This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/22c510-3480-4ce1-8dd8-19746947558d/1/3jq3JT05Xk8RZ2a5qjD2FUJa1Vg.roa File: 3jq3JT05Xk8RZ2a5qjD2FUJa1Vg.roa (raw, json) Hash identifier: BN7qrk5PhVCDMZZc/gkWTb+z7DTTxiTcCVTVZQiCQ5A= Subject key identifier: DE:3A:B7:25:3D:39:5E:4F:11:67:66:B9:AA:30:F6:15:42:5A:D5:58 Certificate issuer: /CN=ffb2627672877d0f6de9bc4e7e186eedd1356110 Certificate serial: 019B79100061FDE43F3AA7F5A4C3045F4B93 Authority key identifier: FF:B2:62:76:72:87:7D:0F:6D:E9:BC:4E:7E:18:6E:ED:D1:35:61:10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_7JidnKHfQ9t6bxOfhhu7dE1YRA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/22c510-3480-4ce1-8dd8-19746947558d/1/3jq3JT05Xk8RZ2a5qjD2FUJa1Vg.roa Signing time: Thu 01 Jan 2026 10:17:30 +0000 ROA not before: Thu 01 Jan 2026 10:17:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210976 IP address blocks: 185.147.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/22c510-3480-4ce1-8dd8-19746947558d/1/_7JidnKHfQ9t6bxOfhhu7dE1YRA.crl rsync://rpki.ripe.net/repository/DEFAULT/79/22c510-3480-4ce1-8dd8-19746947558d/1/_7JidnKHfQ9t6bxOfhhu7dE1YRA.mft rsync://rpki.ripe.net/repository/DEFAULT/_7JidnKHfQ9t6bxOfhhu7dE1YRA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:00:61:fd:e4:3f:3a:a7:f5:a4:c3:04:5f:4b:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ffb2627672877d0f6de9bc4e7e186eedd1356110 Validity Not Before: Jan 1 10:17:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=de3ab7253d395e4f116766b9aa30f615425ad558 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:0f:48:f0:6e:0d:33:8f:1d:bf:4a:63:83:58: d3:98:4b:9b:9e:5a:d2:9c:e3:e5:31:92:5a:b7:5d: a7:c2:76:dd:7f:c0:e0:4a:67:3e:c5:c6:2e:b9:5b: 73:a2:f2:0d:d3:71:2e:2c:06:21:50:36:02:74:70: f2:91:2a:c5:6c:1b:de:fb:18:80:35:61:db:55:1f: d7:63:78:45:f9:2a:d6:b0:91:63:f8:71:80:48:ac: 0e:f4:2a:b8:d8:7d:cb:3e:4a:3f:40:15:df:a2:80: 0b:b3:3d:d3:3c:aa:84:10:3c:5c:27:37:4c:74:92: 37:53:7a:71:f0:d2:ba:e1:f1:19:2c:65:58:b7:e4: a0:c8:c5:e3:6c:16:28:8f:5a:56:e6:31:e0:52:2f: 6d:04:03:71:8e:4e:6f:d2:f7:24:1a:4e:0c:6c:77: f3:a2:c0:6e:97:61:97:5c:a4:11:b9:18:0a:34:8b: 17:6f:95:0e:9c:e5:10:84:a0:65:9c:d9:c2:35:6d: 75:b1:38:da:69:fd:fe:02:89:0d:9b:9d:98:97:ad: 2e:0f:03:c9:2f:d6:06:7e:6e:00:98:ac:ea:41:39: 7e:4b:55:f2:ae:7b:a0:f5:2e:79:6a:03:73:08:27: 40:fe:ec:ce:e6:58:83:26:89:7d:92:5f:31:60:78: f6:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:3A:B7:25:3D:39:5E:4F:11:67:66:B9:AA:30:F6:15:42:5A:D5:58 X509v3 Authority Key Identifier: keyid:FF:B2:62:76:72:87:7D:0F:6D:E9:BC:4E:7E:18:6E:ED:D1:35:61:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_7JidnKHfQ9t6bxOfhhu7dE1YRA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/22c510-3480-4ce1-8dd8-19746947558d/1/3jq3JT05Xk8RZ2a5qjD2FUJa1Vg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/79/22c510-3480-4ce1-8dd8-19746947558d/1/_7JidnKHfQ9t6bxOfhhu7dE1YRA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.147.127.0/24 