This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/3J_CxMgmJXuVSnvK_SwiuKDZQUc.roa File: 3J_CxMgmJXuVSnvK_SwiuKDZQUc.roa (raw, json) Hash identifier: e33I6eVGoqxWrHvmScm9q4ErMPJHZ8jH0FBrEufjZp8= Subject key identifier: DC:9F:C2:C4:C8:26:25:7B:95:4A:7B:CA:FD:2C:22:B8:A0:D9:41:47 Certificate issuer: /CN=d673d849b7d5047376d57e6f796f0018b70b4506 Certificate serial: 019B77C712361005088DED2B76F81F1CB616 Authority key identifier: D6:73:D8:49:B7:D5:04:73:76:D5:7E:6F:79:6F:00:18:B7:0B:45:06 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1nPYSbfVBHN21X5veW8AGLcLRQY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/3J_CxMgmJXuVSnvK_SwiuKDZQUc.roa Signing time: Thu 01 Jan 2026 04:18:13 +0000 ROA not before: Thu 01 Jan 2026 04:18:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 28839 IP address blocks: 2a01:190:15ee::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/1nPYSbfVBHN21X5veW8AGLcLRQY.crl rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/1nPYSbfVBHN21X5veW8AGLcLRQY.mft rsync://rpki.ripe.net/repository/DEFAULT/1nPYSbfVBHN21X5veW8AGLcLRQY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:12:36:10:05:08:8d:ed:2b:76:f8:1f:1c:b6:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d673d849b7d5047376d57e6f796f0018b70b4506 Validity Not Before: Jan 1 04:18:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dc9fc2c4c826257b954a7bcafd2c22b8a0d94147 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:c3:d9:67:29:21:f3:11:48:37:9a:89:ee:14: 95:62:42:ad:fe:09:48:8d:96:96:4f:9f:d5:2e:e3: ce:b6:6b:45:86:ff:5f:33:89:2a:50:40:83:38:60: 98:0c:b9:b6:fe:e1:84:37:9f:a6:83:b7:39:37:2c: 10:55:85:b6:0b:a9:e0:e4:f1:13:ec:1e:71:3a:40: 14:74:a4:9d:57:cb:34:45:01:fd:6a:65:39:0a:45: 5c:0d:c6:42:43:23:38:20:06:34:a8:d4:ba:2b:ad: ee:ee:c6:b1:1b:01:87:23:88:d3:42:39:93:ac:a3: 2a:38:64:fd:7e:24:93:92:56:f6:f7:e9:74:fb:04: de:52:1e:13:59:ec:e6:9f:50:d8:cb:43:fa:c0:c6: 27:b1:c4:8f:07:4f:20:af:af:9d:1d:cc:35:43:68: 7c:9d:5e:b9:01:d7:6b:69:ae:c6:86:b5:2e:a1:1e: 60:16:38:7d:ba:19:bc:ac:5e:32:ce:50:9c:00:49: 2d:73:50:30:5d:81:67:88:cc:ea:9c:39:bf:cb:ad: a0:71:e1:1f:92:59:28:54:18:56:3a:de:90:e6:d2: 85:13:c6:74:82:c8:06:d1:e8:88:4e:5d:98:2c:4c: d2:50:84:de:d4:b0:9e:01:a7:48:c9:0d:e8:c9:21: 56:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:9F:C2:C4:C8:26:25:7B:95:4A:7B:CA:FD:2C:22:B8:A0:D9:41:47 X509v3 Authority Key Identifier: keyid:D6:73:D8:49:B7:D5:04:73:76:D5:7E:6F:79:6F:00:18:B7:0B:45:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1nPYSbfVBHN21X5veW8AGLcLRQY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/3J_CxMgmJXuVSnvK_SwiuKDZQUc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/1nPYSbfVBHN21X5veW8AGLcLRQY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:190:15ee::/48 