This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/92399b-1bed-45e2-9c93-e1b8ff25f60b/1/K3q7rDAAcTkhLcTgXHyQCl5GQuI.roa File: K3q7rDAAcTkhLcTgXHyQCl5GQuI.roa (raw, json) Hash identifier: XY2CV23nGfpFfkmgGkboOd40b6zMjm8v5H58JjAU0/Y= Subject key identifier: 2B:7A:BB:AC:30:00:71:39:21:2D:C4:E0:5C:7C:90:0A:5E:46:42:E2 Certificate issuer: /CN=87b976e2aab923248ee80ee57cbd34ad87bcef34 Certificate serial: 019B79ECEF545B3210A064786B3E4312DCB6 Authority key identifier: 87:B9:76:E2:AA:B9:23:24:8E:E8:0E:E5:7C:BD:34:AD:87:BC:EF:34 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h7l24qq5IySO6A7lfL00rYe87zQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/92399b-1bed-45e2-9c93-e1b8ff25f60b/1/K3q7rDAAcTkhLcTgXHyQCl5GQuI.roa Signing time: Thu 01 Jan 2026 14:18:49 +0000 ROA not before: Thu 01 Jan 2026 14:18:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34353 IP address blocks: 194.88.248.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/92399b-1bed-45e2-9c93-e1b8ff25f60b/1/h7l24qq5IySO6A7lfL00rYe87zQ.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/92399b-1bed-45e2-9c93-e1b8ff25f60b/1/h7l24qq5IySO6A7lfL00rYe87zQ.mft rsync://rpki.ripe.net/repository/DEFAULT/h7l24qq5IySO6A7lfL00rYe87zQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 14:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:ef:54:5b:32:10:a0:64:78:6b:3e:43:12:dc:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87b976e2aab923248ee80ee57cbd34ad87bcef34 Validity Not Before: Jan 1 14:18:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2b7abbac30007139212dc4e05c7c900a5e4642e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:92:0f:7a:c7:14:5f:bd:b1:19:f9:50:c9:c6: 3e:dc:e2:e1:6f:51:a9:bf:5a:9b:21:05:e5:de:78: 56:cc:25:cc:f0:87:d7:b6:c0:37:1e:2d:d9:9c:22: ff:b1:c6:d8:db:40:66:71:d8:74:0e:fe:37:a1:32: 06:66:f6:d0:12:47:4d:ff:78:3a:a8:37:66:45:70: d5:18:63:ea:dd:86:1e:ca:a5:02:41:c0:df:1e:26: c0:d5:c4:6d:ea:e8:d2:c2:b3:04:69:d9:13:50:f1: 87:84:63:0d:2c:ce:a8:65:a9:9e:3f:8e:af:c7:ec: 0a:80:29:1a:16:ec:8b:6d:b5:87:f8:6d:49:24:d9: aa:2c:45:19:40:c2:d4:41:9f:ff:79:ea:cd:f5:7c: 2e:be:c9:4b:60:b9:1c:4c:d8:a1:a2:6a:73:0f:52: 8e:ef:e3:51:ec:cb:0c:2d:ce:9e:a5:fa:ec:21:7e: 84:f0:a1:1d:d2:2b:f5:6d:25:c1:6e:7b:6b:01:44: ef:96:69:f6:8e:cc:83:e5:fd:39:0f:f8:5e:aa:e5: 0f:d9:59:4c:24:38:60:51:a0:2b:37:59:74:bb:f7: 5d:52:8c:7a:4c:15:57:31:d2:cb:59:b7:d6:b0:35: 00:48:0e:58:f0:7a:1b:7c:95:84:46:5c:5c:44:bc: d7:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:7A:BB:AC:30:00:71:39:21:2D:C4:E0:5C:7C:90:0A:5E:46:42:E2 X509v3 Authority Key Identifier: