This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/1ad26f-a33e-4069-a802-373b522a821d/1/3kXlETfWJCAXbDxVUKtx9yNwW6s.roa File: 3kXlETfWJCAXbDxVUKtx9yNwW6s.roa (raw, json) Hash identifier: +FY4/sli19BSBmLjlHOU6V5Ds/P1dgvrtzoRsC70tAY= Subject key identifier: DE:45:E5:11:37:D6:24:20:17:6C:3C:55:50:AB:71:F7:23:70:5B:AB Certificate issuer: /CN=389b2fa3651383a7fc6a86adba56c7c6207d7568 Certificate serial: 019AB50F61054952F840F4E31D51830E6B9C Authority key identifier: 38:9B:2F:A3:65:13:83:A7:FC:6A:86:AD:BA:56:C7:C6:20:7D:75:68 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OJsvo2UTg6f8aoatulbHxiB9dWg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/1ad26f-a33e-4069-a802-373b522a821d/1/3kXlETfWJCAXbDxVUKtx9yNwW6s.roa Signing time: Mon 24 Nov 2025 08:51:15 +0000 ROA not before: Mon 24 Nov 2025 08:51:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 58173 IP address blocks: 5.61.72.0/21 maxlen: 21 5.61.72.0/22 maxlen: 22 5.61.72.0/24 maxlen: 24 5.61.76.0/22 maxlen: 22 134.0.80.0/21 maxlen: 24 185.18.48.0/22 maxlen: 22 185.18.48.0/23 maxlen: 23 185.18.48.0/24 maxlen: 24 185.18.50.0/23 maxlen: 23 185.18.50.0/24 maxlen: 24 185.96.192.0/22 maxlen: 24 185.96.192.0/23 maxlen: 23 185.96.193.0/24 maxlen: 24 185.205.160.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/1ad26f-a33e-4069-a802-373b522a821d/1/OJsvo2UTg6f8aoatulbHxiB9dWg.crl rsync://rpki.ripe.net/repository/DEFAULT/9e/1ad26f-a33e-4069-a802-373b522a821d/1/OJsvo2UTg6f8aoatulbHxiB9dWg.mft rsync://rpki.ripe.net/repository/DEFAULT/OJsvo2UTg6f8aoatulbHxiB9dWg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 19:20:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:b5:0f:61:05:49:52:f8:40:f4:e3:1d:51:83:0e:6b:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=389b2fa3651383a7fc6a86adba56c7c6207d7568 Validity Not Before: Nov 24 08:51:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=de45e51137d62420176c3c5550ab71f723705bab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:c7:4d:91:d7:cf:19:a9:51:ed:0d:04:6b:90: 42:e5:ca:87:19:fe:ec:c4:4e:6e:f4:d5:44:68:bd: f1:3e:16:c6:f9:87:c6:aa:63:d3:84:6f:35:18:c7: 2a:89:1a:3e:b1:a3:d5:01:41:90:6e:73:5f:82:93: ad:87:7e:3b:be:c0:c9:5a:8b:04:ce:f2:c5:2c:63: 8f:0b:31:e2:4e:43:5b:6b:e4:1c:6b:b5:39:c8:dd: ac:41:f9:e6:42:aa:82:af:5a:da:ed:29:ae:69:e7: 4e:74:a6:c4:3e:be:ac:e3:a5:1f:6c:ad:7a:3e:fa: c9:5c:12:28:26:cf:73:b6:99:b6:65:28:8a:9a:d6: 63:87:d6:59:55:76:3b:f6:98:c9:09:a0:37:1f:14: f1:25:9a:44:7a:db:30:33:a5:3d:4e:40:fb:62:90: 46:37:fb:18:cd:6c:fb:47:c1:e3:b9:94:a0:40:fb: f0:05:65:c8:ab:b6:21:a4:39:72:1e:92:b1:63:c7: 37:a1:36:18:24:59:47:66:42:50:bc:9d:39:4e:f1: d3:9e:02:cb:a2:02:61:2b:bb:63:53:f4:61:d2:ad: c2:41:6a:46:8e:97:83:fb:50:e2:dc:5f:a2:d9:9a: 8f:b0:ef:1f:1e:3c:12:ac:aa:c4:5a:8c:d5:f5:53: 13:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:45:E5:11:37:D6:24:20:17:6C:3C:55:50:AB:71:F7:23:70:5B:AB X509v3 Authority Key Identifier: keyid:38:9B:2F:A3:65:13:83:A7:FC:6A:86:AD:BA:56:C7:C6:20:7D:75:68 