This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/g3dNjS4XgY8klkPhCyZdKToAlGM.roa File: g3dNjS4XgY8klkPhCyZdKToAlGM.roa (raw, json) Hash identifier: peZC7FKDdVQt9t0rZ2GL+oL22WvV/nKBVc+dvOTk7TE= Subject key identifier: 83:77:4D:8D:2E:17:81:8F:24:96:43:E1:0B:26:5D:29:3A:00:94:63 Certificate issuer: /CN=3aba1172472ea80265d12982967de0a8b0bc5901 Certificate serial: 019B7A5B7CBB9416A885EE5F22F93FEAC48E Authority key identifier: 3A:BA:11:72:47:2E:A8:02:65:D1:29:82:96:7D:E0:A8:B0:BC:59:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/g3dNjS4XgY8klkPhCyZdKToAlGM.roa Signing time: Thu 01 Jan 2026 16:19:34 +0000 ROA not before: Thu 01 Jan 2026 16:19:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204286 IP address blocks: 109.205.60.0/24 maxlen: 24 188.93.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/OroRckcuqAJl0SmCln3gqLC8WQE.crl rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/OroRckcuqAJl0SmCln3gqLC8WQE.mft rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:7c:bb:94:16:a8:85:ee:5f:22:f9:3f:ea:c4:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3aba1172472ea80265d12982967de0a8b0bc5901 Validity Not Before: Jan 1 16:19:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=83774d8d2e17818f249643e10b265d293a009463 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:3d:4d:28:62:65:ac:38:6c:2c:46:2d:ba:bb: 31:8a:cb:ce:81:ca:8e:28:70:f8:d4:e3:a9:2f:ad: a3:42:7b:ec:01:d8:84:9c:a7:78:18:1f:9f:c4:58: 8e:78:fb:90:b0:8f:ca:1c:c6:d1:fa:3a:95:05:dc: 57:95:9e:b0:9b:11:b6:75:ce:f3:ac:a2:6f:52:d5: f2:ae:15:4b:96:f2:19:d5:13:50:9b:c8:17:51:43: 47:a7:66:a5:1b:51:92:a8:00:75:1d:d2:4c:e3:57: c8:2f:79:ef:7c:d3:cc:36:4b:a0:58:52:40:c3:f8: 22:d0:fb:45:5c:eb:b0:ab:af:42:69:1b:c5:b4:17: f9:ba:bb:50:bf:fe:d6:57:38:dc:6c:41:ec:d7:43: 7f:4f:08:c7:1e:5d:d9:2d:03:48:e4:47:95:a0:45: 86:72:4c:51:a4:86:97:5e:29:b2:fc:59:cd:e3:41: 9b:a2:92:e4:63:a2:a8:a5:6a:92:d6:10:df:15:95: 1b:e5:84:29:80:a0:df:49:ff:67:95:be:73:03:30: ab:42:83:40:6a:b4:6e:5e:f1:c5:8a:30:b8:9f:9f: 57:ec:b2:b7:c4:db:c5:df:9a:58:f2:a0:38:64:58: 5f:4c:48:9a:7d:32:f6:f0:40:6d:25:a8:1c:44:47: 21:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:77:4D:8D:2E:17:81:8F:24:96:43:E1:0B:26:5D:29:3A:00:94:63 X509v3 Authority Key Identifier: keyid:3A:BA:11:72:47:2E:A8:02:65:D1:29:82:96:7D:E0:A8:B0:BC:59:01 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/g3dNjS4XgY8klkPhCyZdKToAlGM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/OroRckcuqAJl0SmCln3gqLC8WQE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.205.60.0/24 188.93.117.