This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/X3R-floHCctncemlohut39fAAWo.roa File: X3R-floHCctncemlohut39fAAWo.roa (raw, json) Hash identifier: HcALHXWtxViwkG5KOnEw6VMEEbxHOixZaFpjLNGdypY= Subject key identifier: 5F:74:7E:7E:5A:07:09:CB:67:71:E9:A5:A2:1B:AD:DF:D7:C0:01:6A Certificate issuer: /CN=95bdb85b7ea8f1faaf751e76c4147c81b60e994d Certificate serial: 019B775928D9B5539DC287BBDCD802C95379 Authority key identifier: 95:BD:B8:5B:7E:A8:F1:FA:AF:75:1E:76:C4:14:7C:81:B6:0E:99:4D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lb24W36o8fqvdR52xBR8gbYOmU0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/X3R-floHCctncemlohut39fAAWo.roa Signing time: Thu 01 Jan 2026 02:18:10 +0000 ROA not before: Thu 01 Jan 2026 02:18:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215652 IP address blocks: 2001:678:988::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.crl rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.mft rsync://rpki.ripe.net/repository/DEFAULT/lb24W36o8fqvdR52xBR8gbYOmU0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:28:d9:b5:53:9d:c2:87:bb:dc:d8:02:c9:53:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95bdb85b7ea8f1faaf751e76c4147c81b60e994d Validity Not Before: Jan 1 02:18:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5f747e7e5a0709cb6771e9a5a21baddfd7c0016a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:df:c2:d2:d3:c5:e6:0e:ee:3c:76:19:a9:df: 6a:78:e6:e7:4d:4d:26:3a:e9:39:69:24:f8:d8:18: 9d:8b:9f:89:ea:66:a6:66:d3:04:99:91:74:b2:f3: 33:3b:61:09:aa:c7:8b:60:b1:7b:8e:01:93:c6:60: 92:b1:34:7a:73:7b:82:38:ea:9e:5b:2f:df:ef:c4: 62:1f:a0:84:3d:f1:44:07:2f:61:89:64:27:83:75: 74:2f:e8:2a:0c:6c:b3:a0:8d:4e:63:54:71:af:81: 1d:43:0a:2d:23:ac:b3:1b:58:1e:0f:5d:63:3d:6f: 71:6f:c6:57:3e:06:4c:bd:13:67:ca:45:8d:4b:af: 91:e3:93:92:aa:4e:ad:bd:54:7d:d2:72:0f:c7:be: ae:0c:19:18:ab:b9:64:bc:79:fd:a6:b5:6d:94:a4: 61:f4:05:6c:d8:8b:39:90:25:e8:7e:82:5e:27:e5: ad:61:74:77:66:15:6c:5b:9a:13:e6:dc:07:05:25: f1:4f:f1:d1:fa:30:41:b8:e2:05:a2:ab:45:b9:b0: 3a:52:12:ea:5b:76:e8:74:19:06:0e:b4:58:12:03: 6a:f8:c3:5a:99:aa:c5:0f:71:91:04:4b:66:c8:3d: 5a:e4:7b:c4:27:72:c7:a2:27:1e:a5:d8:e9:43:f5: 63:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:74:7E:7E:5A:07:09:CB:67:71:E9:A5:A2:1B:AD:DF:D7:C0:01:6A X509v3 Authority Key Identifier: keyid:95:BD:B8:5B:7E:A8:F1:FA:AF:75:1E:76:C4:14:7C:81:B6:0E:99:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lb24W36o8fqvdR52xBR8gbYOmU0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/X3R-floHCctncemlohut39fAAWo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:988::/48 