This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/3a7na1VrOyD4j9eANMYFxWbuuXA.roa File: 3a7na1VrOyD4j9eANMYFxWbuuXA.roa (raw, json) Hash identifier: zi3twxBdnTcqBHYcetTlSiGtn2VDXgmL6wD/jF3qYjQ= Subject key identifier: DD:AE:E7:6B:55:6B:3B:20:F8:8F:D7:80:34:C6:05:C5:66:EE:B9:70 Certificate issuer: /CN=4cf8ffc088591e4f243baafa21b4298bfb366026 Certificate serial: 019B7C11F70701D4924A6D9E95636754595F Authority key identifier: 4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/3a7na1VrOyD4j9eANMYFxWbuuXA.roa Signing time: Fri 02 Jan 2026 00:18:30 +0000 ROA not before: Fri 02 Jan 2026 00:18:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31141 IP address blocks: 62.192.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/TPj_wIhZHk8kO6r6IbQpi_s2YCY.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/TPj_wIhZHk8kO6r6IbQpi_s2YCY.mft rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:f7:07:01:d4:92:4a:6d:9e:95:63:67:54:59:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4cf8ffc088591e4f243baafa21b4298bfb366026 Validity Not Before: Jan 2 00:18:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ddaee76b556b3b20f88fd78034c605c566eeb970 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:b9:cd:c7:d9:81:b0:33:36:2b:9e:e0:44:a7: 16:d7:67:98:65:da:ad:a2:12:8b:e0:ad:32:5b:ca: c2:34:f9:df:b9:a7:4b:2b:85:3e:95:72:2c:9d:78: 93:dc:d1:12:8a:b5:57:44:cb:7b:ff:15:91:ef:fc: 8c:2a:ec:23:b0:bb:5c:11:92:97:d2:36:9d:09:c1: f5:d8:4f:63:4f:b4:2c:b8:61:72:83:ed:2b:ee:da: f3:8d:1a:ba:2a:93:e3:ed:7f:2b:12:b1:b1:91:c4: 1c:e8:4b:4e:b6:2e:3e:75:96:38:c5:eb:2c:f2:de: b6:fe:fc:dc:7e:f2:59:bf:a9:3a:d3:f6:d9:9c:96: b2:ce:1a:f5:12:eb:fa:18:4b:0f:a8:dd:0e:b2:b2: 3a:41:9b:40:ce:8f:3c:dd:bc:8b:d5:6b:43:d7:3f: 07:fc:bd:fb:40:86:e9:74:c7:e0:92:1d:2c:38:7c: 39:1f:1d:42:dd:d8:59:15:58:78:7e:58:76:f7:77: ce:94:56:9d:45:f7:3a:25:88:3e:eb:33:fb:0b:fd: 15:98:86:01:b7:cd:a2:af:e6:57:11:d8:98:f9:5d: 49:13:5c:40:ab:ec:ee:e7:f9:24:04:0a:85:b2:f0: c0:19:4d:5d:27:5e:49:0c:7b:84:0a:31:51:8e:cf: 76:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:AE:E7:6B:55:6B:3B:20:F8:8F:D7:80:34:C6:05:C5:66:EE:B9:70 X509v3 Authority Key Identifier: keyid:4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/3a7na1VrOyD4j9eANMYFxWbuuXA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/TPj_wIhZHk8kO6r6IbQpi_s2YCY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.192.17.0/24 Signature Algorithm: sha256WithRSAEncryption 19:1b:44:13:ac:14:10:f4:49:ae:d4:3a:f9:2e:53:16:34:c8: 