Signature Algorithm: sha256WithRSAEncryption 33:24:2d:ff:ce:37:aa:e2:d9:05:ed:d5:e0:19:e9:3b:7d:25: 20:33:b1:76:6b:c9:c2:eb:eb:60:1d:d8:c8:72:74:71:ac:dc: 12:e0:00:82:d4:58:cc:a9:60:0b:10:d6:45:4e:0b:33:cc:e8: 89:60:25:f8:ad:7a:22:c9:74:f1:74:6f:f1:e6:20:55:05:58: c7:5e:fe:32:00:9a:86:69:ae:87:ec:24:42:60:89:cb:b5:95: bc:6a:83:e5:90:bf:f3:f8:7f:43:a4:97:25:24:41:6d:c4:94: ac:95:72:11:35:f6:4b:3d:01:f0:4c:77:23:55:ba:e3:31:86: 2a:79:f7:cf:22:f4:50:f7:1d:04:4f:6b:83:90:14:3c:c0:42: 48:bc:d6:f7:fb:9a:32:de:fe:1f:4d:1e:a6:46:0c:e6:9d:22: 06:49:41:2a:93:08:15:75:6d:4f:03:89:8d:0a:f1:71:2d:41: 12:45:0a:8a:ff:ec:d5:e7:00:d6:93:05:8c:53:a5:b7:4b:7d: 1e:cd:a4:27:3f:75:24:1c:77:6c:8e:ca:89:cf:e1:7f:88:3e: 76:d9:be:de:61:5d:29:00:87:44:09:05:02:6c:2b:39:c0:dc: 64:17:15:84:b1:96:6e:80:f6:df:32:60:7e:91:2d:ee:d7:62: 6d:c9:37:7f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EABh/eQ/Oqf1pMMEX0uTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZmYjI2Mjc2NzI4NzdkMGY2ZGU5YmM0ZTdlMTg2ZWVkZDEz NTYxMTAwHhcNMjYwMTAxMTAxNzMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZTNhYjcyNTNkMzk1ZTRmMTE2NzY2YjlhYTMwZjYxNTQyNWFkNTU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAog9I8G4NM48dv0pjg1jTmEubnlrS nOPlMZJat12nwnbdf8DgSmc+xcYuuVtzovIN03EuLAYhUDYCdHDykSrFbBve+xiA NWHbVR/XY3hF+SrWsJFj+HGASKwO9Cq42H3LPko/QBXfooALsz3TPKqEEDxcJzdM dJI3U3px8NK64fEZLGVYt+SgyMXjbBYoj1pW5jHgUi9tBANxjk5v0vckGk4MbHfz osBul2GXXKQRuRgKNIsXb5UOnOUQhKBlnNnCNW11sTjaaf3+AokNm52Yl60uDwPJ L9YGfm4AmKzqQTl+S1Xyrnug9S55agNzCCdA/uzO5liDJol9kl8xYHj25wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFN46tyU9OV5PEWdmuaow9hVCWtVYMB8GA1UdIwQY MBaAFP+yYnZyh30Pbem8Tn4Ybu3RNWEQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvXzdKaWRuS0hmUTl0NmJ4T2ZoaHU3ZEUxWVJBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS8yMmM1MTAtMzQ4MC00Y2UxLThkZDgt MTk3NDY5NDc1NThkLzEvM2pxM0pUMDVYazhSWjJhNXFqRDJGVUphMVZnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OS8yMmM1MTAtMzQ4MC00Y2UxLThkZDgtMTk3NDY5NDc1NThk LzEvXzdKaWRuS0hmUTl0NmJ4T2ZoaHU3ZEUxWVJBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZN/MA0G CSqGSIb3DQEBCwUAA4IBAQAzJC3/zjeq4tkF7dXgGek7fSUgM7F2a8nC6+tgHdjI cnRxrNwS4ACC1FjMqWALENZFTgszzOiJYCX4rXoiyXTxdG/x5iBVBVjHXv4yAJqG aa6H7CRCYInLtZW8aoPlkL/z+H9DpJclJEFtxJSslXIRNfZLPQHwTHcjVbrjMYYq effPIvRQ9x0ET2uDkBQ8wEJIvNb3+5oy3v4fTR6mRgzmnSIGSUEqkwgVdW1PA4mN CvFxLUESRQqK/+zV5wDWkwWMU6W3S30ezaQnP3UkHHdsjsqJz+F/iD522b7eYV0p AIdECQUCbCs5wNxkFxWEsZZugPbfMmB+kS3u12JtyTd/ -----END CERTIFICATE-----Generated at Wed Jan 21 11:16:10 2026 by rpki-client