This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/D3RzDDZgPLG3UCsxVx6Q8ZzLm1I.roa File: D3RzDDZgPLG3UCsxVx6Q8ZzLm1I.roa (raw, json) Hash identifier: kVx9KqwTwAznM+coaQfniQbA9ErAhmA+cdao1OKFFKc= Subject key identifier: 0F:74:73:0C:36:60:3C:B1:B7:50:2B:31:57:1E:90:F1:9C:CB:9B:52 Certificate issuer: /CN=e3280c6352a0bfbb79d249c8875ed186ecce8a86 Certificate serial: 019B79112E6755F67C688A1FF1A31D1A5F17 Authority key identifier: E3:28:0C:63:52:A0:BF:BB:79:D2:49:C8:87:5E:D1:86:EC:CE:8A:86 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4ygMY1Kgv7t50knIh17RhuzOioY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/D3RzDDZgPLG3UCsxVx6Q8ZzLm1I.roa Signing time: Thu 01 Jan 2026 10:18:47 +0000 ROA not before: Thu 01 Jan 2026 10:18:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57469 IP address blocks: 31.207.96.0/19 maxlen: 22 159.48.16.0/20 maxlen: 22 159.48.48.0/22 maxlen: 22 159.48.56.0/21 maxlen: 22 185.35.108.0/24 maxlen: 24 185.168.9.0/24 maxlen: 24 185.177.32.0/22 maxlen: 22 185.205.192.0/23 maxlen: 23 185.211.35.0/24 maxlen: 24 185.212.69.0/24 maxlen: 24 185.223.254.0/23 maxlen: 23 185.232.12.0/23 maxlen: 23 193.17.219.0/24 maxlen: 24 194.126.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.mft rsync://rpki.ripe.net/repository/DEFAULT/4ygMY1Kgv7t50knIh17RhuzOioY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:2e:67:55:f6:7c:68:8a:1f:f1:a3:1d:1a:5f:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e3280c6352a0bfbb79d249c8875ed186ecce8a86 Validity Not Before: Jan 1 10:18:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0f74730c36603cb1b7502b31571e90f19ccb9b52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:b8:5f:c5:d1:f0:79:26:e2:57:d6:ca:ff:74: 7d:fe:2c:bc:11:26:60:1c:7c:8a:22:1e:cc:44:eb: ef:32:6a:25:3d:93:33:49:41:a6:da:d6:5d:40:dc: ac:27:cf:1f:76:7d:85:be:b9:c6:dc:db:6b:9e:ad: 6d:45:4d:26:81:6b:2a:4b:f5:f5:97:5f:a5:ab:7c: e6:1a:fb:c6:64:7e:ff:d3:01:84:a3:75:c4:45:b4: 09:4a:fd:ad:68:e0:25:76:86:2a:f8:1d:eb:2b:1a: a7:d9:7a:b1:4c:b1:b0:c2:67:1d:05:d1:9f:ef:0f: e7:13:84:2c:57:75:af:9a:80:e8:62:d4:c5:b6:99: 97:96:6f:59:8f:6b:fd:5c:d9:d4:92:04:4f:58:20: cf:cf:3d:6b:73:74:70:5b:eb:f3:d1:8f:f8:c1:43: 57:e3:77:b4:f0:78:ec:d4:57:e8:89:87:b7:9f:38: 82:fb:1d:b7:3c:70:ea:35:67:ee:69:6d:49:d9:6a: 87:33:78:29:96:8f:bd:14:af:ab:b7:c4:85:fb:8d: 39:01:9e:43:c3:6b:a7:d4:c4:51:35:a6:78:23:60: 42:67:01:bc:c4:5c:10:32:d5:dd:1e:b4:90:06:36: ed:17:e5:fa:8c:6a:52:c0:9b:e8:3a:b5:27:e4:f7: b1:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:74:73:0C:36:60:3C:B1:B7:50:2B:31:57:1E:90:F1:9C:CB:9B:52 X509v3 Authority Key Identifier: keyid:E3:28:0C:63:52:A0:BF:BB:79:D2:49:C8:87:5E:D1:86:EC:CE:8A:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4ygMY1Kgv7t50knIh17RhuzOioY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/D3RzDDZgPLG3UCsxVx6Q8ZzLm1I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.207.96.0/19 159.48.16.0/20 159.48.48.0/22 159.48.56.0/21 185.35.108.0/24 185.168.9.0/24 185.177.32.0/22 185.205.192.0/23 185.211.35.0/24 185.212.69.0/24 185.223.254.0/23 185.232.12.0/23 193.17.219.0/24 194.126.237.