This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/87607e-5c9a-43a6-8d8a-38dfeaf2b710/1/3I57kWj-MwOuWGgEJOOA7NVOnaw.roa File: 3I57kWj-MwOuWGgEJOOA7NVOnaw.roa (raw, json) Hash identifier: u4MWGRCWmsfLRNP506Vpdbs2aaAzu9zhtPD+IDIYvpU= Subject key identifier: DC:8E:7B:91:68:FE:33:03:AE:58:68:04:24:E3:80:EC:D5:4E:9D:AC Certificate issuer: /CN=875f4ce913962181cf7c9376dfab5a225d6e5aea Certificate serial: 019B7F1529D03C3490509B29E9390608C6E0 Authority key identifier: 87:5F:4C:E9:13:96:21:81:CF:7C:93:76:DF:AB:5A:22:5D:6E:5A:EA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h19M6ROWIYHPfJN236taIl1uWuo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/87607e-5c9a-43a6-8d8a-38dfeaf2b710/1/3I57kWj-MwOuWGgEJOOA7NVOnaw.roa Signing time: Fri 02 Jan 2026 14:20:51 +0000 ROA not before: Fri 02 Jan 2026 14:20:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51586 IP address blocks: 212.18.101.0/24 maxlen: 24 2a12:5c00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/87607e-5c9a-43a6-8d8a-38dfeaf2b710/1/h19M6ROWIYHPfJN236taIl1uWuo.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/87607e-5c9a-43a6-8d8a-38dfeaf2b710/1/h19M6ROWIYHPfJN236taIl1uWuo.mft rsync://rpki.ripe.net/repository/DEFAULT/h19M6ROWIYHPfJN236taIl1uWuo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:29:d0:3c:34:90:50:9b:29:e9:39:06:08:c6:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=875f4ce913962181cf7c9376dfab5a225d6e5aea Validity Not Before: Jan 2 14:20:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dc8e7b9168fe3303ae58680424e380ecd54e9dac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:7d:b5:0d:b1:f7:87:40:0b:f1:6e:a0:89:af: ec:ef:67:e7:2f:1a:f4:01:03:6e:2b:f9:88:e9:74: 4e:7d:2c:fa:ae:ed:c8:29:97:fd:5a:35:07:45:25: 1d:dd:07:9d:a6:1b:02:86:f9:eb:a7:8f:c4:cb:e1: 8c:18:06:34:a0:4b:10:23:d0:06:e9:3a:1a:ba:a3: 8d:3b:e4:bb:87:8c:b3:1e:f2:52:37:6f:4d:3e:4b: c3:24:7e:ff:cb:fc:a9:15:52:a6:33:43:b9:57:72: a8:5c:6a:9c:bc:e2:db:bb:1b:13:70:53:80:14:cb: 83:51:1c:62:93:e6:35:fe:b2:66:df:76:75:e4:8c: ea:50:66:98:0b:8f:ea:dd:19:dd:67:3d:e1:c9:ec: dc:c9:cb:b6:9d:41:9b:5c:7e:7e:c7:41:80:27:90: 07:8b:2f:bd:27:81:55:29:5c:bf:9d:74:96:1c:50: 02:c5:71:df:dc:6c:e4:52:e0:9d:68:e1:7e:77:82: 90:53:84:e7:2f:0b:35:72:cc:9f:b6:84:af:c0:5a: d4:5e:54:65:b4:ef:3e:0d:f0:5f:c2:eb:c3:d8:8a: fd:05:4b:78:b8:f8:57:5b:4e:a7:6a:c9:c9:2f:9b: 15:bf:25:64:be:a6:b9:e8:12:f2:b9:f4:cd:eb:1c: d8:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:8E:7B:91:68:FE:33:03:AE:58:68:04:24:E3:80:EC:D5:4E:9D:AC X509v3 Authority Key Identifier: keyid:87:5F:4C:E9:13:96:21:81:CF:7C:93:76:DF:AB:5A:22:5D:6E:5A:EA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h19M6ROWIYHPfJN236taIl1uWuo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/87607e-5c9a-43a6-8d8a-38dfeaf2b710/1/3I57kWj-MwOuWGgEJOOA7NVOnaw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/87607e-5c9a-43a6-8d8a-38dfeaf2b710/1/h19M6ROWIYHPfJN236taIl1uWuo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.18.101.0/24 