:af:f3:ec:7f:5d:d8:8d:4d:98:b9:96:b4:5e: 44:44:4b:a9:1d:7e:b4:e4:85:03:9c:6c:bc:28:99: cd:3d:4e:27:3f:70:fe:3f:55:49:ad:6c:2b:1f:40: f7:2d:48:8c:34:6a:fe:71:cd:5c:0b:fd:b9:e5:38: 38:c0:89:71:2e:3e:24:8b:5a:1b:50:50:0e:17:6a: fb:aa:46:ed:78:68:5f:6f:96:95:45:04:4d:c0:a9: 4e:01:77:d4:94:93:65:94:fe:f6:93:b9:a7:f5:76: 00:f8:5c:fe:ca:30:24:c5:56:ef:6e:f9:0f:6c:5b: 47:04:42:93:e0:95:eb:eb:74:22:54:43:da:9f:42: 14:c7:ff:fa:b6:79:f8:25:96:e5:ef:e5:ef:58:26: 5b:e8:f2:ce:8d:a1:e0:49:66:96:dd:7f:c0:e0:8e: 01:54:15:2e:08:23:68:e3:ce:b6:d9:e7:87:16:42: e0:e1:b1:5f:08:03:19:5c:4f:82:31:39:3c:71:ae: 0a:c2:32:b5:8d:72:ec:36:e2:6c:27:c9:e6:7a:84: 71:f3:e9:66:7c:24:7d:7a:ea:6f:5f:52:a3:30:f0: b9:0f:a6:58:ec:b8:73:e3:b4:b3:25:53:36:35:12: d3:09:0e:81:ad:90:f4:a6:b6:a0:34:dc:70:f8:ce: fa:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:74:D9:F3:42:D0:14:F3:53:74:D2:FB:B6:F5:55:6A:29:96:13:9D X509v3 Authority Key Identifier: keyid:12:86:8F:5E:34:EE:FE:FC:E6:55:C1:BB:83:83:29:9F:A5:6C:5C:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EoaPXjTu_vzmVcG7g4Mpn6VsXII.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/436aa1-f47a-4cd5-87a2-1f34efb5b7d1/1/c3TZ80LQFPNTdNL7tvVVaimWE50.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/436aa1-f47a-4cd5-87a2-1f34efb5b7d1/1/EoaPXjTu_vzmVcG7g4Mpn6VsXII.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 128.176.0.0/16 185.151.152.0/22 IPv6: 2001:4cf0::/29 Signature Algorithm: sha256WithRSAEncryption a2:9d:66:a3:a8:37:5b:f1:6e:78:9a:5d:86:c3:45:fb:d8:0c: 72:f3:37:25:c5:78:e1:04:b1:53:b5:60:97:72:ef:9a:92:a4: e1:e2:d8:75:5d:56:bd:37:00:cd:17:31:6f:6c:6d:e2:1c:91: 42:21:2c:8b:bf:99:88:81:81:6d:45:80:ef:60:98:2e:cd:12: 55:5c:67:27:57:0d:bd:37:a2:d0:37:2f:ac:3d:f4:9f:1d:35: 45:ab:5c:5f:a5:e7:f4:07:ad:4d:18:99:3a:ba:6e:3f:bd:73: 93:6f:79:fb:fd:57:39:1d:6e:30:b0:69:97:54:2c:51:2c:1a: 71:b7:9c:ab:bc:a0:8c:f5:a9:a4:e5:60:ce:5d:d1:74:b4:71: 73:b6:2c:cc:b6:be:35:8b:de:89:ce:ac:1b:44:da:27:c2:7e: cd:5e:09:f5:68:4b:4a:50:b1:0d:2f:d5:ac:1a:85:f5:69:6e: 30:4a:b7:84:4e:eb:d4:f3:dd:a2:5e:73:98:6b:21:a3:c3:3c: bb:ab:9c:8f:50:d4:aa:40:d7:9d:04:9d:d6:34:f6:af:27:28: 30:db:dc:85:b0:87:09:d6:47:4b:8f:e2:8c:b2:06:1a:5d:1e: 85:cb:d2:62:d3:4c:fd:3a:b0:17:32:48:b4:e2:eb:45:57:06: 88:cf:b8:18 -----BEGIN CERTIFICATE----- MIIFETCCA/mgAwIBAgISAZt2640k8SXJbJWFzKyInhbrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEyODY4ZjVlMzRlZWZlZmNlNjU1YzFiYjgzODMyOTlmYTU2 YzVjODIwHhcNMjYwMTAxMDAxODI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3Mzc0ZDlmMzQyZDAxNGYzNTM3NGQyZmJiNmY1NTU2YTI5OTYxMzlkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt6/z7H9d2I1NmLmWtF5EREupHX60 5IUDnGy8KJnNPU4nP3D+P1VJrWwrH0D3LUiMNGr+cc1cC/255Tg4wIlxLj4ki1ob UFAOF2r7qkbteGhfb5aVRQRNwKlOAXfUlJNllP72k7mn9XYA+Fz+yjAkxVbvbvkP bFtHBEKT4JXr63QiVEPan0IUx//6tnn4JZbl7+XvWCZb6PLOjaHgSWaW3X/A4I4B VBUuCCNo48622eeHFkLg4bFfCAMZXE+CMTk8ca4KwjK1jXLsNuJsJ8nmeoRx8+lm fCR9eupvX1KjMPC5D6ZY7Lhz47SzJVM2NRLTCQ6BrZD0pragNNxw+M76DQIDAQAB o4ICHTCCAhkwHQYDVR0OBBYEFHN02fNC0BTzU3TS+7b1VWoplhOdMB8GA1UdIwQY MBaAFBKGj1407v785lXBu4ODKZ+lbFyCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRW9hUFhqVHVfdnptVmNHN2c0TXBuNlZzWElJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi80MzZhYTEtZjQ3YS00Y2Q1LTg3YTIt MWYzNGVmYjViN2QxLzEvYzNUWjgwTFFGUE5UZE5MN3R2VlZhaW1XRTUwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yi80MzZhYTEtZjQ3YS00Y2Q1LTg3YTItMWYzNGVmYjViN2Qx LzEvRW9hUFhqVHVfdnptVmNHN2c0TXBuNlZzWElJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjARBAIAATALAwMAgLADBAK5 l5gwDQQCAAIwBwMFAyABTPAwDQYJKoZIhvcNAQELBQADggEBAKKdZqOoN1vxbnia XYbDRfvYDHLzNyXFeOEEsVO1YJdy75qSpOHi2HVdVr03AM0XMW9sbeIckUIhLIu/ mYiBgW1FgO9gmC7NElVcZydXDb03otA3L6w99J8dNUWrXF+l5/QHrU0YmTq6bj+9 c5Nvefv9VzkdbjCwaZdULFEsGnG3nKu8oIz1qaTlYM5d0XS0cXO2LMy2vjWL3onO rBtE2ifCfs1eCfVoS0pQsQ0v1awahfVpbjBKt4RO69Tz3aJec5hrIaPDPLurnI9Q 1KpA150EndY09q8nKDDb3IWwhwnWR0uP4oyyBhpdHoXL0mLTTP06sBcySLTi60VX BojPuBg= -----END CERTIFICATE-----Generated at Tue Jan 27 11:25:38 2026 by rpki-client