This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/897378-c556-4352-9a04-b10a832bca43/1/3vsJC6fNuGN4-OcDnwBO6CepBDE.roa File: 3vsJC6fNuGN4-OcDnwBO6CepBDE.roa (raw, json) Hash identifier: wGJI9xj8xX1LfIyL9p4tn79/tsV9eiEKpUNCD9TJPfk= Subject key identifier: DE:FB:09:0B:A7:CD:B8:63:78:F8:E7:03:9F:00:4E:E8:27:A9:04:31 Certificate issuer: /CN=af6da9d56b42c2b816b1ae6b185125abf21593ef Certificate serial: 019B7C80D6417DBC6191678988E2732B0A8C Authority key identifier: AF:6D:A9:D5:6B:42:C2:B8:16:B1:AE:6B:18:51:25:AB:F2:15:93:EF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r22p1WtCwrgWsa5rGFElq_IVk-8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/897378-c556-4352-9a04-b10a832bca43/1/3vsJC6fNuGN4-OcDnwBO6CepBDE.roa Signing time: Fri 02 Jan 2026 02:19:36 +0000 ROA not before: Fri 02 Jan 2026 02:19:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 21190 IP address blocks: 194.56.100.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/897378-c556-4352-9a04-b10a832bca43/1/r22p1WtCwrgWsa5rGFElq_IVk-8.crl rsync://rpki.ripe.net/repository/DEFAULT/7c/897378-c556-4352-9a04-b10a832bca43/1/r22p1WtCwrgWsa5rGFElq_IVk-8.mft rsync://rpki.ripe.net/repository/DEFAULT/r22p1WtCwrgWsa5rGFElq_IVk-8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:d6:41:7d:bc:61:91:67:89:88:e2:73:2b:0a:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=af6da9d56b42c2b816b1ae6b185125abf21593ef Validity Not Before: Jan 2 02:19:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=defb090ba7cdb86378f8e7039f004ee827a90431 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:1c:92:6d:25:cd:9a:9e:97:47:77:4a:e7:30: 6a:ca:de:f5:9a:78:6b:01:85:ec:62:d6:e7:d6:82: 9e:f9:a4:22:e8:6e:f4:f1:cd:22:2f:f2:86:2d:bf: 9f:eb:61:f4:67:8c:b8:9c:9c:4a:75:6a:34:af:85: 92:9a:f1:8f:d3:43:e6:42:1c:a3:1a:e6:ca:06:42: e8:4b:a0:2e:aa:96:10:ce:53:01:3b:ac:c3:b6:40: 0e:50:45:24:f1:9c:ec:22:7c:d5:cb:e5:72:1e:43: 6f:e1:45:42:a4:2d:02:6b:3b:4f:15:12:ef:1b:b7: c0:b6:3a:98:f6:0f:5b:1c:65:0b:a9:8e:8d:a8:17: e4:11:59:bc:cd:9d:b2:ad:64:23:65:47:14:0e:5c: bb:70:86:bf:15:d7:d9:2b:04:5a:77:36:37:e9:9e: e7:83:fd:46:03:c9:b2:62:3c:b1:bb:46:66:02:29: 3d:7a:dd:6c:f5:f4:dc:87:cc:dd:67:92:ca:6e:1f: a1:ae:7a:86:90:a5:d0:fa:75:53:a5:9b:a0:8c:c7: f1:96:a5:73:70:9a:d0:58:78:00:85:4b:f4:0c:92: ca:f6:ed:be:eb:47:35:3e:2f:c8:29:d9:90:14:e6: 35:96:84:6e:d8:6f:a9:a7:f3:40:82:c8:9a:87:ec: b8:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:FB:09:0B:A7:CD:B8:63:78:F8:E7:03:9F:00:4E:E8:27:A9:04:31 X509v3 Authority Key Identifier: keyid:AF:6D:A9:D5:6B:42:C2:B8:16:B1:AE:6B:18:51:25:AB:F2:15:93:EF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r22p1WtCwrgWsa5rGFElq_IVk-8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/897378-c556-4352-9a04-b10a832bca43/1/3vsJC6fNuGN4-OcDnwBO6CepBDE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/897378-c556-4352-9a04-b10a832bca43/1/r22p1WtCwrgWsa5rGFElq_IVk-8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.56.100.0/22 