This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/8fe7d8-017b-41aa-a91f-28b19e3fd4a6/1/r3hgF8w2ISQEvnYVws0uagdgXaQ.roa File: r3hgF8w2ISQEvnYVws0uagdgXaQ.roa (raw, json) Hash identifier: fTPQMjGaJ6jaiZa2YYhiWQOETzK7JUfg3B1DmMWkq3g= Subject key identifier: AF:78:60:17:CC:36:21:24:04:BE:76:15:C2:CD:2E:6A:07:60:5D:A4 Certificate issuer: /CN=aca77c708af0ba1f81549c9f87089559390167a5 Certificate serial: 019B7EA6802DD4703E8B9C6A24D3F5A3AF55 Authority key identifier: AC:A7:7C:70:8A:F0:BA:1F:81:54:9C:9F:87:08:95:59:39:01:67:A5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKd8cIrwuh-BVJyfhwiVWTkBZ6U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/8fe7d8-017b-41aa-a91f-28b19e3fd4a6/1/r3hgF8w2ISQEvnYVws0uagdgXaQ.roa Signing time: Fri 02 Jan 2026 12:19:59 +0000 ROA not before: Fri 02 Jan 2026 12:19:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15830 IP address blocks: 88.84.128.0/21 maxlen: 24 88.84.136.0/21 maxlen: 24 88.84.144.0/21 maxlen: 24 88.84.152.0/21 maxlen: 24 89.202.0.0/17 maxlen: 24 193.110.116.0/22 maxlen: 24 217.68.144.0/20 maxlen: 24 217.79.208.0/20 maxlen: 24 2001:4c68::/32 maxlen: 48 2a02:20a8::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/8fe7d8-017b-41aa-a91f-28b19e3fd4a6/1/rKd8cIrwuh-BVJyfhwiVWTkBZ6U.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/8fe7d8-017b-41aa-a91f-28b19e3fd4a6/1/rKd8cIrwuh-BVJyfhwiVWTkBZ6U.mft rsync://rpki.ripe.net/repository/DEFAULT/rKd8cIrwuh-BVJyfhwiVWTkBZ6U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 21:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:80:2d:d4:70:3e:8b:9c:6a:24:d3:f5:a3:af:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aca77c708af0ba1f81549c9f87089559390167a5 Validity Not Before: Jan 2 12:19:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=af786017cc36212404be7615c2cd2e6a07605da4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:81:ea:ea:01:7b:ec:7e:d0:41:1c:05:3f:8d: e9:d3:1c:6c:c9:08:8c:07:47:9b:e5:bb:1b:76:55: b5:ba:59:37:c4:ec:c8:b4:06:20:9a:b4:75:65:a8: 90:45:3e:63:83:f6:4a:47:aa:2e:8d:85:4b:65:c2: ca:11:24:7d:27:a5:f2:c1:25:30:35:fb:ec:88:24: dc:30:0e:31:d7:2a:e9:ae:79:2c:13:e4:db:88:11: ff:ef:09:90:9f:c1:4e:71:0c:68:45:2b:95:9f:76: 69:32:ed:b8:89:48:3a:f0:8e:d8:a3:bf:22:f0:92: a4:3a:b2:07:67:5a:29:da:5f:79:93:2e:8f:2a:9a: 28:e2:82:31:44:4c:f4:20:d2:22:4c:04:ec:84:d2: 00:ed:1b:6e:42:15:7a:cc:46:c3:39:59:51:0c:17: a5:6f:0b:b5:35:df:19:f0:d1:b5:75:32:0a:7a:d0: ba:84:95:62:f6:d1:b0:a1:59:15:29:d7:d1:2e:f9: 0e:e6:1a:dd:bd:06:32:ea:8a:a9:01:32:03:4d:08: 87:fd:8f:a3:0c:08:32:0e:f0:37:81:03:3c:99:d0: bf:49:a5:ce:e1:0d:d0:24:7b:08:94:6f:bd:4b:4d: 94:59:59:51:cb:75:32:11:21:30:c2:b8:9a:b4:ca: 37:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:78:60:17:CC:36:21:24:04:BE:76:15:C2:CD:2E:6A:07:60:5D:A4 X509v3 Authority Key Identifier: keyid:AC:A7:7C:70:8A:F0:BA:1F:81:54:9C:9F:87:08:95:59:39:01:67:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKd8cIrwuh-BVJyfhwiVWTkBZ6U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/8fe7d8-017b-41aa-a91f-28b19e3fd4a6/1/r3hgF8w2ISQEvnYVws0uagdgXaQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/8fe7d8-017b-41aa-a91f-28b19e3fd4a6/1/rKd8cIrwuh-BVJyfhwiVWTkBZ6U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 88.84.128.0/19 89.202.0.0/17 193.110.116.0/22 217.68.144.0/20 217.79.208.0/20 IPv6: 2001:4c68::/32 2a02:20a8::/29 Signature Algorithm: sha256WithRSAEncryption 56:da:bc:d3:a0:d0:c6:e7:31:b5:c8:28:c7:fe:a7:d1:55:ef: 10:b5:cb:09:46:8b:65:e8:a7:34:96:5f:fb:8d:6d:fb:d5:bb: c8:cb:d0:ab:e0:42:45:07:49:3c:33:69:88:e8:83:65:f5:ea: f8:0e:63:63:09:a6:59:a4:f0:37:ee:ae:21:10:c6:f4:b0:44: 2a:ef:e2:6a:16:a7:e1:f3:cb:1f:06:2d:ff:37:74:a7:7d:3c: ae:a7:47:f8:9b:07:e6:ce:4a:c9:13:bc:8c:14:91:70:77:b5: 1e:c9:ad:63:1d:5f:2b:e0:6c:50:e7:62:8f:11:4a:66:93:18: 1a:05:8a:ed:f2:18:8f:11:9b:dd:43:5a:af:3d:df:c0:ed:ea: d5:ab:9e:96:7d:c0:a0:32:0f:94:3a:8e:21:5d:ff:c0:cf:7b: d5:75:7d:f4:53:f0:4e:1f:9d:9c:52:de:b0:22:72:15:b0:de: 94:e0:40:87:b5:97:ca:66:a4:fe:c4:06:d2:46:52:92:93:f4: e5:3e:a8:ac:00:16:df:45:b8:8d:89:30:63:7c:6e:f4:ca:0f: f4:74:48:71:ee:2a:80:6c:19:51:7e:6c:75:f2:a6:58:ea:a9: d4:0e:75:9a:cd:e0:44:be:1c:af:6f:cc:7a:2d:b8:0e:37:72: 25:f6:b0:cc -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgISAZt+poAt1HA+i5xqJNP1o69VMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjYTc3YzcwOGFmMGJhMWY4MTU0OWM5Zjg3MDg5NTU5Mzkw MTY3YTUwHhcNMjYwMTAyMTIxOTU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZjc4NjAxN2NjMzYyMTI0MDRiZTc2MTVjMmNkMmU2YTA3NjA1ZGE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqIHq6gF77H7QQRwFP43p0xxsyQiM B0eb5bsbdlW1ulk3xOzItAYgmrR1ZaiQRT5jg/ZKR6oujYVLZcLKESR9J6XywSUw NfvsiCTcMA4x1yrprnksE+TbiBH/7wmQn8FOcQxoRSuVn3ZpMu24iUg68I7Yo78i 8JKkOrIHZ1op2l95ky6PKpoo4oIxREz0INIiTATshNIA7RtuQhV6zEbDOVlRDBel bwu1Nd8Z8NG1dTIKetC6hJVi9tGwoVkVKdfRLvkO5hrdvQYy6oqpATIDTQiH/Y+j DAgyDvA3gQM8mdC/SaXO4Q3QJHsIlG+9S02UWVlRy3UyESEwwriatMo3iwIDAQAB o4ICNzCCAjMwHQYDVR0OBBYEFK94YBfMNiEkBL52FcLNLmoHYF2kMB8GA1UdIwQY MBaAFKynfHCK8LofgVScn4cIlVk5AWelMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcktkOGNJcnd1aC1CVkp5Zmh3aVZXVGtCWjZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS84ZmU3ZDgtMDE3Yi00MWFhLWE5MWYt MjhiMTllM2ZkNGE2LzEvcjNoZ0Y4dzJJU1FFdm5ZVndzMHVhZ2RnWGFRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS84ZmU3ZDgtMDE3Yi00MWFhLWE5MWYtMjhiMTllM2ZkNGE2 LzEvcktkOGNJcnd1aC1CVkp5Zmh3aVZXVGtCWjZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME0GCCsGAQUFBwEHAQH/BD4wPDAkBAIAATAeAwQFWFSAAwQH WcoAAwQCwW50AwQE2USQAwQE2U/QMBQEAgACMA4DBQAgAUxoAwUDKgIgqDANBgkq hkiG9w0BAQsFAAOCAQEAVtq806DQxucxtcgox/6n0VXvELXLCUaLZeinNJZf+41t +9W7yMvQq+BCRQdJPDNpiOiDZfXq+A5jYwmmWaTwN+6uIRDG9LBEKu/iahan4fPL HwYt/zd0p308rqdH+JsH5s5KyRO8jBSRcHe1HsmtYx1fK+BsUOdijxFKZpMYGgWK 7fIYjxGb3UNarz3fwO3q1aueln3AoDIPlDqOIV3/wM971XV99FPwTh+dnFLesCJy FbDelOBAh7WXymak/sQG0kZSkpP05T6orAAW30W4jYkwY3xu9MoP9HRIce4qgGwZ UX5sdfKmWOqp1A51ms3gRL4cr2/Mei24DjdyJfawzA== -----END CERTIFICATE-----Generated at Sat Jan 3 04:59:31 2026 by rpki-client