This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/87f705-8862-44e1-9033-a47b69c22cd0/1/3CZ316XifGJ7iXy_fvnC6yaUCL4.roa File: 3CZ316XifGJ7iXy_fvnC6yaUCL4.roa (raw, json) Hash identifier: jpVzlrWllusXIidVkRRsjohQfHqCLoCDqt5WfrDTXj4= Subject key identifier: DC:26:77:D7:A5:E2:7C:62:7B:89:7C:BF:7E:F9:C2:EB:26:94:08:BE Certificate issuer: /CN=d63a6e258d6280f3dd97a96d9486d93d42f18d4b Certificate serial: 019B7F1560434F1F8B9597EF41F88722F96C Authority key identifier: D6:3A:6E:25:8D:62:80:F3:DD:97:A9:6D:94:86:D9:3D:42:F1:8D:4B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1jpuJY1igPPdl6ltlIbZPULxjUs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/87f705-8862-44e1-9033-a47b69c22cd0/1/3CZ316XifGJ7iXy_fvnC6yaUCL4.roa Signing time: Fri 02 Jan 2026 14:21:05 +0000 ROA not before: Fri 02 Jan 2026 14:21:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206474 IP address blocks: 185.237.128.0/24 maxlen: 24 185.237.129.0/24 maxlen: 24 185.237.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/87f705-8862-44e1-9033-a47b69c22cd0/1/1jpuJY1igPPdl6ltlIbZPULxjUs.crl rsync://rpki.ripe.net/repository/DEFAULT/6c/87f705-8862-44e1-9033-a47b69c22cd0/1/1jpuJY1igPPdl6ltlIbZPULxjUs.mft rsync://rpki.ripe.net/repository/DEFAULT/1jpuJY1igPPdl6ltlIbZPULxjUs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 23:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:60:43:4f:1f:8b:95:97:ef:41:f8:87:22:f9:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d63a6e258d6280f3dd97a96d9486d93d42f18d4b Validity Not Before: Jan 2 14:21:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dc2677d7a5e27c627b897cbf7ef9c2eb269408be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ea:99:70:80:39:d0:f3:21:f3:c3:c6:60:d8: ea:b3:d8:36:b5:9c:a8:94:36:29:22:77:92:ab:e3: a8:07:c9:83:3f:65:81:a8:a3:47:eb:85:36:ec:58: 9a:3f:e7:35:0e:31:c3:eb:27:f3:38:4a:9e:81:ea: 07:e0:91:8a:dc:ae:02:18:b6:91:a1:55:83:3c:99: 96:d0:9c:15:98:bc:24:8a:7d:af:4f:ed:99:f1:e1: a8:cc:a9:18:70:bd:92:72:68:47:5a:31:36:97:e2: a4:4f:b2:4d:a2:ee:7f:0e:bc:c4:2d:2e:be:2c:39: 36:eb:22:72:2a:3e:19:b2:c1:3a:d1:a3:0e:69:a1: 17:97:7c:7e:97:c7:4c:1d:f5:15:bd:7a:df:92:df: a9:aa:ad:5d:70:3a:d8:7c:aa:61:c5:39:76:f0:46: 1d:9c:16:cc:cf:77:21:07:50:f7:4c:3d:23:c7:e2: 60:c1:7e:f7:ea:09:5b:ca:ce:0e:6c:88:cd:ad:48: 12:4f:b8:64:2f:99:04:5b:1a:44:bf:27:c5:78:9d: 9b:b6:81:c2:79:44:2d:cd:04:0c:b7:dc:ba:b5:82: 6b:fd:48:15:85:f7:e8:45:3d:d9:b5:6a:88:04:b4: 66:6b:c4:f8:b8:5e:dd:4e:06:ba:66:66:5b:d8:02: 48:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:26:77:D7:A5:E2:7C:62:7B:89:7C:BF:7E:F9:C2:EB:26:94:08:BE X509v3 Authority Key Identifier: