This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/3abdc7-16a2-444b-9cef-83fbd8666994/1/U3twjM0H57q4OKhp0S-d6jU2ZK0.roa File: U3twjM0H57q4OKhp0S-d6jU2ZK0.roa (raw, json) Hash identifier: ucLz1Rl2bM04jZf+Xxc2nzOXMHVXNvLglCQznDB9st4= Subject key identifier: 53:7B:70:8C:CD:07:E7:BA:B8:38:A8:69:D1:2F:9D:EA:35:36:64:AD Certificate issuer: /CN=8fa9d05e2a321aecba4ecc4abec0f78eacde55b0 Certificate serial: 019AC03367CDDFEC5B673CC29855C0D941FD Authority key identifier: 8F:A9:D0:5E:2A:32:1A:EC:BA:4E:CC:4A:BE:C0:F7:8E:AC:DE:55:B0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j6nQXioyGuy6TsxKvsD3jqzeVbA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/3abdc7-16a2-444b-9cef-83fbd8666994/1/U3twjM0H57q4OKhp0S-d6jU2ZK0.roa Signing time: Wed 26 Nov 2025 12:46:25 +0000 ROA not before: Wed 26 Nov 2025 12:46:25 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 212855 IP address blocks: 93.157.140.0/24 maxlen: 24 2001:67c:f8c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/3abdc7-16a2-444b-9cef-83fbd8666994/1/j6nQXioyGuy6TsxKvsD3jqzeVbA.crl rsync://rpki.ripe.net/repository/DEFAULT/61/3abdc7-16a2-444b-9cef-83fbd8666994/1/j6nQXioyGuy6TsxKvsD3jqzeVbA.mft rsync://rpki.ripe.net/repository/DEFAULT/j6nQXioyGuy6TsxKvsD3jqzeVbA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:c0:33:67:cd:df:ec:5b:67:3c:c2:98:55:c0:d9:41:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8fa9d05e2a321aecba4ecc4abec0f78eacde55b0 Validity Not Before: Nov 26 12:46:25 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=537b708ccd07e7bab838a869d12f9dea353664ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c1:77:4a:d7:19:dc:9d:0e:3a:69:cf:c1:6e: 87:ad:98:29:22:89:1f:01:ce:c7:a9:18:0f:43:de: 76:1d:d7:51:b6:0a:4f:bc:15:19:49:87:f1:59:c0: c9:19:f0:7f:e6:c4:98:74:6c:39:72:b2:d1:00:a4: e1:30:2e:8f:37:93:31:89:5e:bd:b0:5c:60:36:e2: 55:2e:ac:08:7d:27:e6:31:c9:78:81:1c:75:de:19: 76:e8:a0:90:48:57:64:a0:4e:36:40:6c:fd:73:23: 28:4b:fb:fe:84:50:97:1d:c1:c8:4c:bb:56:77:ad: ed:0f:26:b5:84:3a:dd:98:7a:ff:68:20:52:c1:6f: 89:7f:e9:f5:af:6c:52:89:7d:9e:a7:53:4b:70:d8: 11:bc:40:74:24:c0:6a:f9:7e:18:48:80:c8:c0:ae: 43:e2:32:43:28:be:fe:9c:13:c9:23:0c:3c:77:db: a1:1c:4c:bf:e5:39:45:04:30:7c:c1:7d:07:5f:8f: 2d:4a:75:06:5b:e6:7c:e2:d3:40:84:79:8c:33:df: 2d:ec:92:5f:a6:05:06:c5:a7:f8:8c:37:39:f2:1d: 9a:ae:1d:4c:aa:27:70:25:bc:54:d1:67:21:be:af: ed:d3:d9:61:b3:c8:01:57:e7:bb:1d:2d:ae:51:37: 7c:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:7B:70:8C:CD:07:E7:BA:B8:38:A8:69:D1:2F:9D:EA:35:36:64:AD X509v3 Authority Key Identifier: keyid:8F:A9:D0:5E:2A:32:1A:EC:BA:4E:CC:4A:BE:C0:F7:8E:AC:DE:55:B0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j6nQXioyGuy6TsxKvsD3jqzeVbA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/3abdc7-16a2-444b-9cef-83fbd8666994/1/U3twjM0H57q4OKhp0S-d6jU2ZK0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/3abdc7-16a2-444b-9cef-83fbd8666994/1/j6nQXioyGuy6TsxKvsD3jqzeVbA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.157.140.0/24 