This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/3qeL2NCx-As-scDPVvwvbvGSalI.roa File: 3qeL2NCx-As-scDPVvwvbvGSalI.roa (raw, json) Hash identifier: s49s84Y1fceDUG+xLS7hG3wa/GQo7A9FukrgGPAHFYI= Subject key identifier: DE:A7:8B:D8:D0:B1:F8:0B:3E:B1:C0:CF:56:FC:2F:6E:F1:92:6A:52 Certificate issuer: /CN=5a4a47d582bb0e9680f89258ab96d05867d352ef Certificate serial: 019B7C7FB8B9D49B2DBC1CD0499596AE8864 Authority key identifier: 5A:4A:47:D5:82:BB:0E:96:80:F8:92:58:AB:96:D0:58:67:D3:52:EF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WkpH1YK7DpaA-JJYq5bQWGfTUu8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/3qeL2NCx-As-scDPVvwvbvGSalI.roa Signing time: Fri 02 Jan 2026 02:18:23 +0000 ROA not before: Fri 02 Jan 2026 02:18:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47862 IP address blocks: 109.205.24.0/24 maxlen: 24 109.205.25.0/24 maxlen: 24 109.205.26.0/24 maxlen: 24 109.205.27.0/24 maxlen: 24 176.74.48.0/21 maxlen: 21 176.74.48.0/24 maxlen: 24 176.74.49.0/24 maxlen: 24 176.74.50.0/24 maxlen: 24 176.74.51.0/24 maxlen: 24 176.74.52.0/24 maxlen: 24 176.74.53.0/24 maxlen: 24 176.74.54.0/24 maxlen: 24 176.74.55.0/24 maxlen: 24 185.76.128.0/24 maxlen: 24 2a00:1b00::/48 maxlen: 48 2a00:1b00:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/WkpH1YK7DpaA-JJYq5bQWGfTUu8.crl rsync://rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/WkpH1YK7DpaA-JJYq5bQWGfTUu8.mft rsync://rpki.ripe.net/repository/DEFAULT/WkpH1YK7DpaA-JJYq5bQWGfTUu8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:b8:b9:d4:9b:2d:bc:1c:d0:49:95:96:ae:88:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5a4a47d582bb0e9680f89258ab96d05867d352ef Validity Not Before: Jan 2 02:18:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dea78bd8d0b1f80b3eb1c0cf56fc2f6ef1926a52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:c5:65:5b:f3:25:55:7f:3c:fa:ec:61:68:34: 00:4e:5e:ca:36:07:8c:31:64:06:50:9d:79:ea:2b: 5f:3d:c1:3f:0c:9d:ba:ac:d9:47:de:7e:28:bf:df: c6:72:0f:33:fb:75:a1:7b:5f:45:19:f5:f0:f0:ec: 50:cf:98:77:c7:14:1d:0b:aa:9a:1f:79:c0:e0:98: c5:e5:a6:fd:3d:fc:25:40:04:02:a6:d3:12:ac:1d: 0f:e1:3b:a3:bb:80:70:93:a7:84:0d:9d:77:0d:c8: b0:71:e2:ff:b2:7a:44:3d:36:0d:97:73:01:f7:42: a6:fc:56:56:5b:2c:5e:ab:6f:ac:dd:09:29:60:93: 99:87:61:e2:63:08:c4:c4:fa:15:62:65:c8:76:85: 9f:8a:e7:68:0d:91:63:43:52:2d:49:66:55:a9:71: 85:99:fd:91:28:96:c4:b6:13:63:46:c7:50:0d:6c: 8d:30:f5:9a:22:aa:8a:58:d9:ef:57:d9:65:f2:bf: f5:b4:40:7f:c4:af:fd:e8:c1:50:d3:88:51:ae:e9: e7:b9:29:a4:3b:40:90:c8:b1:3b:ae:52:ee:54:6a: e8:09:af:94:db:2e:c8:52:9f:64:49:75:68:2f:19: 79:e9:fc:ac:54:19:6a:36:0a:af:3e:1e:a4:ed:e4: 1b:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:A7:8B:D8:D0:B1:F8:0B:3E:B1:C0:CF:56:FC:2F:6E:F1:92:6A:52 X509v3 Authority Key Identifier: keyid:5A:4A:47:D5:82:BB:0E:96:80:F8:92:58:AB:96:D0:58:67:D3:52:EF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WkpH1YK7DpaA-JJYq5bQWGfTUu8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/3qeL2NCx-As-scDPVvwvbvGSalI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/WkpH1YK7DpaA-JJYq5bQWGfTUu8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.205.24.0/22 176.74.48.0/21 185.76.128.0/24 IPv6: 2a00:1b00::/48 2a00:1b00:1000::/48 Signature Algorithm: sha256WithRSAEncryption c7:93:7f:f7:cd:2d:9f:07:c0:4e:d6:99:28:af:e8:01:8f:14: 88:d6:54:20:0e:d4:39:24:6d:2e:c4:cc:f0:8f:6b:60:95:4f: 07:fe:2c:57:93:02:e2:0d:15:d1:ed:80:dd:6e:9a:9f:8c:bd: 4a:10:2b:7f:7b:c9:c9:bb:9d:3e:c4:8f:68:38:e7:b4:b6:88: d0:a0:08:f5:e5:45:42:f9:41:22:02:eb:e6:34:c2:7c:c2:d6: a0:29:50:65:e3:72:4e:4d:9f:8d:0f:2a:02:4f:10:5a:e7:35: 8a:21:10:b1:19:46:90:09:d6:3b:cd:ba:ea:10:d9:3e:6d:dd: 6d:9b:96:ae:92:43:ca:9f:64:18:71:a5:1d:bd:7c:c7:e0:d7: 42:03:9e:8f:ae:3a:ff:19:eb:ac:4c:86:04:bf:55:aa:6b:d9: d6:7b:dc:dd:f6:7a:07:30:bd:24:eb:bb:8f:d2:70:b5:69:16: f1:36:bf:d2:11:60:ca:34:77:81:4f:94:bd:67:ae:2e:b9:bb: 3d:cb:55:41:fc:ee:b3:1e:97:5a:1d:9a:30:53:38:16:f1:5c: 06:39:36:45:66:59:4c:d2:6f:56:34:5a:21:d2:79:71:91:12: c7:f1:09:32:12:31:ad:da:b3:1b:0d:38:c5:e8:a0:3f:c9:4b: a6:cc:c7:9a -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgISAZt8f7i51JstvBzQSZWWrohkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVhNGE0N2Q1ODJiYjBlOTY4MGY4OTI1OGFiOTZkMDU4Njdk MzUyZWYwHhcNMjYwMTAyMDIxODIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZWE3OGJkOGQwYjFmODBiM2ViMWMwY2Y1NmZjMmY2ZWYxOTI2YTUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAosVlW/MlVX88+uxhaDQATl7KNgeM MWQGUJ156itfPcE/DJ26rNlH3n4ov9/Gcg8z+3Whe19FGfXw8OxQz5h3xxQdC6qa H3nA4JjF5ab9PfwlQAQCptMSrB0P4Tuju4Bwk6eEDZ13DciwceL/snpEPTYNl3MB 90Km/FZWWyxeq2+s3QkpYJOZh2HiYwjExPoVYmXIdoWfiudoDZFjQ1ItSWZVqXGF mf2RKJbEthNjRsdQDWyNMPWaIqqKWNnvV9ll8r/1tEB/xK/96MFQ04hRrunnuSmk O0CQyLE7rlLuVGroCa+U2y7IUp9kSXVoLxl56fysVBlqNgqvPh6k7eQbXQIDAQAB o4ICLzCCAiswHQYDVR0OBBYEFN6ni9jQsfgLPrHAz1b8L27xkmpSMB8GA1UdIwQY MBaAFFpKR9WCuw6WgPiSWKuW0Fhn01LvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV2twSDFZSzdEcGFBLUpKWXE1YlFXR2ZUVXU4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS80Yjc1NzYtMmI5Yy00M2FmLTg4MTct NmIwMDY1NTA4OTk2LzEvM3FlTDJOQ3gtQXMtc2NEUFZ2d3ZidkdTYWxJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMS80Yjc1NzYtMmI5Yy00M2FmLTg4MTctNmIwMDY1NTA4OTk2 LzEvV2twSDFZSzdEcGFBLUpKWXE1YlFXR2ZUVXU4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEUGCCsGAQUFBwEHAQH/BDYwNDAYBAIAATASAwQCbc0YAwQD sEowAwQAuUyAMBgEAgACMBIDBwAqABsAAAADBwAqABsAEAAwDQYJKoZIhvcNAQEL BQADggEBAMeTf/fNLZ8HwE7WmSiv6AGPFIjWVCAO1DkkbS7EzPCPa2CVTwf+LFeT AuINFdHtgN1ump+MvUoQK397ycm7nT7Ej2g457S2iNCgCPXlRUL5QSIC6+Y0wnzC 1qApUGXjck5Nn40PKgJPEFrnNYohELEZRpAJ1jvNuuoQ2T5t3W2blq6SQ8qfZBhx pR29fMfg10IDno+uOv8Z66xMhgS/Vapr2dZ73N32egcwvSTru4/ScLVpFvE2v9IR YMo0d4FPlL1nri65uz3LVUH87rMel1odmjBTOBbxXAY5NkVmWUzSb1Y0WiHSeXGR EsfxCTISMa3asxsNOMXooD/JS6bMx5o= -----END CERTIFICATE-----Generated at Mon Feb 9 22:31:30 2026 by rpki-client