This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/3ytiWjmFt3rYZft34LBPp9IPn8M.roa File: 3ytiWjmFt3rYZft34LBPp9IPn8M.roa (raw, json) Hash identifier: t6Z85iFlhPkY9Mi/GJk5DDB2tSPS3ygni+I6/1lEoxk= Subject key identifier: DF:2B:62:5A:39:85:B7:7A:D8:65:FB:77:E0:B0:4F:A7:D2:0F:9F:C3 Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10 Certificate serial: 019B7F84E610E50ECB873F88235E2047F767 Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/3ytiWjmFt3rYZft34LBPp9IPn8M.roa Signing time: Fri 02 Jan 2026 16:22:54 +0000 ROA not before: Fri 02 Jan 2026 16:22:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 62051 IP address blocks: 92.52.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.mft rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 15:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:e6:10:e5:0e:cb:87:3f:88:23:5e:20:47:f7:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10 Validity Not Before: Jan 2 16:22:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=df2b625a3985b77ad865fb77e0b04fa7d20f9fc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:fd:dc:19:0b:eb:c0:ff:cf:91:3f:e7:0b:0b: 16:25:bd:74:ef:05:62:8a:c0:60:5c:a6:eb:6d:39: 02:5d:54:f4:fd:d5:7d:cd:c0:50:7d:6c:17:31:b2: bb:84:55:cf:e4:3d:4a:14:9d:5f:25:c9:5d:cb:6c: 0a:de:7f:2b:f6:c1:d0:8c:1c:4d:e4:a3:d9:f0:dd: d1:6c:8f:fd:d3:31:e0:35:11:4d:cb:cb:97:3b:83: a3:de:62:4d:f2:18:ca:fc:81:50:4f:d3:fb:06:e3: fd:59:66:24:74:79:29:b8:a2:c2:37:3b:d2:5d:d7: 6a:e0:9e:b0:65:cc:a7:d4:68:82:d6:05:26:4a:5c: a0:93:1e:dc:b6:ac:5b:52:3c:32:e4:56:d7:4b:db: 06:97:74:ad:a7:cf:7c:13:d3:a1:d8:ff:76:da:b6: dc:ad:02:70:ec:fd:a8:a9:b8:75:c6:e2:14:88:b6: e1:72:66:c6:13:80:c8:f6:52:64:2b:02:91:44:d1: fc:f7:b8:04:ca:5c:be:36:49:4a:78:d6:6a:53:34: 6b:ce:78:1b:ec:e1:ea:ed:6e:2c:ba:fc:a6:1b:38: 43:7e:c2:15:b6:32:f2:cc:bb:a2:26:8a:a9:d3:b4: b5:c8:35:c9:4d:b8:d2:fa:c6:c7:64:de:95:09:5f: 16:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:2B:62:5A:39:85:B7:7A:D8:65:FB:77:E0:B0:4F:A7:D2:0F:9F:C3 X509v3 Authority Key Identifier: keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/3ytiWjmFt3rYZft34LBPp9IPn8M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 92.52.216.0/24 Signature Algorithm: sha256WithRSAEncryption bd:7d:f3:a4:c7:a3:b2:e9:59:05:38:3f:1b:f2:da:3f:26:01: db:8a:ec:3e:95:e2:81:75:b7:45:1b:65:30:ee:d9:37:b1:9a: dc:ac:44:8e:17:3f:1e:f8:c4:0f:c6:59:0c:37:b4:2a:71:78: 4e:66:5b:4a:1f:82:85:e3:9c:06:cf:9b:fb:7c:65:da:17:4e: 99:7d:1c:2e:fb:9a:cf:74:7f:a0:19:a3:3c:c6:a5:ef:4d:3b: 82:f6:0e:9d:6c:87:ef:77:82:f3:ae:d5:47:20:c0:34:20:98: 8d:f4:87:3b:9f:86:31:70:eb:9e:55:2d:9d:81:1e:f3:ed:aa: 6a:09:72:81:b5:70:51:eb:f8:4c:ae:04:54:28:2c:e6:2c:13: 71:fb:91:7a:83:c0:3d:31:c7:eb:d4:0e:f0:33:c6:d4:45:ed: e6:d3:94:00:5f:2e:0f:1d:46:46:3f:be:87:15:e6:23:65:fe: ef:c8:38:9f:26:14:04:67:6f:9b:52:4c:b1:3b:bc:d6:5d:c2: 2b:fa:65:92:9a:34:d3:26:c7:6f:51:a9:59:9a:78:4e:50:cd: cb:28:b9:aa:2f:21:1b:be:cb:46:98:b1:15:e9:d7:87:3e:d0: c3:0a:b1:90:80:04:4b:2b:0e:02:ac:d4:bf:df:df:5f:7c:62: f7:55:bb:cb -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hOYQ5Q7Lhz+II14gR/dnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkYWFhMGUwODIzNjAzNjBhY2RhMzQ3NjY0ZWI4MzE0ZWIx MWRhMTAwHhcNMjYwMTAyMTYyMjU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZjJiNjI1YTM5ODViNzdhZDg2NWZiNzdlMGIwNGZhN2QyMGY5ZmMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8/3cGQvrwP/PkT/nCwsWJb107wVi isBgXKbrbTkCXVT0/dV9zcBQfWwXMbK7hFXP5D1KFJ1fJcldy2wK3n8r9sHQjBxN 5KPZ8N3RbI/90zHgNRFNy8uXO4Oj3mJN8hjK/IFQT9P7BuP9WWYkdHkpuKLCNzvS Xddq4J6wZcyn1GiC1gUmSlygkx7ctqxbUjwy5FbXS9sGl3Stp898E9Oh2P922rbc rQJw7P2oqbh1xuIUiLbhcmbGE4DI9lJkKwKRRNH897gEyly+NklKeNZqUzRrzngb 7OHq7W4suvymGzhDfsIVtjLyzLuiJoqp07S1yDXJTbjS+sbHZN6VCV8WOQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFN8rYlo5hbd62GX7d+CwT6fSD5/DMB8GA1UdIwQY MBaAFM2qoOCCNgNgrNo0dmTrgxTrEdoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2Mt N2U0ZDZmNmY2ZTY2LzEvM3l0aVdqbUZ0M3JZWmZ0MzRMQlBwOUlQbjhNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2MtN2U0ZDZmNmY2ZTY2 LzEvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXDTYMA0G CSqGSIb3DQEBCwUAA4IBAQC9ffOkx6Oy6VkFOD8b8to/JgHbiuw+leKBdbdFG2Uw 7tk3sZrcrESOFz8e+MQPxlkMN7QqcXhOZltKH4KF45wGz5v7fGXaF06ZfRwu+5rP dH+gGaM8xqXvTTuC9g6dbIfvd4LzrtVHIMA0IJiN9Ic7n4YxcOueVS2dgR7z7apq CXKBtXBR6/hMrgRUKCzmLBNx+5F6g8A9Mcfr1A7wM8bURe3m05QAXy4PHUZGP76H FeYjZf7vyDifJhQEZ2+bUkyxO7zWXcIr+mWSmjTTJsdvUalZmnhOUM3LKLmqLyEb vstGmLEV6deHPtDDCrGQgARLKw4CrNS/399ffGL3VbvL -----END CERTIFICATE-----Generated at Mon Jan 19 20:00:46 2026 by rpki-client