This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/c1c1ce-ea59-4dcf-bccc-3e7cadd88c70/1/3kbw1gEBJPgdXB0IaWihDI9SnkY.roa File: 3kbw1gEBJPgdXB0IaWihDI9SnkY.roa (raw, json) Hash identifier: wc+w33BWiYv9rEBwRELoelpcxbBZ5Kq+Pp0M0nU7gkg= Subject key identifier: DE:46:F0:D6:01:01:24:F8:1D:5C:1D:08:69:68:A1:0C:8F:52:9E:46 Certificate issuer: /CN=7f50077d2dd8a67a1ae8b6abd6bbb3489028a5bb Certificate serial: 019B79113BA494F18A00A90C6B54B12CB89A Authority key identifier: 7F:50:07:7D:2D:D8:A6:7A:1A:E8:B6:AB:D6:BB:B3:48:90:28:A5:BB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f1AHfS3Ypnoa6Lar1ruzSJAopbs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/c1c1ce-ea59-4dcf-bccc-3e7cadd88c70/1/3kbw1gEBJPgdXB0IaWihDI9SnkY.roa Signing time: Thu 01 Jan 2026 10:18:51 +0000 ROA not before: Thu 01 Jan 2026 10:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 766 IP address blocks: 130.206.0.0/16 maxlen: 16 158.99.0.0/16 maxlen: 16 185.205.148.0/22 maxlen: 22 192.148.201.0/24 maxlen: 24 192.148.202.0/23 maxlen: 23 192.148.204.0/22 maxlen: 22 192.187.24.0/23 maxlen: 23 193.144.0.0/14 maxlen: 14 212.128.0.0/18 maxlen: 18 212.128.64.0/20 maxlen: 20 212.128.80.0/21 maxlen: 21 212.128.128.0/17 maxlen: 17 2001:720::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/c1c1ce-ea59-4dcf-bccc-3e7cadd88c70/1/f1AHfS3Ypnoa6Lar1ruzSJAopbs.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/c1c1ce-ea59-4dcf-bccc-3e7cadd88c70/1/f1AHfS3Ypnoa6Lar1ruzSJAopbs.mft rsync://rpki.ripe.net/repository/DEFAULT/f1AHfS3Ypnoa6Lar1ruzSJAopbs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:3b:a4:94:f1:8a:00:a9:0c:6b:54:b1:2c:b8:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7f50077d2dd8a67a1ae8b6abd6bbb3489028a5bb Validity Not Before: Jan 1 10:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=de46f0d6010124f81d5c1d086968a10c8f529e46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:b5:fe:b0:91:66:3f:73:c1:04:39:df:f3:70: bb:fc:6b:3b:67:ee:61:89:17:b7:84:77:17:2f:3a: a3:3c:e4:0c:fc:d5:e5:b6:5d:ae:5b:46:a1:28:49: 4d:ff:4f:9f:b0:64:66:82:f0:2a:75:2c:4d:d6:cd: dd:18:b7:2b:13:00:ae:12:9d:79:88:51:92:89:07: 5f:88:22:90:46:ef:0b:58:a4:90:df:e7:10:0b:76: 51:95:cf:d0:50:fd:a6:05:70:f6:39:8b:3e:4f:b3: bf:35:30:c5:63:c5:aa:69:5d:20:58:6d:27:a6:04: 30:b9:4d:6b:42:3b:31:1b:de:d4:ff:05:af:9b:32: da:e3:fd:c9:96:3b:04:50:9b:ff:1a:cd:ed:e0:78: 75:0f:86:22:f0:35:95:8f:fb:a2:44:56:d2:7b:c2: 2a:c7:91:77:02:a6:2a:e1:1a:b8:fe:7f:0e:dd:bd: 6e:82:82:46:d5:84:29:cd:24:c4:43:fd:90:27:3f: 64:a7:3f:cb:1c:21:bd:a6:ab:6b:43:d5:fa:c8:58: 23:92:8b:bd:96:6a:13:1a:1b:21:fe:48:87:9a:77: 48:37:56:3b:e2:e2:4e:07:a9:18:9a:c5:48:86:9c: b3:c5:31:d9:c3:22:5f:7d:fe:5d:18:c2:9b:29:50: 3b:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:46:F0:D6:01:01:24:F8:1D:5C:1D:08:69:68:A1:0C:8F:52:9E:46 X509v3 Authority Key Identifier: