This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/0f4d1a-e4b6-49c6-a50d-d1e30a5cac88/1/3Q7_GkdVY3UrWG6hnKogPdwlTMA.roa File: 3Q7_GkdVY3UrWG6hnKogPdwlTMA.roa (raw, json) Hash identifier: /esAa54gtGHxOcqdkkMygDWuDj7d6Mjd5bQs/BpC4NA= Subject key identifier: DD:0E:FF:1A:47:55:63:75:2B:58:6E:A1:9C:AA:20:3D:DC:25:4C:C0 Certificate issuer: /CN=321ffff5033a7901a3e9f275f6dc6e8ea0f93b8a Certificate serial: 019B78A20EFF17BCB92FF536A34E69DBF797 Authority key identifier: 32:1F:FF:F5:03:3A:79:01:A3:E9:F2:75:F6:DC:6E:8E:A0:F9:3B:8A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mh__9QM6eQGj6fJ19txujqD5O4o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/0f4d1a-e4b6-49c6-a50d-d1e30a5cac88/1/3Q7_GkdVY3UrWG6hnKogPdwlTMA.roa Signing time: Thu 01 Jan 2026 08:17:25 +0000 ROA not before: Thu 01 Jan 2026 08:17:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56376 IP address blocks: 94.231.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/0f4d1a-e4b6-49c6-a50d-d1e30a5cac88/1/Mh__9QM6eQGj6fJ19txujqD5O4o.crl rsync://rpki.ripe.net/repository/DEFAULT/8c/0f4d1a-e4b6-49c6-a50d-d1e30a5cac88/1/Mh__9QM6eQGj6fJ19txujqD5O4o.mft rsync://rpki.ripe.net/repository/DEFAULT/Mh__9QM6eQGj6fJ19txujqD5O4o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 17:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:0e:ff:17:bc:b9:2f:f5:36:a3:4e:69:db:f7:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=321ffff5033a7901a3e9f275f6dc6e8ea0f93b8a Validity Not Before: Jan 1 08:17:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dd0eff1a475563752b586ea19caa203ddc254cc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e0:a6:b2:93:2e:78:31:b6:bf:1c:b3:88:40: 9b:22:ac:8b:39:62:4a:cf:32:bc:9b:86:ea:b0:7b: a0:31:a1:fe:5f:72:3a:c5:43:11:49:17:5e:3f:c0: b0:4e:7c:cf:5c:58:ad:c0:84:86:27:cc:c9:f0:4f: 10:f8:92:b3:3b:c6:8b:07:c6:a9:f8:80:f6:3a:6f: f7:05:1d:38:52:05:6d:1d:92:d7:d4:0d:ce:66:cf: e2:fc:e2:4f:2f:2b:48:31:71:76:b4:ab:60:02:58: ed:bf:50:28:53:05:2b:f4:66:1f:47:68:ed:c0:25: 5e:01:1c:e3:6c:fa:4e:30:bd:43:c2:68:5b:d6:9b: 4c:3d:7e:b1:46:17:3c:bb:1a:5a:e3:66:24:62:0a: 08:85:7a:b9:97:8d:1e:a9:f3:bf:7e:e5:79:58:24: 7e:2d:59:e9:b2:bf:d4:33:48:e8:d8:ff:92:ac:78: dc:7d:fd:9a:fb:dc:51:d2:3f:e5:1d:6d:ac:09:df: da:cf:c7:be:b6:8e:26:8e:d9:01:1e:bd:fc:bf:3a: b5:b0:fd:81:f0:9a:fb:b7:3c:81:04:67:76:66:fa: 00:5e:e5:80:15:27:d5:41:e4:5d:9c:1b:e3:9b:67: 80:1d:0c:f5:71:96:c8:43:52:67:b6:23:1b:8b:56: e1:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:0E:FF:1A:47:55:63:75:2B:58:6E:A1:9C:AA:20:3D:DC:25:4C:C0 X509v3 Authority Key Identifier: keyid:32:1F:FF:F5:03:3A:79:01:A3:E9:F2:75:F6:DC:6E:8E:A0:F9:3B:8A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mh__9QM6eQGj6fJ19txujqD5O4o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/0f4d1a-e4b6-49c6-a50d-d1e30a5cac88/1/3Q7_GkdVY3UrWG6hnKogPdwlTMA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/0f4d1a-e4b6-49c6-a50d-d1e30a5cac88/1/Mh__9QM6eQGj6fJ19txujqD5O4o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.231.196.