Signature Algorithm: sha256WithRSAEncryption 88:70:90:8e:90:6b:8b:de:5f:1d:2c:16:72:bd:07:0f:ac:3c: 9f:38:22:11:0b:f0:e8:fc:1a:4d:10:44:28:43:11:4b:44:2a: 6d:ca:01:b6:9f:18:ba:0e:26:fd:4a:0e:37:d5:51:9c:fe:56: c6:61:2c:3a:fb:be:55:65:bc:d1:26:7c:de:81:c4:8a:ac:96: 7f:5f:19:c2:69:1c:7e:28:f8:e9:44:69:7a:b7:2b:a3:98:63: d8:da:26:ba:5e:17:63:f5:cf:c6:43:8b:36:92:6e:fe:a1:66: 33:db:4e:e8:5e:f2:c0:c4:4d:28:ba:5c:a7:9a:6d:ea:69:5c: b8:1d:49:bf:c0:22:c2:2e:9f:fe:92:f0:c0:ff:d3:65:97:d4: 64:f7:3b:84:30:49:fd:9f:18:89:48:46:61:4a:eb:fc:2b:58: 92:52:07:09:55:9d:1d:a9:f8:4f:1c:48:c2:d5:ac:5a:95:08: aa:f6:87:29:bb:4f:ce:c1:c7:fe:9a:54:2f:3d:9e:99:66:35: a7:4f:43:0a:21:49:20:e3:74:8e:f1:c4:aa:62:58:ec:91:64: 63:6d:29:09:b6:9c:82:cb:70:d1:0d:5b:02:fb:78:b2:62:fe: 28:71:71:ce:fd:4d:41:a7:c7:0d:7d:d0:5d:69:c2:65:9e:11: bb:30:b7:df -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8gNZBfbxhkWeJiOJzKwqMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmNmRhOWQ1NmI0MmMyYjgxNmIxYWU2YjE4NTEyNWFiZjIx NTkzZWYwHhcNMjYwMTAyMDIxOTM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZWZiMDkwYmE3Y2RiODYzNzhmOGU3MDM5ZjAwNGVlODI3YTkwNDMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhRySbSXNmp6XR3dK5zBqyt71mnhr AYXsYtbn1oKe+aQi6G708c0iL/KGLb+f62H0Z4y4nJxKdWo0r4WSmvGP00PmQhyj GubKBkLoS6AuqpYQzlMBO6zDtkAOUEUk8ZzsInzVy+VyHkNv4UVCpC0CaztPFRLv G7fAtjqY9g9bHGULqY6NqBfkEVm8zZ2yrWQjZUcUDly7cIa/FdfZKwRadzY36Z7n g/1GA8myYjyxu0ZmAik9et1s9fTch8zdZ5LKbh+hrnqGkKXQ+nVTpZugjMfxlqVz cJrQWHgAhUv0DJLK9u2+60c1Pi/IKdmQFOY1loRu2G+pp/NAgsiah+y4/QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFN77CQunzbhjePjnA58ATugnqQQxMB8GA1UdIwQY MBaAFK9tqdVrQsK4FrGuaxhRJavyFZPvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcjIycDFXdEN3cmdXc2E1ckdGRWxxX0lWay04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy84OTczNzgtYzU1Ni00MzUyLTlhMDQt YjEwYTgzMmJjYTQzLzEvM3ZzSkM2Zk51R040LU9jRG53Qk82Q2VwQkRFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yy84OTczNzgtYzU1Ni00MzUyLTlhMDQtYjEwYTgzMmJjYTQz LzEvcjIycDFXdEN3cmdXc2E1ckdGRWxxX0lWay04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwjhkMA0G CSqGSIb3DQEBCwUAA4IBAQCIcJCOkGuL3l8dLBZyvQcPrDyfOCIRC/Do/BpNEEQo QxFLRCptygG2nxi6Dib9Sg431VGc/lbGYSw6+75VZbzRJnzegcSKrJZ/XxnCaRx+ KPjpRGl6tyujmGPY2ia6Xhdj9c/GQ4s2km7+oWYz207oXvLAxE0oulynmm3qaVy4 HUm/wCLCLp/+kvDA/9Nll9Rk9zuEMEn9nxiJSEZhSuv8K1iSUgcJVZ0dqfhPHEjC 1axalQiq9ocpu0/Owcf+mlQvPZ6ZZjWnT0MKIUkg43SO8cSqYljskWRjbSkJtpyC y3DRDVsC+3iyYv4ocXHO/U1Bp8cNfdBdacJlnhG7MLff -----END CERTIFICATE-----Generated at Sun Jan 25 17:19:50 2026 by rpki-client