This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/1b90de-2b76-4d0b-9093-2fc35cd1ac2a/1/3a2aA3phNWUF0g57WpzFbueiUww.roa File: 3a2aA3phNWUF0g57WpzFbueiUww.roa (raw, json) Hash identifier: yZ0tZQ4HobZpCClXrhnqNAtC3/BMDlKJP+hoj005BvE= Subject key identifier: DD:AD:9A:03:7A:61:35:65:05:D2:0E:7B:5A:9C:C5:6E:E7:A2:53:0C Certificate issuer: /CN=08e7d7b3bc4c0791c0cffe3f1555ab773e3ed16e Certificate serial: 019A818678DBAE91278CD9CA9C308134BAE5 Authority key identifier: 08:E7:D7:B3:BC:4C:07:91:C0:CF:FE:3F:15:55:AB:77:3E:3E:D1:6E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/COfXs7xMB5HAz_4_FVWrdz4-0W4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/1b90de-2b76-4d0b-9093-2fc35cd1ac2a/1/3a2aA3phNWUF0g57WpzFbueiUww.roa Signing time: Fri 14 Nov 2025 08:41:04 +0000 ROA not before: Fri 14 Nov 2025 08:41:04 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 199102 IP address blocks: 93.189.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/1b90de-2b76-4d0b-9093-2fc35cd1ac2a/1/COfXs7xMB5HAz_4_FVWrdz4-0W4.crl rsync://rpki.ripe.net/repository/DEFAULT/27/1b90de-2b76-4d0b-9093-2fc35cd1ac2a/1/COfXs7xMB5HAz_4_FVWrdz4-0W4.mft rsync://rpki.ripe.net/repository/DEFAULT/COfXs7xMB5HAz_4_FVWrdz4-0W4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:81:86:78:db:ae:91:27:8c:d9:ca:9c:30:81:34:ba:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08e7d7b3bc4c0791c0cffe3f1555ab773e3ed16e Validity Not Before: Nov 14 08:41:04 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=ddad9a037a61356505d20e7b5a9cc56ee7a2530c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:10:fa:da:c9:ba:9d:fe:e4:ed:37:c0:77:0a: a1:00:91:45:92:7b:b5:f9:7a:94:c5:80:97:5a:72: 81:6e:cf:57:4f:98:93:4a:54:35:3c:3b:71:29:4a: eb:cf:9f:56:a1:71:cc:be:e9:ec:33:27:66:c9:d9: ab:a9:b7:18:cb:7d:37:c0:a6:cf:31:55:49:53:29: 5c:93:0e:96:cb:e7:7d:ab:3d:0e:f6:0e:76:02:23: 64:d3:8f:3a:4b:37:35:01:c6:84:c7:7e:77:87:38: 4a:a5:c4:89:69:e4:88:6f:e1:65:80:70:09:5a:ea: e5:aa:df:aa:94:82:06:38:5a:b6:12:b5:b0:8f:17: 2a:c0:c6:ca:64:14:5f:60:83:b4:30:23:53:b1:15: c9:0c:59:42:c5:b9:09:4a:df:65:8f:b0:53:ef:a9: a8:1e:91:72:2d:c1:b2:04:07:d5:5d:01:1f:7b:1b: c0:2f:cd:06:59:f3:82:ab:56:86:00:aa:90:fa:48: f1:20:62:dd:89:b2:c9:e1:fd:e2:5c:c0:21:18:ef: 73:00:52:ef:5f:ac:01:c8:74:1a:7d:35:7f:2a:17: 74:50:d7:b0:8a:9b:e2:81:b8:01:18:db:e6:80:ff: e9:34:d6:bf:28:ba:3b:b0:a3:76:33:e6:21:47:d9: 89:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:AD:9A:03:7A:61:35:65:05:D2:0E:7B:5A:9C:C5:6E:E7:A2:53:0C X509v3 Authority Key Identifier: keyid:08:E7:D7:B3:BC:4C:07:91:C0:CF:FE:3F:15:55:AB:77:3E:3E:D1:6E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/COfXs7xMB5HAz_4_FVWrdz4-0W4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/1b90de-2b76-4d0b-9093-2fc35cd1ac2a/1/3a2aA3phNWUF0g57WpzFbueiUww.