This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/13bd77-d297-4689-bee4-466e9cab7864/1/3rcL1tlw3pK63ayAo53imjyL-no.roa File: 3rcL1tlw3pK63ayAo53imjyL-no.roa (raw, json) Hash identifier: SVu1M1//nBXFLsHAcTb2G4Z6NIGEa6PRIz6sU6yKha8= Subject key identifier: DE:B7:0B:D6:D9:70:DE:92:BA:DD:AC:80:A3:9D:E2:9A:3C:8B:FA:7A Certificate issuer: /CN=3ba5b1c09aa31f6713c61b32e558109e47966d42 Certificate serial: 019B78A2F540ACA89CDB673D2CF85269E4AC Authority key identifier: 3B:A5:B1:C0:9A:A3:1F:67:13:C6:1B:32:E5:58:10:9E:47:96:6D:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O6WxwJqjH2cTxhsy5VgQnkeWbUI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/13bd77-d297-4689-bee4-466e9cab7864/1/3rcL1tlw3pK63ayAo53imjyL-no.roa Signing time: Thu 01 Jan 2026 08:18:23 +0000 ROA not before: Thu 01 Jan 2026 08:18:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3301 IP address blocks: 2001:2000::/48 maxlen: 48 2001:2000:4000::/40 maxlen: 40 2001:2000:9000::/40 maxlen: 40 2001:2001:4000::/36 maxlen: 36 2001:2001:9000::/40 maxlen: 40 2001:2040::/27 maxlen: 27 2001:2040::/32 maxlen: 32 2001:2040:c010::/47 maxlen: 47 2001:2040:c010::/48 maxlen: 48 2001:2040:c011::/48 maxlen: 48 2001:2042::/31 maxlen: 31 2001:2044::/32 maxlen: 32 2001:2090::/31 maxlen: 31 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/13bd77-d297-4689-bee4-466e9cab7864/1/O6WxwJqjH2cTxhsy5VgQnkeWbUI.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/13bd77-d297-4689-bee4-466e9cab7864/1/O6WxwJqjH2cTxhsy5VgQnkeWbUI.mft rsync://rpki.ripe.net/repository/DEFAULT/O6WxwJqjH2cTxhsy5VgQnkeWbUI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:f5:40:ac:a8:9c:db:67:3d:2c:f8:52:69:e4:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ba5b1c09aa31f6713c61b32e558109e47966d42 Validity Not Before: Jan 1 08:18:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=deb70bd6d970de92baddac80a39de29a3c8bfa7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5d:83:7a:85:e3:c3:76:96:fd:58:5b:93:8a: 5c:eb:3e:69:c1:99:67:cd:b3:6a:f6:e9:81:85:a7: 9f:19:0c:28:c4:48:5c:c8:9f:e3:0e:b5:ac:53:90: 23:a2:68:bc:64:76:9c:07:88:d4:7f:a0:94:bd:3f: 88:75:75:83:9a:94:b7:8a:1a:73:7e:6d:a6:be:38: ba:d8:9c:b8:43:40:53:0e:48:d7:24:63:f7:bf:80: 3f:aa:75:43:a8:68:55:44:00:b8:e0:9b:87:fe:2a: c4:65:16:6e:c5:2c:0b:04:bd:1b:f6:18:50:22:1e: b9:b5:b7:58:58:e7:7e:0b:88:df:30:dd:4a:93:50: f7:6d:51:fa:4b:da:4b:9f:1c:c5:92:0e:25:31:b0: 64:8a:77:a4:d4:ff:94:14:0a:99:39:44:93:d6:06: 60:1d:0c:c5:11:5d:5a:dd:c0:ea:52:f2:e0:0b:df: c4:7f:0b:04:b1:6b:e4:5c:c5:dc:69:10:14:06:f4: 97:82:76:87:9e:89:4a:70:47:02:a6:b1:33:e9:f4: e6:f4:06:60:be:9c:a7:a3:5a:be:f9:77:f0:25:b7: 76:e2:20:98:a3:d7:70:d8:32:f6:01:c0:72:6d:aa: 71:23:c8:dc:74:32:ee:3f:b4:36:aa:05:48:6d:c2: de:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:B7:0B:D6:D9:70:DE:92:BA:DD:AC:80:A3:9D:E2:9A:3C:8B:FA:7A X509v3 Authority Key Identifier: keyid:3B:A5:B1:C0:9A:A3:1F:67:13:C6:1B:32:E5:58:10:9E:47:96:6D:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O6WxwJqjH2cTxhsy5VgQnkeWbUI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/13bd77-d297-4689-bee4-466e9cab7864/1/3rcL1tlw3pK63ayAo53imjyL-no.