This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/b3JxtrhKDsDTqBI6cQvHONYRjVU.roa File: b3JxtrhKDsDTqBI6cQvHONYRjVU.roa (raw, json) Hash identifier: C950hko8WTv3REmoomJ1yY7S0AF8GUGo8sOTvPlJ2Dg= Subject key identifier: 6F:72:71:B6:B8:4A:0E:C0:D3:A8:12:3A:71:0B:C7:38:D6:11:8D:55 Certificate issuer: /CN=92788f4ebb741c0c369a0fd30594cd0101dc7476 Certificate serial: 019B7EA5622D5DD12B83531E519C3E40EDC7 Authority key identifier: 92:78:8F:4E:BB:74:1C:0C:36:9A:0F:D3:05:94:CD:01:01:DC:74:76 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/b3JxtrhKDsDTqBI6cQvHONYRjVU.roa Signing time: Fri 02 Jan 2026 12:18:46 +0000 ROA not before: Fri 02 Jan 2026 12:18:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207151 IP address blocks: 185.165.64.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.crl rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:62:2d:5d:d1:2b:83:53:1e:51:9c:3e:40:ed:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92788f4ebb741c0c369a0fd30594cd0101dc7476 Validity Not Before: Jan 2 12:18:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6f7271b6b84a0ec0d3a8123a710bc738d6118d55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:12:b8:cf:0c:e7:b7:ea:61:bd:58:10:ac:80: cd:b7:f3:0b:02:83:6a:70:38:f2:1f:56:29:98:38: a1:1e:b8:5d:d5:a3:e1:f6:08:d7:8c:a8:35:c5:83: 24:e3:95:7f:e9:d6:27:a8:b8:0d:aa:21:e1:f6:d5: 53:00:87:bb:b2:09:24:ad:1f:5e:32:8d:dd:4b:6b: cb:77:86:36:b2:c6:52:a1:fc:b5:b7:a3:cf:c8:2f: b8:30:75:58:74:e4:6b:cc:b6:8c:80:87:a1:bd:08: 63:cb:4f:20:95:70:c4:3e:3d:04:57:63:47:5c:44: 5c:fd:ea:66:a5:26:75:a3:9a:56:c6:43:e7:ac:ec: 64:6a:e7:5a:fb:b8:15:4f:95:ef:3a:eb:b7:53:89: d5:e4:05:21:d5:ea:ee:09:d5:a1:76:fa:46:87:b5: 02:7a:0e:55:e5:ef:30:9f:c6:6e:22:e1:0d:c8:c6: aa:33:0f:41:a2:9f:6a:ef:ca:ca:d5:26:6d:8a:4c: a7:98:fe:41:9f:73:e7:c0:dd:db:3c:fb:00:99:3b: 57:52:63:a7:ee:87:44:37:48:55:9c:95:18:d7:ab: 8a:db:57:8b:63:fc:b7:71:f1:59:64:08:b2:d7:af: 94:bf:05:72:cb:0c:fd:b6:52:81:23:f2:71:c1:d6: 7f:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:72:71:B6:B8:4A:0E:C0:D3:A8:12:3A:71:0B:C7:38:D6:11:8D:55 X509v3 Authority Key Identifier: keyid:92:78:8F:4E:BB:74:1C:0C:36:9A:0F:D3:05:94:CD:01:01:DC:74:76 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/b3JxtrhKDsDTqBI6cQvHONYRjVU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.165.64.0/22 Signature Algorithm: sha256WithRSAEncryption 51:7b:40:19:38:7f:f0:8b:7e:49:68:33:8c:88:a0:6b:4a:0f: 