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:be:63:1c:71:7c:38:0c:9c:f8:e9:a5:04:8c:76:8d:a4:77: 4d:27:41:e4:e3:c3:41:01:e1:90:07:f6:6a:a2:e7:f5:d2:f3: 67:27:1e:f8:61:af:77:c3:63:de:e5:2d:25:34:52:4d:e4:f3: 74:1e:6b:bb:1d:fb:8f:a2:34:60:a9:62:eb:eb:fd:c4:6b:c2: 07:8a:d1:5d:28:3f:46:f8:35:ea:72:05:70:a0:03:cb:b6:78: 56:42:91:18:49:78:f9:1b:23:ce:5a:3e:65:bf:d9:0d:97:bd: e0:1a:29:54:d0:fb:64:6a:03:b1:ae:c9:4c:be:01:d9:aa:e2: 2e:64:84:9d:e3:c8:8c:a4:21:31:d0:f6:3e:4d:c7:42:11:8a: d2:46:63:79:7c:74:13:4e:8d:9b:ec:d8:53:94:5d:03:b2:f8: 2d:33:3e:a9:84:bb:df:3d:18:a4:05:77:93:91:60:66:fc:26: 7e:6b:de:a4:16:24:ae:cd:b3:1e:09:d7:73:24:94:b6:c8:0c: 5e:eb:cb:9e:92:43:a1:3d:c7:0a:ad:38:86:90:20:f4:b7:bb: 00:71:95:4c:dd:db:54:c7:ca:e0:b9:9d:fa:76:d8:e8:d7:60: 12:ed:51:e8:af:63:f6:c5:0e:65:8c:06:82:65:17:fe:9d:aa: 8d:50:8d:b7 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgISAZt5ES5nVfZ8aIof8aMdGl8XMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUzMjgwYzYzNTJhMGJmYmI3OWQyNDljODg3NWVkMTg2ZWNj ZThhODYwHhcNMjYwMTAxMTAxODQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZjc0NzMwYzM2NjAzY2IxYjc1MDJiMzE1NzFlOTBmMTljY2I5YjUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2LhfxdHweSbiV9bK/3R9/iy8ESZg HHyKIh7MROvvMmolPZMzSUGm2tZdQNysJ88fdn2FvrnG3Ntrnq1tRU0mgWsqS/X1 l1+lq3zmGvvGZH7/0wGEo3XERbQJSv2taOAldoYq+B3rKxqn2XqxTLGwwmcdBdGf 7w/nE4QsV3WvmoDoYtTFtpmXlm9Zj2v9XNnUkgRPWCDPzz1rc3RwW+vz0Y/4wUNX 43e08Hjs1FfoiYe3nziC+x23PHDqNWfuaW1J2WqHM3gplo+9FK+rt8SF+405AZ5D w2un1MRRNaZ4I2BCZwG8xFwQMtXdHrSQBjbtF+X6jGpSwJvoOrUn5PexTQIDAQAB o4ICVzCCAlMwHQYDVR0OBBYEFA90cww2YDyxt1ArMVcekPGcy5tSMB8GA1UdIwQY MBaAFOMoDGNSoL+7edJJyIde0YbszoqGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNHlnTVkxS2d2N3Q1MGtuSWgxN1JodXpPaW9ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC81OWEwMzItYzM4NC00M2RmLThjOWQt ZWYwYjgyMTg5NDQ0LzEvRDNSekREWmdQTEczVUNzeFZ4NlE4WnpMbTFJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC81OWEwMzItYzM4NC00M2RmLThjOWQtZWYwYjgyMTg5NDQ0 LzEvNHlnTVkxS2d2N3Q1MGtuSWgxN1JodXpPaW9ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMG0GCCsGAQUFBwEHAQH/BF4wXDBaBAIAATBUAwQFH89gAwQE nzAQAwQCnzAwAwQDnzA4AwQAuSNsAwQAuagJAwQCubEgAwQBuc3AAwQAudMjAwQA udRFAwQBud/+AwQBuegMAwQAwRHbAwQAwn7tMA0GCSqGSIb3DQEBCwUAA4IBAQAr vmMccXw4DJz46aUEjHaNpHdNJ0Hk48NBAeGQB/Zqouf10vNnJx74Ya93w2Pe5S0l NFJN5PN0Hmu7HfuPojRgqWLr6/3Ea8IHitFdKD9G+DXqcgVwoAPLtnhWQpEYSXj5 GyPOWj5lv9kNl73gGilU0PtkagOxrslMvgHZquIuZISd48iMpCEx0PY+TcdCEYrS RmN5fHQTTo2b7NhTlF0DsvgtMz6phLvfPRikBXeTkWBm/CZ+a96kFiSuzbMeCddz JJS2yAxe68uekkOhPccKrTiGkCD0t7sAcZVM3dtUx8rguZ36dtjo12AS7VHor2P2 xQ5ljAaCZRf+naqNUI23 -----END CERTIFICATE-----Generated at Tue Feb 10 07:10:55 2026 by rpki-client