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/13bd77-d297-4689-bee4-466e9cab7864/1/O6WxwJqjH2cTxhsy5VgQnkeWbUI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:2000::/48 2001:2000:4000::/40 2001:2000:9000::/40 2001:2001:4000::/36 2001:2001:9000::/40 2001:2040::/27 2001:2090::/31 Signature Algorithm: sha256WithRSAEncryption 1e:25:2e:98:82:92:c5:3e:1f:b9:a8:57:87:d2:26:fd:09:a7: 78:ed:ad:1c:fd:d8:fb:68:1e:f5:9e:2b:48:41:9e:a0:0f:75: e9:f6:15:8f:be:83:c4:28:17:91:f6:00:aa:44:fc:03:94:a6: cf:c8:e3:33:7a:08:51:e8:be:30:26:3c:d6:58:96:b1:7e:a2: 78:8d:64:08:60:4d:69:37:6b:a9:49:1c:de:86:70:d3:eb:be: 2e:b5:45:06:18:dd:9f:fb:82:42:1b:97:3e:54:5d:86:f3:91: 14:22:17:6c:0c:08:cc:af:c0:79:66:44:6f:c6:c8:05:08:75: 27:f4:c6:07:ce:5e:b5:a2:ea:10:c6:3c:07:92:8f:0b:fa:fd: cd:98:76:77:10:ce:37:bf:97:93:07:f8:f8:66:dc:6d:00:99: d6:8c:7a:50:cc:d6:2d:73:a2:1e:db:d7:66:54:15:8e:3e:84: 07:ff:04:67:cc:33:45:d6:57:b0:c8:be:db:79:b3:85:e1:5c: d2:14:1d:0d:69:bd:8c:e2:57:b6:8d:34:ed:5b:4f:56:32:eb: 55:60:95:90:6c:81:18:37:04:16:0b:e1:b8:15:91:a6:d6:e8: 80:1b:4b:2a:c1:9e:d6:c4:36:ce:57:1d:db:fa:96:5c:2a:94: 57:59:95:59 -----BEGIN CERTIFICATE----- MIIFLjCCBBagAwIBAgISAZt4ovVArKic22c9LPhSaeSsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiYTViMWMwOWFhMzFmNjcxM2M2MWIzMmU1NTgxMDllNDc5 NjZkNDIwHhcNMjYwMTAxMDgxODIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZWI3MGJkNmQ5NzBkZTkyYmFkZGFjODBhMzlkZTI5YTNjOGJmYTdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv12DeoXjw3aW/Vhbk4pc6z5pwZln zbNq9umBhaefGQwoxEhcyJ/jDrWsU5Ajomi8ZHacB4jUf6CUvT+IdXWDmpS3ihpz fm2mvji62Jy4Q0BTDkjXJGP3v4A/qnVDqGhVRAC44JuH/irEZRZuxSwLBL0b9hhQ Ih65tbdYWOd+C4jfMN1Kk1D3bVH6S9pLnxzFkg4lMbBkinek1P+UFAqZOUST1gZg HQzFEV1a3cDqUvLgC9/EfwsEsWvkXMXcaRAUBvSXgnaHnolKcEcCprEz6fTm9AZg vpyno1q++XfwJbd24iCYo9dw2DL2AcBybapxI8jcdDLuP7Q2qgVIbcLezQIDAQAB o4ICOjCCAjYwHQYDVR0OBBYEFN63C9bZcN6Sut2sgKOd4po8i/p6MB8GA1UdIwQY MBaAFDulscCaox9nE8YbMuVYEJ5Hlm1CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTzZXeHdKcWpIMmNUeGhzeTVWZ1Fua2VXYlVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC8xM2JkNzctZDI5Ny00Njg5LWJlZTQt NDY2ZTljYWI3ODY0LzEvM3JjTDF0bHczcEs2M2F5QW81M2ltanlMLW5vLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC8xM2JkNzctZDI5Ny00Njg5LWJlZTQtNDY2ZTljYWI3ODY0 LzEvTzZXeHdKcWpIMmNUeGhzeTVWZ1Fua2VXYlVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFAGCCsGAQUFBwEHAQH/BEEwPzA9BAIAAjA3AwcAIAEgAAAA AwYAIAEgAEADBgAgASAAkAMGBCABIAFAAwYAIAEgAZADBQUgASBAAwUBIAEgkDAN BgkqhkiG9w0BAQsFAAOCAQEAHiUumIKSxT4fuahXh9Im/QmneO2tHP3Y+2ge9Z4r SEGeoA916fYVj76DxCgXkfYAqkT8A5Smz8jjM3oIUei+MCY81liWsX6ieI1kCGBN aTdrqUkc3oZw0+u+LrVFBhjdn/uCQhuXPlRdhvORFCIXbAwIzK/AeWZEb8bIBQh1 J/TGB85etaLqEMY8B5KPC/r9zZh2dxDON7+Xkwf4+GbcbQCZ1ox6UMzWLXOiHtvX ZlQVjj6EB/8EZ8wzRdZXsMi+23mzheFc0hQdDWm9jOJXto007VtPVjLrVWCVkGyB GDcEFgvhuBWRptbogBtLKsGe1sQ2zlcd2/qWXCqUV1mVWQ== -----END CERTIFICATE-----Generated at Mon Jan 26 08:58:33 2026 by rpki-client