This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/a3294b-d478-4dbd-aae5-fd167ad92a9d/1/3OLcCBdwbIaLkHGliS3jf40rOZM.roa File: 3OLcCBdwbIaLkHGliS3jf40rOZM.roa (raw, json) Hash identifier: y+Z6qCdxU1AT2mPO0SPuKLnBtAD3uBo7UAXx7c407AA= Subject key identifier: DC:E2:DC:08:17:70:6C:86:8B:90:71:A5:89:2D:E3:7F:8D:2B:39:93 Certificate issuer: /CN=fb061a39f0a037923113d6b8bb9b5bdab5b2f466 Certificate serial: 019B7FF248053E89096F62C431790751666D Authority key identifier: FB:06:1A:39:F0:A0:37:92:31:13:D6:B8:BB:9B:5B:DA:B5:B2:F4:66 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-wYaOfCgN5IxE9a4u5tb2rWy9GY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/a3294b-d478-4dbd-aae5-fd167ad92a9d/1/3OLcCBdwbIaLkHGliS3jf40rOZM.roa Signing time: Fri 02 Jan 2026 18:22:23 +0000 ROA not before: Fri 02 Jan 2026 18:22:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198169 IP address blocks: 78.109.224.0/24 maxlen: 24 78.109.233.0/24 maxlen: 24 78.109.234.0/24 maxlen: 24 78.109.235.0/24 maxlen: 24 78.109.238.0/24 maxlen: 24 185.52.101.0/24 maxlen: 24 185.52.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/a3294b-d478-4dbd-aae5-fd167ad92a9d/1/1-wYaOfCgN5IxE9a4u5tb2rWy9GY.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/a3294b-d478-4dbd-aae5-fd167ad92a9d/1/1-wYaOfCgN5IxE9a4u5tb2rWy9GY.mft rsync://rpki.ripe.net/repository/DEFAULT/1-wYaOfCgN5IxE9a4u5tb2rWy9GY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 20:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:48:05:3e:89:09:6f:62:c4:31:79:07:51:66:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fb061a39f0a037923113d6b8bb9b5bdab5b2f466 Validity Not Before: Jan 2 18:22:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dce2dc0817706c868b9071a5892de37f8d2b3993 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:23:dd:c1:30:37:92:5f:cf:2c:05:a1:eb:00: 36:20:c5:01:aa:21:59:4e:41:10:1d:a9:95:e7:31: 27:d8:48:ca:bf:ba:bd:3e:42:d1:be:0d:fe:a4:29: e0:6b:8b:fe:e5:11:03:61:0b:2c:ac:fa:4c:89:b8: 1a:a2:9f:6d:55:0d:8d:4b:77:41:c6:43:f0:d8:3f: 4b:89:c4:c4:ef:ba:7d:48:0a:45:16:d7:c3:ee:c7: 8d:35:ea:45:e4:55:ef:a9:64:6c:80:9b:87:d6:56: 44:c0:ef:32:df:32:f1:6d:ab:ab:65:92:71:ee:55: 67:e9:db:81:d7:ae:20:be:28:e8:52:b8:0c:03:91: 14:b1:13:87:fd:0d:de:7e:8b:83:88:42:35:74:95: 0d:ff:04:b7:56:3e:98:43:06:19:d7:e1:79:3f:d5: d5:a8:34:e9:08:3b:70:eb:67:a8:e5:68:72:cb:7e: cc:fd:38:a9:50:d6:1b:e9:d3:7c:0b:42:ac:5c:51: 9d:b6:86:e1:d8:8b:a8:7c:32:9f:c4:21:9d:f2:e4: d8:f8:09:8d:a4:0c:66:25:ac:61:dc:40:6c:10:04: 92:d5:9c:14:61:8f:46:63:3a:ab:00:1b:cb:3a:36: 8b:7f:84:7b:37:0d:50:d3:da:82:f1:a0:a7:7e:1d: c5:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:E2:DC:08:17:70:6C:86:8B:90:71:A5:89:2D:E3:7F:8D:2B:39:93 X509v3 Authority Key Identifier: keyid:FB:06:1A:39:F0:A0:37:92:31:13:D6:B8:BB:9B:5B:DA:B5:B2:F4:66 