This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/512313-afcd-4e9a-bb70-71005f7f02a8/1/3uI2T4FscmS1g4BxDBywDIRN1EM.roa File: 3uI2T4FscmS1g4BxDBywDIRN1EM.roa (raw, json) Hash identifier: GmArLm5Y723dPyhpNiMZSbQoSTY/TP5XBjOwFVSZTfc= Subject key identifier: DE:E2:36:4F:81:6C:72:64:B5:83:80:71:0C:1C:B0:0C:84:4D:D4:43 Certificate issuer: /CN=98690af062ea9b3ae5f64cf9a9fea56324c6bd97 Certificate serial: 019B7CEE0D1D57CA53CC004BFBB44D29797A Authority key identifier: 98:69:0A:F0:62:EA:9B:3A:E5:F6:4C:F9:A9:FE:A5:63:24:C6:BD:97 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mGkK8GLqmzrl9kz5qf6lYyTGvZc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/512313-afcd-4e9a-bb70-71005f7f02a8/1/3uI2T4FscmS1g4BxDBywDIRN1EM.roa Signing time: Fri 02 Jan 2026 04:18:54 +0000 ROA not before: Fri 02 Jan 2026 04:18:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60576 IP address blocks: 185.74.12.0/22 maxlen: 24 2a05:4840::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/512313-afcd-4e9a-bb70-71005f7f02a8/1/mGkK8GLqmzrl9kz5qf6lYyTGvZc.crl rsync://rpki.ripe.net/repository/DEFAULT/f4/512313-afcd-4e9a-bb70-71005f7f02a8/1/mGkK8GLqmzrl9kz5qf6lYyTGvZc.mft rsync://rpki.ripe.net/repository/DEFAULT/mGkK8GLqmzrl9kz5qf6lYyTGvZc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:0d:1d:57:ca:53:cc:00:4b:fb:b4:4d:29:79:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=98690af062ea9b3ae5f64cf9a9fea56324c6bd97 Validity Not Before: Jan 2 04:18:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dee2364f816c7264b58380710c1cb00c844dd443 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:22:ef:d7:c1:78:1a:d3:61:5b:21:e5:86:06: 26:d5:0f:3d:e9:cc:a3:c5:5e:a0:ff:d4:89:31:49: 33:38:f4:c7:fa:b5:1f:52:8f:6f:97:62:dc:a2:93: 43:7d:a5:50:ea:84:46:43:ba:80:4e:0f:a6:24:26: e9:10:14:c4:5d:77:77:e6:a2:9e:5c:ce:b6:08:42: 15:3d:ba:4e:81:72:3f:9a:26:ab:75:5b:b3:20:98: 82:d8:62:b8:50:04:5a:0b:7b:45:c7:c0:e8:91:a6: dc:b6:8b:e8:e1:28:78:d2:a9:f8:ab:35:d0:a3:37: a9:66:09:d7:35:6a:93:fd:4e:49:d9:a3:ec:17:51: 4b:05:39:b4:50:bf:04:bf:c5:92:63:86:8d:26:d6: 60:2c:8a:3f:b3:3d:35:a3:77:a4:2f:01:84:bc:7f: 77:2a:aa:b2:94:8d:4e:a6:de:3c:8c:7a:80:fe:cf: 81:d8:25:af:e4:13:7b:78:bf:4e:2d:e1:e1:7f:76: 64:0f:74:32:48:59:f0:fd:70:74:9a:5c:e2:0e:40: c1:31:6a:23:29:1a:7c:4c:fc:d6:d6:1d:04:c0:b8: 99:05:e2:a8:aa:02:f7:92:40:5c:a1:3d:dc:16:01: 28:7e:5e:da:d9:8f:6e:bd:d8:54:3a:9d:c2:d0:c9: 4f:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:E2:36:4F:81:6C:72:64:B5:83:80:71:0C:1C:B0:0C:84:4D:D4:43 X509v3 Authority Key Identifier: keyid:98:69:0A:F0:62:EA:9B:3A:E5:F6:4C:F9:A9:FE:A5:63:24:C6:BD:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mGkK8GLqmzrl9kz5qf6lYyTGvZc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/512313-afcd-4e9a-bb70-71005f7f02a8/1/3uI2T4FscmS1g4BxDBywDIRN1EM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/512313-afcd-4e9a-bb70-71005f7f02a8/1/mGkK8GLqmzrl9kz5qf6lYyTGvZc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.74.12.0/22 