This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/d8d6ba-ef95-4dc5-be98-671bee2bcc04/1/s3dM0xvLl-Y9I7_sOQEZMWL8kWI.roa File: s3dM0xvLl-Y9I7_sOQEZMWL8kWI.roa (raw, json) Hash identifier: WHvA5QdVXhnyOdFbgWQ6INw42b6vsKso3xNl40VwuMM= Subject key identifier: B3:77:4C:D3:1B:CB:97:E6:3D:23:BF:EC:39:01:19:31:62:FC:91:62 Certificate issuer: /CN=acc431652cdcf521c55bc4005c0dae32ca0a3ec6 Certificate serial: 019B7FF253925F6B38225357C4BF80FD14B7 Authority key identifier: AC:C4:31:65:2C:DC:F5:21:C5:5B:C4:00:5C:0D:AE:32:CA:0A:3E:C6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rMQxZSzc9SHFW8QAXA2uMsoKPsY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/d8d6ba-ef95-4dc5-be98-671bee2bcc04/1/s3dM0xvLl-Y9I7_sOQEZMWL8kWI.roa Signing time: Fri 02 Jan 2026 18:22:26 +0000 ROA not before: Fri 02 Jan 2026 18:22:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48299 IP address blocks: 31.25.144.0/21 maxlen: 21 31.25.151.0/24 maxlen: 24 94.126.160.0/21 maxlen: 21 185.36.97.0/24 maxlen: 24 185.36.99.0/24 maxlen: 24 2a02:2600::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/d8d6ba-ef95-4dc5-be98-671bee2bcc04/1/rMQxZSzc9SHFW8QAXA2uMsoKPsY.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/d8d6ba-ef95-4dc5-be98-671bee2bcc04/1/rMQxZSzc9SHFW8QAXA2uMsoKPsY.mft rsync://rpki.ripe.net/repository/DEFAULT/rMQxZSzc9SHFW8QAXA2uMsoKPsY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:53:92:5f:6b:38:22:53:57:c4:bf:80:fd:14:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=acc431652cdcf521c55bc4005c0dae32ca0a3ec6 Validity Not Before: Jan 2 18:22:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b3774cd31bcb97e63d23bfec3901193162fc9162 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:a2:71:27:f3:87:f2:f2:2a:9a:e6:3e:b8:45: 66:ba:c6:a0:45:9e:a2:5d:04:45:d7:75:d2:08:d5: d8:94:9f:0c:01:ed:ad:30:16:95:40:d7:b7:42:a5: df:65:98:bf:1d:70:e7:73:1e:64:38:0c:e1:cf:40: 7c:17:29:43:16:3e:82:c3:74:50:14:fb:a3:64:92: 8d:bb:de:c7:20:48:79:21:5d:29:d7:a1:85:68:6e: 87:f4:5e:b0:f8:c5:14:37:23:f4:74:38:36:c9:a0: 5a:75:17:e1:3d:61:34:8d:ec:b1:4e:ec:03:58:5f: 00:8f:9f:86:3d:fb:c7:50:01:01:71:e2:c4:37:cb: 1d:bd:17:c1:d0:dc:d7:4a:ea:09:b9:35:2a:c0:bf: 6e:f6:2b:b0:df:8c:24:a4:d8:a1:3c:20:a5:60:e8: a7:53:b7:6e:0f:25:4d:54:5a:8e:4a:04:dd:fd:bc: 6b:0d:62:66:ba:28:f5:53:e6:13:56:93:04:5b:41: ff:e1:57:72:46:c0:38:b7:f9:aa:7f:48:8f:a5:d2: f2:f4:c9:b0:d3:1b:ec:8c:d2:d4:04:3b:3c:1b:7a: 68:ae:04:53:e6:7e:8b:52:ab:77:cf:00:bd:d5:8e: cc:8e:8d:f3:d8:1e:6e:6b:78:a9:17:f9:7b:4e:fe: 94:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:77:4C:D3:1B:CB:97:E6:3D:23:BF:EC:39:01:19:31:62:FC:91:62 X509v3 Authority Key Identifier: keyid:AC:C4:31:65:2C:DC:F5:21:C5:5B:C4:00:5C:0D:AE:32:CA:0A:3E:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rMQxZSzc9SHFW8QAXA2uMsoKPsY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/d8d6ba-ef95-4dc5-be98-671bee2bcc04/1/s3dM0xvLl-Y9I7_sOQEZMWL8kWI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/d8d6ba-ef95-4dc5-be98-671bee2bcc04/1/rMQxZSzc9SHFW8QAXA2uMsoKPsY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.25.144.0/21 94.126.160.0/21 185.36.97.0/24 185.36.99.0/24 IPv6: 2a02:2600::/32 Signature Algorithm: sha256WithRSAEncryption 89:95:20:ee:64:80:27:e1:c5:8c:b8:83:93:59:f0:99:d0:1e: 45:3f:a1:b6:ac:50:70:98:45:1f:ad:29:eb:c3:18:ff:07:25: c7:99:82:49:f2:d9:40:2d:10:d1:de:95:48:5d:e9:6b:03:83: da:e2:07:13:1e:a9:3b:2d:00:98:b4:c7:39:11:2b:03:6c:3e: 41:44:d4:33:2f:d8:b2:f0:26:97:e2:fc:d8:f0:ca:29:ca:4e: d8:e5:d3:62:2d:01:f9:42:0d:ab:93:35:cd:e9:fb:b0:f4:ab: ab:f8:ee:27:ee:71:61:1d:8d:52:f7:38:16:de:05:06:5e:c9: 52:48:83:00:9b:7f:e9:9e:4d:c6:11:2b:66:ba:d7:c7:96:5d: ca:46:08:20:b4:c5:af:b1:81:6b:9d:a7:69:79:bd:d3:1f:18: e2:63:f0:a9:25:36:e3:d6:ef:a7:4e:47:ff:b5:4e:95:95:c7: f7:d1:1c:49:aa:8a:8d:95:1d:e4:85:9b:c4:2f:1b:86:68:52: 00:31:d5:ed:5c:7e:b5:7b:59:6c:c7:07:7e:8b:38:6b:4c:df: 2d:a8:e0:39:e7:17:62:94:b8:a9:93:ba:1c:88:73:ff:51:18: 0e:7f:f7:ec:72:84:3e:fe:fa:9b:02:2e:c7:f3:49:24:a5:92: 65:4e:69:53 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgISAZt/8lOSX2s4IlNXxL+A/RS3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjYzQzMTY1MmNkY2Y1MjFjNTViYzQwMDVjMGRhZTMyY2Ew YTNlYzYwHhcNMjYwMTAyMTgyMjI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMzc3NGNkMzFiY2I5N2U2M2QyM2JmZWMzOTAxMTkzMTYyZmM5MTYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA56JxJ/OH8vIqmuY+uEVmusagRZ6i XQRF13XSCNXYlJ8MAe2tMBaVQNe3QqXfZZi/HXDncx5kOAzhz0B8FylDFj6Cw3RQ FPujZJKNu97HIEh5IV0p16GFaG6H9F6w+MUUNyP0dDg2yaBadRfhPWE0jeyxTuwD WF8Aj5+GPfvHUAEBceLEN8sdvRfB0NzXSuoJuTUqwL9u9iuw34wkpNihPCClYOin U7duDyVNVFqOSgTd/bxrDWJmuij1U+YTVpMEW0H/4VdyRsA4t/mqf0iPpdLy9Mmw 0xvsjNLUBDs8G3porgRT5n6LUqt3zwC91Y7Mjo3z2B5ua3ipF/l7Tv6U2wIDAQAB o4ICKjCCAiYwHQYDVR0OBBYEFLN3TNMby5fmPSO/7DkBGTFi/JFiMB8GA1UdIwQY MBaAFKzEMWUs3PUhxVvEAFwNrjLKCj7GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvck1ReFpTemM5U0hGVzhRQVhBMnVNc29LUHNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9kOGQ2YmEtZWY5NS00ZGM1LWJlOTgt NjcxYmVlMmJjYzA0LzEvczNkTTB4dkxsLVk5STdfc09RRVpNV0w4a1dJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS9kOGQ2YmEtZWY5NS00ZGM1LWJlOTgtNjcxYmVlMmJjYzA0 LzEvck1ReFpTemM5U0hGVzhRQVhBMnVNc29LUHNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwQDHxmQAwQD Xn6gAwQAuSRhAwQAuSRjMA0EAgACMAcDBQAqAiYAMA0GCSqGSIb3DQEBCwUAA4IB AQCJlSDuZIAn4cWMuIOTWfCZ0B5FP6G2rFBwmEUfrSnrwxj/ByXHmYJJ8tlALRDR 3pVIXelrA4Pa4gcTHqk7LQCYtMc5ESsDbD5BRNQzL9iy8CaX4vzY8Mopyk7Y5dNi LQH5Qg2rkzXN6fuw9Kur+O4n7nFhHY1S9zgW3gUGXslSSIMAm3/pnk3GEStmutfH ll3KRgggtMWvsYFrnadpeb3THxjiY/CpJTbj1u+nTkf/tU6Vlcf30RxJqoqNlR3k hZvELxuGaFIAMdXtXH61e1lsxwd+izhrTN8tqOA55xdilLipk7ociHP/URgOf/fs coQ+/vqbAi7H80kkpZJlTmlT -----END CERTIFICATE-----Generated at Tue Feb 10 00:02:28 2026 by rpki-client