01:55:e8:b7:57:13:17:f2:80:e2:e5:27:77:d4:66:9d:77:62: af:b9:1c:4b:93:48:af:c2:c7:08:68:4c:8f:78:0c:ed:c9:69: 5b:88:fc:52:d6:3f:3b:fe:47:37:58:44:9a:e9:5b:6f:f8:73: d4:ab:25:20:b5:4c:4e:c5:6e:d2:b4:37:54:b7:ad:91:29:29: 61:cd:12:89:10:d2:48:c2:ea:d9:fc:b1:26:0f:c0:c9:e3:f8: ef:95:47:06:54:17:20:1d:39:be:93:13:7d:9a:e4:80:ea:6e: 7b:80:06:1a:43:d3:5c:69:a9:3c:9c:3c:00:09:2d:bd:94:3e: d0:a7:37:ae:50:a0:1b:b8:f7:ef:56:5d:9a:3d:77:ab:9a:c3: 43:50:a0:d9:05:3f:8d:39:c3:9b:9d:d9:0e:3c:b9:7e:46:c9: b7:cc:1c:f5:f7:b8:e7:42:f9:de:a0:52:0b:9a:88:9c:75:8a: 76:c3:e2:4a:21:f1:db:0c:a5:69:2e:68:70:54:7f:ff:d0:24: 73:b1:a5:2d:6b:be:89:8a:ad:f6:4e:fd:1a:7b:db:0a:bd:d7: ee:fc:96:7c:fb:40:29:8a:9b:cc:1c:80:26:fa:83:7b:a9:0b: ad:43:cf:84 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+pWItXdErg1MeUZw+QO3HMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyNzg4ZjRlYmI3NDFjMGMzNjlhMGZkMzA1OTRjZDAxMDFk Yzc0NzYwHhcNMjYwMTAyMTIxODQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZjcyNzFiNmI4NGEwZWMwZDNhODEyM2E3MTBiYzczOGQ2MTE4ZDU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuxK4zwznt+phvVgQrIDNt/MLAoNq cDjyH1YpmDihHrhd1aPh9gjXjKg1xYMk45V/6dYnqLgNqiHh9tVTAIe7sgkkrR9e Mo3dS2vLd4Y2ssZSofy1t6PPyC+4MHVYdORrzLaMgIehvQhjy08glXDEPj0EV2NH XERc/epmpSZ1o5pWxkPnrOxkauda+7gVT5XvOuu3U4nV5AUh1eruCdWhdvpGh7UC eg5V5e8wn8ZuIuENyMaqMw9Bop9q78rK1SZtikynmP5Bn3PnwN3bPPsAmTtXUmOn 7odEN0hVnJUY16uK21eLY/y3cfFZZAiy16+UvwVyywz9tlKBI/JxwdZ/2QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFG9ycba4Sg7A06gSOnELxzjWEY1VMB8GA1UdIwQY MBaAFJJ4j067dBwMNpoP0wWUzQEB3HR2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva25pUFRydDBIQXcybWdfVEJaVE5BUUhjZEhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83NzFlNzctYzY0OS00N2YzLTk5YTgt ZGJmYWMwMGZiMGVmLzEvYjNKeHRyaEtEc0RUcUJJNmNRdkhPTllSalZVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS83NzFlNzctYzY0OS00N2YzLTk5YTgtZGJmYWMwMGZiMGVm LzEva25pUFRydDBIQXcybWdfVEJaVE5BUUhjZEhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuaVAMA0G CSqGSIb3DQEBCwUAA4IBAQBRe0AZOH/wi35JaDOMiKBrSg8BVei3VxMX8oDi5Sd3 1Gadd2KvuRxLk0ivwscIaEyPeAztyWlbiPxS1j87/kc3WESa6Vtv+HPUqyUgtUxO xW7StDdUt62RKSlhzRKJENJIwurZ/LEmD8DJ4/jvlUcGVBcgHTm+kxN9muSA6m57 gAYaQ9Ncaak8nDwACS29lD7QpzeuUKAbuPfvVl2aPXermsNDUKDZBT+NOcObndkO PLl+Rsm3zBz197jnQvneoFILmoicdYp2w+JKIfHbDKVpLmhwVH//0CRzsaUta76J iq32Tv0ae9sKvdfu/JZ8+0ApipvMHIAm+oN7qQutQ8+E -----END CERTIFICATE-----Generated at Mon Jan 26 16:23:29 2026 by rpki-client