This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/3f9158-6a90-4e57-a28f-3e06a0182614/1/3tkw1-qcgk_89pGe7YNJR2YIKSg.roa File: 3tkw1-qcgk_89pGe7YNJR2YIKSg.roa (raw, json) Hash identifier: 8wvPCey8xezOzLXtvtokdiPSl8fhacZDXdIFAhw8g4o= Subject key identifier: DE:D9:30:D7:EA:9C:82:4F:FC:F6:91:9E:ED:83:49:47:66:08:29:28 Certificate issuer: /CN=a1dc0630e96096de4822d1f51ef80c6fff54191b Certificate serial: 019B7DCA9EBC2592044DD0ACF3E37EC1A979 Authority key identifier: A1:DC:06:30:E9:60:96:DE:48:22:D1:F5:1E:F8:0C:6F:FF:54:19:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/odwGMOlglt5IItH1HvgMb_9UGRs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/3f9158-6a90-4e57-a28f-3e06a0182614/1/3tkw1-qcgk_89pGe7YNJR2YIKSg.roa Signing time: Fri 02 Jan 2026 08:19:49 +0000 ROA not before: Fri 02 Jan 2026 08:19:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20724 IP address blocks: 91.227.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/3f9158-6a90-4e57-a28f-3e06a0182614/1/odwGMOlglt5IItH1HvgMb_9UGRs.crl rsync://rpki.ripe.net/repository/DEFAULT/57/3f9158-6a90-4e57-a28f-3e06a0182614/1/odwGMOlglt5IItH1HvgMb_9UGRs.mft rsync://rpki.ripe.net/repository/DEFAULT/odwGMOlglt5IItH1HvgMb_9UGRs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 14:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:9e:bc:25:92:04:4d:d0:ac:f3:e3:7e:c1:a9:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1dc0630e96096de4822d1f51ef80c6fff54191b Validity Not Before: Jan 2 08:19:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ded930d7ea9c824ffcf6919eed83494766082928 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:fc:0f:33:7e:31:44:d7:a2:59:8a:02:de:06: f3:77:93:aa:e8:2a:3a:63:98:ee:26:18:c4:c2:ee: 8c:93:35:20:98:e9:61:1b:9b:96:2b:9b:6b:80:22: 13:45:e9:14:8a:8b:65:d1:b5:7a:5d:12:ce:15:8b: f6:8b:5f:3c:eb:45:6d:09:50:c6:9e:24:e3:74:d8: 14:ea:88:ab:19:1a:a6:26:02:9f:8d:82:8f:23:c2: 18:93:51:ae:14:8d:ad:af:d7:e6:d4:a0:f7:53:43: 24:b8:b5:2f:81:28:60:46:46:e0:1e:38:43:09:79: 36:66:af:74:8d:2c:38:f9:28:26:2f:e2:dc:2e:9d: c3:a0:92:bc:5e:91:0f:b7:6f:0c:c2:5c:8b:9f:a1: 15:72:22:dc:72:03:c8:eb:96:98:6f:be:0c:55:54: 23:e6:51:f8:87:dc:6c:59:3f:12:34:1c:5b:f3:e9: 09:02:02:63:5e:69:ea:23:c8:4f:25:15:1d:31:f2: 48:bc:5b:54:33:2d:ca:25:00:f5:05:00:68:4b:ae: b3:6b:47:54:3f:5a:df:22:9b:e1:af:14:85:ae:18: 22:cf:33:f5:a0:10:5e:6c:b7:f9:b6:53:dd:64:b3: 03:f2:bf:00:44:96:be:aa:6f:85:c7:55:e9:c8:68: 2b:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:D9:30:D7:EA:9C:82:4F:FC:F6:91:9E:ED:83:49:47:66:08:29:28 X509v3 Authority Key Identifier: keyid:A1:DC:06:30:E9:60:96:DE:48:22:D1:F5:1E:F8:0C:6F:FF:54:19:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/odwGMOlglt5IItH1HvgMb_9UGRs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3f9158-6a90-4e57-a28f-3e06a0182614/1/3tkw1-qcgk_89pGe7YNJR2YIKSg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3f9158-6a90-4e57-a28f-3e06a0182614/1/odwGMOlglt5IItH1HvgMb_9UGRs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.227.62.0/24 Signature Algorithm: sha256WithRSAEncryption 10:e4:46:a8:81:c3:dc:ad:e4:9d:3f:37:d3:f7:ce:fe:2b:a7: 50:4e:32:cc:02:9d:e3:54:01:05:d6:97:12:ac:5c:dc:d5:9f: fa:b5:7b:e6:44:26:b8:e3:79:37:4c:52:4f:dc:fa:88:3f:7d: 03:ab:0b:31:12:74:31:47:38:e9:03:40:ee:04:08:c1:0a:69: f6:be:68:1e:56:32:f5:76:a1:c1:fa:6b:c5:35:c6:0e:b3:bd: 01:b5:a1:8a:1c:18:06:e6:84:c0:66:a5:94:9c:05:01:ee:87: 03:03:a5:a6:55:11:16:bf:0f:b4:c4:10:a9:54:55:d6:cc:e5: 07:62:09:4b:0c:77:ee:8a:8d:d4:38:35:21:a3:c4:0d:b9:4c: a2:28:f8:82:d7:79:35:5c:80:f1:cf:4e:db:3e:9d:1e:88:cd: 63:8b:11:e9:38:85:13:14:8a:27:4e:65:96:3a:0e:ac:7a:9f: d1:ae:d3:9a:c9:0f:7d:6b:e8:80:47:6f:d5:b1:08:42:67:a0: 3b:0f:4f:38:d5:2f:5b:3a:e2:3f:91:2a:d8:31:04:e9:11:b8: c8:28:c7:e5:52:40:93:7b:44:81:34:eb:61:17:e6:76:52:94: 64:ff:1f:e4:77:a6:5f:ef:5b:a3:e9:34:53:17:d9:2a:97:54: 18:28:06:b8 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9yp68JZIETdCs8+N+wal5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExZGMwNjMwZTk2MDk2ZGU0ODIyZDFmNTFlZjgwYzZmZmY1 NDE5MWIwHhcNMjYwMTAyMDgxOTQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZWQ5MzBkN2VhOWM4MjRmZmNmNjkxOWVlZDgzNDk0NzY2MDgyOTI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk/wPM34xRNeiWYoC3gbzd5Oq6Co6 Y5juJhjEwu6MkzUgmOlhG5uWK5trgCITRekUiotl0bV6XRLOFYv2i18860VtCVDG niTjdNgU6oirGRqmJgKfjYKPI8IYk1GuFI2tr9fm1KD3U0MkuLUvgShgRkbgHjhD CXk2Zq90jSw4+SgmL+LcLp3DoJK8XpEPt28MwlyLn6EVciLccgPI65aYb74MVVQj 5lH4h9xsWT8SNBxb8+kJAgJjXmnqI8hPJRUdMfJIvFtUMy3KJQD1BQBoS66za0dU P1rfIpvhrxSFrhgizzP1oBBebLf5tlPdZLMD8r8ARJa+qm+Fx1XpyGgrCwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFN7ZMNfqnIJP/PaRnu2DSUdmCCkoMB8GA1UdIwQY MBaAFKHcBjDpYJbeSCLR9R74DG//VBkbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2R3R01PbGdsdDVJSXRIMUh2Z01iXzlVR1JzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny8zZjkxNTgtNmE5MC00ZTU3LWEyOGYt M2UwNmEwMTgyNjE0LzEvM3RrdzEtcWNna184OXBHZTdZTkpSMllJS1NnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny8zZjkxNTgtNmE5MC00ZTU3LWEyOGYtM2UwNmEwMTgyNjE0 LzEvb2R3R01PbGdsdDVJSXRIMUh2Z01iXzlVR1JzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+M+MA0G CSqGSIb3DQEBCwUAA4IBAQAQ5EaogcPcreSdPzfT987+K6dQTjLMAp3jVAEF1pcS rFzc1Z/6tXvmRCa443k3TFJP3PqIP30DqwsxEnQxRzjpA0DuBAjBCmn2vmgeVjL1 dqHB+mvFNcYOs70BtaGKHBgG5oTAZqWUnAUB7ocDA6WmVREWvw+0xBCpVFXWzOUH YglLDHfuio3UODUho8QNuUyiKPiC13k1XIDxz07bPp0eiM1jixHpOIUTFIonTmWW Og6sep/RrtOayQ99a+iAR2/VsQhCZ6A7D0841S9bOuI/kSrYMQTpEbjIKMflUkCT e0SBNOthF+Z2UpRk/x/kd6Zf71uj6TRTF9kql1QYKAa4 -----END CERTIFICATE-----Generated at Mon Jan 26 01:02:11 2026 by rpki-client