This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/3m4ZcWe4AoRitpxIdoHTfvPCTz4.roa File: 3m4ZcWe4AoRitpxIdoHTfvPCTz4.roa (raw, json) Hash identifier: R1IDNKkyr2PRIrfMe44b/uoEQJhofAwIdcVDkSZ0J1s= Subject key identifier: DE:6E:19:71:67:B8:02:84:62:B6:9C:48:76:81:D3:7E:F3:C2:4F:3E Certificate issuer: /CN=aee08d9336f2e6cd165eb730297fe6d20c83c39a Certificate serial: 019B7B36D8C04EC394D74DC17A42D2C709A9 Authority key identifier: AE:E0:8D:93:36:F2:E6:CD:16:5E:B7:30:29:7F:E6:D2:0C:83:C3:9A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/3m4ZcWe4AoRitpxIdoHTfvPCTz4.roa Signing time: Thu 01 Jan 2026 20:19:10 +0000 ROA not before: Thu 01 Jan 2026 20:19:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57053 IP address blocks: 185.155.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.crl rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.mft rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:d8:c0:4e:c3:94:d7:4d:c1:7a:42:d2:c7:09:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aee08d9336f2e6cd165eb730297fe6d20c83c39a Validity Not Before: Jan 1 20:19:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=de6e197167b8028462b69c487681d37ef3c24f3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:8f:b9:f6:33:d7:ad:7b:ed:c1:3f:e1:7d:84: cd:ea:a7:06:06:50:4b:e2:20:dd:de:af:76:82:a4: 62:32:16:39:e7:96:77:df:d6:71:f1:34:87:01:3f: 05:00:12:9d:65:aa:f0:68:ca:86:9e:41:91:8f:44: d3:ed:3c:34:40:ba:72:62:14:28:2b:62:21:28:ff: 0c:02:fd:9a:0b:1f:ed:ce:36:fe:00:f0:f0:5d:05: 11:77:4b:08:0f:b4:5e:f1:8f:4b:8f:af:a9:95:ca: b9:77:3d:4e:ee:f3:1e:2f:c2:0b:eb:4e:0b:5a:19: 38:f5:5a:af:f0:23:a9:50:e3:f9:c6:0e:d9:af:95: 4f:12:b8:aa:ab:e0:b9:d7:77:d7:b6:21:0a:42:74: 0e:8d:b1:b2:e4:bc:ef:be:9c:70:41:1c:65:3b:f0: 63:67:b3:39:93:b0:77:7f:22:1b:b2:1f:cb:fa:ee: 74:0d:e1:2a:fe:07:18:25:6a:a8:cc:95:75:7e:1a: cd:f5:90:ed:42:1d:e6:2f:70:36:66:f6:06:72:39: 33:06:f8:47:8b:29:32:6b:24:4a:85:4d:04:27:fe: c8:19:0e:d7:a3:77:7b:31:98:1d:ef:ce:e0:ff:36: b5:b1:05:b7:be:05:e6:99:54:2a:93:d2:32:a3:3e: a0:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:6E:19:71:67:B8:02:84:62:B6:9C:48:76:81:D3:7E:F3:C2:4F:3E X509v3 Authority Key Identifier: keyid:AE:E0:8D:93:36:F2:E6:CD:16:5E:B7:30:29:7F:E6:D2:0C:83:C3:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/3m4ZcWe4AoRitpxIdoHTfvPCTz4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.155.159.