This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/eb0e6b-091d-4ff1-90bb-74a395aa5606/1/3T7apsoCLIRRuPziIRlUEsN-PHk.roa File: 3T7apsoCLIRRuPziIRlUEsN-PHk.roa (raw, json) Hash identifier: l4cLFttiGyOfAyk+8L0CJMAKg8dhT7SWDGcyXhUyR1Y= Subject key identifier: DD:3E:DA:A6:CA:02:2C:84:51:B8:FC:E2:21:19:54:12:C3:7E:3C:79 Certificate issuer: /CN=e92e146a1e9e83b3756f048b6c1b31e0fc7d207d Certificate serial: 019B7FF2AFFBE752DE7F81F053AF15C6AD08 Authority key identifier: E9:2E:14:6A:1E:9E:83:B3:75:6F:04:8B:6C:1B:31:E0:FC:7D:20:7D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6S4Uah6eg7N1bwSLbBsx4Px9IH0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/eb0e6b-091d-4ff1-90bb-74a395aa5606/1/3T7apsoCLIRRuPziIRlUEsN-PHk.roa Signing time: Fri 02 Jan 2026 18:22:49 +0000 ROA not before: Fri 02 Jan 2026 18:22:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51753 IP address blocks: 91.220.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/eb0e6b-091d-4ff1-90bb-74a395aa5606/1/6S4Uah6eg7N1bwSLbBsx4Px9IH0.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/eb0e6b-091d-4ff1-90bb-74a395aa5606/1/6S4Uah6eg7N1bwSLbBsx4Px9IH0.mft rsync://rpki.ripe.net/repository/DEFAULT/6S4Uah6eg7N1bwSLbBsx4Px9IH0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:af:fb:e7:52:de:7f:81:f0:53:af:15:c6:ad:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e92e146a1e9e83b3756f048b6c1b31e0fc7d207d Validity Not Before: Jan 2 18:22:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dd3edaa6ca022c8451b8fce221195412c37e3c79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f6:d4:b1:3b:c6:5c:a8:fd:5b:db:cc:93:ab: e8:ae:a6:0b:2d:64:35:d7:19:b0:18:3e:ac:dc:a0: 48:6d:32:1e:a5:a8:ae:ec:d1:6a:ae:73:2d:7c:75: d6:d0:29:74:08:aa:57:b3:ce:e1:ff:a3:81:85:2b: b5:1c:60:7b:01:4d:43:0f:7d:b8:fe:7f:a9:50:2e: b4:10:e1:6a:3d:dd:d1:21:0d:84:df:94:85:e5:17: f9:3f:1d:1d:9d:a3:06:4a:0a:47:69:d0:ee:af:bd: 5a:fb:83:78:c7:16:a7:4e:6a:38:16:60:35:ee:c2: 3d:37:ba:07:05:70:14:97:46:88:e8:86:66:0f:69: a1:88:5b:92:c0:c7:02:f4:64:0a:b6:be:53:e7:75: 11:8c:87:a2:a9:7e:ca:4b:ef:a4:60:c1:c1:22:be: 68:fa:6f:eb:0c:c9:f8:e9:f5:11:cf:3e:38:d0:c1: 23:7a:60:ab:0a:95:c7:ba:bb:82:e2:6d:7c:b0:c1: 6e:cc:52:53:7d:26:a4:90:0f:59:32:4e:ff:f0:6e: 6e:68:24:e9:24:b6:60:4c:85:6b:1c:61:f0:aa:6c: a2:26:f0:d4:aa:c3:1f:95:1e:85:c8:3b:c1:3e:48: 4f:dc:4c:9a:7a:c7:f5:cd:42:13:1e:b7:de:53:ca: e0:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:3E:DA:A6:CA:02:2C:84:51:B8:FC:E2:21:19:54:12:C3:7E:3C:79 X509v3 Authority Key Identifier: keyid:E9:2E:14:6A:1E:9E:83:B3:75:6F:04:8B:6C:1B:31:E0:FC:7D:20:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6S4Uah6eg7N1bwSLbBsx4Px9IH0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/eb0e6b-091d-4ff1-90bb-74a395aa5606/1/3T7apsoCLIRRuPziIRlUEsN-PHk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/eb0e6b-091d-4ff1-90bb-74a395aa5606/1/6S4Uah6eg7N1bwSLbBsx4Px9IH0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.220.66.0/24 