IPv6: 2001:67c:f8c::/48 Signature Algorithm: sha256WithRSAEncryption 08:42:35:22:43:59:aa:fc:80:e8:81:00:40:87:94:28:91:7c: 62:6c:73:ae:6a:df:ec:19:7e:af:64:bf:f5:74:94:04:21:ed: 3e:df:49:af:67:48:cb:f2:3e:21:10:24:34:8d:bd:c7:15:39: 18:b4:2a:df:0b:0c:b7:97:2b:e6:9a:15:9f:b5:ae:1f:59:1e: ae:53:0e:1e:4a:61:5f:c9:a0:c5:62:0b:a7:ba:ad:cf:69:7e: bb:76:75:4f:2c:a5:dd:72:27:c2:b9:bd:92:dc:3e:2f:8c:2f: 61:a8:02:75:0a:ce:20:e4:7c:34:04:53:50:ec:7a:40:d9:9a: ef:74:18:5c:55:e3:09:98:99:fe:9b:94:e6:43:ca:9f:0a:44: f9:00:e1:b5:fd:26:79:e8:72:0a:eb:9c:58:86:42:d1:52:db: 1e:ab:d6:0c:ed:83:7e:97:a7:d4:da:ce:8b:0a:b6:d9:51:4f: 29:b9:67:c8:75:df:4d:eb:fb:89:08:13:32:3a:fe:c2:bb:27: 54:b1:7b:fb:37:cb:64:f3:7f:5d:a4:94:84:c6:91:31:ac:2a: ea:39:75:e7:e2:ff:51:7b:27:b5:6f:2b:f0:86:0a:29:82:19: 2a:f5:27:2d:e6:dd:54:3a:e9:f4:a8:c0:8d:34:aa:51:d9:22: b0:3c:c2:5d -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZrAM2fN3+xbZzzCmFXA2UH9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhmYTlkMDVlMmEzMjFhZWNiYTRlY2M0YWJlYzBmNzhlYWNk ZTU1YjAwHhcNMjUxMTI2MTI0NjI1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MzdiNzA4Y2NkMDdlN2JhYjgzOGE4NjlkMTJmOWRlYTM1MzY2NGFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxcF3StcZ3J0OOmnPwW6HrZgpIokf Ac7HqRgPQ952HddRtgpPvBUZSYfxWcDJGfB/5sSYdGw5crLRAKThMC6PN5MxiV69 sFxgNuJVLqwIfSfmMcl4gRx13hl26KCQSFdkoE42QGz9cyMoS/v+hFCXHcHITLtW d63tDya1hDrdmHr/aCBSwW+Jf+n1r2xSiX2ep1NLcNgRvEB0JMBq+X4YSIDIwK5D 4jJDKL7+nBPJIww8d9uhHEy/5TlFBDB8wX0HX48tSnUGW+Z84tNAhHmMM98t7JJf pgUGxaf4jDc58h2arh1MqidwJbxU0Wchvq/t09lhs8gBV+e7HS2uUTd8tQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFFN7cIzNB+e6uDioadEvneo1NmStMB8GA1UdIwQY MBaAFI+p0F4qMhrsuk7MSr7A946s3lWwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvajZuUVhpb3lHdXk2VHN4S3ZzRDNqcXplVmJBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS8zYWJkYzctMTZhMi00NDRiLTljZWYt ODNmYmQ4NjY2OTk0LzEvVTN0d2pNMEg1N3E0T0tocDBTLWQ2alUyWkswLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS8zYWJkYzctMTZhMi00NDRiLTljZWYtODNmYmQ4NjY2OTk0 LzEvajZuUVhpb3lHdXk2VHN4S3ZzRDNqcXplVmJBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAXZ2MMA8E AgACMAkDBwAgAQZ8D4wwDQYJKoZIhvcNAQELBQADggEBAAhCNSJDWar8gOiBAECH lCiRfGJsc65q3+wZfq9kv/V0lAQh7T7fSa9nSMvyPiEQJDSNvccVORi0Kt8LDLeX K+aaFZ+1rh9ZHq5TDh5KYV/JoMViC6e6rc9pfrt2dU8spd1yJ8K5vZLcPi+ML2Go AnUKziDkfDQEU1DsekDZmu90GFxV4wmYmf6blOZDyp8KRPkA4bX9JnnocgrrnFiG QtFS2x6r1gztg36Xp9TazosKttlRTym5Z8h1303r+4kIEzI6/sK7J1Sxe/s3y2Tz f12klITGkTGsKuo5defi/1F7J7VvK/CGCimCGSr1Jy3m3VQ66fSowI00qlHZIrA8 wl0= -----END CERTIFICATE-----Generated at Sat Dec 6 05:44:01 2025 by rpki-client