IPv6: 2a05:4840::/29 Signature Algorithm: sha256WithRSAEncryption 0e:07:69:b8:2c:0f:10:8d:d6:cc:07:a0:89:cb:23:4c:a6:27: 0e:86:22:20:d0:15:a9:01:2c:b7:5e:f1:02:b0:71:04:b4:07: 9d:f6:e5:31:0f:ea:54:86:9d:d3:b7:86:6b:93:0d:7a:33:98: aa:c6:95:e4:dc:86:fe:5a:84:22:cb:00:ad:11:18:91:3c:5e: 69:bd:13:fe:d4:72:43:e4:d8:a0:7a:77:e1:e0:f9:7e:ec:f3: c3:05:62:e4:8b:32:e9:ce:17:c0:4a:4d:00:d4:e9:db:d7:c8: d2:c4:ce:44:f5:e4:32:6f:ad:c8:1c:6a:77:bb:86:b6:3d:cc: 71:0e:f6:65:0e:12:c5:65:cf:55:81:50:39:0b:b4:86:e4:33: df:76:05:29:bb:31:c1:60:69:09:3e:58:44:bd:88:8b:44:ef: 7e:da:a9:a4:26:4d:e1:f9:6d:e6:0b:7d:d4:1c:3a:26:9b:e2: 36:59:43:ff:76:38:2b:f6:e9:e5:c7:52:48:fa:c9:52:63:c3: 73:e8:1d:76:df:f6:72:e0:9e:3b:d2:58:d6:50:8d:ff:08:3e: b6:52:91:3b:9e:20:56:bf:bd:94:9e:6f:82:ca:c9:5f:d8:d0: eb:7f:1e:ce:32:df:0c:18:96:25:5e:dc:23:29:29:68:b5:05: 76:6a:e5:8c -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt87g0dV8pTzABL+7RNKXl6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk4NjkwYWYwNjJlYTliM2FlNWY2NGNmOWE5ZmVhNTYzMjRj NmJkOTcwHhcNMjYwMTAyMDQxODU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZWUyMzY0ZjgxNmM3MjY0YjU4MzgwNzEwYzFjYjAwYzg0NGRkNDQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0SLv18F4GtNhWyHlhgYm1Q896cyj xV6g/9SJMUkzOPTH+rUfUo9vl2LcopNDfaVQ6oRGQ7qATg+mJCbpEBTEXXd35qKe XM62CEIVPbpOgXI/miardVuzIJiC2GK4UARaC3tFx8Dokabctovo4Sh40qn4qzXQ ozepZgnXNWqT/U5J2aPsF1FLBTm0UL8Ev8WSY4aNJtZgLIo/sz01o3ekLwGEvH93 KqqylI1Opt48jHqA/s+B2CWv5BN7eL9OLeHhf3ZkD3QySFnw/XB0mlziDkDBMWoj KRp8TPzW1h0EwLiZBeKoqgL3kkBcoT3cFgEofl7a2Y9uvdhUOp3C0MlPDwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFN7iNk+BbHJktYOAcQwcsAyETdRDMB8GA1UdIwQY MBaAFJhpCvBi6ps65fZM+an+pWMkxr2XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbUdrSzhHTHFtenJsOWt6NXFmNmxZeVRHdlpjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC81MTIzMTMtYWZjZC00ZTlhLWJiNzAt NzEwMDVmN2YwMmE4LzEvM3VJMlQ0RnNjbVMxZzRCeERCeXdESVJOMUVNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNC81MTIzMTMtYWZjZC00ZTlhLWJiNzAtNzEwMDVmN2YwMmE4 LzEvbUdrSzhHTHFtenJsOWt6NXFmNmxZeVRHdlpjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuUoMMA0E AgACMAcDBQMqBUhAMA0GCSqGSIb3DQEBCwUAA4IBAQAOB2m4LA8QjdbMB6CJyyNM picOhiIg0BWpASy3XvECsHEEtAed9uUxD+pUhp3Tt4Zrkw16M5iqxpXk3Ib+WoQi ywCtERiRPF5pvRP+1HJD5Nigenfh4Pl+7PPDBWLkizLpzhfASk0A1Onb18jSxM5E 9eQyb63IHGp3u4a2PcxxDvZlDhLFZc9VgVA5C7SG5DPfdgUpuzHBYGkJPlhEvYiL RO9+2qmkJk3h+W3mC33UHDomm+I2WUP/djgr9unlx1JI+slSY8Nz6B123/Zy4J47 0ljWUI3/CD62UpE7niBWv72Unm+Cyslf2NDrfx7OMt8MGJYlXtwjKSlotQV2auWM -----END CERTIFICATE-----Generated at Mon Feb 9 19:44:31 2026 by rpki-client