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:b4:2a:f6:a5:a2:12:25:ea:0d:eb:6f:bd:af:8b:78:ac:b2: de:8f:aa:71:96:2a:e3:f1:65:45:16:79:b0:20:7c:42:82:90: dd:66:72:50:c3:8a:a3:36:34:d7:22:38:d3:99:61:17:ea:fc: b6:a3:d3:a2:46:13:eb:9e:e9:c3:01:c5:be:04:11:61:9e:31: 48:52:23:bc:e5:7f:f3:da:f3:ad:66:eb:f9:03:ec:ef:0d:a7: f3:25:a0:50:71:e9:be:d1:14:88:95:22:64:83:5f:ac:bd:27: 62:35:2a:2c:fc:8e:5d:6b:5a:2d:c9:b3:f3:0c:59:d5:dd:a8: 84:88:5d:39:51:cb:af:6b:99:76:13:44:e9:8d:aa:fa:4d:86: d1:08:96:33:c0:25:ef:ab:27:f3:2b:d6:9a:ca:8f:2f:44:8b: 6c:fe:0f:4d:cf:22:20:f2:24:cf:0a:42:9a:86:cd:dc:de:93: 10:3f:9a:09:d7:17:f1:51:db:ad:c8:b2:1f:05:b5:8a:83:47: 52:1a:37:66:9e:95:e6:da:4d:55:d6:98:e0:09:07:70:83:53: ae:30:8d:04:a3:8c:93:ac:78:33:95:b5:89:5c:09:2b:f6:b1: 4c:fc:0a:45:7c:21:af:1d:46:26:88:0c:31:15:7c:ef:3e:6b: af:16:d2:b1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4og7/F7y5L/U2o05p2/eXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyMWZmZmY1MDMzYTc5MDFhM2U5ZjI3NWY2ZGM2ZThlYTBm OTNiOGEwHhcNMjYwMTAxMDgxNzI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZDBlZmYxYTQ3NTU2Mzc1MmI1ODZlYTE5Y2FhMjAzZGRjMjU0Y2MwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyOCmspMueDG2vxyziECbIqyLOWJK zzK8m4bqsHugMaH+X3I6xUMRSRdeP8CwTnzPXFitwISGJ8zJ8E8Q+JKzO8aLB8ap +ID2Om/3BR04UgVtHZLX1A3OZs/i/OJPLytIMXF2tKtgAljtv1AoUwUr9GYfR2jt wCVeARzjbPpOML1Dwmhb1ptMPX6xRhc8uxpa42YkYgoIhXq5l40eqfO/fuV5WCR+ LVnpsr/UM0jo2P+SrHjcff2a+9xR0j/lHW2sCd/az8e+to4mjtkBHr38vzq1sP2B 8Jr7tzyBBGd2ZvoAXuWAFSfVQeRdnBvjm2eAHQz1cZbIQ1JntiMbi1bhVwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFN0O/xpHVWN1K1huoZyqID3cJUzAMB8GA1UdIwQY MBaAFDIf//UDOnkBo+nydfbcbo6g+TuKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWhfXzlRTTZlUUdqNmZKMTl0eHVqcUQ1TzRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy8wZjRkMWEtZTRiNi00OWM2LWE1MGQt ZDFlMzBhNWNhYzg4LzEvM1E3X0drZFZZM1VyV0c2aG5Lb2dQZHdsVE1BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yy8wZjRkMWEtZTRiNi00OWM2LWE1MGQtZDFlMzBhNWNhYzg4 LzEvTWhfXzlRTTZlUUdqNmZKMTl0eHVqcUQ1TzRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXufEMA0G CSqGSIb3DQEBCwUAA4IBAQCetCr2paISJeoN62+9r4t4rLLej6pxlirj8WVFFnmw IHxCgpDdZnJQw4qjNjTXIjjTmWEX6vy2o9OiRhPrnunDAcW+BBFhnjFIUiO85X/z 2vOtZuv5A+zvDafzJaBQcem+0RSIlSJkg1+svSdiNSos/I5da1otybPzDFnV3aiE iF05Ucuva5l2E0Tpjar6TYbRCJYzwCXvqyfzK9aayo8vRIts/g9NzyIg8iTPCkKa hs3c3pMQP5oJ1xfxUdutyLIfBbWKg0dSGjdmnpXm2k1V1pjgCQdwg1OuMI0Eo4yT rHgzlbWJXAkr9rFM/ApFfCGvHUYmiAwxFXzvPmuvFtKx -----END CERTIFICATE-----Generated at Mon Jan 19 23:20:57 2026 by rpki-client