This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/5d6f6c-b006-4563-91ad-428a111ac5e0/1/b3LXnlq9k-Ne9E6Mygo7-fqX-j0.roa File: b3LXnlq9k-Ne9E6Mygo7-fqX-j0.roa (raw, json) Hash identifier: IcAFyrVK2cFcgloap4jKZ9gt4tybwfvmhwEuaPNFdVk= Subject key identifier: 6F:72:D7:9E:5A:BD:93:E3:5E:F4:4E:8C:CA:0A:3B:F9:FA:97:FA:3D Certificate issuer: /CN=4afecf6642a450b53b076d446482d9c1a89ded74 Certificate serial: 019B7D5CB247499CEA89B213DF3870E6A492 Authority key identifier: 4A:FE:CF:66:42:A4:50:B5:3B:07:6D:44:64:82:D9:C1:A8:9D:ED:74 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sv7PZkKkULU7B21EZILZwaid7XQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/5d6f6c-b006-4563-91ad-428a111ac5e0/1/b3LXnlq9k-Ne9E6Mygo7-fqX-j0.roa Signing time: Fri 02 Jan 2026 06:19:45 +0000 ROA not before: Fri 02 Jan 2026 06:19:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35625 IP address blocks: 194.5.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/5d6f6c-b006-4563-91ad-428a111ac5e0/1/Sv7PZkKkULU7B21EZILZwaid7XQ.crl rsync://rpki.ripe.net/repository/DEFAULT/6e/5d6f6c-b006-4563-91ad-428a111ac5e0/1/Sv7PZkKkULU7B21EZILZwaid7XQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Sv7PZkKkULU7B21EZILZwaid7XQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 03:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:b2:47:49:9c:ea:89:b2:13:df:38:70:e6:a4:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4afecf6642a450b53b076d446482d9c1a89ded74 Validity Not Before: Jan 2 06:19:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6f72d79e5abd93e35ef44e8cca0a3bf9fa97fa3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:1c:d3:10:9d:61:66:45:01:99:85:20:60:75: 70:b7:d0:03:ff:4e:47:2b:28:88:c2:2f:52:49:b1: 6d:ea:b7:50:f2:f1:4b:4c:f4:a0:9a:56:63:35:5f: 7f:31:41:95:a9:9e:8a:de:d7:90:74:5d:d5:b4:46: 1f:26:16:46:f8:ac:2b:96:1b:f0:cb:52:dd:5d:ff: 0a:30:44:db:76:7e:65:d6:c2:65:0c:a9:8f:8c:73: ba:af:b5:92:cf:54:77:e4:4d:ff:31:3b:19:71:6c: 53:51:50:25:d5:cd:b5:c0:ea:a1:7a:d2:d6:20:f0: d9:7d:fe:87:35:0e:d7:cc:c6:c9:3e:9b:eb:c3:ca: c4:ae:59:f2:9b:e2:78:40:cd:04:cc:d2:02:e0:b9: cb:d1:0e:04:fd:eb:12:48:d8:04:92:30:94:7f:7f: 15:03:81:aa:2b:b1:fd:23:5a:84:b8:0f:a5:21:db: 27:52:8e:7a:06:10:63:5f:c1:00:1c:cf:d9:6d:ce: 77:a6:a3:49:d8:29:90:29:07:5f:5e:72:46:b0:9d: af:5a:74:74:fa:c9:55:1a:b7:66:71:10:3a:17:15: ee:34:7a:e7:da:71:87:ca:93:44:b8:8f:1b:3e:d1: 8f:71:f3:2f:68:14:0c:1e:f9:f3:b4:16:91:b3:1e: 94:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:72:D7:9E:5A:BD:93:E3:5E:F4:4E:8C:CA:0A:3B:F9:FA:97:FA:3D X509v3 Authority Key Identifier: keyid:4A:FE:CF:66:42:A4:50:B5:3B:07:6D:44:64:82:D9:C1:A8:9D:ED:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sv7PZkKkULU7B21EZILZwaid7XQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/5d6f6c-b006-4563-91ad-428a111ac5e0/1/b3LXnlq9k-Ne9E6Mygo7-fqX-j0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/5d6f6c-b006-4563-91ad-428a111ac5e0/1/Sv7PZkKkULU7B21EZILZwaid7XQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.5.72.