IPv6: 2a12:5c00::/32 Signature Algorithm: sha256WithRSAEncryption 23:3b:95:de:1a:86:c3:f1:d6:79:18:5f:1f:5e:7c:c7:f5:e7: 71:5e:32:c0:ba:36:bb:b2:3d:9a:d1:b6:55:83:1a:97:e5:4b: b4:26:9f:25:9d:81:e4:ee:09:af:eb:e7:0b:dd:67:3d:da:55: b8:84:1a:f9:c8:3a:24:5d:e7:1c:1a:56:a9:ef:d1:ed:e2:ee: bb:89:6d:b7:fc:42:8b:06:da:18:49:68:e5:bb:5e:da:5e:6d: 97:72:fd:ca:df:29:f1:60:bc:48:5a:d2:93:46:64:93:21:72: d0:63:89:ba:fd:a1:5d:ab:ca:8e:0b:d5:52:98:d6:ca:ce:46: 6f:9e:ff:b5:a5:b8:5e:90:48:ca:1f:6f:68:5a:57:2b:07:53: 11:ab:1a:2f:cf:9d:1c:e2:1e:4a:8b:b3:1f:f8:bc:25:07:aa: 33:a3:7d:b9:7f:e7:ec:f7:ec:d9:15:0b:6a:12:03:d8:94:2f: 3f:29:4f:fc:1e:c4:ef:c8:ea:66:77:37:23:90:06:d2:4d:97: 3e:17:a3:6d:81:40:63:25:70:70:4d:e5:25:27:93:9b:de:b3: a9:2e:7a:1d:b4:11:43:09:fc:e5:12:0f:0e:b4:4b:b6:8e:41: fd:54:fe:98:fe:4c:00:b8:b5:fa:ff:53:2d:e1:b8:89:49:1b: eb:30:e5:cd -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/FSnQPDSQUJsp6TkGCMbgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3NWY0Y2U5MTM5NjIxODFjZjdjOTM3NmRmYWI1YTIyNWQ2 ZTVhZWEwHhcNMjYwMTAyMTQyMDUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYzhlN2I5MTY4ZmUzMzAzYWU1ODY4MDQyNGUzODBlY2Q1NGU5ZGFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4n21DbH3h0AL8W6gia/s72fnLxr0 AQNuK/mI6XROfSz6ru3IKZf9WjUHRSUd3QedphsChvnrp4/Ey+GMGAY0oEsQI9AG 6ToauqONO+S7h4yzHvJSN29NPkvDJH7/y/ypFVKmM0O5V3KoXGqcvOLbuxsTcFOA FMuDURxik+Y1/rJm33Z15IzqUGaYC4/q3RndZz3hyezcycu2nUGbXH5+x0GAJ5AH iy+9J4FVKVy/nXSWHFACxXHf3GzkUuCdaOF+d4KQU4TnLws1csyftoSvwFrUXlRl tO8+DfBfwuvD2Ir9BUt4uPhXW06nasnJL5sVvyVkvqa56BLyufTN6xzYEwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFNyOe5Fo/jMDrlhoBCTjgOzVTp2sMB8GA1UdIwQY MBaAFIdfTOkTliGBz3yTdt+rWiJdblrqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaDE5TTZST1dJWUhQZkpOMjM2dGFJbDF1V3VvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS84NzYwN2UtNWM5YS00M2E2LThkOGEt MzhkZmVhZjJiNzEwLzEvM0k1N2tXai1Nd091V0dnRUpPT0E3TlZPbmF3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS84NzYwN2UtNWM5YS00M2E2LThkOGEtMzhkZmVhZjJiNzEw LzEvaDE5TTZST1dJWUhQZkpOMjM2dGFJbDF1V3VvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQA1BJlMA0E AgACMAcDBQAqElwAMA0GCSqGSIb3DQEBCwUAA4IBAQAjO5XeGobD8dZ5GF8fXnzH 9edxXjLAuja7sj2a0bZVgxqX5Uu0Jp8lnYHk7gmv6+cL3Wc92lW4hBr5yDokXecc Glap79Ht4u67iW23/EKLBtoYSWjlu17aXm2Xcv3K3ynxYLxIWtKTRmSTIXLQY4m6 /aFdq8qOC9VSmNbKzkZvnv+1pbhekEjKH29oWlcrB1MRqxovz50c4h5Ki7Mf+Lwl B6ozo325f+fs9+zZFQtqEgPYlC8/KU/8HsTvyOpmdzcjkAbSTZc+F6NtgUBjJXBw TeUlJ5Ob3rOpLnodtBFDCfzlEg8OtEu2jkH9VP6Y/kwAuLX6/1Mt4biJSRvrMOXN -----END CERTIFICATE-----Generated at Mon Jan 26 02:24:01 2026 by rpki-client