This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/296a78-01e2-496d-ba59-2200b3cc57e6/1/3XgDqgOihx3NwrFI4St7L8NvteA.roa File: 3XgDqgOihx3NwrFI4St7L8NvteA.roa (raw, json) Hash identifier: 3mXliACvBMddfp691ki+E37y50uMYory7kU462XAVcM= Subject key identifier: DD:78:03:AA:03:A2:87:1D:CD:C2:B1:48:E1:2B:7B:2F:C3:6F:B5:E0 Certificate issuer: /CN=07f0ba59b1c76cf20dc4382e5a2854d7142c26ba Certificate serial: 019BA8DC63B704F7F8404635E059DD05583D Authority key identifier: 07:F0:BA:59:B1:C7:6C:F2:0D:C4:38:2E:5A:28:54:D7:14:2C:26:BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_C6WbHHbPINxDguWihU1xQsJro.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/296a78-01e2-496d-ba59-2200b3cc57e6/1/3XgDqgOihx3NwrFI4St7L8NvteA.roa Signing time: Sat 10 Jan 2026 17:02:54 +0000 ROA not before: Sat 10 Jan 2026 17:02:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207048 IP address blocks: 195.246.195.0/24 maxlen: 24 2a14::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/296a78-01e2-496d-ba59-2200b3cc57e6/1/B_C6WbHHbPINxDguWihU1xQsJro.crl rsync://rpki.ripe.net/repository/DEFAULT/c0/296a78-01e2-496d-ba59-2200b3cc57e6/1/B_C6WbHHbPINxDguWihU1xQsJro.mft rsync://rpki.ripe.net/repository/DEFAULT/B_C6WbHHbPINxDguWihU1xQsJro.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:a8:dc:63:b7:04:f7:f8:40:46:35:e0:59:dd:05:58:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=07f0ba59b1c76cf20dc4382e5a2854d7142c26ba Validity Not Before: Jan 10 17:02:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dd7803aa03a2871dcdc2b148e12b7b2fc36fb5e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:ac:f4:33:b6:f5:43:30:37:fa:77:fe:92:98: bd:8c:6e:9b:93:90:7a:c7:59:76:a9:7b:70:9a:6f: 38:34:c9:87:0f:e8:ac:e2:9e:26:43:73:d0:09:64: 56:52:79:ac:39:6e:4b:e2:a8:3d:dd:5a:4c:05:9b: 8a:5a:c8:7f:78:03:0c:29:ab:10:f7:2e:68:06:45: 21:88:12:7a:22:31:e5:82:f7:03:40:92:c8:ef:73: 6c:2f:b2:20:12:c0:09:ee:8c:f4:f8:b4:09:d3:a1: d0:ad:df:82:93:9b:96:1b:12:42:9a:3d:86:4b:c8: f3:db:4d:f3:5c:70:f9:c7:3f:cd:9e:b0:65:ff:92: b5:14:fc:4b:5b:ba:9e:5d:db:84:dc:13:f0:7b:fe: 8a:d7:fe:8a:d7:58:81:54:fd:b3:09:f6:07:b8:fe: 12:c7:87:06:a7:e6:e1:8f:8a:b2:5f:52:fb:d2:ce: a0:9e:66:98:29:9b:09:32:db:b4:39:b7:6f:43:f4: d8:cc:d5:c2:f9:bd:e9:f2:9b:c0:f9:11:f5:6c:60: 17:46:da:24:c5:a5:17:a5:18:c5:a8:58:65:b0:f5: a3:74:59:3c:63:d9:1f:32:48:90:38:f9:c1:8d:45: 65:18:19:6c:90:72:6d:3a:25:3c:9a:e8:7a:e1:7f: aa:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:78:03:AA:03:A2:87:1D:CD:C2:B1:48:E1:2B:7B:2F:C3:6F:B5:E0 X509v3 Authority Key Identifier: keyid:07:F0:BA:59:B1:C7:6C:F2:0D:C4:38:2E:5A:28:54:D7:14:2C:26:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_C6WbHHbPINxDguWihU1xQsJro.