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:63:af:a9:aa:d1:cb:76:a5:99:e3:62:c3:fb:41:6f:89:44: df:6d:ac:62:ad:da:86:ca:1c:ac:7c:c5:8a:a2:73:af:f9:2a: 45:03:0b:c5:2b:96:03:12:5c:dc:39:f3:72:f9:e7:1f:e5:5e: de:06:88:af:ea:8b:c3:34:e5:fb:24:0f:b5:97:85:b5:d9:44: 5d:1e:84:64:e3:68:70:2b:e6:e1:c0:f0:58:15:e8:dd:70:ed: 8a:4b:d6:09:d6:23:1a:a5:94:78:23:97:cc:fa:c4:03:cc:13: 09:fa:29:a6:cb:46:93:bd:1e:bf:96:bb:aa:9c:d4:33:68:6f: cc:02:7e:ff:f1:ae:7f:8e:c7:eb:a0:d6:e3:56:84:2f:1d:0e: e4:4f:16:d5:59:e0:4b:ae:83:9d:62:bc:f0:a9:a7:f2:ca:f4: 4f:bf:96:4f:06:5e:8d:6b:0b:f2:a5:90:04:73:e2:ba:35:0c: d2:55:77:29:f0:10:5d:bb:53:c3:76:08:b6:f1:c8:d5:69:8e: 7a:0a:83:d3:22:a5:65:34:df:e6:68:50:c9:01:15:c3:01:53: e4:18:84:e2:dd:42:d9:d1:17:4a:81:9f:80:11:44:2e:df:f6: 2b:be:74:20:39:52:3c:7b:a1:5f:93:91:a6:6d:0f:52:c2:b2: 09:19:a4:47 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XLJHSZzqibIT3zhw5qSSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRhZmVjZjY2NDJhNDUwYjUzYjA3NmQ0NDY0ODJkOWMxYTg5 ZGVkNzQwHhcNMjYwMTAyMDYxOTQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZjcyZDc5ZTVhYmQ5M2UzNWVmNDRlOGNjYTBhM2JmOWZhOTdmYTNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzBzTEJ1hZkUBmYUgYHVwt9AD/05H KyiIwi9SSbFt6rdQ8vFLTPSgmlZjNV9/MUGVqZ6K3teQdF3VtEYfJhZG+Kwrlhvw y1LdXf8KMETbdn5l1sJlDKmPjHO6r7WSz1R35E3/MTsZcWxTUVAl1c21wOqhetLW IPDZff6HNQ7XzMbJPpvrw8rErlnym+J4QM0EzNIC4LnL0Q4E/esSSNgEkjCUf38V A4GqK7H9I1qEuA+lIdsnUo56BhBjX8EAHM/Zbc53pqNJ2CmQKQdfXnJGsJ2vWnR0 +slVGrdmcRA6FxXuNHrn2nGHypNEuI8bPtGPcfMvaBQMHvnztBaRsx6UjQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFG9y155avZPjXvROjMoKO/n6l/o9MB8GA1UdIwQY MBaAFEr+z2ZCpFC1OwdtRGSC2cGone10MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU3Y3UFprS2tVTFU3QjIxRVpJTFp3YWlkN1hRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS81ZDZmNmMtYjAwNi00NTYzLTkxYWQt NDI4YTExMWFjNWUwLzEvYjNMWG5scTlrLU5lOUU2TXlnbzctZnFYLWowLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZS81ZDZmNmMtYjAwNi00NTYzLTkxYWQtNDI4YTExMWFjNWUw LzEvU3Y3UFprS2tVTFU3QjIxRVpJTFp3YWlkN1hRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwgVIMA0G CSqGSIb3DQEBCwUAA4IBAQBqY6+pqtHLdqWZ42LD+0FviUTfbaxirdqGyhysfMWK onOv+SpFAwvFK5YDElzcOfNy+ecf5V7eBoiv6ovDNOX7JA+1l4W12URdHoRk42hw K+bhwPBYFejdcO2KS9YJ1iMapZR4I5fM+sQDzBMJ+immy0aTvR6/lruqnNQzaG/M An7/8a5/jsfroNbjVoQvHQ7kTxbVWeBLroOdYrzwqafyyvRPv5ZPBl6NawvypZAE c+K6NQzSVXcp8BBdu1PDdgi28cjVaY56CoPTIqVlNN/maFDJARXDAVPkGITi3ULZ 0RdKgZ+AEUQu3/YrvnQgOVI8e6Ffk5GmbQ9SwrIJGaRH -----END CERTIFICATE-----Generated at Sun Jan 25 13:06:37 2026 by rpki-client