This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/b8a9e7-9450-436c-bf90-8e90466bad38/1/3BS1Vk6oY_4Q-IA4IkoRCzuBzcM.roa File: 3BS1Vk6oY_4Q-IA4IkoRCzuBzcM.roa (raw, json) Hash identifier: gfB5bbDDulAvXz0n1M7KzaA+1p0+Euw0D8YsIhe2tHw= Subject key identifier: DC:14:B5:56:4E:A8:63:FE:10:F8:80:38:22:4A:11:0B:3B:81:CD:C3 Certificate issuer: /CN=54a14be619755eeeeb91fe2f62a1d4ee07861496 Certificate serial: 019B7835155867415D6535E494AF43B2F2C2 Authority key identifier: 54:A1:4B:E6:19:75:5E:EE:EB:91:FE:2F:62:A1:D4:EE:07:86:14:96 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VKFL5hl1Xu7rkf4vYqHU7geGFJY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/b8a9e7-9450-436c-bf90-8e90466bad38/1/3BS1Vk6oY_4Q-IA4IkoRCzuBzcM.roa Signing time: Thu 01 Jan 2026 06:18:23 +0000 ROA not before: Thu 01 Jan 2026 06:18:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48167 IP address blocks: 91.209.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/b8a9e7-9450-436c-bf90-8e90466bad38/1/VKFL5hl1Xu7rkf4vYqHU7geGFJY.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/b8a9e7-9450-436c-bf90-8e90466bad38/1/VKFL5hl1Xu7rkf4vYqHU7geGFJY.mft rsync://rpki.ripe.net/repository/DEFAULT/VKFL5hl1Xu7rkf4vYqHU7geGFJY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:15:58:67:41:5d:65:35:e4:94:af:43:b2:f2:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=54a14be619755eeeeb91fe2f62a1d4ee07861496 Validity Not Before: Jan 1 06:18:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dc14b5564ea863fe10f88038224a110b3b81cdc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:df:2c:f2:79:13:71:dd:e6:fd:90:1b:af:71: ee:7e:62:6e:db:05:32:09:b6:c6:9b:54:13:3f:aa: 31:39:32:b6:cd:cf:27:c5:ee:67:00:cf:19:01:84: ae:35:8f:a8:47:ab:8c:ee:d0:8a:1e:b1:d5:72:92: 2b:5e:a8:1d:d8:21:1f:dc:ca:c9:b9:d4:8d:c4:e3: 9b:90:90:14:36:a5:8a:f9:e4:8d:b1:6e:82:ba:65: 22:ee:8d:5c:2d:85:3b:2a:78:21:04:22:58:c9:fc: 09:9f:80:62:77:8c:c6:e8:4b:80:9b:13:4d:2f:d0: 81:e6:10:73:08:0d:8e:66:c6:95:03:33:70:a7:d8: 32:af:f6:6a:5d:60:95:40:64:93:5a:c0:cc:01:7b: 5e:46:02:16:54:6d:bd:72:48:a5:4d:e7:84:5a:4e: 11:e8:f9:74:aa:b9:aa:9f:e1:5a:bc:97:14:b5:94: 65:fe:73:ea:db:b1:05:1e:68:38:3e:2b:ef:54:be: 13:2e:1d:c1:f7:c9:b3:be:0b:26:d0:e3:74:31:20: db:53:34:38:a6:7d:6e:04:fb:af:05:98:6d:53:92: e0:20:72:c0:d7:26:27:74:27:57:e9:e2:2e:63:e7: b7:1e:93:04:5b:12:90:0e:ea:a6:df:03:e3:d6:47: be:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:14:B5:56:4E:A8:63:FE:10:F8:80:38:22:4A:11:0B:3B:81:CD:C3 X509v3 Authority Key Identifier: keyid:54:A1:4B:E6:19:75:5E:EE:EB:91:FE:2F:62:A1:D4:EE:07:86:14:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VKFL5hl1Xu7rkf4vYqHU7geGFJY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b8a9e7-9450-436c-bf90-8e90466bad38/1/3BS1Vk6oY_4Q-IA4IkoRCzuBzcM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b8a9e7-9450-436c-bf90-8e90466bad38/1/VKFL5hl1Xu7rkf4vYqHU7geGFJY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.209.45.0/24 