This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/1d4e06-4faa-49a9-849b-e950699157e1/1/1-3Qgxms0TF7_t45sXmwfqKuxgx4.roa File: 1-3Qgxms0TF7_t45sXmwfqKuxgx4.roa (raw, json) Hash identifier: eg5E6/TcBdh8UicXk+q4AVkisjFIPzrl/3K2hjF8xxg= Subject key identifier: FB:74:20:C6:6B:34:4C:5E:FF:B7:8E:6C:5E:6C:1F:A8:AB:B1:83:1E Certificate issuer: /CN=c0aab396d650826027c2bd8a0620721092109e29 Certificate serial: 019B21D9060750829C9BC7219B8605F93261 Authority key identifier: C0:AA:B3:96:D6:50:82:60:27:C2:BD:8A:06:20:72:10:92:10:9E:29 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wKqzltZQgmAnwr2KBiByEJIQnik.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/1d4e06-4faa-49a9-849b-e950699157e1/1/1-3Qgxms0TF7_t45sXmwfqKuxgx4.roa Signing time: Mon 15 Dec 2025 11:50:29 +0000 ROA not before: Mon 15 Dec 2025 11:50:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 59782 IP address blocks: 81.163.200.0/21 maxlen: 32 2001:67c:d64::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/1d4e06-4faa-49a9-849b-e950699157e1/1/wKqzltZQgmAnwr2KBiByEJIQnik.crl rsync://rpki.ripe.net/repository/DEFAULT/bb/1d4e06-4faa-49a9-849b-e950699157e1/1/wKqzltZQgmAnwr2KBiByEJIQnik.mft rsync://rpki.ripe.net/repository/DEFAULT/wKqzltZQgmAnwr2KBiByEJIQnik.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 08:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:21:d9:06:07:50:82:9c:9b:c7:21:9b:86:05:f9:32:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c0aab396d650826027c2bd8a0620721092109e29 Validity Not Before: Dec 15 11:50:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=fb7420c66b344c5effb78e6c5e6c1fa8abb1831e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:60:a1:aa:4c:d7:ed:97:02:21:22:48:18:03: d2:ce:d0:f1:91:4f:fa:6e:e1:9d:7a:be:96:d3:da: 81:42:a3:00:0a:7e:61:b0:eb:43:db:00:18:ab:81: 87:c1:09:18:f1:10:e4:3f:03:03:c8:1c:ff:eb:f5: a1:60:d4:33:99:0d:c3:39:22:c1:f6:47:ec:01:e4: ab:ec:81:2b:e1:75:95:10:a7:76:c6:d1:4e:c1:7c: f4:c7:c5:9e:6a:05:10:94:45:92:76:52:9c:57:22: ae:ba:cc:8f:e4:44:c3:74:b2:a1:e9:87:65:21:d7: e8:1f:5f:4c:c6:da:d1:b3:61:ae:39:8c:ce:57:eb: ec:99:60:f9:88:75:75:92:51:95:7e:4d:7f:d9:49: aa:d2:0e:f7:14:7a:74:64:6c:20:ce:b5:e3:47:9f: 53:99:8e:b7:89:93:28:04:4c:a4:9d:77:05:e8:b5: 26:ae:e7:df:86:6a:3b:95:33:39:59:a5:25:93:72: bf:eb:a5:1e:20:05:a7:81:ef:ea:c7:6f:71:eb:b1: 11:59:6b:76:a9:09:ef:2c:f6:e1:a3:d9:11:2a:d5: dc:f2:2c:3f:b4:52:8c:a1:3e:22:77:32:25:3f:29: 82:80:cf:fa:2d:3d:25:5e:4e:dd:6f:3f:0d:5d:10: 8f:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:74:20:C6:6B:34:4C:5E:FF:B7:8E:6C:5E:6C:1F:A8:AB:B1:83:1E X509v3 Authority Key Identifier: keyid:C0:AA:B3:96:D6:50:82:60:27:C2:BD:8A:06:20:72:10:92:10:9E:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wKqzltZQgmAnwr2KBiByEJIQnik.