This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/6c0530-1074-4b35-be0c-cd7d61913288/1/3nMeVP3tT3HQkOTTt8YDf9LOG-U.roa File: 3nMeVP3tT3HQkOTTt8YDf9LOG-U.roa (raw, json) Hash identifier: oMfy3S3J5yMFJoD9DdHs9/Ccms8GV4Kew6SHBYWA0pI= Subject key identifier: DE:73:1E:54:FD:ED:4F:71:D0:90:E4:D3:B7:C6:03:7F:D2:CE:1B:E5 Certificate issuer: /CN=72c26abc9e06c1afef9b5fd2da40412e7aee6b47 Certificate serial: 019B7FF2859D60BC7C9B1290451CFD0E72CF Authority key identifier: 72:C2:6A:BC:9E:06:C1:AF:EF:9B:5F:D2:DA:40:41:2E:7A:EE:6B:47 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/csJqvJ4Gwa_vm1_S2kBBLnrua0c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/6c0530-1074-4b35-be0c-cd7d61913288/1/3nMeVP3tT3HQkOTTt8YDf9LOG-U.roa Signing time: Fri 02 Jan 2026 18:22:38 +0000 ROA not before: Fri 02 Jan 2026 18:22:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43902 IP address blocks: 185.56.107.0/24 maxlen: 24 2a00:7fc0:8001::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/6c0530-1074-4b35-be0c-cd7d61913288/1/csJqvJ4Gwa_vm1_S2kBBLnrua0c.crl rsync://rpki.ripe.net/repository/DEFAULT/87/6c0530-1074-4b35-be0c-cd7d61913288/1/csJqvJ4Gwa_vm1_S2kBBLnrua0c.mft rsync://rpki.ripe.net/repository/DEFAULT/csJqvJ4Gwa_vm1_S2kBBLnrua0c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 15:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:85:9d:60:bc:7c:9b:12:90:45:1c:fd:0e:72:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72c26abc9e06c1afef9b5fd2da40412e7aee6b47 Validity Not Before: Jan 2 18:22:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=de731e54fded4f71d090e4d3b7c6037fd2ce1be5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:79:8f:5c:6c:a6:cc:15:65:fa:97:79:cf:89: 5c:dc:3f:70:4a:23:db:65:5e:11:45:2d:bc:25:ca: 87:ed:88:34:b2:e9:14:f6:2a:3b:81:c9:f1:34:50: ec:6d:f8:0d:52:25:37:f9:51:4f:9c:fe:1d:56:f5: bd:38:91:13:f4:01:8f:a6:24:c3:d5:f4:e0:eb:93: f3:4d:ad:e7:20:87:a9:ec:6f:f0:6e:fe:65:c3:cb: e3:e9:dc:a1:5f:46:a0:40:83:7f:69:91:35:13:d8: a0:bb:bb:73:92:12:b7:61:93:47:4e:0c:2d:19:60: 67:fa:26:fc:7b:dc:fe:fc:d4:4a:cd:fa:3a:3a:39: 23:f9:25:7b:6b:f8:6f:c5:08:44:9c:c1:09:3e:42: 22:6a:a7:50:dc:83:46:78:2d:56:db:fb:9a:f2:42: 19:7a:76:41:a3:94:7b:76:54:1d:73:be:64:64:03: ff:fe:60:b3:87:83:8f:67:f3:d6:b6:57:d9:e4:94: c2:e8:06:f6:97:38:5a:75:95:28:04:43:c8:c4:f8: 60:8f:33:4c:69:8a:4f:b2:0c:49:fa:f1:bc:aa:c3: 9d:5c:ab:11:43:f8:00:60:c7:3b:30:cf:9c:af:0d: 40:86:65:e0:0b:1f:45:e1:df:4c:58:e5:d6:c3:29: c0:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:73:1E:54:FD:ED:4F:71:D0:90:E4:D3:B7:C6:03:7F:D2:CE:1B:E5 X509v3 Authority Key Identifier: keyid:72:C2:6A:BC:9E:06:C1:AF:EF:9B:5F:D2:DA:40:41:2E:7A:EE:6B:47 