This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/3R94WklWoDzTrhrmU_kQg0rAh_s.roa File: 3R94WklWoDzTrhrmU_kQg0rAh_s.roa (raw, json) Hash identifier: gIGAQuYQfwFYDAsfeepLJauyv10gQ+eFdMWmBxs5dkA= Subject key identifier: DD:1F:78:5A:49:56:A0:3C:D3:AE:1A:E6:53:F9:10:83:4A:C0:87:FB Certificate issuer: /CN=ca61478e4d659bece8203c5e8ba8e8f82f0470d7 Certificate serial: 019BBAADEC21FFCAC096E7829CD3B89524B2 Authority key identifier: CA:61:47:8E:4D:65:9B:EC:E8:20:3C:5E:8B:A8:E8:F8:2F:04:70:D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/3R94WklWoDzTrhrmU_kQg0rAh_s.roa Signing time: Wed 14 Jan 2026 04:05:18 +0000 ROA not before: Wed 14 Jan 2026 04:05:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 36680 IP address blocks: 176.117.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.crl rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ba:ad:ec:21:ff:ca:c0:96:e7:82:9c:d3:b8:95:24:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca61478e4d659bece8203c5e8ba8e8f82f0470d7 Validity Not Before: Jan 14 04:05:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dd1f785a4956a03cd3ae1ae653f910834ac087fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:05:63:df:87:36:eb:a4:7d:1c:1c:9e:b2:e3: fb:30:df:8c:bd:65:f2:d4:df:2c:d4:3c:11:ce:4a: 7b:85:50:71:ec:87:00:f3:8c:63:45:a8:44:cc:3c: 68:82:ec:9a:d8:3b:1c:51:0d:08:00:1e:6b:52:90: 3f:1b:96:ff:fb:6e:79:18:21:e0:ee:b5:30:8f:d0: ab:6c:46:dc:57:d6:9a:f2:0b:d7:a8:16:cc:42:fd: 11:55:ea:ee:81:f7:9a:95:f0:d3:02:85:ad:37:b9: c5:a1:4f:56:a2:da:d0:3e:68:89:9c:9c:ee:c9:c9: 58:e0:6a:1d:1c:34:78:bb:2a:e7:46:b9:e6:12:f1: 4e:a5:00:ef:e2:1a:9f:4c:ab:e5:08:ba:de:87:46: 35:20:01:b5:fb:c6:ed:6f:30:66:06:bb:3d:32:1a: 23:e1:34:84:ee:d5:9c:00:6e:7a:fa:a3:f1:db:cb: d8:1f:4d:31:69:ca:e0:61:ae:1a:d2:ce:c3:b8:2c: 46:2f:5f:e8:19:b0:0f:da:ac:40:98:c6:75:23:ed: 23:6a:eb:f8:29:af:da:d7:f7:8b:63:e8:d9:e5:92: 1d:70:2f:c7:33:95:07:a0:40:02:4a:46:3d:c3:2e: 3e:9e:da:81:95:54:49:7b:d7:e3:12:7d:38:4a:e0: 69:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:1F:78:5A:49:56:A0:3C:D3:AE:1A:E6:53:F9:10:83:4A:C0:87:FB X509v3 Authority Key Identifier: keyid:CA:61:47:8E:4D:65:9B:EC:E8:20:3C:5E:8B:A8:E8:F8:2F:04:70:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/3R94WklWoDzTrhrmU_kQg0rAh_s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.117.107.