This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/d6088c-3110-41e1-b996-32d4ad8f56de/1/_Tm3qrECzPezIfgQFfA3nySl1es.roa File: _Tm3qrECzPezIfgQFfA3nySl1es.roa (raw, json) Hash identifier: rBkCC8V4vfJZ7RekKKwrg+MhibDVuZ/LjndlBlPdu+Q= Subject key identifier: FD:39:B7:AA:B1:02:CC:F7:B3:21:F8:10:15:F0:37:9F:24:A5:D5:EB Certificate issuer: /CN=4fa5cde524f7810d5868bc49ab0bf6621f44dc21 Certificate serial: 019B797F041FAD85114B7EB11FF86282D308 Authority key identifier: 4F:A5:CD:E5:24:F7:81:0D:58:68:BC:49:AB:0B:F6:62:1F:44:DC:21 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T6XN5ST3gQ1YaLxJqwv2Yh9E3CE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/d6088c-3110-41e1-b996-32d4ad8f56de/1/_Tm3qrECzPezIfgQFfA3nySl1es.roa Signing time: Thu 01 Jan 2026 12:18:45 +0000 ROA not before: Thu 01 Jan 2026 12:18:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213052 IP address blocks: 185.244.162.0/24 maxlen: 24 2a12:4440::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/d6088c-3110-41e1-b996-32d4ad8f56de/1/T6XN5ST3gQ1YaLxJqwv2Yh9E3CE.crl rsync://rpki.ripe.net/repository/DEFAULT/e3/d6088c-3110-41e1-b996-32d4ad8f56de/1/T6XN5ST3gQ1YaLxJqwv2Yh9E3CE.mft rsync://rpki.ripe.net/repository/DEFAULT/T6XN5ST3gQ1YaLxJqwv2Yh9E3CE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 00:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:04:1f:ad:85:11:4b:7e:b1:1f:f8:62:82:d3:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fa5cde524f7810d5868bc49ab0bf6621f44dc21 Validity Not Before: Jan 1 12:18:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fd39b7aab102ccf7b321f81015f0379f24a5d5eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f0:c9:fd:1b:ae:e4:a5:d0:ec:5d:dc:95:57: c0:76:c0:b9:d8:a6:88:dc:67:57:00:85:b3:d6:d6: 0c:b1:e2:55:c4:bb:fb:13:3f:1f:ec:6a:d1:26:64: 47:d5:2a:84:98:49:d2:37:cd:a5:15:27:61:52:2e: 55:e9:99:6d:ca:04:2f:28:43:39:05:8c:61:f7:a8: 8f:11:c0:c1:5d:23:4f:a6:07:5a:29:7c:6f:50:2a: d6:56:8a:31:fc:91:9d:21:8a:30:a1:58:ba:df:9a: 6e:cb:c1:32:2b:ea:88:71:23:b0:26:03:0d:24:9c: 95:62:e2:e4:75:17:8c:8a:b7:c3:cf:ad:31:cc:e0: 85:7c:98:57:f3:b7:3d:6e:38:97:10:51:0f:e5:3f: fe:34:c0:22:01:5d:1d:af:9e:4a:45:6f:5c:7b:b1: b9:31:ec:a8:67:fa:71:51:bd:f1:8a:55:a8:44:2f: 7c:2a:2e:fa:ed:dc:1f:2e:77:cb:c6:2b:61:73:14: 51:a7:cb:7c:45:c7:90:fa:80:80:01:3c:ab:88:57: 1f:0d:79:70:f8:1d:d7:e2:80:75:ca:50:21:e8:89: a5:f2:fc:01:49:cd:55:05:60:4f:fb:db:48:23:fa: 8f:fc:42:a6:7c:ac:13:ed:8f:3a:bb:b8:32:3a:6d: 50:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:39:B7:AA:B1:02:CC:F7:B3:21:F8:10:15:F0:37:9F:24:A5:D5:EB X509v3 Authority Key Identifier: keyid:4F:A5:CD:E5:24:F7:81:0D:58:68:BC:49:AB:0B:F6:62:1F:44:DC:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T6XN5ST3gQ1YaLxJqwv2Yh9E3CE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/d6088c-3110-41e1-b996-32d4ad8f56de/1/_Tm3qrECzPezIfgQFfA3nySl1es.