This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/0_3_l3Kwa2fNWuxADcbyBDT5JpM.roa File: 0_3_l3Kwa2fNWuxADcbyBDT5JpM.roa (raw, json) Hash identifier: /edCGoa7bfR3DxXJWo/i5AvIz2jvPVn5KxrW2nLr6KE= Subject key identifier: D3:FD:FF:97:72:B0:6B:67:CD:5A:EC:40:0D:C6:F2:04:34:F9:26:93 Certificate issuer: /CN=0563cb263df50d2d4d073c0f7db6cd2776302c9d Certificate serial: 019B7D5AF86C6F975441E11F6D7904972EB2 Authority key identifier: 05:63:CB:26:3D:F5:0D:2D:4D:07:3C:0F:7D:B6:CD:27:76:30:2C:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/0_3_l3Kwa2fNWuxADcbyBDT5JpM.roa Signing time: Fri 02 Jan 2026 06:17:52 +0000 ROA not before: Fri 02 Jan 2026 06:17:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34534 IP address blocks: 37.44.238.0/24 maxlen: 24 37.44.239.0/24 maxlen: 24 185.142.53.0/24 maxlen: 24 185.157.246.0/24 maxlen: 24 185.157.247.0/24 maxlen: 24 193.177.182.0/24 maxlen: 24 213.5.130.0/24 maxlen: 24 2a09:ca00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.crl rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.mft rsync://rpki.ripe.net/repository/DEFAULT/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 12:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5a:f8:6c:6f:97:54:41:e1:1f:6d:79:04:97:2e:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0563cb263df50d2d4d073c0f7db6cd2776302c9d Validity Not Before: Jan 2 06:17:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d3fdff9772b06b67cd5aec400dc6f20434f92693 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d4:bb:7e:90:1f:fc:82:c6:f2:06:02:a6:55: c4:98:ec:45:dc:a5:c9:dd:84:75:07:0e:20:5b:5e: ac:f1:7a:ca:f9:e7:37:72:82:d8:f8:91:a2:87:5b: a3:9c:cc:c6:98:20:43:de:79:51:3d:4f:39:db:d5: 57:ba:df:65:8b:a8:9f:4a:57:bb:40:7c:f1:f3:aa: 13:c8:67:c4:b3:29:a4:da:5c:c4:4e:f7:c8:11:50: 77:2c:57:f6:ef:fa:74:eb:30:a0:57:da:33:d4:c4: e7:e1:79:2d:10:d6:29:79:a0:b4:6a:fd:c7:09:10: d7:33:b8:ca:66:b4:6a:db:45:9b:b5:8e:92:75:22: 26:c9:95:b6:80:f3:d3:33:b0:7b:75:11:f4:83:80: e7:13:a8:95:3b:76:06:6f:c0:04:23:c5:b9:f4:77: a2:06:3c:ff:8d:a2:28:e6:32:fc:06:9f:a9:0e:25: 4c:05:e6:8b:5f:4f:8d:c8:f2:c5:0e:b0:22:d2:00: 1f:15:a6:06:f3:28:ff:4e:10:8a:90:56:cf:92:ce: 27:81:b2:02:d0:ce:94:01:99:6a:01:fd:de:d2:02: 5d:12:b9:64:bc:63:55:ce:4b:77:d3:bb:a3:c1:9f: 85:97:4c:a1:4b:6c:80:01:f2:6b:77:6a:b4:44:71: bc:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:FD:FF:97:72:B0:6B:67:CD:5A:EC:40:0D:C6:F2:04:34:F9:26:93 X509v3 Authority Key Identifier: keyid:05:63:CB:26:3D:F5:0D:2D:4D:07:3C:0F:7D:B6:CD:27:76:30:2C:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/0_3_l3Kwa2fNWuxADcbyBDT5JpM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.44.238.0/23 185.142.53.0/24 185.157.246.0/23 