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:f2:1f:95:0d:9c:55:41:15:d7:10:0a:ae:5a:73:c9:12:a4: ab:3f:88:18:c1:21:69:24:c5:ed:15:5f:75:5d:1c:59:e1:fe: b0:02:f6:1d:fc:43:a7:fe:19:f0:d1:ae:4e:cc:66:26:86:31: 5d:f5:11:6d:cf:14:ab:d6:b9:c1:19:a8:c0:1b:6b:ce:e4:99: d5:4b:7e:9a:f1:63:5c:7b:dd:00:e6:2c:85:03:22:89:61:fe: c1:be:5c:a9:9f:fd:bd:85:ea:48:a4:38:81:a0:10:a5:32:26: ea:93:77:db:0b:46:83:6c:65:ec:12:80:3a:ea:73:83:e6:7b: 26:30:5c:ea:55:cc:4d:d6:5e:64:ab:fb:f4:37:43:36:2f:1e: a0:db:93:60:36:e1:8d:08:91:b8:ae:d1:4f:ae:7c:dc:c7:fd: 94:73:5f:5d:7a:ef:4c:93:99:68:be:c0:12:a1:6c:8d:4a:c3: 6c:46:02:0d:40:b9:53:e1:95:d3:6f:7d:5a:58:7f:5d:bc:07: 04:9b:5e:79:50:b6:7f:a4:49:f9:5a:6f:99:8a:08:11:25:5d: a6:9d:cc:14:cd:dc:9a:89:81:ea:e9:69:08:c7:c3:76:a7:e4: 96:9f:95:47:22:64:b2:3a:6f:f3:0b:59:d0:f6:d9:af:76:73: e0:a3:47:3d -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6W3y7lBaohe5fIvk/6sSOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhYmExMTcyNDcyZWE4MDI2NWQxMjk4Mjk2N2RlMGE4YjBi YzU5MDEwHhcNMjYwMTAxMTYxOTM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4Mzc3NGQ4ZDJlMTc4MThmMjQ5NjQzZTEwYjI2NWQyOTNhMDA5NDYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1D1NKGJlrDhsLEYtursxisvOgcqO KHD41OOpL62jQnvsAdiEnKd4GB+fxFiOePuQsI/KHMbR+jqVBdxXlZ6wmxG2dc7z rKJvUtXyrhVLlvIZ1RNQm8gXUUNHp2alG1GSqAB1HdJM41fIL3nvfNPMNkugWFJA w/gi0PtFXOuwq69CaRvFtBf5urtQv/7WVzjcbEHs10N/TwjHHl3ZLQNI5EeVoEWG ckxRpIaXXimy/FnN40GbopLkY6KopWqS1hDfFZUb5YQpgKDfSf9nlb5zAzCrQoNA arRuXvHFijC4n59X7LK3xNvF35pY8qA4ZFhfTEiafTL28EBtJagcREchCQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFIN3TY0uF4GPJJZD4QsmXSk6AJRjMB8GA1UdIwQY MBaAFDq6EXJHLqgCZdEpgpZ94KiwvFkBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3JvUmNrY3VxQUpsMFNtQ2xuM2dxTEM4V1FFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My83YjFjNTUtZGRkMC00MjgxLTgzNzgt NGRkMDQzNDZhYmMzLzEvZzNkTmpTNFhnWThrbGtQaEN5WmRLVG9BbEdNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84My83YjFjNTUtZGRkMC00MjgxLTgzNzgtNGRkMDQzNDZhYmMz LzEvT3JvUmNrY3VxQUpsMFNtQ2xuM2dxTEM4V1FFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAbc08AwQA vF11MA0GCSqGSIb3DQEBCwUAA4IBAQBq8h+VDZxVQRXXEAquWnPJEqSrP4gYwSFp JMXtFV91XRxZ4f6wAvYd/EOn/hnw0a5OzGYmhjFd9RFtzxSr1rnBGajAG2vO5JnV S36a8WNce90A5iyFAyKJYf7Bvlypn/29hepIpDiBoBClMibqk3fbC0aDbGXsEoA6 6nOD5nsmMFzqVcxN1l5kq/v0N0M2Lx6g25NgNuGNCJG4rtFPrnzcx/2Uc19deu9M k5lovsASoWyNSsNsRgINQLlT4ZXTb31aWH9dvAcEm155ULZ/pEn5Wm+ZiggRJV2m ncwUzdyaiYHq6WkIx8N2p+SWn5VHImSyOm/zC1nQ9tmvdnPgo0c9 -----END CERTIFICATE-----Generated at Sun Jan 25 22:28:48 2026 by rpki-client