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/d6088c-3110-41e1-b996-32d4ad8f56de/1/T6XN5ST3gQ1YaLxJqwv2Yh9E3CE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.244.162.0/24 IPv6: 2a12:4440::/32 Signature Algorithm: sha256WithRSAEncryption 81:21:c0:76:6f:7e:47:53:9c:f7:8c:bf:13:ed:e6:18:58:59: 2e:55:bc:59:56:f6:52:2b:72:3f:45:62:74:15:a1:e9:5b:91: c8:26:e6:cc:76:37:7f:df:6c:e4:f2:9c:e1:a2:c7:d9:f2:11: dd:e8:73:ba:fd:77:8c:e6:3e:71:56:40:0a:19:07:35:2e:b7: 2d:c4:b7:ed:5e:22:95:b3:ab:58:98:f5:9b:f2:ea:d5:5c:41: 52:28:5d:62:ef:fb:8e:73:46:98:a7:7e:ac:5e:b2:48:72:0b: 23:b7:c0:88:35:4e:98:0b:f4:45:9f:dc:3f:93:5c:cc:fd:ab: 78:81:93:98:08:b5:1a:aa:bc:25:05:ec:cd:dd:89:fa:9c:7e: 99:f4:c7:aa:71:1f:f7:56:0e:fd:31:7f:6e:d4:57:74:17:12: f6:3d:e4:d1:29:0b:60:a3:d2:3c:37:33:10:26:14:af:57:00: 75:ad:4e:c6:f1:9f:cd:1b:a5:30:68:72:2e:b0:82:cd:84:4e: 20:90:99:0b:78:41:ed:7f:83:b4:fc:23:1f:3e:79:9d:03:d4: 2f:93:88:80:f9:df:58:7b:22:19:0f:8a:08:e4:1d:61:24:1d: fc:c3:e0:8f:0d:61:12:b2:26:0e:6d:eb:b2:14:52:0a:f2:68: b4:38:2d:1e -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5fwQfrYURS36xH/higtMIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmYTVjZGU1MjRmNzgxMGQ1ODY4YmM0OWFiMGJmNjYyMWY0 NGRjMjEwHhcNMjYwMTAxMTIxODQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZDM5YjdhYWIxMDJjY2Y3YjMyMWY4MTAxNWYwMzc5ZjI0YTVkNWViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw/DJ/Ruu5KXQ7F3clVfAdsC52KaI 3GdXAIWz1tYMseJVxLv7Ez8f7GrRJmRH1SqEmEnSN82lFSdhUi5V6ZltygQvKEM5 BYxh96iPEcDBXSNPpgdaKXxvUCrWVoox/JGdIYowoVi635puy8EyK+qIcSOwJgMN JJyVYuLkdReMirfDz60xzOCFfJhX87c9bjiXEFEP5T/+NMAiAV0dr55KRW9ce7G5 MeyoZ/pxUb3xilWoRC98Ki767dwfLnfLxithcxRRp8t8RceQ+oCAATyriFcfDXlw +B3X4oB1ylAh6Iml8vwBSc1VBWBP+9tII/qP/EKmfKwT7Y86u7gyOm1Q7QIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFP05t6qxAsz3syH4EBXwN58kpdXrMB8GA1UdIwQY MBaAFE+lzeUk94ENWGi8SasL9mIfRNwhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVDZYTjVTVDNnUTFZYUx4SnF3djJZaDlFM0NFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy9kNjA4OGMtMzExMC00MWUxLWI5OTYt MzJkNGFkOGY1NmRlLzEvX1RtM3FyRUN6UGV6SWZnUUZmQTNueVNsMWVzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMy9kNjA4OGMtMzExMC00MWUxLWI5OTYtMzJkNGFkOGY1NmRl LzEvVDZYTjVTVDNnUTFZYUx4SnF3djJZaDlFM0NFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAufSiMA0E AgACMAcDBQAqEkRAMA0GCSqGSIb3DQEBCwUAA4IBAQCBIcB2b35HU5z3jL8T7eYY WFkuVbxZVvZSK3I/RWJ0FaHpW5HIJubMdjd/32zk8pzhosfZ8hHd6HO6/XeM5j5x VkAKGQc1LrctxLftXiKVs6tYmPWb8urVXEFSKF1i7/uOc0aYp36sXrJIcgsjt8CI NU6YC/RFn9w/k1zM/at4gZOYCLUaqrwlBezN3Yn6nH6Z9MeqcR/3Vg79MX9u1Fd0 FxL2PeTRKQtgo9I8NzMQJhSvVwB1rU7G8Z/NG6UwaHIusILNhE4gkJkLeEHtf4O0 /CMfPnmdA9Qvk4iA+d9YeyIZD4oI5B1hJB38w+CPDWESsiYObeuyFFIK8mi0OC0e -----END CERTIFICATE-----Generated at Mon Feb 2 09:53:05 2026 by rpki-client