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-wYaOfCgN5IxE9a4u5tb2rWy9GY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a3294b-d478-4dbd-aae5-fd167ad92a9d/1/3OLcCBdwbIaLkHGliS3jf40rOZM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a3294b-d478-4dbd-aae5-fd167ad92a9d/1/1-wYaOfCgN5IxE9a4u5tb2rWy9GY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.109.224.0/24 78.109.233.0-78.109.235.255 78.109.238.0/24 185.52.101.0-185.52.102.255 Signature Algorithm: sha256WithRSAEncryption 05:b8:59:89:1c:2a:e2:dd:b0:dd:53:53:00:6d:37:db:f1:48: 9b:5c:85:4d:83:ed:c5:fe:f6:6c:d0:eb:36:ce:95:5a:93:b5: 9f:2d:6f:86:9f:f8:75:46:e5:8c:8f:b4:51:0d:5d:a5:d7:1d: 70:2c:d8:82:12:41:8d:69:ed:df:3d:03:98:82:b7:7e:6a:98: 2d:1f:58:bc:f6:48:ae:69:3e:4e:56:ee:ee:a6:61:2b:46:1c: 1c:93:04:5e:44:ed:91:4b:2a:09:b1:e6:bd:ef:55:22:c7:86: 82:21:9b:e9:33:3c:44:e5:d2:22:65:c3:5f:03:79:76:af:f4: 06:d1:9f:26:ca:eb:2e:97:0a:c2:86:f8:54:7c:2b:bd:47:db: 65:43:06:55:dd:0d:c7:be:07:bd:5e:a4:3d:c6:e6:d0:e8:70: 2e:c9:b1:33:eb:51:26:85:09:cb:e9:a8:78:8a:d1:ed:aa:e1: af:d2:1b:4d:97:84:74:80:ed:a9:5a:37:16:5b:5e:84:0f:b9: f3:e0:52:69:7f:8d:6f:9c:91:e9:79:b0:fb:92:19:05:7d:b3: 77:e9:c1:af:9d:6c:ee:7d:6f:04:61:c8:49:a7:5a:d0:4c:15: c9:84:3a:72:6f:a9:c0:d5:76:e9:dc:1b:ff:6c:16:ab:74:f0: 41:4c:29:b3 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt/8kgFPokJb2LEMXkHUWZtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZiMDYxYTM5ZjBhMDM3OTIzMTEzZDZiOGJiOWI1YmRhYjVi MmY0NjYwHhcNMjYwMTAyMTgyMjIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkY2UyZGMwODE3NzA2Yzg2OGI5MDcxYTU4OTJkZTM3ZjhkMmIzOTkzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1yPdwTA3kl/PLAWh6wA2IMUBqiFZ TkEQHamV5zEn2EjKv7q9PkLRvg3+pCnga4v+5REDYQssrPpMibgaop9tVQ2NS3dB xkPw2D9LicTE77p9SApFFtfD7seNNepF5FXvqWRsgJuH1lZEwO8y3zLxbaurZZJx 7lVn6duB164gvijoUrgMA5EUsROH/Q3efouDiEI1dJUN/wS3Vj6YQwYZ1+F5P9XV qDTpCDtw62eo5Whyy37M/TipUNYb6dN8C0KsXFGdtobh2IuofDKfxCGd8uTY+AmN pAxmJaxh3EBsEASS1ZwUYY9GYzqrABvLOjaLf4R7Nw1Q09qC8aCnfh3FsQIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFNzi3AgXcGyGi5BxpYkt43+NKzmTMB8GA1UdIwQY MBaAFPsGGjnwoDeSMRPWuLubW9q1svRmMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS13WWFPZkNnTjVJeEU5YTR1NXRiMnJXeTlHWS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjMvYTMyOTRiLWQ0NzgtNGRiZC1hYWU1 LWZkMTY3YWQ5MmE5ZC8xLzNPTGNDQmR3YklhTGtIR2xpUzNqZjQwck9aTS5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvZjMvYTMyOTRiLWQ0NzgtNGRiZC1hYWU1LWZkMTY3YWQ5MmE5 ZC8xLzEtd1lhT2ZDZ041SXhFOWE0dTV0YjJyV3k5R1kuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwQQYIKwYBBQUHAQcBAf8EMjAwMC4EAgABMCgDBABObeAw DAMEAE5t6QMEAk5t6AMEAE5t7jAMAwQAuTRlAwQAuTRmMA0GCSqGSIb3DQEBCwUA A4IBAQAFuFmJHCri3bDdU1MAbTfb8UibXIVNg+3F/vZs0Os2zpVak7WfLW+Gn/h1 RuWMj7RRDV2l1x1wLNiCEkGNae3fPQOYgrd+apgtH1i89kiuaT5OVu7upmErRhwc kwReRO2RSyoJsea971Uix4aCIZvpMzxE5dIiZcNfA3l2r/QG0Z8myusulwrChvhU fCu9R9tlQwZV3Q3Hvge9XqQ9xubQ6HAuybEz61EmhQnL6ah4itHtquGv0htNl4R0 gO2pWjcWW16ED7nz4FJpf41vnJHpebD7khkFfbN36cGvnWzufW8EYchJp1rQTBXJ hDpyb6nA1Xbp3Bv/bBardPBBTCmz -----END CERTIFICATE-----Generated at Tue Jan 20 04:45:26 2026 by rpki-client