99:0b:06:27:48:68:4b:99:6d:c8:4e:fe:9c:49:37:f1:b2:07: 86:30:7c:d6:a0:25:f7:2d:b6:ff:d7:fe:f3:ab:31:78:23:0a: eb:69:25:55:41:d1:ee:03:df:01:77:f2:66:f7:af:40:77:17: 46:dd:76:b3:a4:c5:c3:29:b0:8a:49:b8:58:29:af:3a:0e:72: ab:c0:66:62:ea:f7:51:45:6d:49:f2:c1:f3:b4:d5:01:7f:76: cb:1f:29:da:b7:80:cc:c2:e2:a7:04:d7:f9:0e:9f:d1:99:35: 5f:d4:7d:6a:39:0c:9d:ad:e7:37:e7:ca:a8:8e:ba:00:e4:72: 61:9e:40:55:37:93:f5:e3:2d:a7:39:e7:e6:15:22:1d:be:c8: 1c:b5:9e:57:4c:b7:80:40:fd:d8:f3:ff:04:78:6a:f1:7c:e0: 0f:d5:be:13:2b:81:28:4f:6e:5d:4a:9f:7a:aa:06:21:ec:10: 48:1c:9f:56:c2:f1:11:8c:79:71:17:61:b6:af:42:8c:48:95: c9:4e:dc:e4:3d:59:b7:4b:e5:22:26:a8:95:60:04:a2:25:5f: f7:37:73:4b:f9:b5:e3:2c:74:08:c0:eb:b8:cd:2c:06:ba:a7: 88:13:0c:d0 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EfcHAdSSSm2elWNnVFlfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjZjhmZmMwODg1OTFlNGYyNDNiYWFmYTIxYjQyOThiZmIz NjYwMjYwHhcNMjYwMTAyMDAxODMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZGFlZTc2YjU1NmIzYjIwZjg4ZmQ3ODAzNGM2MDVjNTY2ZWViOTcwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlLnNx9mBsDM2K57gRKcW12eYZdqt ohKL4K0yW8rCNPnfuadLK4U+lXIsnXiT3NESirVXRMt7/xWR7/yMKuwjsLtcEZKX 0jadCcH12E9jT7QsuGFyg+0r7trzjRq6KpPj7X8rErGxkcQc6EtOti4+dZY4xess 8t62/vzcfvJZv6k60/bZnJayzhr1Euv6GEsPqN0OsrI6QZtAzo883byL1WtD1z8H /L37QIbpdMfgkh0sOHw5Hx1C3dhZFVh4flh293fOlFadRfc6JYg+6zP7C/0VmIYB t82ir+ZXEdiY+V1JE1xAq+zu5/kkBAqFsvDAGU1dJ15JDHuECjFRjs92PwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFN2u52tVazsg+I/XgDTGBcVm7rlwMB8GA1UdIwQY MBaAFEz4/8CIWR5PJDuq+iG0KYv7NmAmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFBqX3dJaFpIazhrTzZyNkliUXBpX3MyWUNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9hMGEzOWMtYmUwMy00N2JiLWJkYjMt YjNiNzhiMGI2NmVhLzEvM2E3bmExVnJPeUQ0ajllQU5NWUZ4V2J1dVhBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi9hMGEzOWMtYmUwMy00N2JiLWJkYjMtYjNiNzhiMGI2NmVh LzEvVFBqX3dJaFpIazhrTzZyNkliUXBpX3MyWUNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPsARMA0G CSqGSIb3DQEBCwUAA4IBAQAZG0QTrBQQ9Emu1Dr5LlMWNMiZCwYnSGhLmW3ITv6c STfxsgeGMHzWoCX3Lbb/1/7zqzF4IwrraSVVQdHuA98Bd/Jm969AdxdG3XazpMXD KbCKSbhYKa86DnKrwGZi6vdRRW1J8sHztNUBf3bLHynat4DMwuKnBNf5Dp/RmTVf 1H1qOQydrec358qojroA5HJhnkBVN5P14y2nOefmFSIdvsgctZ5XTLeAQP3Y8/8E eGrxfOAP1b4TK4EoT25dSp96qgYh7BBIHJ9WwvERjHlxF2G2r0KMSJXJTtzkPVm3 S+UiJqiVYASiJV/3N3NL+bXjLHQIwOu4zSwGuqeIEwzQ -----END CERTIFICATE-----Generated at Sun Jan 25 23:31:52 2026 by rpki-client