Signature Algorithm: sha256WithRSAEncryption 69:f0:1f:7f:c0:04:a6:bf:bd:85:e9:22:e9:e4:a9:a7:ec:30: 17:61:f2:6c:f2:bc:e8:6b:50:b1:48:2d:9c:6f:97:9b:08:35: 36:2d:94:52:aa:be:00:45:c2:4b:7a:24:1e:8b:c3:4a:76:42: e2:c6:64:96:98:99:bc:cf:70:55:b3:a4:fe:75:81:8a:46:fe: 1c:c5:b5:14:9a:7e:ad:02:7e:e9:de:3a:18:34:ab:8f:2d:bf: 56:ba:dc:b7:8c:15:26:ac:de:e4:5c:bb:2e:aa:ff:19:c5:c8: 2c:76:27:51:12:be:ac:93:a0:1c:f3:44:cb:08:fd:0a:a4:f4: a7:04:a1:a3:f8:37:4d:64:57:51:3d:3e:4f:a0:28:5f:28:9b: 7a:72:b0:b6:c9:4b:70:b7:0b:f3:90:10:55:9e:db:fa:76:e7: 3e:76:c1:6d:4e:c9:48:68:54:07:5f:03:11:6b:db:13:82:d4: a2:76:0e:bb:92:ee:4e:1c:97:b1:02:aa:d5:0a:c0:fb:1b:11: f2:87:84:8f:80:2a:f6:44:b3:e1:77:bb:39:b9:4c:e9:8b:09: 96:75:b5:8c:d8:a9:e9:63:ad:5c:6a:24:0d:84:b3:d8:97:cf: 4a:d6:49:9d:cb:19:82:af:4d:e6:53:3f:33:7d:be:b3:42:2a: 7e:1f:88:2d -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt3WSjZtVOdwoe73NgCyVN5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1YmRiODViN2VhOGYxZmFhZjc1MWU3NmM0MTQ3YzgxYjYw ZTk5NGQwHhcNMjYwMTAxMDIxODEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1Zjc0N2U3ZTVhMDcwOWNiNjc3MWU5YTVhMjFiYWRkZmQ3YzAwMTZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA99/C0tPF5g7uPHYZqd9qeObnTU0m Ouk5aST42Bidi5+J6mamZtMEmZF0svMzO2EJqseLYLF7jgGTxmCSsTR6c3uCOOqe Wy/f78RiH6CEPfFEBy9hiWQng3V0L+gqDGyzoI1OY1Rxr4EdQwotI6yzG1geD11j PW9xb8ZXPgZMvRNnykWNS6+R45OSqk6tvVR90nIPx76uDBkYq7lkvHn9prVtlKRh 9AVs2Is5kCXofoJeJ+WtYXR3ZhVsW5oT5twHBSXxT/HR+jBBuOIFoqtFubA6UhLq W3bodBkGDrRYEgNq+MNamarFD3GRBEtmyD1a5HvEJ3LHoicepdjpQ/VjUwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFF90fn5aBwnLZ3HppaIbrd/XwAFqMB8GA1UdIwQY MBaAFJW9uFt+qPH6r3UedsQUfIG2DplNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbGIyNFczNm84ZnF2ZFI1MnhCUjhnYllPbVUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy8wMzM3MDAtZjkwNC00MjJmLWE0YWMt MTAyNDBjYTBiMTgyLzEvWDNSLWZsb0hDY3RuY2VtbG9odXQzOWZBQVdvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYy8wMzM3MDAtZjkwNC00MjJmLWE0YWMtMTAyNDBjYTBiMTgy LzEvbGIyNFczNm84ZnF2ZFI1MnhCUjhnYllPbVUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAmI MA0GCSqGSIb3DQEBCwUAA4IBAQBp8B9/wASmv72F6SLp5Kmn7DAXYfJs8rzoa1Cx SC2cb5ebCDU2LZRSqr4ARcJLeiQei8NKdkLixmSWmJm8z3BVs6T+dYGKRv4cxbUU mn6tAn7p3joYNKuPLb9Wuty3jBUmrN7kXLsuqv8ZxcgsdidREr6sk6Ac80TLCP0K pPSnBKGj+DdNZFdRPT5PoChfKJt6crC2yUtwtwvzkBBVntv6duc+dsFtTslIaFQH XwMRa9sTgtSidg67ku5OHJexAqrVCsD7GxHyh4SPgCr2RLPhd7s5uUzpiwmWdbWM 2KnpY61caiQNhLPYl89K1kmdyxmCr03mUz8zfb6zQip+H4gt -----END CERTIFICATE-----Generated at Sun Jan 25 22:15:54 2026 by rpki-client