This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/3YnZtmegxXoZvb9K7_HalTViL0w.roa File: 3YnZtmegxXoZvb9K7_HalTViL0w.roa (raw, json) Hash identifier: B1b4mNLvcXEYUbcOc3EYX+Xry/YHoo7ZiUdGbEg4AFc= Subject key identifier: DD:89:D9:B6:67:A0:C5:7A:19:BD:BF:4A:EF:F1:DA:95:35:62:2F:4C Certificate issuer: /CN=66a1d1a017802e5c57da5978544fc537403da73a Certificate serial: 019B7BA46D139EAEB90F0C559FCA3E0DE97D Authority key identifier: 66:A1:D1:A0:17:80:2E:5C:57:DA:59:78:54:4F:C5:37:40:3D:A7:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZqHRoBeALlxX2ll4VE_FN0A9pzo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/3YnZtmegxXoZvb9K7_HalTViL0w.roa Signing time: Thu 01 Jan 2026 22:18:51 +0000 ROA not before: Thu 01 Jan 2026 22:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61029 IP address blocks: 37.72.96.0/24 maxlen: 24 37.72.97.0/24 maxlen: 24 37.72.98.0/24 maxlen: 24 37.72.99.0/24 maxlen: 24 37.72.100.0/24 maxlen: 24 37.72.101.0/24 maxlen: 24 37.72.102.0/24 maxlen: 24 37.72.103.0/24 maxlen: 24 37.72.104.0/24 maxlen: 24 37.72.105.0/24 maxlen: 24 37.72.106.0/24 maxlen: 24 37.72.107.0/24 maxlen: 24 2a00:8240::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.crl rsync://rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.mft rsync://rpki.ripe.net/repository/DEFAULT/ZqHRoBeALlxX2ll4VE_FN0A9pzo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:6d:13:9e:ae:b9:0f:0c:55:9f:ca:3e:0d:e9:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66a1d1a017802e5c57da5978544fc537403da73a Validity Not Before: Jan 1 22:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dd89d9b667a0c57a19bdbf4aeff1da9535622f4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ec:01:cb:96:dc:1c:7a:56:67:5a:05:72:32: b4:8c:ad:3a:78:9f:a0:5a:96:d1:59:8e:40:7e:4f: 53:ec:a2:8c:89:57:60:45:82:6d:73:ba:66:b8:68: 36:0a:a5:00:dd:bf:37:00:7e:11:60:f2:0b:21:ff: a7:8e:d8:48:40:46:0b:51:99:63:ab:f9:b5:f9:63: 88:f3:be:7f:d1:5a:0d:42:dd:61:18:00:42:d4:28: e6:f8:2e:f4:4b:9e:1a:ea:db:34:b0:fd:08:65:ed: 27:db:c0:eb:ea:4a:05:e9:f4:e2:50:2b:67:c9:8b: 5d:fb:a1:0b:c5:f2:5e:ab:f8:32:c6:cb:c1:7d:f7: 44:11:44:83:d5:87:9f:cd:13:8c:cd:e0:75:83:4a: c4:25:23:2e:1d:50:9a:9d:91:19:10:da:54:1e:d0: b0:58:91:bc:f9:21:71:9c:78:00:04:6f:8b:4d:22: 18:a4:76:0d:17:e5:36:11:7e:cc:bf:13:14:fe:ea: e2:26:ea:6f:d9:81:af:ce:f3:d6:47:61:25:db:c1: 40:06:74:75:76:38:a8:a7:f4:22:b6:37:3b:9a:54: 7d:44:6d:80:75:8a:2c:92:58:03:f8:bb:1d:25:3f: aa:8e:e5:80:72:47:50:d3:60:af:55:5e:f2:e6:04: 66:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:89:D9:B6:67:A0:C5:7A:19:BD:BF:4A:EF:F1:DA:95:35:62:2F:4C X509v3 Authority Key Identifier: keyid:66:A1:D1:A0:17:80:2E:5C:57:DA:59:78:54:4F:C5:37:40:3D:A7:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZqHRoBeALlxX2ll4VE_FN0A9pzo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/3YnZtmegxXoZvb9K7_HalTViL0w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.72.96.0-37.72.107.255 IPv6: 2a00:8240::/29 Signature Algorithm: sha256WithRSAEncryption 2a:3e:c8:fc:6e:6b:eb:27:31:90:09:2c:78:a2:38:d7:04:cb: 73:0e:d6:21:ff:25:34:a0:9d:07:2a:c8:9d:a3:e2:67:b0:f7: 5a:95:ac:66:f4:56:32:a2:d9:a0:75:8b:42:cd:d5:c5:18:a8: 22:42:56:6c:e5:d0:0a:4a:cd:1a:f3:0b:80:1b:14:0d:e5:d8: 0e:ca:6a:b6:ae:62:34:2c:2b:a7:a0:a5:16:00:77:ae:6d:c1: fb:dc:9f:5e:d2:87:59:e8:ce:e7:83:b1:fe:8e:ea:cf:0d:b9: 9d:97:7e:bd:45:b3:b5:5e:8a:a1:d8:8e:8c:3b:85:f7:01:22: fc:ed:7e:5d:1d:a1:c3:12:10:0a:0d:93:e4:8f:e2:fe:15:fc: 99:a7:83:b0:ae:b6:b6:d4:32:5b:fe:9a:b2:5b:6a:b5:a4:60: 46:f3:39:53:9b:23:27:8d:d7:02:3e:84:36:21:0d:d1:a5:eb: 84:71:54:88:43:b1:b5:e7:53:73:4a:dd:32:da:5e:ce:d4:b2: 93:41:66:a9:12:5b:cd:54:24:a8:e1:f2:6e:e5:1e:91:16:e5: fb:70:c7:97:b8:e1:ba:d0:f4:f2:ef:be:74:99:fd:55:b9:3b: 5e:e5:b6:9e:c2:83:c6:b8:ac:85:cb:0c:a0:db:47:9d:82:2a: f5:50:f9:9e -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgISAZt7pG0Tnq65DwxVn8o+Del9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2YTFkMWEwMTc4MDJlNWM1N2RhNTk3ODU0NGZjNTM3NDAz ZGE3M2EwHhcNMjYwMTAxMjIxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZDg5ZDliNjY3YTBjNTdhMTliZGJmNGFlZmYxZGE5NTM1NjIyZjRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvewBy5bcHHpWZ1oFcjK0jK06eJ+g WpbRWY5Afk9T7KKMiVdgRYJtc7pmuGg2CqUA3b83AH4RYPILIf+njthIQEYLUZlj q/m1+WOI875/0VoNQt1hGABC1Cjm+C70S54a6ts0sP0IZe0n28Dr6koF6fTiUCtn yYtd+6ELxfJeq/gyxsvBffdEEUSD1YefzROMzeB1g0rEJSMuHVCanZEZENpUHtCw WJG8+SFxnHgABG+LTSIYpHYNF+U2EX7MvxMU/uriJupv2YGvzvPWR2El28FABnR1 djiop/Qitjc7mlR9RG2AdYosklgD+LsdJT+qjuWAckdQ02CvVV7y5gRmGwIDAQAB o4ICIDCCAhwwHQYDVR0OBBYEFN2J2bZnoMV6Gb2/Su/x2pU1Yi9MMB8GA1UdIwQY MBaAFGah0aAXgC5cV9pZeFRPxTdAPac6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWnFIUm9CZUFMbHhYMmxsNFZFX0ZOMEE5cHpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS85MTU0OGItYmFiNS00NTRjLWI2MGIt MTlmMmExZDE2MDMzLzEvM1luWnRtZWd4WG9admI5SzdfSGFsVFZpTDB3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS85MTU0OGItYmFiNS00NTRjLWI2MGItMTlmMmExZDE2MDMz LzEvWnFIUm9CZUFMbHhYMmxsNFZFX0ZOMEE5cHpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTAUBAIAATAOMAwDBAUlSGAD BAIlSGgwDQQCAAIwBwMFAyoAgkAwDQYJKoZIhvcNAQELBQADggEBACo+yPxua+sn MZAJLHiiONcEy3MO1iH/JTSgnQcqyJ2j4mew91qVrGb0VjKi2aB1i0LN1cUYqCJC Vmzl0ApKzRrzC4AbFA3l2A7KarauYjQsK6egpRYAd65twfvcn17Sh1nozueDsf6O 6s8NuZ2Xfr1Fs7VeiqHYjow7hfcBIvztfl0docMSEAoNk+SP4v4V/Jmng7CutrbU Mlv+mrJbarWkYEbzOVObIyeN1wI+hDYhDdGl64RxVIhDsbXnU3NK3TLaXs7UspNB ZqkSW81UJKjh8m7lHpEW5ftwx5e44brQ9PLvvnSZ/VW5O17ltp7Cg8a4rIXLDKDb R52CKvVQ+Z4= -----END CERTIFICATE-----Generated at Sun Jan 25 19:37:14 2026 by rpki-client