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OJsvo2UTg6f8aoatulbHxiB9dWg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/1ad26f-a33e-4069-a802-373b522a821d/1/3kXlETfWJCAXbDxVUKtx9yNwW6s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/1ad26f-a33e-4069-a802-373b522a821d/1/OJsvo2UTg6f8aoatulbHxiB9dWg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.61.72.0/21 134.0.80.0/21 185.18.48.0/22 185.96.192.0/22 185.205.160.0/22 Signature Algorithm: sha256WithRSAEncryption 3b:39:1c:31:80:7c:d4:17:00:95:d1:e6:16:95:20:d3:27:4a: 74:54:05:e8:b8:9e:a3:51:94:de:e8:4b:a0:91:ae:f6:6c:20: 41:f6:22:5d:f5:f9:33:2a:78:30:72:f6:88:b7:76:23:06:5a: 39:88:8d:17:c6:6d:8b:63:74:22:32:bc:1f:28:c5:d6:e4:54: 8f:86:8f:3a:c9:d8:fb:ae:4f:e5:2f:a0:2a:62:83:02:07:7a: b9:5b:4e:37:45:ec:8c:a9:16:83:1d:5b:08:42:6f:2a:c2:5c: fa:5e:e3:b6:0d:c4:ad:31:0c:fa:d7:ce:d6:a3:49:4b:aa:a3: 59:41:78:15:a4:03:e9:b4:78:f4:1f:dd:b9:06:77:1f:4e:a7: 6e:86:f2:db:24:06:ec:31:64:c6:3c:b8:c5:67:44:45:2e:10: 28:09:28:25:e3:64:b2:61:af:53:34:35:2c:17:c2:cc:0e:a4: fb:8f:d2:c1:ed:5d:84:c6:f7:b2:34:e5:de:47:31:bd:ed:bc: b1:65:34:55:55:70:16:fe:ec:b4:72:28:7f:f5:f5:6c:68:fc: 6b:92:48:51:f5:92:da:5f:74:77:2b:29:51:5a:62:9a:7b:ea: d3:83:56:00:3c:10:3b:f1:d5:f0:4c:20:24:e1:b7:30:7a:c6: 15:8a:e5:44 -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZq1D2EFSVL4QPTjHVGDDmucMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4OWIyZmEzNjUxMzgzYTdmYzZhODZhZGJhNTZjN2M2MjA3 ZDc1NjgwHhcNMjUxMTI0MDg1MTE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZTQ1ZTUxMTM3ZDYyNDIwMTc2YzNjNTU1MGFiNzFmNzIzNzA1YmFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9cdNkdfPGalR7Q0Ea5BC5cqHGf7s xE5u9NVEaL3xPhbG+YfGqmPThG81GMcqiRo+saPVAUGQbnNfgpOth347vsDJWosE zvLFLGOPCzHiTkNba+Qca7U5yN2sQfnmQqqCr1ra7SmuaedOdKbEPr6s46UfbK16 PvrJXBIoJs9ztpm2ZSiKmtZjh9ZZVXY79pjJCaA3HxTxJZpEetswM6U9TkD7YpBG N/sYzWz7R8HjuZSgQPvwBWXIq7YhpDlyHpKxY8c3oTYYJFlHZkJQvJ05TvHTngLL ogJhK7tjU/Rh0q3CQWpGjpeD+1Di3F+i2ZqPsO8fHjwSrKrEWozV9VMTVQIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFN5F5RE31iQgF2w8VVCrcfcjcFurMB8GA1UdIwQY MBaAFDibL6NlE4On/GqGrbpWx8YgfXVoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0pzdm8yVVRnNmY4YW9hdHVsYkh4aUI5ZFdnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS8xYWQyNmYtYTMzZS00MDY5LWE4MDIt MzczYjUyMmE4MjFkLzEvM2tYbEVUZldKQ0FYYkR4VlVLdHg5eU53VzZzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZS8xYWQyNmYtYTMzZS00MDY5LWE4MDItMzczYjUyMmE4MjFk LzEvT0pzdm8yVVRnNmY4YW9hdHVsYkh4aUI5ZFdnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQDBT1IAwQD hgBQAwQCuRIwAwQCuWDAAwQCuc2gMA0GCSqGSIb3DQEBCwUAA4IBAQA7ORwxgHzU FwCV0eYWlSDTJ0p0VAXouJ6jUZTe6Eugka72bCBB9iJd9fkzKngwcvaIt3YjBlo5 iI0Xxm2LY3QiMrwfKMXW5FSPho86ydj7rk/lL6AqYoMCB3q5W043ReyMqRaDHVsI Qm8qwlz6XuO2DcStMQz6187Wo0lLqqNZQXgVpAPptHj0H925BncfTqduhvLbJAbs MWTGPLjFZ0RFLhAoCSgl42SyYa9TNDUsF8LMDqT7j9LB7V2ExveyNOXeRzG97byx ZTRVVXAW/uy0cih/9fVsaPxrkkhR9ZLaX3R3KylRWmKae+rTg1YAPBA78dXwTCAk 4bcwesYViuVE -----END CERTIFICATE-----Generated at Wed Dec 17 01:26:07 2025 by rpki-client