This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e1cbc3-28a1-4e53-a0a4-f9172ccbc5af/1/k3iM252MCayhLR_PBb595fv_baM.roa File: k3iM252MCayhLR_PBb595fv_baM.roa (raw, json) Hash identifier: EbtrM8zDUBSt9GwmEMPTeNJfc3L8jh3H2e88Yy2j2HI= Subject key identifier: 93:78:8C:DB:9D:8C:09:AC:A1:2D:1F:CF:05:BE:7D:E5:FB:FF:6D:A3 Certificate issuer: /CN=d670034104f1bf658144b4aa45b41a3f5779dc0f Certificate serial: 019B797DF1885A70B8C2EE38A2E86180C3D4 Authority key identifier: D6:70:03:41:04:F1:BF:65:81:44:B4:AA:45:B4:1A:3F:57:79:DC:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1nADQQTxv2WBRLSqRbQaP1d53A8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e1cbc3-28a1-4e53-a0a4-f9172ccbc5af/1/k3iM252MCayhLR_PBb595fv_baM.roa Signing time: Thu 01 Jan 2026 12:17:35 +0000 ROA not before: Thu 01 Jan 2026 12:17:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210149 IP address blocks: 192.66.100.0/24 maxlen: 24 192.66.101.0/24 maxlen: 24 192.66.102.0/24 maxlen: 24 193.163.56.0/24 maxlen: 24 193.163.57.0/24 maxlen: 24 193.163.58.0/24 maxlen: 24 193.163.59.0/24 maxlen: 24 193.163.60.0/24 maxlen: 24 193.163.61.0/24 maxlen: 24 193.163.62.0/24 maxlen: 24 193.163.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/e1cbc3-28a1-4e53-a0a4-f9172ccbc5af/1/1nADQQTxv2WBRLSqRbQaP1d53A8.crl rsync://rpki.ripe.net/repository/DEFAULT/25/e1cbc3-28a1-4e53-a0a4-f9172ccbc5af/1/1nADQQTxv2WBRLSqRbQaP1d53A8.mft rsync://rpki.ripe.net/repository/DEFAULT/1nADQQTxv2WBRLSqRbQaP1d53A8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 21:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7d:f1:88:5a:70:b8:c2:ee:38:a2:e8:61:80:c3:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d670034104f1bf658144b4aa45b41a3f5779dc0f Validity Not Before: Jan 1 12:17:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=93788cdb9d8c09aca12d1fcf05be7de5fbff6da3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:68:2e:57:e7:53:51:99:af:bc:da:96:53:0b: f8:3d:b4:1a:33:28:48:50:1a:6e:78:a2:14:d8:96: 32:be:b4:df:e0:f4:af:48:c1:b7:d2:2e:17:65:fe: a7:e1:4b:e8:d8:29:90:a4:1b:84:24:e9:76:14:27: 0e:88:78:1a:84:e3:e9:aa:ed:a2:b8:07:99:c5:d1: 8b:5f:15:ee:3e:7e:36:29:29:ba:dd:ee:55:0f:76: 1e:33:63:aa:77:e4:a4:be:24:77:fc:78:8e:26:91: 43:b2:a7:70:95:3b:88:e8:4c:6b:6e:e7:e1:ed:8a: e6:f7:01:ae:03:8a:70:de:bd:e5:5e:8a:5e:4e:2e: b6:a5:f9:4a:4a:ec:9d:15:2d:97:5f:2d:fb:e4:ec: be:dc:ee:ad:e7:e0:e3:1c:0f:72:c3:3e:e2:9f:6a: f4:7e:f2:a4:7a:7c:6c:c2:da:08:87:45:1e:20:53: 42:22:35:c0:56:e4:b5:46:a9:0a:d7:a1:11:bf:a3: fb:74:e2:56:f5:a3:4b:c4:2d:3b:ad:97:e5:bd:62: e6:2b:7d:34:43:cd:2c:4b:4c:1f:f4:a5:70:9e:1c: 8d:18:98:a8:1b:e7:d5:98:fb:bc:fb:e7:a2:e4:5d: 1f:8a:f9:89:ae:f7:69:86:5b:56:3f:d1:5f:90:18: 87:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:78:8C:DB:9D:8C:09:AC:A1:2D:1F:CF:05:BE:7D:E5:FB:FF:6D:A3 X509v3 Authority Key Identifier: keyid:D6:70:03:41:04:F1:BF:65:81:44:B4:AA:45:B4:1A:3F:57:79:DC:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1nADQQTxv2WBRLSqRbQaP1d53A8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e1cbc3-28a1-4e53-a0a4-f9172ccbc5af/1/k3iM252MCayhLR_PBb595fv_baM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e1cbc3-28a1-4e53-a0a4-f9172ccbc5af/1/1nADQQTxv2WBRLSqRbQaP1d53A8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.66.100.0-192.66.102.255 193.163.56.0/21 Signature Algorithm: sha256WithRSAEncryption 62:a1:78:9e:f2:91:59:b1:54:d9:11:91:b7:b0:ad:be:01:6b: e7:60:0e:a6:f5:1d:c6:0e:cd:26:4c:76:7d:cc:ed:14:5a:30: ea:91:55:1b:9a:40:79:99:fa:2f:e4:5f:4c:67:9f:4d:fb:ce: d4:33:a1:e9:28:2b:2e:be:78:5a:ee:77:3a:9b:11:1e:18:f0: f1:6c:21:06:be:53:c1:62:36:f6:a9:2e:c9:e3:92:87:27:c7: 33:1c:77:b8:0a:77:e8:2b:e0:18:f6:81:ae:9b:24:2a:45:21: 1a:f6:da:36:0d:8d:bb:09:8d:4c:db:fa:51:8d:7d:c4:d0:f4: 39:8f:f1:a6:da:89:b0:a2:72:62:4f:26:cd:cf:e7:6b:b8:c0: 5e:e9:bc:8f:86:d5:d5:47:d8:5e:a1:f8:9e:bb:73:56:49:44: ce:42:8a:4a:e2:35:f8:fd:87:e6:ff:d7:41:83:e9:b9:65:ea: a1:36:48:5b:6b:8d:d4:3f:3f:bf:28:75:18:69:80:8e:c3:27: 1d:b2:f4:1c:fa:fd:e4:92:44:ed:01:57:11:e2:89:ca:e8:2f: 07:ea:d4:bc:4c:6d:39:6b:f1:44:18:57:a9:97:1e:b6:bf:ae: 15:46:65:50:83:6d:7c:84:b4:ea:dd:04:26:0d:89:00:51:98: e0:dc:88:62 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZt5ffGIWnC4wu44ouhhgMPUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ2NzAwMzQxMDRmMWJmNjU4MTQ0YjRhYTQ1YjQxYTNmNTc3 OWRjMGYwHhcNMjYwMTAxMTIxNzM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5Mzc4OGNkYjlkOGMwOWFjYTEyZDFmY2YwNWJlN2RlNWZiZmY2ZGEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo2guV+dTUZmvvNqWUwv4PbQaMyhI UBpueKIU2JYyvrTf4PSvSMG30i4XZf6n4Uvo2CmQpBuEJOl2FCcOiHgahOPpqu2i uAeZxdGLXxXuPn42KSm63e5VD3YeM2Oqd+SkviR3/HiOJpFDsqdwlTuI6Exrbufh 7Yrm9wGuA4pw3r3lXopeTi62pflKSuydFS2XXy375Oy+3O6t5+DjHA9ywz7in2r0 fvKkenxswtoIh0UeIFNCIjXAVuS1RqkK16ERv6P7dOJW9aNLxC07rZflvWLmK300 Q80sS0wf9KVwnhyNGJioG+fVmPu8++ei5F0fivmJrvdphltWP9FfkBiHuQIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFJN4jNudjAmsoS0fzwW+feX7/22jMB8GA1UdIwQY MBaAFNZwA0EE8b9lgUS0qkW0Gj9XedwPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMW5BRFFRVHh2MldCUkxTcVJiUWFQMWQ1M0E4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9lMWNiYzMtMjhhMS00ZTUzLWEwYTQt ZjkxNzJjY2JjNWFmLzEvazNpTTI1Mk1DYXloTFJfUEJiNTk1ZnZfYmFNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS9lMWNiYzMtMjhhMS00ZTUzLWEwYTQtZjkxNzJjY2JjNWFm LzEvMW5BRFFRVHh2MldCUkxTcVJiUWFQMWQ1M0E4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBALAQmQD BADAQmYDBAPBozgwDQYJKoZIhvcNAQELBQADggEBAGKheJ7ykVmxVNkRkbewrb4B a+dgDqb1HcYOzSZMdn3M7RRaMOqRVRuaQHmZ+i/kX0xnn037ztQzoekoKy6+eFru dzqbER4Y8PFsIQa+U8FiNvapLsnjkocnxzMcd7gKd+gr4Bj2ga6bJCpFIRr22jYN jbsJjUzb+lGNfcTQ9DmP8abaibCicmJPJs3P52u4wF7pvI+G1dVH2F6h+J67c1ZJ RM5CikriNfj9h+b/10GD6bll6qE2SFtrjdQ/P78odRhpgI7DJx2y9Bz6/eSSRO0B VxHiicroLwfq1LxMbTlr8UQYV6mXHra/rhVGZVCDbXyEtOrdBCYNiQBRmODciGI= -----END CERTIFICATE-----Generated at Mon Jan 26 05:48:57 2026 by rpki-client