This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/ac410a-49a0-4e38-ae3b-5ca5bf67e69d/1/s44uN6WA03-69O83KoxBpdROnOs.roa File: s44uN6WA03-69O83KoxBpdROnOs.roa (raw, json) Hash identifier: m6tv0wnAPyB40bmbjEukGtEqHI9oybLvGh9JpX5oodY= Subject key identifier: B3:8E:2E:37:A5:80:D3:7F:BA:F4:EF:37:2A:8C:41:A5:D4:4E:9C:EB Certificate issuer: /CN=d3367dba3a220060e67d4ec680b0f99f247a872c Certificate serial: 019B7EA70FD6132C97E2D411F93FD8A6F4F8 Authority key identifier: D3:36:7D:BA:3A:22:00:60:E6:7D:4E:C6:80:B0:F9:9F:24:7A:87:2C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0zZ9ujoiAGDmfU7GgLD5nyR6hyw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/ac410a-49a0-4e38-ae3b-5ca5bf67e69d/1/s44uN6WA03-69O83KoxBpdROnOs.roa Signing time: Fri 02 Jan 2026 12:20:36 +0000 ROA not before: Fri 02 Jan 2026 12:20:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 140.150.96.0/19 maxlen: 24 176.116.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/ac410a-49a0-4e38-ae3b-5ca5bf67e69d/1/0zZ9ujoiAGDmfU7GgLD5nyR6hyw.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/ac410a-49a0-4e38-ae3b-5ca5bf67e69d/1/0zZ9ujoiAGDmfU7GgLD5nyR6hyw.mft rsync://rpki.ripe.net/repository/DEFAULT/0zZ9ujoiAGDmfU7GgLD5nyR6hyw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:0f:d6:13:2c:97:e2:d4:11:f9:3f:d8:a6:f4:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d3367dba3a220060e67d4ec680b0f99f247a872c Validity Not Before: Jan 2 12:20:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b38e2e37a580d37fbaf4ef372a8c41a5d44e9ceb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:42:b6:a7:7c:0b:ae:b8:50:d9:d1:03:22:43: ba:90:cb:88:39:f5:f9:1e:2e:ef:9f:a8:76:3c:5a: d1:f5:0b:ba:ba:25:af:22:73:29:86:27:86:47:79: 97:2e:5a:5b:02:b8:08:85:a1:7f:6f:72:e1:74:6a: 16:73:2c:e0:40:75:19:42:90:13:b6:28:64:b4:6d: 35:2d:95:f2:7c:8d:fd:f2:6a:20:6f:25:4a:35:ad: 62:b0:9c:bb:c0:93:ae:01:79:f0:a7:c5:8f:02:df: 37:54:a0:73:41:a9:09:57:19:38:1a:f9:59:f7:1f: ee:1f:ee:c3:93:56:ab:1d:65:2a:12:f3:c4:59:80: 08:be:bd:c5:27:e3:95:6b:46:8e:01:49:10:30:39: b5:62:e3:8a:43:38:54:31:ef:66:e3:1f:34:30:7e: 68:5f:bb:58:f7:a6:b9:78:aa:5a:67:4c:54:86:22: bf:bb:b9:19:d9:8a:86:a3:95:ea:58:9c:c0:3b:0a: a4:7e:71:46:ff:1e:06:95:d4:14:d7:a4:7f:8e:17: ea:44:cd:1f:b5:a0:15:89:01:38:1f:90:8a:60:65: 77:25:9e:d2:58:8c:ac:50:d5:12:6e:2b:6b:80:d1: b0:93:48:4b:2b:bc:b0:a6:71:3b:bd:95:18:fe:b3: 5e:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:8E:2E:37:A5:80:D3:7F:BA:F4:EF:37:2A:8C:41:A5:D4:4E:9C:EB X509v3 Authority Key Identifier: keyid:D3:36:7D:BA:3A:22:00:60:E6:7D:4E:C6:80:B0:F9:9F:24:7A:87:2C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0zZ9ujoiAGDmfU7GgLD5nyR6hyw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/ac410a-49a0-4e38-ae3b-5ca5bf67e69d/1/s44uN6WA03-69O83KoxBpdROnOs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/ac410a-49a0-4e38-ae3b-5ca5bf67e69d/1/0zZ9ujoiAGDmfU7GgLD5nyR6hyw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.150.96.0/19 