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:91:6f:32:15:61:8c:a9:b7:f8:c7:ef:01:b6:2f:04:02:c0: 18:44:03:d3:9e:09:91:e8:dd:3d:bc:73:8a:4f:e8:b9:96:57: f3:ec:ba:ba:78:65:56:ce:32:66:a7:00:25:bd:14:e5:4f:d8: f8:86:f9:3e:f0:bb:db:33:0a:40:a4:4d:e9:5c:c0:a9:28:c9: fa:4c:3b:cf:9e:73:b4:5a:9c:92:4d:cd:19:d1:c4:60:4e:df: 21:10:3b:53:52:09:5a:ce:08:78:28:d6:69:f3:83:8a:df:51: d9:5c:1e:92:04:10:13:26:fb:2f:5d:0e:51:2a:cd:a7:63:8f: 5b:66:56:2b:dd:28:fb:e1:2c:e7:0d:dc:29:4e:b2:fc:0d:db: b2:ac:41:4f:56:c7:96:1c:7b:23:7f:7a:64:a4:53:38:e7:27: a0:9c:24:34:3a:58:72:f5:db:61:0f:6c:cd:b3:40:31:18:ed: 01:8d:9f:1b:3d:ef:1e:28:97:d5:61:55:4a:87:55:5d:f8:bc: a7:e5:93:49:5f:40:f2:4b:e6:b3:8a:31:58:e9:b3:43:d7:ea: b6:8a:e1:93:d4:5a:9b:a0:e9:18:ae:e0:b7:de:17:8b:df:32: a7:c3:0b:e3:22:05:f3:e4:a7:60:77:8d:ec:66:1c:ec:57:98: 63:7d:f8:52 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZu6rewh/8rAlueCnNO4lSSyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhNjE0NzhlNGQ2NTliZWNlODIwM2M1ZThiYThlOGY4MmYw NDcwZDcwHhcNMjYwMTE0MDQwNTE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZDFmNzg1YTQ5NTZhMDNjZDNhZTFhZTY1M2Y5MTA4MzRhYzA4N2ZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0QVj34c266R9HByesuP7MN+MvWXy 1N8s1DwRzkp7hVBx7IcA84xjRahEzDxoguya2DscUQ0IAB5rUpA/G5b/+255GCHg 7rUwj9CrbEbcV9aa8gvXqBbMQv0RVerugfealfDTAoWtN7nFoU9WotrQPmiJnJzu yclY4GodHDR4uyrnRrnmEvFOpQDv4hqfTKvlCLreh0Y1IAG1+8btbzBmBrs9Mhoj 4TSE7tWcAG56+qPx28vYH00xacrgYa4a0s7DuCxGL1/oGbAP2qxAmMZ1I+0jauv4 Ka/a1/eLY+jZ5ZIdcC/HM5UHoEACSkY9wy4+ntqBlVRJe9fjEn04SuBp+wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFN0feFpJVqA8064a5lP5EINKwIf7MB8GA1UdIwQY MBaAFMphR45NZZvs6CA8Xouo6PgvBHDXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveW1GSGprMWxtLXpvSUR4ZWk2am8tQzhFY05jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC8yNzliNjYtMzhmMS00MWE1LTkwZTIt OTQ2ZGE1ZjVlZmJiLzEvM1I5NFdrbFdvRHpUcmhybVVfa1FnMHJBaF9zLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC8yNzliNjYtMzhmMS00MWE1LTkwZTItOTQ2ZGE1ZjVlZmJi LzEveW1GSGprMWxtLXpvSUR4ZWk2am8tQzhFY05jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsHVrMA0G CSqGSIb3DQEBCwUAA4IBAQBvkW8yFWGMqbf4x+8Bti8EAsAYRAPTngmR6N09vHOK T+i5llfz7Lq6eGVWzjJmpwAlvRTlT9j4hvk+8LvbMwpApE3pXMCpKMn6TDvPnnO0 WpySTc0Z0cRgTt8hEDtTUglazgh4KNZp84OK31HZXB6SBBATJvsvXQ5RKs2nY49b ZlYr3Sj74SznDdwpTrL8DduyrEFPVseWHHsjf3pkpFM45yegnCQ0Olhy9dthD2zN s0AxGO0BjZ8bPe8eKJfVYVVKh1Vd+Lyn5ZNJX0DyS+azijFY6bND1+q2iuGT1Fqb oOkYruC33heL3zKnwwvjIgXz5Kdgd43sZhzsV5hjffhS -----END CERTIFICATE-----Generated at Sun Jan 25 17:22:16 2026 by rpki-client