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/1b90de-2b76-4d0b-9093-2fc35cd1ac2a/1/COfXs7xMB5HAz_4_FVWrdz4-0W4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.189.224.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:27:ce:5f:20:4c:55:43:ad:0b:d4:f8:76:6f:ee:b0:3c:da: 05:dd:f5:b8:d4:86:7f:82:6d:86:93:7b:a0:35:8c:26:39:b5: bc:fd:92:98:f1:44:29:7a:28:c5:1b:a4:9b:9e:be:dd:92:c8: 32:c6:0e:99:89:39:35:ef:b5:a3:a0:90:d1:10:82:bf:d0:7d: 8a:d2:03:03:47:8e:c2:90:18:6d:cc:99:e3:43:5b:ec:38:22: 61:d4:a6:89:7b:1e:95:82:1c:2b:20:60:6a:8f:e7:18:7d:a6: 4e:67:26:29:8b:63:46:b5:6c:c9:0e:01:c0:66:d5:0d:1a:14: 61:b4:61:ea:f9:77:cc:b2:ca:5d:d7:be:6b:56:72:94:37:35: e2:3a:0a:47:cc:29:65:df:48:e5:d1:8b:1e:30:b2:bd:9a:f1: bd:0f:af:24:53:bd:a7:3c:71:67:8d:17:2b:58:63:6d:8a:49: 81:08:ec:76:89:4c:5e:0d:32:07:6e:cb:b9:9e:aa:07:7e:96: 3d:7c:65:3f:aa:a0:56:35:be:a1:c9:1a:fe:73:e6:62:9c:3e: 05:de:25:44:65:05:34:ef:21:75:2d:36:0b:b6:d1:b6:4b:c6: fe:02:c2:94:d1:27:00:2f:a6:40:bc:08:21:4b:0f:af:32:2d: c7:5b:6a:1c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZqBhnjbrpEnjNnKnDCBNLrlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4ZTdkN2IzYmM0YzA3OTFjMGNmZmUzZjE1NTVhYjc3M2Uz ZWQxNmUwHhcNMjUxMTE0MDg0MTA0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZGFkOWEwMzdhNjEzNTY1MDVkMjBlN2I1YTljYzU2ZWU3YTI1MzBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuhD62sm6nf7k7TfAdwqhAJFFknu1 +XqUxYCXWnKBbs9XT5iTSlQ1PDtxKUrrz59WoXHMvunsMydmydmrqbcYy303wKbP MVVJUylckw6Wy+d9qz0O9g52AiNk0486Szc1AcaEx353hzhKpcSJaeSIb+FlgHAJ Wurlqt+qlIIGOFq2ErWwjxcqwMbKZBRfYIO0MCNTsRXJDFlCxbkJSt9lj7BT76mo HpFyLcGyBAfVXQEfexvAL80GWfOCq1aGAKqQ+kjxIGLdibLJ4f3iXMAhGO9zAFLv X6wByHQafTV/Khd0UNewipvigbgBGNvmgP/pNNa/KLo7sKN2M+YhR9mJRQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFN2tmgN6YTVlBdIOe1qcxW7nolMMMB8GA1UdIwQY MBaAFAjn17O8TAeRwM/+PxVVq3c+PtFuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ09mWHM3eE1CNUhBel80X0ZWV3JkejQtMFc0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy8xYjkwZGUtMmI3Ni00ZDBiLTkwOTMt MmZjMzVjZDFhYzJhLzEvM2EyYUEzcGhOV1VGMGc1N1dwekZidWVpVXd3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy8xYjkwZGUtMmI3Ni00ZDBiLTkwOTMtMmZjMzVjZDFhYzJh LzEvQ09mWHM3eE1CNUhBel80X0ZWV3JkejQtMFc0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXb3gMA0G CSqGSIb3DQEBCwUAA4IBAQBvJ85fIExVQ60L1Ph2b+6wPNoF3fW41IZ/gm2Gk3ug NYwmObW8/ZKY8UQpeijFG6Sbnr7dksgyxg6ZiTk177WjoJDREIK/0H2K0gMDR47C kBhtzJnjQ1vsOCJh1KaJex6VghwrIGBqj+cYfaZOZyYpi2NGtWzJDgHAZtUNGhRh tGHq+XfMsspd175rVnKUNzXiOgpHzCll30jl0YseMLK9mvG9D68kU72nPHFnjRcr WGNtikmBCOx2iUxeDTIHbsu5nqoHfpY9fGU/qqBWNb6hyRr+c+ZinD4F3iVEZQU0 7yF1LTYLttG2S8b+AsKU0ScAL6ZAvAghSw+vMi3HW2oc -----END CERTIFICATE-----Generated at Sat Dec 6 13:10:31 2025 by rpki-client