This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/e4e531-6bee-4189-ba7c-203e45616306/1/3dIucZ8jH7dlGBbm6_dHTseku08.roa File: 3dIucZ8jH7dlGBbm6_dHTseku08.roa (raw, json) Hash identifier: thGZsX4bRwQc9L89QWKDx2WpmoY2kq/BhxHDeJ8x19o= Subject key identifier: DD:D2:2E:71:9F:23:1F:B7:65:18:16:E6:EB:F7:47:4E:C7:A4:BB:4F Certificate issuer: /CN=13764a52c85e07e33749743d23a5a24d096df147 Certificate serial: 019B7A5B47A2849242C1B23E38B2D7B1626C Authority key identifier: 13:76:4A:52:C8:5E:07:E3:37:49:74:3D:23:A5:A2:4D:09:6D:F1:47 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E3ZKUsheB-M3SXQ9I6WiTQlt8Uc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/e4e531-6bee-4189-ba7c-203e45616306/1/3dIucZ8jH7dlGBbm6_dHTseku08.roa Signing time: Thu 01 Jan 2026 16:19:20 +0000 ROA not before: Thu 01 Jan 2026 16:19:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198949 IP address blocks: 95.131.240.0/21 maxlen: 24 185.147.148.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/e4e531-6bee-4189-ba7c-203e45616306/1/E3ZKUsheB-M3SXQ9I6WiTQlt8Uc.crl rsync://rpki.ripe.net/repository/DEFAULT/f5/e4e531-6bee-4189-ba7c-203e45616306/1/E3ZKUsheB-M3SXQ9I6WiTQlt8Uc.mft rsync://rpki.ripe.net/repository/DEFAULT/E3ZKUsheB-M3SXQ9I6WiTQlt8Uc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:47:a2:84:92:42:c1:b2:3e:38:b2:d7:b1:62:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=13764a52c85e07e33749743d23a5a24d096df147 Validity Not Before: Jan 1 16:19:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ddd22e719f231fb7651816e6ebf7474ec7a4bb4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e3:ad:55:b5:a9:40:a6:ab:0f:17:f0:c6:7b: 47:86:d2:fd:e9:ca:c2:76:0d:81:0e:94:a8:f8:9f: 15:b7:da:45:c2:31:69:9c:d8:4a:9f:f5:a8:c2:21: 1d:32:35:71:25:90:a9:ad:56:47:9a:d2:10:40:55: 2a:ad:00:4f:df:ba:3f:89:60:77:c2:c0:fa:9d:75: 3f:d3:a0:6b:c0:0a:0d:35:f1:1c:cd:0d:94:5a:8c: f4:9d:93:24:a4:fc:10:45:de:2d:7f:e7:37:23:06: 56:67:e2:0f:e3:94:78:4f:6f:a1:90:ae:46:c0:42: 8c:24:43:52:7c:af:8a:10:2d:b7:8c:c7:ed:e5:1f: 2e:d0:ad:02:18:87:17:c5:91:79:4a:28:69:48:21: a0:04:9d:a8:6f:0e:c6:07:72:85:f3:03:e4:c9:c5: 01:87:10:14:68:be:12:07:13:8e:bf:c7:f4:7e:38: 5b:15:54:f6:b4:3d:d8:cc:43:55:6e:28:a1:2c:ff: 5f:c4:f9:a3:7f:d7:01:8f:0d:d5:2f:5e:be:84:1f: f4:51:26:4d:e5:17:de:5c:62:6c:4b:6a:62:fc:24: 5c:8a:6b:d8:1d:f1:e9:7e:73:ad:46:e9:73:b7:d2: b2:ee:97:cc:47:57:71:1e:a2:a8:80:35:27:18:11: 5d:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:D2:2E:71:9F:23:1F:B7:65:18:16:E6:EB:F7:47:4E:C7:A4:BB:4F X509v3 Authority Key Identifier: keyid:13:76:4A:52:C8:5E:07:E3:37:49:74:3D:23:A5:A2:4D:09:6D:F1:47 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E3ZKUsheB-M3SXQ9I6WiTQlt8Uc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/e4e531-6bee-4189-ba7c-203e45616306/1/3dIucZ8jH7dlGBbm6_dHTseku08.