176.116.21.0/24 Signature Algorithm: sha256WithRSAEncryption 41:17:a8:4d:e3:2d:ab:c7:e1:27:f8:24:cd:91:00:f5:6a:d5: 04:00:44:c0:73:71:c9:7d:10:42:75:21:af:ad:29:32:8d:66: cb:c9:87:92:99:df:3d:c2:fa:64:36:46:85:a3:a2:9d:90:93: 62:e2:64:af:16:a0:63:a7:88:2b:f1:ed:dc:2a:61:88:51:81: ee:12:9e:2f:d1:fb:1a:95:4a:e6:75:57:7b:9b:1a:07:d2:2c: c8:d4:2e:ba:4e:54:e0:01:49:c3:44:2a:22:46:c3:65:8a:e3: 2f:5d:e7:ae:9c:3c:09:e0:6a:5f:82:25:18:db:ce:96:9d:ef: 06:b9:ee:db:6b:40:5b:49:1d:fb:52:8e:69:f5:99:3e:57:7f: 50:cc:5a:b2:da:af:34:f8:d2:eb:3e:3a:d1:0e:33:03:25:a4: f0:f5:28:ed:9d:ba:c3:f4:49:89:5a:b7:48:75:20:1e:b1:e9: 84:cd:01:39:b5:82:c0:23:b3:b3:42:9d:20:30:3b:72:c5:70: bd:46:73:6d:91:4e:30:11:c2:f5:ed:1b:88:26:8b:ab:9c:36: 4d:92:a5:14:2b:83:46:80:17:d8:f1:dd:30:ec:61:8c:35:ed: e7:55:af:53:c5:a4:fb:ce:5a:c0:63:cc:75:e0:cd:62:ef:2b: 07:28:35:42 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+pw/WEyyX4tQR+T/YpvT4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQzMzY3ZGJhM2EyMjAwNjBlNjdkNGVjNjgwYjBmOTlmMjQ3 YTg3MmMwHhcNMjYwMTAyMTIyMDM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMzhlMmUzN2E1ODBkMzdmYmFmNGVmMzcyYThjNDFhNWQ0NGU5Y2ViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA00K2p3wLrrhQ2dEDIkO6kMuIOfX5 Hi7vn6h2PFrR9Qu6uiWvInMphieGR3mXLlpbArgIhaF/b3LhdGoWcyzgQHUZQpAT tihktG01LZXyfI398mogbyVKNa1isJy7wJOuAXnwp8WPAt83VKBzQakJVxk4GvlZ 9x/uH+7Dk1arHWUqEvPEWYAIvr3FJ+OVa0aOAUkQMDm1YuOKQzhUMe9m4x80MH5o X7tY96a5eKpaZ0xUhiK/u7kZ2YqGo5XqWJzAOwqkfnFG/x4GldQU16R/jhfqRM0f taAViQE4H5CKYGV3JZ7SWIysUNUSbitrgNGwk0hLK7ywpnE7vZUY/rNeKwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFLOOLjelgNN/uvTvNyqMQaXUTpzrMB8GA1UdIwQY MBaAFNM2fbo6IgBg5n1OxoCw+Z8keocsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMHpaOXVqb2lBR0RtZlU3R2dMRDVueVI2aHl3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy9hYzQxMGEtNDlhMC00ZTM4LWFlM2It NWNhNWJmNjdlNjlkLzEvczQ0dU42V0EwMy02OU84M0tveEJwZFJPbk9zLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy9hYzQxMGEtNDlhMC00ZTM4LWFlM2ItNWNhNWJmNjdlNjlk LzEvMHpaOXVqb2lBR0RtZlU3R2dMRDVueVI2aHl3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQFjJZgAwQA sHQVMA0GCSqGSIb3DQEBCwUAA4IBAQBBF6hN4y2rx+En+CTNkQD1atUEAETAc3HJ fRBCdSGvrSkyjWbLyYeSmd89wvpkNkaFo6KdkJNi4mSvFqBjp4gr8e3cKmGIUYHu Ep4v0fsalUrmdVd7mxoH0izI1C66TlTgAUnDRCoiRsNliuMvXeeunDwJ4GpfgiUY 286Wne8Gue7ba0BbSR37Uo5p9Zk+V39QzFqy2q80+NLrPjrRDjMDJaTw9SjtnbrD 9EmJWrdIdSAesemEzQE5tYLAI7OzQp0gMDtyxXC9RnNtkU4wEcL17RuIJournDZN kqUUK4NGgBfY8d0w7GGMNe3nVa9TxaT7zlrAY8x14M1i7ysHKDVC -----END CERTIFICATE-----Generated at Wed Jan 7 23:47:44 2026 by rpki-client