keyid:D6:3A:6E:25:8D:62:80:F3:DD:97:A9:6D:94:86:D9:3D:42:F1:8D:4B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1jpuJY1igPPdl6ltlIbZPULxjUs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/87f705-8862-44e1-9033-a47b69c22cd0/1/3CZ316XifGJ7iXy_fvnC6yaUCL4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/87f705-8862-44e1-9033-a47b69c22cd0/1/1jpuJY1igPPdl6ltlIbZPULxjUs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.237.128.0/23 185.237.131.0/24 Signature Algorithm: sha256WithRSAEncryption 65:0e:6c:e8:ce:91:e7:66:b0:43:39:ce:36:0c:c9:0c:23:83: 13:de:d9:9d:76:ff:cc:ae:fe:1b:3b:35:8f:64:ee:f2:ca:ee: cd:d9:c1:98:a4:a7:6e:9d:7a:d9:be:fc:c1:6b:b9:19:66:47: 04:6c:46:62:2d:c4:f5:2e:70:8d:eb:a6:b0:0a:80:19:0f:17: 67:5e:98:21:19:62:3d:35:b4:e6:20:91:eb:7b:6a:20:5f:46: 45:71:e5:69:13:3c:a9:ee:06:76:cc:fe:a4:54:0d:93:57:3d: f3:56:10:7e:53:af:40:1e:44:13:7a:ea:9e:58:dd:85:cc:a5: 47:73:75:c6:81:56:35:c1:55:f2:f6:ba:47:f5:67:f8:c1:f1: 75:47:fe:53:cf:be:a1:38:69:33:bc:d8:bc:5c:e8:76:b5:59: cf:59:b3:36:4c:78:8d:0e:25:bd:32:51:44:b6:34:44:a3:d1: ff:67:a5:75:ec:2e:f0:3d:cd:83:a5:9e:31:55:cd:51:0a:5f: 42:b4:95:51:37:91:2e:23:e6:76:cf:26:de:aa:be:e7:28:f4: 31:81:40:82:ab:a6:65:59:46:a0:64:d3:94:dc:7b:9a:b1:61: 00:27:29:c9:86:2b:3c:6b:ed:5c:00:ed:a9:d1:cd:70:82:3b: c6:35:bb:de -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/FWBDTx+LlZfvQfiHIvlsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ2M2E2ZTI1OGQ2MjgwZjNkZDk3YTk2ZDk0ODZkOTNkNDJm MThkNGIwHhcNMjYwMTAyMTQyMTA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYzI2NzdkN2E1ZTI3YzYyN2I4OTdjYmY3ZWY5YzJlYjI2OTQwOGJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0+qZcIA50PMh88PGYNjqs9g2tZyo lDYpIneSq+OoB8mDP2WBqKNH64U27FiaP+c1DjHD6yfzOEqegeoH4JGK3K4CGLaR oVWDPJmW0JwVmLwkin2vT+2Z8eGozKkYcL2ScmhHWjE2l+KkT7JNou5/DrzELS6+ LDk26yJyKj4ZssE60aMOaaEXl3x+l8dMHfUVvXrfkt+pqq1dcDrYfKphxTl28EYd nBbMz3chB1D3TD0jx+JgwX736glbys4ObIjNrUgST7hkL5kEWxpEvyfFeJ2btoHC eUQtzQQMt9y6tYJr/UgVhffoRT3ZtWqIBLRma8T4uF7dTga6ZmZb2AJIBQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFNwmd9el4nxie4l8v375wusmlAi+MB8GA1UdIwQY MBaAFNY6biWNYoDz3ZepbZSG2T1C8Y1LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMWpwdUpZMWlnUFBkbDZsdGxJYlpQVUx4alVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy84N2Y3MDUtODg2Mi00NGUxLTkwMzMt YTQ3YjY5YzIyY2QwLzEvM0NaMzE2WGlmR0o3aVh5X2Z2bkM2eWFVQ0w0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yy84N2Y3MDUtODg2Mi00NGUxLTkwMzMtYTQ3YjY5YzIyY2Qw LzEvMWpwdUpZMWlnUFBkbDZsdGxJYlpQVUx4alVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBue2AAwQA ue2DMA0GCSqGSIb3DQEBCwUAA4IBAQBlDmzozpHnZrBDOc42DMkMI4MT3tmddv/M rv4bOzWPZO7yyu7N2cGYpKdunXrZvvzBa7kZZkcEbEZiLcT1LnCN66awCoAZDxdn XpghGWI9NbTmIJHre2ogX0ZFceVpEzyp7gZ2zP6kVA2TVz3zVhB+U69AHkQTeuqe WN2FzKVHc3XGgVY1wVXy9rpH9Wf4wfF1R/5Tz76hOGkzvNi8XOh2tVnPWbM2THiN DiW9MlFEtjREo9H/Z6V17C7wPc2DpZ4xVc1RCl9CtJVRN5EuI+Z2zybeqr7nKPQx gUCCq6ZlWUagZNOU3HuasWEAJynJhis8a+1cAO2p0c1wgjvGNbve -----END CERTIFICATE-----Generated at Tue Jan 27 07:38:44 2026 by rpki-client