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/csJqvJ4Gwa_vm1_S2kBBLnrua0c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/6c0530-1074-4b35-be0c-cd7d61913288/1/3nMeVP3tT3HQkOTTt8YDf9LOG-U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/6c0530-1074-4b35-be0c-cd7d61913288/1/csJqvJ4Gwa_vm1_S2kBBLnrua0c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.56.107.0/24 IPv6: 2a00:7fc0:8001::/48 Signature Algorithm: sha256WithRSAEncryption 15:60:cd:fd:c2:21:03:c8:d4:ca:5b:69:03:88:a7:db:10:7b: 75:70:14:2e:eb:4a:4d:84:52:33:e4:f5:c7:66:e0:80:83:30: d1:03:23:19:39:14:6d:72:99:d6:06:7e:2e:7f:c8:e0:14:57: 11:2c:d4:0e:79:7a:99:7b:24:07:a3:a7:bd:8b:61:54:db:9d: d6:20:39:70:bc:d7:aa:ee:78:e8:3a:6a:db:1c:0e:2d:dd:1e: 50:4e:dd:77:7c:51:da:20:ae:95:b9:e0:65:34:7e:a8:13:c2: 96:a7:61:2b:ca:66:a7:d5:3f:05:b4:49:e0:1f:66:4a:c9:b0: a1:70:6f:54:ba:6e:b0:e2:49:3b:c3:8e:c5:ec:21:f9:3c:68: fb:c6:52:d6:fc:ca:a7:c0:0b:0f:9e:b4:dd:c2:01:c9:3d:63: 74:9b:c5:66:81:17:d3:10:dc:30:c4:13:5d:1b:47:ea:12:fc: 6f:90:0e:63:35:1e:10:92:95:4b:cf:c6:55:f9:03:02:9e:4c: 21:b0:e8:0d:2f:62:43:19:b8:7d:94:b5:cd:d0:6c:71:5e:1e: 30:3f:b8:ea:85:05:26:8e:86:12:95:5d:f0:4c:6e:bd:ac:38: 89:67:d9:a6:70:15:a5:9b:25:6c:a3:3a:72:d5:6e:e1:64:4f: 48:94:86:c5 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt/8oWdYLx8mxKQRRz9DnLPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyYzI2YWJjOWUwNmMxYWZlZjliNWZkMmRhNDA0MTJlN2Fl ZTZiNDcwHhcNMjYwMTAyMTgyMjM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZTczMWU1NGZkZWQ0ZjcxZDA5MGU0ZDNiN2M2MDM3ZmQyY2UxYmU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA03mPXGymzBVl+pd5z4lc3D9wSiPb ZV4RRS28JcqH7Yg0sukU9io7gcnxNFDsbfgNUiU3+VFPnP4dVvW9OJET9AGPpiTD 1fTg65PzTa3nIIep7G/wbv5lw8vj6dyhX0agQIN/aZE1E9igu7tzkhK3YZNHTgwt GWBn+ib8e9z+/NRKzfo6Ojkj+SV7a/hvxQhEnMEJPkIiaqdQ3INGeC1W2/ua8kIZ enZBo5R7dlQdc75kZAP//mCzh4OPZ/PWtlfZ5JTC6Ab2lzhadZUoBEPIxPhgjzNM aYpPsgxJ+vG8qsOdXKsRQ/gAYMc7MM+crw1AhmXgCx9F4d9MWOXWwynAxwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFN5zHlT97U9x0JDk07fGA3/SzhvlMB8GA1UdIwQY MBaAFHLCaryeBsGv75tf0tpAQS567mtHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY3NKcXZKNEd3YV92bTFfUzJrQkJMbnJ1YTBjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny82YzA1MzAtMTA3NC00YjM1LWJlMGMt Y2Q3ZDYxOTEzMjg4LzEvM25NZVZQM3RUM0hRa09UVHQ4WURmOUxPRy1VLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny82YzA1MzAtMTA3NC00YjM1LWJlMGMtY2Q3ZDYxOTEzMjg4 LzEvY3NKcXZKNEd3YV92bTFfUzJrQkJMbnJ1YTBjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAuThrMA8E AgACMAkDBwAqAH/AgAEwDQYJKoZIhvcNAQELBQADggEBABVgzf3CIQPI1MpbaQOI p9sQe3VwFC7rSk2EUjPk9cdm4ICDMNEDIxk5FG1ymdYGfi5/yOAUVxEs1A55epl7 JAejp72LYVTbndYgOXC816rueOg6atscDi3dHlBO3Xd8UdogrpW54GU0fqgTwpan YSvKZqfVPwW0SeAfZkrJsKFwb1S6brDiSTvDjsXsIfk8aPvGUtb8yqfACw+etN3C Ack9Y3SbxWaBF9MQ3DDEE10bR+oS/G+QDmM1HhCSlUvPxlX5AwKeTCGw6A0vYkMZ uH2Utc3QbHFeHjA/uOqFBSaOhhKVXfBMbr2sOIln2aZwFaWbJWyjOnLVbuFkT0iU hsU= -----END CERTIFICATE-----Generated at Mon Jan 26 00:13:44 2026 by rpki-client