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:59:a0:80:d6:2e:d3:67:e0:d6:c2:fc:39:9e:53:e8:4b:67: a6:1f:a6:48:3e:92:82:71:85:70:b6:3b:98:98:ba:41:9f:38: 61:ca:00:62:34:50:15:97:cb:c0:28:3d:24:b7:6d:47:cc:58: 36:e3:81:a6:0b:08:ac:bb:2d:aa:b7:f2:5c:54:62:41:04:2b: 91:48:0c:e9:0c:86:73:20:c6:6b:d5:af:f3:ba:31:d9:30:27: 00:a8:7a:b7:65:9c:80:13:78:20:c6:00:22:c4:19:65:2e:a6: af:14:cd:ad:b2:5a:99:df:8d:13:7f:a9:f1:c6:6d:5d:d3:bf: c7:60:23:ab:73:fd:12:a7:5d:5f:8e:f7:03:ab:0b:44:06:6e: 6b:10:ec:51:bb:6a:14:7b:7d:cc:86:ac:b6:3e:bb:ef:34:c7: 99:0b:3b:e6:0e:2d:67:01:68:39:e8:1b:ef:94:eb:e0:17:f8: 89:15:b7:05:64:76:37:a9:0a:98:67:1d:e6:99:bc:ea:c5:79: a9:d5:85:76:05:c5:e9:b8:98:c0:28:65:96:e0:46:6d:13:c4: 0b:9f:b6:8c:75:86:dc:a5:3a:a8:04:98:18:fe:cd:cb:a7:43: 70:da:e7:11:ad:8a:15:83:5c:e6:bd:7e:bf:a7:b9:3a:d1:de: d3:91:2d:15 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7NtjATsOU103BekLSxwmpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlZTA4ZDkzMzZmMmU2Y2QxNjVlYjczMDI5N2ZlNmQyMGM4 M2MzOWEwHhcNMjYwMTAxMjAxOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZTZlMTk3MTY3YjgwMjg0NjJiNjljNDg3NjgxZDM3ZWYzYzI0ZjNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAko+59jPXrXvtwT/hfYTN6qcGBlBL 4iDd3q92gqRiMhY555Z339Zx8TSHAT8FABKdZarwaMqGnkGRj0TT7Tw0QLpyYhQo K2IhKP8MAv2aCx/tzjb+APDwXQURd0sID7Re8Y9Lj6+plcq5dz1O7vMeL8IL604L Whk49Vqv8COpUOP5xg7Zr5VPEriqq+C513fXtiEKQnQOjbGy5LzvvpxwQRxlO/Bj Z7M5k7B3fyIbsh/L+u50DeEq/gcYJWqozJV1fhrN9ZDtQh3mL3A2ZvYGcjkzBvhH iykyayRKhU0EJ/7IGQ7Xo3d7MZgd787g/za1sQW3vgXmmVQqk9Iyoz6gtQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFN5uGXFnuAKEYracSHaB037zwk8+MB8GA1UdIwQY MBaAFK7gjZM28ubNFl63MCl/5tIMg8OaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcnVDTmt6Ynk1czBXWHJjd0tYX20wZ3lEdzVvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC9mODUzZjgtMjA3MS00OWRlLWI2YTAt NDk3YmVkZDcxZWI5LzEvM200WmNXZTRBb1JpdHB4SWRvSFRmdlBDVHo0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MC9mODUzZjgtMjA3MS00OWRlLWI2YTAtNDk3YmVkZDcxZWI5 LzEvcnVDTmt6Ynk1czBXWHJjd0tYX20wZ3lEdzVvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZufMA0G CSqGSIb3DQEBCwUAA4IBAQBaWaCA1i7TZ+DWwvw5nlPoS2emH6ZIPpKCcYVwtjuY mLpBnzhhygBiNFAVl8vAKD0kt21HzFg244GmCwisuy2qt/JcVGJBBCuRSAzpDIZz IMZr1a/zujHZMCcAqHq3ZZyAE3ggxgAixBllLqavFM2tslqZ340Tf6nxxm1d07/H YCOrc/0Sp11fjvcDqwtEBm5rEOxRu2oUe33Mhqy2PrvvNMeZCzvmDi1nAWg56Bvv lOvgF/iJFbcFZHY3qQqYZx3mmbzqxXmp1YV2BcXpuJjAKGWW4EZtE8QLn7aMdYbc pTqoBJgY/s3Lp0Nw2ucRrYoVg1zmvX6/p7k60d7TkS0V -----END CERTIFICATE-----Generated at Sun Jan 25 20:46:21 2026 by rpki-client