This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/stQaCo3UL43SwnixN1ipSeirKCk.roa File: stQaCo3UL43SwnixN1ipSeirKCk.roa (raw, json) Hash identifier: AZoB1tHMtqzegT5eVvjC9FzP5F5Y0HtR0M4S42Eh7/c= Subject key identifier: B2:D4:1A:0A:8D:D4:2F:8D:D2:C2:78:B1:37:58:A9:49:E8:AB:28:29 Certificate issuer: /CN=3919f2ad91584baff0467447bac8fb978d1f9dd3 Certificate serial: 019B78A36C23A3BE5A1D5EEB7521633AD39C Authority key identifier: 39:19:F2:AD:91:58:4B:AF:F0:46:74:47:BA:C8:FB:97:8D:1F:9D:D3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ORnyrZFYS6_wRnRHusj7l40fndM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/stQaCo3UL43SwnixN1ipSeirKCk.roa Signing time: Thu 01 Jan 2026 08:18:54 +0000 ROA not before: Thu 01 Jan 2026 08:18:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57834 IP address blocks: 213.161.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/ORnyrZFYS6_wRnRHusj7l40fndM.crl rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/ORnyrZFYS6_wRnRHusj7l40fndM.mft rsync://rpki.ripe.net/repository/DEFAULT/ORnyrZFYS6_wRnRHusj7l40fndM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:6c:23:a3:be:5a:1d:5e:eb:75:21:63:3a:d3:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3919f2ad91584baff0467447bac8fb978d1f9dd3 Validity Not Before: Jan 1 08:18:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b2d41a0a8dd42f8dd2c278b13758a949e8ab2829 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:90:a5:ef:b6:72:36:b2:4f:2d:66:0f:3a:0e: d9:a5:5f:84:77:83:af:fe:48:a8:29:66:b0:6b:e3: e1:78:40:38:9d:53:20:1c:0c:45:b4:6c:42:cd:89: 1d:80:cd:d3:0b:91:7e:9b:70:da:9e:1d:7c:9a:28: 66:26:48:9c:3e:a7:b8:20:70:19:84:96:e4:ee:24: 6b:c3:aa:27:ba:28:c1:88:86:2b:26:09:9c:9d:6e: 21:7d:3e:18:7c:a4:f6:5a:5c:13:1d:02:15:53:2e: f1:e4:7f:34:6e:48:72:e1:18:2c:a4:dc:f8:72:fa: de:fc:42:eb:8b:80:47:33:60:65:4b:a7:c3:84:06: f7:c3:e3:4c:7f:65:20:ca:56:fe:09:eb:f8:39:00: 30:85:c9:ff:d6:0b:5a:8b:fa:89:46:75:10:75:db: 02:16:11:e9:d8:cb:63:0e:0a:06:b3:5c:2c:e6:42: c1:51:23:ad:0d:6c:b0:de:5e:5d:d3:e9:98:34:1e: 36:2a:13:71:e0:67:c5:58:1f:23:28:d1:b7:ad:d5: 0e:9f:72:f6:9e:a3:09:8b:25:98:80:68:56:6d:39: f9:e7:0d:f3:0c:3a:3f:b2:e6:f4:3c:fa:c1:81:47: 72:f5:72:0e:40:40:94:83:27:6b:06:d9:e5:ab:c3: c4:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:D4:1A:0A:8D:D4:2F:8D:D2:C2:78:B1:37:58:A9:49:E8:AB:28:29 X509v3 Authority Key Identifier: keyid:39:19:F2:AD:91:58:4B:AF:F0:46:74:47:BA:C8:FB:97:8D:1F:9D:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ORnyrZFYS6_wRnRHusj7l40fndM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/stQaCo3UL43SwnixN1ipSeirKCk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/ORnyrZFYS6_wRnRHusj7l40fndM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.161.147.0/24 