keyid:87:B9:76:E2:AA:B9:23:24:8E:E8:0E:E5:7C:BD:34:AD:87:BC:EF:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h7l24qq5IySO6A7lfL00rYe87zQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/92399b-1bed-45e2-9c93-e1b8ff25f60b/1/K3q7rDAAcTkhLcTgXHyQCl5GQuI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/92399b-1bed-45e2-9c93-e1b8ff25f60b/1/h7l24qq5IySO6A7lfL00rYe87zQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.88.248.0/23 Signature Algorithm: sha256WithRSAEncryption 19:52:f9:2f:6a:5b:07:08:5a:17:54:61:61:6c:d7:ec:71:32: 1b:e5:b6:d7:58:d4:09:02:21:6c:f4:d5:1a:bb:e0:d9:0a:28: d2:6f:33:88:a9:9f:28:62:1a:22:dc:e8:d4:af:39:15:6f:ed: 58:d6:f0:65:7d:0e:c2:0c:07:46:cf:27:31:14:27:2e:b9:38: 5e:b5:4e:2e:99:0e:b8:e4:15:7d:6d:e6:65:47:8a:bd:d5:f8: ed:6c:e2:04:84:3f:58:0b:6f:cf:e8:d2:04:83:61:38:52:51: 01:53:73:97:1a:da:20:f0:2f:09:12:67:3a:0c:30:40:aa:2c: 1a:fe:d4:39:65:6f:f0:f9:ba:83:6c:b2:5b:b6:2f:c7:ec:e4: 16:11:1e:be:b0:0e:58:75:b4:c5:3d:80:58:d3:d8:98:de:8a: ce:ee:5e:ff:3e:f5:59:ad:2d:96:00:32:94:ea:8e:9b:fe:59: 0a:a7:fb:82:b5:2b:05:1d:cd:d1:44:5c:fa:65:81:f7:8c:ff: 02:51:49:10:c5:3f:46:ff:3b:b0:aa:69:60:23:3a:cd:f7:93: 62:22:9b:f2:24:4e:54:8d:22:dd:66:96:40:5f:4e:0e:e0:93: 54:c3:f2:e1:c6:13:72:fe:e3:bb:73:c8:50:69:72:42:ad:42: 67:55:8b:43 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57O9UWzIQoGR4az5DEty2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3Yjk3NmUyYWFiOTIzMjQ4ZWU4MGVlNTdjYmQzNGFkODdi Y2VmMzQwHhcNMjYwMTAxMTQxODQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYjdhYmJhYzMwMDA3MTM5MjEyZGM0ZTA1YzdjOTAwYTVlNDY0MmUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtZIPescUX72xGflQycY+3OLhb1Gp v1qbIQXl3nhWzCXM8IfXtsA3Hi3ZnCL/scbY20Bmcdh0Dv43oTIGZvbQEkdN/3g6 qDdmRXDVGGPq3YYeyqUCQcDfHibA1cRt6ujSwrMEadkTUPGHhGMNLM6oZameP46v x+wKgCkaFuyLbbWH+G1JJNmqLEUZQMLUQZ//eerN9XwuvslLYLkcTNihompzD1KO 7+NR7MsMLc6epfrsIX6E8KEd0iv1bSXBbntrAUTvlmn2jsyD5f05D/hequUP2VlM JDhgUaArN1l0u/ddUox6TBVXMdLLWbfWsDUASA5Y8HobfJWERlxcRLzX2wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCt6u6wwAHE5IS3E4Fx8kApeRkLiMB8GA1UdIwQY MBaAFIe5duKquSMkjugO5Xy9NK2HvO80MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaDdsMjRxcTVJeVNPNkE3bGZMMDByWWU4N3pRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi85MjM5OWItMWJlZC00NWUyLTljOTMt ZTFiOGZmMjVmNjBiLzEvSzNxN3JEQUFjVGtoTGNUZ1hIeVFDbDVHUXVJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi85MjM5OWItMWJlZC00NWUyLTljOTMtZTFiOGZmMjVmNjBi LzEvaDdsMjRxcTVJeVNPNkE3bGZMMDByWWU4N3pRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwlj4MA0G CSqGSIb3DQEBCwUAA4IBAQAZUvkvalsHCFoXVGFhbNfscTIb5bbXWNQJAiFs9NUa u+DZCijSbzOIqZ8oYhoi3OjUrzkVb+1Y1vBlfQ7CDAdGzycxFCcuuThetU4umQ64 5BV9beZlR4q91fjtbOIEhD9YC2/P6NIEg2E4UlEBU3OXGtog8C8JEmc6DDBAqiwa /tQ5ZW/w+bqDbLJbti/H7OQWER6+sA5YdbTFPYBY09iY3orO7l7/PvVZrS2WADKU 6o6b/lkKp/uCtSsFHc3RRFz6ZYH3jP8CUUkQxT9G/zuwqmlgIzrN95NiIpvyJE5U jSLdZpZAX04O4JNUw/LhxhNy/uO7c8hQaXJCrUJnVYtD -----END CERTIFICATE-----Generated at Mon Jan 26 01:00:33 2026 by rpki-client