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/296a78-01e2-496d-ba59-2200b3cc57e6/1/3XgDqgOihx3NwrFI4St7L8NvteA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/296a78-01e2-496d-ba59-2200b3cc57e6/1/B_C6WbHHbPINxDguWihU1xQsJro.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.246.195.0/24 IPv6: 2a14::/29 Signature Algorithm: sha256WithRSAEncryption 6e:96:2d:6e:97:a6:28:4c:74:02:78:98:d2:f7:f4:21:b0:ac: 81:65:3c:07:55:e7:77:b6:71:77:28:b6:1c:f8:5b:ef:3f:77: 89:9a:92:e8:2d:8f:95:ce:7b:91:71:31:6b:0d:6d:89:02:33: 56:9b:89:fa:a6:5e:f6:42:51:d9:4d:33:49:9c:c8:d7:ad:09: 4c:4e:24:22:56:f6:59:f6:c9:ba:44:a2:bc:cb:49:7a:28:89: e2:11:79:85:d5:52:f3:a4:1b:fe:c6:08:94:16:70:c2:ad:1b: 4d:2d:5b:9e:e1:4c:80:a7:e4:ce:7f:e5:74:91:e8:7c:1a:8f: d5:1b:0d:8e:a9:54:0a:ce:f1:86:66:79:40:d8:f8:fb:3f:4a: da:17:ce:1d:96:9a:be:76:71:42:b8:57:c8:bb:9d:48:5a:42: 14:be:bd:ca:4b:6c:94:8a:99:67:ec:42:30:88:ae:42:29:68: 4e:ae:b9:ab:a4:67:c6:7d:34:ac:05:c8:6b:01:f7:6e:48:b6: 3a:d5:0f:a7:1f:6b:c8:20:2c:ca:8d:4c:68:6b:4f:c8:b1:c2: 97:3f:53:27:99:df:f8:ec:16:95:d2:e3:fd:00:88:ca:91:9f: 55:8f:d0:9c:a2:7d:d5:55:fe:76:7a:e8:15:3a:a0:62:b6:9d: 24:43:4a:ae -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZuo3GO3BPf4QEY14FndBVg9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA3ZjBiYTU5YjFjNzZjZjIwZGM0MzgyZTVhMjg1NGQ3MTQy YzI2YmEwHhcNMjYwMTEwMTcwMjU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZDc4MDNhYTAzYTI4NzFkY2RjMmIxNDhlMTJiN2IyZmMzNmZiNWUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5az0M7b1QzA3+nf+kpi9jG6bk5B6 x1l2qXtwmm84NMmHD+is4p4mQ3PQCWRWUnmsOW5L4qg93VpMBZuKWsh/eAMMKasQ 9y5oBkUhiBJ6IjHlgvcDQJLI73NsL7IgEsAJ7oz0+LQJ06HQrd+Ck5uWGxJCmj2G S8jz203zXHD5xz/NnrBl/5K1FPxLW7qeXduE3BPwe/6K1/6K11iBVP2zCfYHuP4S x4cGp+bhj4qyX1L70s6gnmaYKZsJMtu0ObdvQ/TYzNXC+b3p8pvA+RH1bGAXRtok xaUXpRjFqFhlsPWjdFk8Y9kfMkiQOPnBjUVlGBlskHJtOiU8muh64X+q8wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFN14A6oDoocdzcKxSOErey/Db7XgMB8GA1UdIwQY MBaAFAfwulmxx2zyDcQ4LlooVNcULCa6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQl9DNldiSEhiUElOeERndVdpaFUxeFFzSnJvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC8yOTZhNzgtMDFlMi00OTZkLWJhNTkt MjIwMGIzY2M1N2U2LzEvM1hnRHFnT2loeDNOd3JGSTRTdDdMOE52dGVBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMC8yOTZhNzgtMDFlMi00OTZkLWJhNTktMjIwMGIzY2M1N2U2 LzEvQl9DNldiSEhiUElOeERndVdpaFUxeFFzSnJvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAw/bDMA0E AgACMAcDBQMqFAAAMA0GCSqGSIb3DQEBCwUAA4IBAQBuli1ul6YoTHQCeJjS9/Qh sKyBZTwHVed3tnF3KLYc+FvvP3eJmpLoLY+VznuRcTFrDW2JAjNWm4n6pl72QlHZ TTNJnMjXrQlMTiQiVvZZ9sm6RKK8y0l6KIniEXmF1VLzpBv+xgiUFnDCrRtNLVue 4UyAp+TOf+V0keh8Go/VGw2OqVQKzvGGZnlA2Pj7P0raF84dlpq+dnFCuFfIu51I WkIUvr3KS2yUipln7EIwiK5CKWhOrrmrpGfGfTSsBchrAfduSLY61Q+nH2vIICzK jUxoa0/IscKXP1Mnmd/47BaV0uP9AIjKkZ9Vj9Ccon3VVf52eugVOqBitp0kQ0qu -----END CERTIFICATE-----Generated at Tue Feb 10 07:11:22 2026 by rpki-client