keyid:7F:50:07:7D:2D:D8:A6:7A:1A:E8:B6:AB:D6:BB:B3:48:90:28:A5:BB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1AHfS3Ypnoa6Lar1ruzSJAopbs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/c1c1ce-ea59-4dcf-bccc-3e7cadd88c70/1/3kbw1gEBJPgdXB0IaWihDI9SnkY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/c1c1ce-ea59-4dcf-bccc-3e7cadd88c70/1/f1AHfS3Ypnoa6Lar1ruzSJAopbs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.206.0.0/16 158.99.0.0/16 185.205.148.0/22 192.148.201.0-192.148.207.255 192.187.24.0/23 193.144.0.0/14 212.128.0.0-212.128.87.255 212.128.128.0/17 IPv6: 2001:720::/32 Signature Algorithm: sha256WithRSAEncryption 75:ca:01:e9:5d:d1:de:16:6c:af:93:3c:71:18:1a:ea:f1:67: 32:77:54:69:54:a4:a1:be:02:de:db:63:99:8a:56:da:31:92: b8:67:78:44:93:2f:c3:20:33:99:52:07:0b:2e:2c:2b:40:30: 92:d6:c7:88:93:2a:8c:3e:80:a5:9e:a7:3e:9e:ad:99:72:60: db:d1:f1:7d:e6:8e:a7:a4:a3:a1:f9:27:4f:99:35:96:63:7a: f2:31:ea:90:81:cf:96:d3:b8:3c:bc:16:96:15:cd:fa:46:4b: eb:fb:4d:9e:27:2d:e6:02:5f:49:75:c5:b5:dd:ba:e5:78:34: 5b:f6:56:7f:b4:63:72:1f:c2:0f:d9:2f:ea:33:fc:e3:21:70: 11:e9:8f:99:3a:ea:12:92:9f:00:e3:53:d5:7f:d2:1c:f6:0a: 19:99:97:7c:48:8c:b9:a4:07:7e:9b:bc:d8:8b:4c:f3:40:fa: 7e:73:c8:1d:2b:80:c8:3c:b3:f1:e2:7d:fc:a4:bd:bf:b8:f5: 46:a7:dd:0f:d8:b3:3e:0b:87:8b:3b:49:ce:ae:d8:5c:f6:be: 22:b5:e3:62:33:8c:00:3b:b4:df:0f:5e:2d:7d:bd:00:6e:2b: 00:09:fa:20:33:50:9a:25:59:fa:2c:52:66:f2:9f:8f:34:05: 1a:f3:63:a4 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgISAZt5ETuklPGKAKkMa1SxLLiaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdmNTAwNzdkMmRkOGE2N2ExYWU4YjZhYmQ2YmJiMzQ4OTAy OGE1YmIwHhcNMjYwMTAxMTAxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZTQ2ZjBkNjAxMDEyNGY4MWQ1YzFkMDg2OTY4YTEwYzhmNTI5ZTQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2bX+sJFmP3PBBDnf83C7/Gs7Z+5h iRe3hHcXLzqjPOQM/NXltl2uW0ahKElN/0+fsGRmgvAqdSxN1s3dGLcrEwCuEp15 iFGSiQdfiCKQRu8LWKSQ3+cQC3ZRlc/QUP2mBXD2OYs+T7O/NTDFY8WqaV0gWG0n pgQwuU1rQjsxG97U/wWvmzLa4/3JljsEUJv/Gs3t4Hh1D4Yi8DWVj/uiRFbSe8Iq x5F3AqYq4Rq4/n8O3b1ugoJG1YQpzSTEQ/2QJz9kpz/LHCG9pqtrQ9X6yFgjkou9 lmoTGhsh/kiHmndIN1Y74uJOB6kYmsVIhpyzxTHZwyJfff5dGMKbKVA7yQIDAQAB o4ICTjCCAkowHQYDVR0OBBYEFN5G8NYBAST4HVwdCGlooQyPUp5GMB8GA1UdIwQY MBaAFH9QB30t2KZ6Gui2q9a7s0iQKKW7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZjFBSGZTM1lwbm9hNkxhcjFydXpTSkFvcGJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy9jMWMxY2UtZWE1OS00ZGNmLWJjY2Mt M2U3Y2FkZDg4YzcwLzEvM2tidzFnRUJKUGdkWEIwSWFXaWhESTlTbmtZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy9jMWMxY2UtZWE1OS00ZGNmLWJjY2MtM2U3Y2FkZDg4Yzcw LzEvZjFBSGZTM1lwbm9hNkxhcjFydXpTSkFvcGJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGQGCCsGAQUFBwEHAQH/BFUwUzBCBAIAATA8AwMAgs4DAwCe YwMEArnNlDAMAwQAwJTJAwQEwJTAAwQBwLsYAwMCwZAwCwMDB9SAAwQD1IBQAwQH 1ICAMA0EAgACMAcDBQAgAQcgMA0GCSqGSIb3DQEBCwUAA4IBAQB1ygHpXdHeFmyv kzxxGBrq8Wcyd1RpVKShvgLe22OZilbaMZK4Z3hEky/DIDOZUgcLLiwrQDCS1seI kyqMPoClnqc+nq2ZcmDb0fF95o6npKOh+SdPmTWWY3ryMeqQgc+W07g8vBaWFc36 Rkvr+02eJy3mAl9JdcW13brleDRb9lZ/tGNyH8IP2S/qM/zjIXAR6Y+ZOuoSkp8A 41PVf9Ic9goZmZd8SIy5pAd+m7zYi0zzQPp+c8gdK4DIPLPx4n38pL2/uPVGp90P 2LM+C4eLO0nOrthc9r4iteNiM4wAO7TfD14tfb0AbisACfogM1CaJVn6LFJm8p+P NAUa82Ok -----END CERTIFICATE-----Generated at Mon Jan 26 07:50:51 2026 by rpki-client