Signature Algorithm: sha256WithRSAEncryption 21:6d:7d:48:64:4c:ea:6e:e8:b0:7e:96:c9:e3:b2:cb:da:97: b6:95:e1:9a:96:39:c7:fd:27:29:43:90:4c:d6:70:96:aa:53: 4a:4e:f6:2a:8b:9f:7d:ca:76:e9:6d:4a:26:df:58:c8:61:da: b9:d6:3e:52:53:9d:f9:26:97:74:7f:46:82:ea:6d:c1:ce:70: cf:2d:2f:f8:2d:b4:ff:5c:59:d2:d4:97:00:e2:3f:63:b3:aa: 7f:46:65:25:67:cb:a9:96:ba:ef:e9:af:20:39:ee:de:36:51: a7:3a:11:df:82:99:ae:78:f9:bc:5d:e6:bb:c0:39:ec:73:d4: db:28:17:2e:44:ec:cd:86:19:49:f9:3f:45:e3:f0:14:75:ef: 2a:ca:a0:54:23:91:76:dd:c0:35:c8:f7:a4:c9:b7:38:ff:90: 20:a2:63:cc:29:72:aa:77:b9:18:0a:72:11:ed:82:25:49:3f: 36:aa:34:b4:50:d9:d1:37:d0:49:47:03:f5:b0:c0:1a:99:64: be:cd:74:8a:81:1f:f5:0e:9c:a1:6a:b4:82:0c:e3:13:6a:80: 56:ce:15:af:94:83:56:33:2a:69:6d:2f:42:d9:6d:58:d0:53: 58:43:95:a4:ed:55:8d:c9:ce:11:51:05:5c:22:32:60:51:41: 28:00:43:37 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4o2wjo75aHV7rdSFjOtOcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5MTlmMmFkOTE1ODRiYWZmMDQ2NzQ0N2JhYzhmYjk3OGQx ZjlkZDMwHhcNMjYwMTAxMDgxODU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMmQ0MWEwYThkZDQyZjhkZDJjMjc4YjEzNzU4YTk0OWU4YWIyODI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoJCl77ZyNrJPLWYPOg7ZpV+Ed4Ov /kioKWawa+PheEA4nVMgHAxFtGxCzYkdgM3TC5F+m3Danh18mihmJkicPqe4IHAZ hJbk7iRrw6onuijBiIYrJgmcnW4hfT4YfKT2WlwTHQIVUy7x5H80bkhy4RgspNz4 cvre/ELri4BHM2BlS6fDhAb3w+NMf2Ugylb+Cev4OQAwhcn/1gtai/qJRnUQddsC FhHp2MtjDgoGs1ws5kLBUSOtDWyw3l5d0+mYNB42KhNx4GfFWB8jKNG3rdUOn3L2 nqMJiyWYgGhWbTn55w3zDDo/sub0PPrBgUdy9XIOQECUgydrBtnlq8PEnQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLLUGgqN1C+N0sJ4sTdYqUnoqygpMB8GA1UdIwQY MBaAFDkZ8q2RWEuv8EZ0R7rI+5eNH53TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1JueXJaRllTNl93Um5SSHVzajdsNDBmbmRNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS85MTE4ZTItYWU3NC00YzI0LWE3NzUt MzJhYTY3MzFjMjkxLzEvc3RRYUNvM1VMNDNTd25peE4xaXBTZWlyS0NrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NS85MTE4ZTItYWU3NC00YzI0LWE3NzUtMzJhYTY3MzFjMjkx LzEvT1JueXJaRllTNl93Um5SSHVzajdsNDBmbmRNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1aGTMA0G CSqGSIb3DQEBCwUAA4IBAQAhbX1IZEzqbuiwfpbJ47LL2pe2leGaljnH/ScpQ5BM 1nCWqlNKTvYqi599ynbpbUom31jIYdq51j5SU535Jpd0f0aC6m3BznDPLS/4LbT/ XFnS1JcA4j9js6p/RmUlZ8uplrrv6a8gOe7eNlGnOhHfgpmuePm8Xea7wDnsc9Tb KBcuROzNhhlJ+T9F4/AUde8qyqBUI5F23cA1yPekybc4/5AgomPMKXKqd7kYCnIR 7YIlST82qjS0UNnRN9BJRwP1sMAamWS+zXSKgR/1DpyharSCDOMTaoBWzhWvlINW MyppbS9C2W1Y0FNYQ5Wk7VWNyc4RUQVcIjJgUUEoAEM3 -----END CERTIFICATE-----Generated at Sun Jan 25 20:31:36 2026 by rpki-client