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/e4e531-6bee-4189-ba7c-203e45616306/1/E3ZKUsheB-M3SXQ9I6WiTQlt8Uc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.131.240.0/21 185.147.148.0/22 Signature Algorithm: sha256WithRSAEncryption 23:be:6c:0e:97:11:9e:1f:9c:76:a0:00:c2:0c:fa:7e:20:d4: 69:d6:c8:e7:f7:e8:53:6a:d4:b0:b1:65:bc:77:c5:2a:dd:d6: 03:69:52:c6:07:14:98:94:86:a4:82:02:9c:84:4e:f1:2e:0c: 47:c9:4b:a6:9b:e9:89:fb:65:93:49:3c:f2:3b:5f:5c:67:a1: 46:14:1a:cd:0b:8f:a9:d8:20:30:d8:22:3c:2d:bf:b5:23:a7: 8d:4a:65:d0:24:1d:97:26:21:f1:33:0e:ad:51:30:20:e2:cc: 83:4b:30:ce:94:4c:d8:61:28:be:40:a9:2d:af:61:51:82:f6: 03:58:68:d1:2a:28:ed:d8:3e:19:56:de:db:af:8f:cc:46:89: f4:5b:00:48:e4:9b:a5:9b:c9:f9:d9:e7:6a:ba:d4:cd:43:5e: 7f:69:82:d3:49:94:50:6c:94:17:22:e1:23:08:59:d2:94:75: 9a:e0:23:15:82:a5:ca:ea:63:ce:17:db:7e:0a:f5:2d:04:f3: 0e:b8:b1:31:92:e6:24:51:fb:1e:91:cf:e7:4a:d3:29:69:8c: 1b:71:4f:89:57:09:58:24:ae:25:55:00:bc:f0:c7:0c:94:b4: fd:2f:b9:43:29:dc:19:6c:34:9b:64:04:b2:27:c9:2a:07:ed: 1e:3b:a6:34 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6W0eihJJCwbI+OLLXsWJsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEzNzY0YTUyYzg1ZTA3ZTMzNzQ5NzQzZDIzYTVhMjRkMDk2 ZGYxNDcwHhcNMjYwMTAxMTYxOTIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZGQyMmU3MTlmMjMxZmI3NjUxODE2ZTZlYmY3NDc0ZWM3YTRiYjRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0OOtVbWpQKarDxfwxntHhtL96crC dg2BDpSo+J8Vt9pFwjFpnNhKn/WowiEdMjVxJZCprVZHmtIQQFUqrQBP37o/iWB3 wsD6nXU/06BrwAoNNfEczQ2UWoz0nZMkpPwQRd4tf+c3IwZWZ+IP45R4T2+hkK5G wEKMJENSfK+KEC23jMft5R8u0K0CGIcXxZF5SihpSCGgBJ2obw7GB3KF8wPkycUB hxAUaL4SBxOOv8f0fjhbFVT2tD3YzENVbiihLP9fxPmjf9cBjw3VL16+hB/0USZN 5RfeXGJsS2pi/CRcimvYHfHpfnOtRulzt9Ky7pfMR1dxHqKogDUnGBFdIwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFN3SLnGfIx+3ZRgW5uv3R07HpLtPMB8GA1UdIwQY MBaAFBN2SlLIXgfjN0l0PSOlok0JbfFHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRTNaS1VzaGVCLU0zU1hROUk2V2lUUWx0OFVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS9lNGU1MzEtNmJlZS00MTg5LWJhN2Mt MjAzZTQ1NjE2MzA2LzEvM2RJdWNaOGpIN2RsR0JibTZfZEhUc2VrdTA4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNS9lNGU1MzEtNmJlZS00MTg5LWJhN2MtMjAzZTQ1NjE2MzA2 LzEvRTNaS1VzaGVCLU0zU1hROUk2V2lUUWx0OFVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDX4PwAwQC uZOUMA0GCSqGSIb3DQEBCwUAA4IBAQAjvmwOlxGeH5x2oADCDPp+INRp1sjn9+hT atSwsWW8d8Uq3dYDaVLGBxSYlIakggKchE7xLgxHyUumm+mJ+2WTSTzyO19cZ6FG FBrNC4+p2CAw2CI8Lb+1I6eNSmXQJB2XJiHxMw6tUTAg4syDSzDOlEzYYSi+QKkt r2FRgvYDWGjRKijt2D4ZVt7br4/MRon0WwBI5Julm8n52edqutTNQ15/aYLTSZRQ bJQXIuEjCFnSlHWa4CMVgqXK6mPOF9t+CvUtBPMOuLExkuYkUfsekc/nStMpaYwb cU+JVwlYJK4lVQC88McMlLT9L7lDKdwZbDSbZASyJ8kqB+0eO6Y0 -----END CERTIFICATE-----Generated at Wed Jan 7 22:29:19 2026 by rpki-client