This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/834298-37f7-4830-8943-e066e0041a05/1/3JJvvML1uYMrR3S7M7bmAWXvgaI.roa File: 3JJvvML1uYMrR3S7M7bmAWXvgaI.roa (raw, json) Hash identifier: +mjeAVNswdVhhENYtIQJsSCjLPCHzj5tvLuQ8dLELJA= Subject key identifier: DC:92:6F:BC:C2:F5:B9:83:2B:47:74:BB:33:B6:E6:01:65:EF:81:A2 Certificate issuer: /CN=212ba8ccf345eef0dcf7d0154920818f319c25f8 Certificate serial: 019B797E83C8D4B0C27E09AC31932606FF9D Authority key identifier: 21:2B:A8:CC:F3:45:EE:F0:DC:F7:D0:15:49:20:81:8F:31:9C:25:F8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ISuozPNF7vDc99AVSSCBjzGcJfg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/834298-37f7-4830-8943-e066e0041a05/1/3JJvvML1uYMrR3S7M7bmAWXvgaI.roa Signing time: Thu 01 Jan 2026 12:18:12 +0000 ROA not before: Thu 01 Jan 2026 12:18:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31898 IP address blocks: 2001:678:1120::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/834298-37f7-4830-8943-e066e0041a05/1/ISuozPNF7vDc99AVSSCBjzGcJfg.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/834298-37f7-4830-8943-e066e0041a05/1/ISuozPNF7vDc99AVSSCBjzGcJfg.mft rsync://rpki.ripe.net/repository/DEFAULT/ISuozPNF7vDc99AVSSCBjzGcJfg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 Jan 2026 12:01:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:83:c8:d4:b0:c2:7e:09:ac:31:93:26:06:ff:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=212ba8ccf345eef0dcf7d0154920818f319c25f8 Validity Not Before: Jan 1 12:18:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dc926fbcc2f5b9832b4774bb33b6e60165ef81a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ed:b3:32:fa:16:95:56:bc:0e:0e:e2:04:23: 80:11:bc:de:04:55:c9:80:33:6d:65:46:9a:86:07: a7:9d:ec:69:19:ab:1c:ef:46:40:51:3b:0f:70:79: e2:d7:f4:6a:f3:5b:02:19:f4:14:55:c4:99:c2:92: 12:fc:8b:89:83:de:67:3a:c1:a5:bf:2f:dc:11:c9: a7:84:4e:be:66:36:1b:84:94:c1:48:64:f9:45:3c: 02:56:26:a7:3e:ff:52:d4:47:ba:24:c3:1c:ff:3a: c9:87:07:c9:c8:d7:f0:75:88:47:c6:28:0b:4a:63: 83:14:0f:64:12:9f:e0:65:74:bd:59:06:cb:f1:6e: 7f:f6:a7:d1:3b:e0:be:56:7a:5c:aa:17:da:30:ba: cc:39:57:f7:e1:b0:d8:8f:44:cd:31:0f:63:04:92: 3a:7b:9c:50:d2:bd:fe:6f:8a:fe:3f:f0:78:9a:93: 73:f3:7d:aa:7d:f0:dc:c0:26:d6:13:25:e1:dd:a2: f0:e5:9c:da:83:49:1b:a0:1d:8c:2a:46:1b:5a:38: f9:92:9b:b3:bc:86:47:10:4d:5b:1f:66:c1:1d:ef: b9:8f:5e:b0:4b:bb:ff:37:57:c0:a2:9f:1b:07:de: 7d:77:78:dd:b5:47:92:4b:97:5c:bf:23:b8:22:62: 47:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:92:6F:BC:C2:F5:B9:83:2B:47:74:BB:33:B6:E6:01:65:EF:81:A2 X509v3 Authority Key Identifier: keyid:21:2B:A8:CC:F3:45:EE:F0:DC:F7:D0:15:49:20:81:8F:31:9C:25:F8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ISuozPNF7vDc99AVSSCBjzGcJfg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/834298-37f7-4830-8943-e066e0041a05/1/3JJvvML1uYMrR3S7M7bmAWXvgaI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/834298-37f7-4830-8943-e066e0041a05/1/ISuozPNF7vDc99AVSSCBjzGcJfg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:1120::/48 Signature Algorithm: sha256WithRSAEncryption 05:d9:c6:f1:29:be:91:a4:4c:e2:3f:af:c7:af:1b:97:ce:a9: 0b:79:b0:2f:22:11:bd:ec:20:96:78:d5:1e:f6:63:7b:45:a5: 17:a3:50:f7:5d:fd:28:14:6e:0a:44:72:45:b5:c5:46:ec:f3: 0d:8b:d0:34:e2:dc:25:de:f1:ec:be:01:4b:c8:89:40:ff:9b: 6f:11:90:8b:ed:f5:69:49:23:52:34:68:76:07:58:89:10:26: e8:e5:2f:05:52:be:34:9c:7e:68:07:03:29:26:f1:7c:42:4b: ff:c5:32:c5:ec:d2:0c:01:81:61:22:c6:c6:8e:fc:63:b2:9c: a2:e9:df:c8:b9:26:f8:61:0b:fb:71:48:e9:93:09:22:b5:84: 89:b8:88:80:f6:f2:91:01:17:47:6c:55:7b:f3:19:92:40:b2: ef:6f:85:6e:3b:c8:8c:f5:54:90:05:0b:3e:c4:29:32:31:82: 57:80:f5:cc:16:de:dc:cb:b3:7a:7f:a3:ec:87:cd:16:78:fd: 51:23:e5:51:f0:4f:99:4a:d7:4a:c0:62:0a:8c:97:67:12:d3: 0e:f6:35:48:33:de:d3:6d:c0:a8:63:46:58:e7:79:24:04:59: 2a:82:ba:c7:44:50:a7:d8:57:ea:24:c1:1c:8a:c4:ce:b5:17: cd:78:f7:c1 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5foPI1LDCfgmsMZMmBv+dMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMmJhOGNjZjM0NWVlZjBkY2Y3ZDAxNTQ5MjA4MThmMzE5 YzI1ZjgwHhcNMjYwMTAxMTIxODEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYzkyNmZiY2MyZjViOTgzMmI0Nzc0YmIzM2I2ZTYwMTY1ZWY4MWEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs+2zMvoWlVa8Dg7iBCOAEbzeBFXJ gDNtZUaahgennexpGasc70ZAUTsPcHni1/Rq81sCGfQUVcSZwpIS/IuJg95nOsGl vy/cEcmnhE6+ZjYbhJTBSGT5RTwCVianPv9S1Ee6JMMc/zrJhwfJyNfwdYhHxigL SmODFA9kEp/gZXS9WQbL8W5/9qfRO+C+VnpcqhfaMLrMOVf34bDYj0TNMQ9jBJI6 e5xQ0r3+b4r+P/B4mpNz832qffDcwCbWEyXh3aLw5Zzag0kboB2MKkYbWjj5kpuz vIZHEE1bH2bBHe+5j16wS7v/N1fAop8bB959d3jdtUeSS5dcvyO4ImJHgQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFNySb7zC9bmDK0d0uzO25gFl74GiMB8GA1UdIwQY MBaAFCErqMzzRe7w3PfQFUkggY8xnCX4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVN1b3pQTkY3dkRjOTlBVlNTQ0JqekdjSmZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC84MzQyOTgtMzdmNy00ODMwLTg5NDMt ZTA2NmUwMDQxYTA1LzEvM0pKdnZNTDF1WU1yUjNTN003Ym1BV1h2Z2FJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC84MzQyOTgtMzdmNy00ODMwLTg5NDMtZTA2NmUwMDQxYTA1 LzEvSVN1b3pQTkY3dkRjOTlBVlNTQ0JqekdjSmZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeBEg MA0GCSqGSIb3DQEBCwUAA4IBAQAF2cbxKb6RpEziP6/HrxuXzqkLebAvIhG97CCW eNUe9mN7RaUXo1D3Xf0oFG4KRHJFtcVG7PMNi9A04twl3vHsvgFLyIlA/5tvEZCL 7fVpSSNSNGh2B1iJECbo5S8FUr40nH5oBwMpJvF8Qkv/xTLF7NIMAYFhIsbGjvxj spyi6d/IuSb4YQv7cUjpkwkitYSJuIiA9vKRARdHbFV78xmSQLLvb4VuO8iM9VSQ BQs+xCkyMYJXgPXMFt7cy7N6f6Psh80WeP1RI+VR8E+ZStdKwGIKjJdnEtMO9jVI M97TbcCoY0ZY53kkBFkqgrrHRFCn2FfqJMEcisTOtRfNePfB -----END CERTIFICATE-----Generated at Sat Jan 10 20:49:51 2026 by rpki-client