193.177.182.0/24 213.5.130.0/24 IPv6: 2a09:ca00::/48 Signature Algorithm: sha256WithRSAEncryption 26:8a:9d:96:2e:c3:48:93:b5:2f:43:22:a6:d7:f0:7d:34:b3: f3:7c:8e:f1:52:2b:52:8b:11:e3:57:5d:7f:fd:54:aa:f5:1f: c9:26:38:00:eb:19:10:08:0d:7c:c8:da:22:48:22:27:5a:95: d9:10:08:0e:da:a0:1e:1b:1d:20:76:48:cf:e4:b0:80:ab:bf: b5:b6:87:8c:94:0a:64:f9:c0:e2:df:f7:a8:cf:5a:9a:82:f8: 5d:a6:fb:54:4e:3e:ea:3b:21:79:2a:76:1d:ba:cb:08:9b:7a: f9:5d:3e:a8:54:c9:7e:3d:51:a4:71:81:10:60:79:7a:01:18: a3:d8:97:59:69:cc:cc:04:55:9c:29:8d:3d:4c:31:c8:21:86: 8e:02:20:69:05:89:a1:81:68:39:4e:1d:2b:ca:bb:bc:2d:d0: ac:54:93:6b:49:16:07:25:7d:aa:d3:39:7d:42:cc:15:f2:d3: 8a:ec:0f:a7:b6:dc:0d:b6:cd:7a:27:7c:f4:91:38:bb:86:89: e6:49:b9:f3:e6:ad:53:81:39:45:7b:65:b1:2a:ac:03:c1:30: 90:c1:f0:ec:35:54:fc:2c:28:e0:39:12:51:bd:43:a2:76:1a: 9d:fd:96:3c:c6:05:aa:5e:0f:7f:ba:9a:3f:0a:59:08:00:a9: 7b:2e:6f:ef -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgISAZt9Wvhsb5dUQeEfbXkEly6yMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1NjNjYjI2M2RmNTBkMmQ0ZDA3M2MwZjdkYjZjZDI3NzYz MDJjOWQwHhcNMjYwMTAyMDYxNzUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkM2ZkZmY5NzcyYjA2YjY3Y2Q1YWVjNDAwZGM2ZjIwNDM0ZjkyNjkzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAudS7fpAf/ILG8gYCplXEmOxF3KXJ 3YR1Bw4gW16s8XrK+ec3coLY+JGih1ujnMzGmCBD3nlRPU8529VXut9li6ifSle7 QHzx86oTyGfEsymk2lzETvfIEVB3LFf27/p06zCgV9oz1MTn4XktENYpeaC0av3H CRDXM7jKZrRq20WbtY6SdSImyZW2gPPTM7B7dRH0g4DnE6iVO3YGb8AEI8W59Hei Bjz/jaIo5jL8Bp+pDiVMBeaLX0+NyPLFDrAi0gAfFaYG8yj/ThCKkFbPks4ngbIC 0M6UAZlqAf3e0gJdErlkvGNVzkt307ujwZ+Fl0yhS2yAAfJrd2q0RHG8NwIDAQAB o4ICMjCCAi4wHQYDVR0OBBYEFNP9/5dysGtnzVrsQA3G8gQ0+SaTMB8GA1UdIwQY MBaAFAVjyyY99Q0tTQc8D322zSd2MCydMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQldQTEpqMzFEUzFOQnp3UGZiYk5KM1l3TEowLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi82MmU1ZjItMjViMy00NTU3LWFhOTQt MTUwMzU0YjAwZTU1LzEvMF8zX2wzS3dhMmZOV3V4QURjYnlCRFQ1SnBNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi82MmU1ZjItMjViMy00NTU3LWFhOTQtMTUwMzU0YjAwZTU1 LzEvQldQTEpqMzFEUzFOQnp3UGZiYk5KM1l3TEowLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEgGCCsGAQUFBwEHAQH/BDkwNzAkBAIAATAeAwQBJSzuAwQA uY41AwQBuZ32AwQAwbG2AwQA1QWCMA8EAgACMAkDBwAqCcoAAAAwDQYJKoZIhvcN AQELBQADggEBACaKnZYuw0iTtS9DIqbX8H00s/N8jvFSK1KLEeNXXX/9VKr1H8km OADrGRAIDXzI2iJIIidaldkQCA7aoB4bHSB2SM/ksICrv7W2h4yUCmT5wOLf96jP WpqC+F2m+1ROPuo7IXkqdh26ywibevldPqhUyX49UaRxgRBgeXoBGKPYl1lpzMwE VZwpjT1MMcghho4CIGkFiaGBaDlOHSvKu7wt0KxUk2tJFgclfarTOX1CzBXy04rs D6e23A22zXonfPSROLuGieZJufPmrVOBOUV7ZbEqrAPBMJDB8Ow1VPwsKOA5ElG9 Q6J2Gp39ljzGBapeD3+6mj8KWQgAqXsub+8= -----END CERTIFICATE-----Generated at Sun Jan 25 22:17:09 2026 by rpki-client