Signature Algorithm: sha256WithRSAEncryption a0:30:27:05:a2:77:3c:dd:24:fb:9e:42:a1:54:37:45:fa:d6: 7f:7d:7d:40:4c:6f:8d:94:3c:66:b2:19:31:4d:00:a1:5c:f9: 99:f4:32:b4:95:82:42:e9:3b:e8:85:45:19:44:f9:d1:1b:9b: fb:82:22:5f:92:5c:a9:7b:ae:a6:34:96:ca:53:83:47:54:ba: 35:df:07:c6:95:9b:63:a3:d3:f4:ed:e3:23:ec:55:e8:da:89: ab:65:a5:1a:12:31:92:19:d2:53:f6:14:cb:6f:bb:b8:fb:b1: c4:12:a0:af:0e:c2:1c:0a:23:fe:f1:c6:d2:2a:df:c0:a2:47: bc:1b:1e:9b:93:c1:61:2a:9f:95:0a:2c:0e:61:be:be:64:50: 31:5f:16:2b:d0:b4:38:e1:87:af:83:b0:85:98:61:10:7b:d4: b6:4b:6f:1d:32:da:eb:c9:62:0a:f4:d8:10:fd:95:60:dc:a0: 63:c6:2e:91:5e:89:67:01:bb:15:a3:f0:cf:a6:6e:ab:c5:dd: 79:e3:03:e8:ac:f5:74:54:54:0d:ce:62:c4:cc:b8:66:20:7b: ad:ba:72:d5:08:89:6a:31:42:08:41:5f:9e:a2:0a:ae:67:ae: 46:34:02:d6:5b:f9:cf:15:04:1e:a1:1e:e2:7f:bb:39:db:c3: 7f:cc:5c:62 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/8q/751Lef4HwU68Vxq0IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU5MmUxNDZhMWU5ZTgzYjM3NTZmMDQ4YjZjMWIzMWUwZmM3 ZDIwN2QwHhcNMjYwMTAyMTgyMjQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZDNlZGFhNmNhMDIyYzg0NTFiOGZjZTIyMTE5NTQxMmMzN2UzYzc5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0PbUsTvGXKj9W9vMk6vorqYLLWQ1 1xmwGD6s3KBIbTIepaiu7NFqrnMtfHXW0Cl0CKpXs87h/6OBhSu1HGB7AU1DD324 /n+pUC60EOFqPd3RIQ2E35SF5Rf5Px0dnaMGSgpHadDur71a+4N4xxanTmo4FmA1 7sI9N7oHBXAUl0aI6IZmD2mhiFuSwMcC9GQKtr5T53URjIeiqX7KS++kYMHBIr5o +m/rDMn46fURzz440MEjemCrCpXHuruC4m18sMFuzFJTfSakkA9ZMk7/8G5uaCTp JLZgTIVrHGHwqmyiJvDUqsMflR6FyDvBPkhP3Eyaesf1zUITHrfeU8rglwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFN0+2qbKAiyEUbj84iEZVBLDfjx5MB8GA1UdIwQY MBaAFOkuFGoenoOzdW8Ei2wbMeD8fSB9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNlM0VWFoNmVnN04xYndTTGJCc3g0UHg5SUgwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi9lYjBlNmItMDkxZC00ZmYxLTkwYmIt NzRhMzk1YWE1NjA2LzEvM1Q3YXBzb0NMSVJSdVB6aUlSbFVFc04tUEhrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi9lYjBlNmItMDkxZC00ZmYxLTkwYmItNzRhMzk1YWE1NjA2 LzEvNlM0VWFoNmVnN04xYndTTGJCc3g0UHg5SUgwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9xCMA0G CSqGSIb3DQEBCwUAA4IBAQCgMCcFonc83ST7nkKhVDdF+tZ/fX1ATG+NlDxmshkx TQChXPmZ9DK0lYJC6TvohUUZRPnRG5v7giJfklype66mNJbKU4NHVLo13wfGlZtj o9P07eMj7FXo2omrZaUaEjGSGdJT9hTLb7u4+7HEEqCvDsIcCiP+8cbSKt/Aoke8 Gx6bk8FhKp+VCiwOYb6+ZFAxXxYr0LQ44Yevg7CFmGEQe9S2S28dMtrryWIK9NgQ /ZVg3KBjxi6RXolnAbsVo/DPpm6rxd154wPorPV0VFQNzmLEzLhmIHutunLVCIlq MUIIQV+eogquZ65GNALWW/nPFQQeoR7if7s528N/zFxi -----END CERTIFICATE-----Generated at Mon Feb 9 19:44:38 2026 by rpki-client