This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/28c90c-9a63-40b4-92cf-2d7b8570dd03/1/3XADLdEbS1FY6n6yUx5o7fgS4pU.roa File: 3XADLdEbS1FY6n6yUx5o7fgS4pU.roa (raw, json) Hash identifier: sJxb+ZizUKA1xitVNheZoX8adqgMHbTrnaDCSefof/w= Subject key identifier: DD:70:03:2D:D1:1B:4B:51:58:EA:7E:B2:53:1E:68:ED:F8:12:E2:95 Certificate issuer: /CN=cee4c15c8707dfbdfda83be3a693c35947f16d59 Certificate serial: 019B7C804F8C2DF04BECFA12441288DECA55 Authority key identifier: CE:E4:C1:5C:87:07:DF:BD:FD:A8:3B:E3:A6:93:C3:59:47:F1:6D:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zuTBXIcH3739qDvjppPDWUfxbVk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/28c90c-9a63-40b4-92cf-2d7b8570dd03/1/3XADLdEbS1FY6n6yUx5o7fgS4pU.roa Signing time: Fri 02 Jan 2026 02:19:02 +0000 ROA not before: Fri 02 Jan 2026 02:19:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205774 IP address blocks: 185.159.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/28c90c-9a63-40b4-92cf-2d7b8570dd03/1/zuTBXIcH3739qDvjppPDWUfxbVk.crl rsync://rpki.ripe.net/repository/DEFAULT/ec/28c90c-9a63-40b4-92cf-2d7b8570dd03/1/zuTBXIcH3739qDvjppPDWUfxbVk.mft rsync://rpki.ripe.net/repository/DEFAULT/zuTBXIcH3739qDvjppPDWUfxbVk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 11:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:4f:8c:2d:f0:4b:ec:fa:12:44:12:88:de:ca:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cee4c15c8707dfbdfda83be3a693c35947f16d59 Validity Not Before: Jan 2 02:19:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dd70032dd11b4b5158ea7eb2531e68edf812e295 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:58:3f:3d:e8:38:37:e1:23:3b:04:06:8b:16: 25:49:ee:77:69:b7:be:f7:6e:3c:95:18:3e:82:96: da:03:2d:3c:0b:e9:41:8e:c6:36:c2:fc:3a:38:01: 55:5d:18:be:4d:d4:9a:da:ca:6e:57:09:86:ef:ca: 9e:3f:16:db:13:e9:d7:bb:20:3d:52:11:e3:16:f9: 9c:66:18:b9:c9:87:9b:3c:71:ee:69:74:91:50:17: 53:0e:34:88:7c:00:28:73:48:2a:52:34:99:44:b3: 50:97:15:59:29:df:de:52:62:cd:56:04:6f:3a:6c: f5:03:07:42:8d:98:f4:8b:02:a7:67:71:fb:7d:9c: 35:f2:7f:e5:5a:e8:e3:84:8a:fa:b6:9d:92:7f:81: d9:26:f2:98:6a:b2:6c:ab:f2:47:cb:2f:84:79:12: b2:22:e3:6c:e1:07:90:46:30:d8:32:59:ca:5b:e6: e3:73:6e:7e:32:1e:d7:fa:38:16:53:16:b5:16:1e: c0:f6:3c:fd:59:0d:50:29:91:f5:08:55:86:d9:8b: 98:da:f2:72:f8:2d:2d:ad:65:6a:9e:02:f1:e6:15: bd:4c:0f:31:68:a6:a2:2c:fc:25:d5:bc:57:7e:db: c3:2f:16:29:fb:12:e6:75:d1:c7:d7:81:6c:4b:47: 58:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:70:03:2D:D1:1B:4B:51:58:EA:7E:B2:53:1E:68:ED:F8:12:E2:95 X509v3 Authority Key Identifier: keyid:CE:E4:C1:5C:87:07:DF:BD:FD:A8:3B:E3:A6:93:C3:59:47:F1:6D:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zuTBXIcH3739qDvjppPDWUfxbVk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/28c90c-9a63-40b4-92cf-2d7b8570dd03/1/3XADLdEbS1FY6n6yUx5o7fgS4pU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/28c90c-9a63-40b4-92cf-2d7b8570dd03/1/zuTBXIcH3739qDvjppPDWUfxbVk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.159.88.0/24 Signature Algorithm: sha256WithRSAEncryption a1:29:6a:9f:32:25:1a:78:3f:4d:04:fa:2c:be:5b:84:24:5f: 18:b9:4b:d4:3f:8f:44:6c:1a:89:b2:97:5d:78:1f:ed:fa:5b: 88:79:76:8b:b6:8d:5c:47:9b:c7:5f:97:07:00:52:bc:78:cb: bf:d1:0d:c8:a2:65:e3:a5:c5:76:9e:32:bb:64:07:94:cc:38: a1:e9:ad:dd:f8:ad:3f:2c:56:03:43:f2:74:8d:0c:1a:53:f3: 11:11:e1:60:30:d2:25:9d:03:db:d0:aa:d7:1c:d8:f4:ab:73: 79:1c:3f:03:c8:d6:80:bc:0a:bb:fb:a6:42:d0:26:5e:9d:76: fe:e2:e2:e1:5d:bb:4b:18:47:66:7b:bf:92:1c:80:2d:40:8a: 20:30:76:9b:36:fa:44:78:ae:2a:d3:e0:8b:c6:ef:7f:58:bb: d5:5e:ca:63:92:3b:60:fe:16:4e:88:55:09:44:9a:f2:94:14: 31:3c:7b:9d:14:b4:46:a6:51:4d:e3:36:77:c8:9e:d1:4c:e1: c6:32:49:7a:ab:8c:9d:15:00:b3:44:4d:6e:1c:72:4a:a5:51: 3b:53:a7:b3:d3:eb:cc:db:eb:64:1a:a2:e8:a2:cb:b9:ed:44: 42:d8:b5:9b:28:bc:46:b6:7a:9f:31:cc:91:47:60:5d:b6:fd: 94:22:aa:93 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8gE+MLfBL7PoSRBKI3spVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNlZTRjMTVjODcwN2RmYmRmZGE4M2JlM2E2OTNjMzU5NDdm MTZkNTkwHhcNMjYwMTAyMDIxOTAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZDcwMDMyZGQxMWI0YjUxNThlYTdlYjI1MzFlNjhlZGY4MTJlMjk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt1g/Peg4N+EjOwQGixYlSe53abe+ 9248lRg+gpbaAy08C+lBjsY2wvw6OAFVXRi+TdSa2spuVwmG78qePxbbE+nXuyA9 UhHjFvmcZhi5yYebPHHuaXSRUBdTDjSIfAAoc0gqUjSZRLNQlxVZKd/eUmLNVgRv Omz1AwdCjZj0iwKnZ3H7fZw18n/lWujjhIr6tp2Sf4HZJvKYarJsq/JHyy+EeRKy IuNs4QeQRjDYMlnKW+bjc25+Mh7X+jgWUxa1Fh7A9jz9WQ1QKZH1CFWG2YuY2vJy +C0trWVqngLx5hW9TA8xaKaiLPwl1bxXftvDLxYp+xLmddHH14FsS0dYVwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFN1wAy3RG0tRWOp+slMeaO34EuKVMB8GA1UdIwQY MBaAFM7kwVyHB9+9/ag746aTw1lH8W1ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvenVUQlhJY0gzNzM5cUR2anBwUERXVWZ4YlZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy8yOGM5MGMtOWE2My00MGI0LTkyY2Yt MmQ3Yjg1NzBkZDAzLzEvM1hBRExkRWJTMUZZNm42eVV4NW83ZmdTNHBVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYy8yOGM5MGMtOWE2My00MGI0LTkyY2YtMmQ3Yjg1NzBkZDAz LzEvenVUQlhJY0gzNzM5cUR2anBwUERXVWZ4YlZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZ9YMA0G CSqGSIb3DQEBCwUAA4IBAQChKWqfMiUaeD9NBPosvluEJF8YuUvUP49EbBqJspdd eB/t+luIeXaLto1cR5vHX5cHAFK8eMu/0Q3IomXjpcV2njK7ZAeUzDih6a3d+K0/ LFYDQ/J0jQwaU/MREeFgMNIlnQPb0KrXHNj0q3N5HD8DyNaAvAq7+6ZC0CZenXb+ 4uLhXbtLGEdme7+SHIAtQIogMHabNvpEeK4q0+CLxu9/WLvVXspjkjtg/hZOiFUJ RJrylBQxPHudFLRGplFN4zZ3yJ7RTOHGMkl6q4ydFQCzRE1uHHJKpVE7U6ez0+vM 2+tkGqLoosu57URC2LWbKLxGtnqfMcyRR2Bdtv2UIqqT -----END CERTIFICATE-----Generated at Mon Jan 26 21:04:43 2026 by rpki-client