Signature Algorithm: sha256WithRSAEncryption 37:3a:e1:db:90:e4:d6:ca:b6:32:35:50:2c:db:f8:d1:27:29: fb:64:d4:e3:be:64:b7:10:b2:5f:8b:ed:54:fa:3f:d4:b6:f2: 4f:b6:58:2f:d7:b9:2f:51:d6:59:8f:ee:5d:bc:a2:44:18:87: 20:17:9a:14:72:a0:71:5d:3f:f2:2b:d8:3e:5a:95:17:2a:41: c2:84:5c:9c:74:97:b4:73:53:7d:fc:b1:4f:eb:1a:1c:52:85: 39:8a:8a:68:3c:23:1c:bd:84:96:a5:68:c1:e5:8a:c1:e1:c2: 0a:b7:6c:8d:80:dc:83:38:6f:04:95:cb:9a:c4:2e:5f:3a:87: 40:3b:34:c6:b9:70:c5:5f:5d:92:07:6d:fc:78:e3:31:04:d7: e6:ff:69:3e:cb:92:24:d9:61:4c:00:e9:59:7b:0f:29:de:40: bd:77:7d:83:a8:b3:05:f2:91:26:93:89:b3:38:37:c4:df:8b: 4d:88:8b:6d:ce:e3:6e:48:b3:02:ee:67:8d:92:96:25:5a:6e: 23:a2:f0:ea:e2:14:3e:89:3f:ec:f0:69:27:21:c7:9b:b2:bf: 3b:9f:60:52:e5:5b:06:9f:73:97:2c:36:ac:3e:3c:da:c1:67: 49:9f:e5:d4:65:cd:c7:69:a9:c6:b7:c2:0f:e6:dd:f1:2a:4f: c4:5e:ac:ba -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NRVYZ0FdZTXklK9DsvLCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU0YTE0YmU2MTk3NTVlZWVlYjkxZmUyZjYyYTFkNGVlMDc4 NjE0OTYwHhcNMjYwMTAxMDYxODIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYzE0YjU1NjRlYTg2M2ZlMTBmODgwMzgyMjRhMTEwYjNiODFjZGMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArN8s8nkTcd3m/ZAbr3HufmJu2wUy CbbGm1QTP6oxOTK2zc8nxe5nAM8ZAYSuNY+oR6uM7tCKHrHVcpIrXqgd2CEf3MrJ udSNxOObkJAUNqWK+eSNsW6CumUi7o1cLYU7KnghBCJYyfwJn4Bid4zG6EuAmxNN L9CB5hBzCA2OZsaVAzNwp9gyr/ZqXWCVQGSTWsDMAXteRgIWVG29ckilTeeEWk4R 6Pl0qrmqn+FavJcUtZRl/nPq27EFHmg4PivvVL4TLh3B98mzvgsm0ON0MSDbUzQ4 pn1uBPuvBZhtU5LgIHLA1yYndCdX6eIuY+e3HpMEWxKQDuqm3wPj1ke+6QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNwUtVZOqGP+EPiAOCJKEQs7gc3DMB8GA1UdIwQY MBaAFFShS+YZdV7u65H+L2Kh1O4HhhSWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVktGTDVobDFYdTdya2Y0dllxSFU3Z2VHRkpZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy9iOGE5ZTctOTQ1MC00MzZjLWJmOTAt OGU5MDQ2NmJhZDM4LzEvM0JTMVZrNm9ZXzRRLUlBNElrb1JDenVCemNNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy9iOGE5ZTctOTQ1MC00MzZjLWJmOTAtOGU5MDQ2NmJhZDM4 LzEvVktGTDVobDFYdTdya2Y0dllxSFU3Z2VHRkpZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9EtMA0G CSqGSIb3DQEBCwUAA4IBAQA3OuHbkOTWyrYyNVAs2/jRJyn7ZNTjvmS3ELJfi+1U +j/UtvJPtlgv17kvUdZZj+5dvKJEGIcgF5oUcqBxXT/yK9g+WpUXKkHChFycdJe0 c1N9/LFP6xocUoU5iopoPCMcvYSWpWjB5YrB4cIKt2yNgNyDOG8ElcuaxC5fOodA OzTGuXDFX12SB238eOMxBNfm/2k+y5Ik2WFMAOlZew8p3kC9d32DqLMF8pEmk4mz ODfE34tNiIttzuNuSLMC7meNkpYlWm4jovDq4hQ+iT/s8GknIcebsr87n2BS5VsG n3OXLDasPjzawWdJn+XUZc3HaanGt8IP5t3xKk/EXqy6 -----END CERTIFICATE-----Generated at Mon Feb 9 20:09:34 2026 by rpki-client