Signature Algorithm: sha256WithRSAEncryption aa:58:d4:e6:28:a5:ad:e9:95:ed:59:29:e5:9f:8f:c1:c4:7d: e7:58:d3:60:a3:80:8e:c1:b1:7b:f7:40:9e:9c:9b:77:fb:c1: 70:70:6a:61:b5:34:1a:10:a1:10:f5:2e:7e:a8:c9:32:4a:9e: ac:95:6e:d0:18:0c:d5:55:0b:dd:d7:af:1e:95:2a:9a:0d:77: fa:f2:45:09:3a:44:d9:f8:d3:f0:1e:fd:1a:6b:ba:be:54:74: 19:8a:34:eb:95:b1:2b:a3:55:e7:9b:b0:41:4f:c5:28:4b:b6: da:db:b9:c5:0a:0f:2f:19:2d:06:58:89:ab:28:94:03:9e:17: 31:68:25:8c:cb:7f:98:5c:1b:01:6f:fd:e9:4a:b9:07:30:84: 23:2b:6b:02:47:d2:48:c5:2e:83:b7:02:b3:49:b2:43:5c:1e: a9:f8:bd:dc:0c:04:6b:19:3e:b9:b2:40:76:86:a2:e4:14:9a: 04:09:87:33:dc:31:73:07:55:82:ec:66:ee:67:53:30:51:75: fa:92:59:3c:aa:cd:61:5f:e2:44:a5:b3:0c:93:d8:99:0d:9a: 8a:28:67:b8:78:d2:7e:70:8d:bd:24:9d:27:a5:b1:51:b5:2a: a1:03:bc:c6:28:0b:05:53:c3:2c:e4:99:ec:af:1d:58:0f:cb: 97:c8:05:59 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt3xxI2EAUIje0rdvgfHLYWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ2NzNkODQ5YjdkNTA0NzM3NmQ1N2U2Zjc5NmYwMDE4Yjcw YjQ1MDYwHhcNMjYwMTAxMDQxODEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYzlmYzJjNGM4MjYyNTdiOTU0YTdiY2FmZDJjMjJiOGEwZDk0MTQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhsPZZykh8xFIN5qJ7hSVYkKt/glI jZaWT5/VLuPOtmtFhv9fM4kqUECDOGCYDLm2/uGEN5+mg7c5NywQVYW2C6ng5PET 7B5xOkAUdKSdV8s0RQH9amU5CkVcDcZCQyM4IAY0qNS6K63u7saxGwGHI4jTQjmT rKMqOGT9fiSTklb29+l0+wTeUh4TWezmn1DYy0P6wMYnscSPB08gr6+dHcw1Q2h8 nV65Addraa7GhrUuoR5gFjh9uhm8rF4yzlCcAEktc1AwXYFniMzqnDm/y62gceEf klkoVBhWOt6Q5tKFE8Z0gsgG0eiITl2YLEzSUITe1LCeAadIyQ3oySFWcwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFNyfwsTIJiV7lUp7yv0sIrig2UFHMB8GA1UdIwQY MBaAFNZz2Em31QRzdtV+b3lvABi3C0UGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMW5QWVNiZlZCSE4yMVg1dmVXOEFHTGNMUlFZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS8yZWNlNjItMWQ4Yy00NTBjLTkxZTgt OGVlYjc1N2NmNTQ1LzEvM0pfQ3hNZ21KWHVWU252S19Td2l1S0RaUVVjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OS8yZWNlNjItMWQ4Yy00NTBjLTkxZTgtOGVlYjc1N2NmNTQ1 LzEvMW5QWVNiZlZCSE4yMVg1dmVXOEFHTGNMUlFZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgEBkBXu MA0GCSqGSIb3DQEBCwUAA4IBAQCqWNTmKKWt6ZXtWSnln4/BxH3nWNNgo4COwbF7 90CenJt3+8FwcGphtTQaEKEQ9S5+qMkySp6slW7QGAzVVQvd168elSqaDXf68kUJ OkTZ+NPwHv0aa7q+VHQZijTrlbEro1Xnm7BBT8UoS7ba27nFCg8vGS0GWImrKJQD nhcxaCWMy3+YXBsBb/3pSrkHMIQjK2sCR9JIxS6DtwKzSbJDXB6p+L3cDARrGT65 skB2hqLkFJoECYcz3DFzB1WC7GbuZ1MwUXX6klk8qs1hX+JEpbMMk9iZDZqKKGe4 eNJ+cI29JJ0npbFRtSqhA7zGKAsFU8Ms5Jnsrx1YD8uXyAVZ -----END CERTIFICATE-----Generated at Mon Jan 26 02:43:55 2026 by rpki-client