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/1d4e06-4faa-49a9-849b-e950699157e1/1/1-3Qgxms0TF7_t45sXmwfqKuxgx4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/1d4e06-4faa-49a9-849b-e950699157e1/1/wKqzltZQgmAnwr2KBiByEJIQnik.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.163.200.0/21 IPv6: 2001:67c:d64::/48 Signature Algorithm: sha256WithRSAEncryption 04:07:f3:e0:11:44:58:91:c7:85:4f:f3:5c:e9:7c:d1:d2:67: 3d:07:87:19:3b:bf:74:8b:35:bd:24:0e:2b:69:2b:33:94:c1: 52:88:94:78:43:05:a6:03:8a:9d:6e:b1:22:bf:91:6b:51:68: e3:c0:d5:0b:cc:a6:58:91:44:46:f8:7f:05:16:69:07:a7:1e: 28:11:ce:a2:87:c3:ad:ab:09:20:70:0d:f8:34:d9:86:2e:3f: f3:be:78:c6:e1:8f:cd:db:db:e9:84:1e:2c:76:e8:e1:57:8a: 48:2c:27:31:98:a0:29:78:60:7f:38:0e:d8:fb:c1:76:52:15: 82:bd:73:05:f1:25:ee:3b:70:71:76:68:c1:8a:38:74:92:ae: 50:83:27:e9:68:35:6c:7f:c1:48:79:b1:bb:f3:c3:5d:e8:12: d3:09:7c:5c:19:f3:36:de:a3:19:e3:5e:74:59:e9:fa:0f:fc: 7f:f1:2a:fc:55:86:e8:a4:12:e6:f0:07:0c:a4:1b:87:90:12: 5e:1b:36:f1:69:00:9f:4b:7b:be:09:0f:ba:8b:18:81:b6:18: 0e:9f:ae:bf:00:8e:53:a2:ad:9d:a3:37:9a:22:8f:dc:a7:07: 3c:8d:9d:ad:5d:78:fb:95:84:95:84:ce:57:e8:67:39:4c:0d: ef:19:06:b7 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZsh2QYHUIKcm8chm4YF+TJhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMwYWFiMzk2ZDY1MDgyNjAyN2MyYmQ4YTA2MjA3MjEwOTIx MDllMjkwHhcNMjUxMjE1MTE1MDI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYjc0MjBjNjZiMzQ0YzVlZmZiNzhlNmM1ZTZjMWZhOGFiYjE4MzFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg2ChqkzX7ZcCISJIGAPSztDxkU/6 buGder6W09qBQqMACn5hsOtD2wAYq4GHwQkY8RDkPwMDyBz/6/WhYNQzmQ3DOSLB 9kfsAeSr7IEr4XWVEKd2xtFOwXz0x8WeagUQlEWSdlKcVyKuusyP5ETDdLKh6Ydl IdfoH19MxtrRs2GuOYzOV+vsmWD5iHV1klGVfk1/2Umq0g73FHp0ZGwgzrXjR59T mY63iZMoBEyknXcF6LUmruffhmo7lTM5WaUlk3K/66UeIAWnge/qx29x67ERWWt2 qQnvLPbho9kRKtXc8iw/tFKMoT4idzIlPymCgM/6LT0lXk7dbz8NXRCP3QIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFPt0IMZrNExe/7eObF5sH6irsYMeMB8GA1UdIwQY MBaAFMCqs5bWUIJgJ8K9igYgchCSEJ4pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd0txemx0WlFnbUFud3IyS0JpQnlFSklRbmlrLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi8xZDRlMDYtNGZhYS00OWE5LTg0OWIt ZTk1MDY5OTE1N2UxLzEvMS0zUWd4bXMwVEY3X3Q0NXNYbXdmcUt1eGd4NC5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvYmIvMWQ0ZTA2LTRmYWEtNDlhOS04NDliLWU5NTA2OTkxNTdl MS8xL3dLcXpsdFpRZ21BbndyMktCaUJ5RUpJUW5pay5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEA1GjyDAP BAIAAjAJAwcAIAEGfA1kMA0GCSqGSIb3DQEBCwUAA4IBAQAEB/PgEURYkceFT/Nc 6XzR0mc9B4cZO790izW9JA4raSszlMFSiJR4QwWmA4qdbrEiv5FrUWjjwNULzKZY kURG+H8FFmkHpx4oEc6ih8OtqwkgcA34NNmGLj/zvnjG4Y/N29vphB4sdujhV4pI LCcxmKApeGB/OA7Y+8F2UhWCvXMF8SXuO3BxdmjBijh0kq5QgyfpaDVsf8FIebG7 88Nd6BLTCXxcGfM23qMZ4150Wen6D/x/8Sr8VYbopBLm8AcMpBuHkBJeGzbxaQCf S3u+CQ+6ixiBthgOn66/AI5Toq2dozeaIo/cpwc8jZ2tXXj7lYSVhM5X6Gc5TA3v GQa3 -----END CERTIFICATE-----Generated at Sat Dec 20 15:58:40 2025 by rpki-client