This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/f668e0-fb36-45a0-971f-6b2f9d151519/1/U1VjosqpBiqy2ZFxYLqdYxKnum4.roa File: U1VjosqpBiqy2ZFxYLqdYxKnum4.roa (raw, json) Hash identifier: AvN5YNAvDxw0bLWGw+RbIchpQR/eRlfnMr+l8l+QHy8= Subject key identifier: 53:55:63:A2:CA:A9:06:2A:B2:D9:91:71:60:BA:9D:63:12:A7:BA:6E Certificate issuer: /CN=3cfee2ea3cde0873a191bdd795227399b56a43ba Certificate serial: 019B783485ADF76FCFF780E615F5E72ACDA6 Authority key identifier: 3C:FE:E2:EA:3C:DE:08:73:A1:91:BD:D7:95:22:73:99:B5:6A:43:BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PP7i6jzeCHOhkb3XlSJzmbVqQ7o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/f668e0-fb36-45a0-971f-6b2f9d151519/1/U1VjosqpBiqy2ZFxYLqdYxKnum4.roa Signing time: Thu 01 Jan 2026 06:17:46 +0000 ROA not before: Thu 01 Jan 2026 06:17:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56380 IP address blocks: 185.153.196.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/f668e0-fb36-45a0-971f-6b2f9d151519/1/PP7i6jzeCHOhkb3XlSJzmbVqQ7o.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/f668e0-fb36-45a0-971f-6b2f9d151519/1/PP7i6jzeCHOhkb3XlSJzmbVqQ7o.mft rsync://rpki.ripe.net/repository/DEFAULT/PP7i6jzeCHOhkb3XlSJzmbVqQ7o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:85:ad:f7:6f:cf:f7:80:e6:15:f5:e7:2a:cd:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3cfee2ea3cde0873a191bdd795227399b56a43ba Validity Not Before: Jan 1 06:17:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=535563a2caa9062ab2d9917160ba9d6312a7ba6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f7:8d:6b:c6:17:5d:15:6d:9f:5c:66:96:3d: 76:d0:fd:b5:9c:4b:1d:4a:a0:b7:99:8d:e4:f7:23: ea:29:fd:89:74:ae:7e:64:9d:b4:df:50:26:91:7b: 6f:4b:80:46:29:24:86:b4:fd:5a:e8:a3:db:8a:d9: 5c:be:b2:47:f2:2b:57:bd:93:29:63:60:d3:cf:10: 46:4f:20:98:95:07:c0:92:ea:3c:84:60:38:0b:72: 0e:90:e0:16:3a:23:1c:8f:e5:63:70:6f:1f:c5:79: 6a:1a:a3:04:bc:5c:eb:e9:01:4c:f0:f7:2f:94:88: 76:d1:24:8f:be:3f:9b:f7:b2:77:f5:45:e0:f5:cc: 0f:b1:85:73:1b:6c:51:d8:9e:26:89:72:41:4c:70: b8:42:bb:f4:84:2d:d8:a2:fe:10:0a:9b:ed:3c:2f: e3:5b:f2:0e:cd:7a:59:b9:8c:95:f7:a4:e7:43:87: 40:51:e0:0d:c9:95:fa:dc:ce:ed:55:93:5c:66:c5: 2d:ac:7a:fb:9b:a0:7e:d1:99:93:d1:09:ec:30:ac: a1:0d:af:d0:4d:09:ed:b3:4c:b8:da:bf:7d:95:e8: 76:d4:37:b9:0a:dd:c4:f2:71:df:80:bd:57:28:b3: 9e:7b:4b:00:cd:9d:40:4c:dd:d9:a6:6d:68:46:44: af:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:55:63:A2:CA:A9:06:2A:B2:D9:91:71:60:BA:9D:63:12:A7:BA:6E X509v3 Authority Key Identifier: keyid:3C:FE:E2:EA:3C:DE:08:73:A1:91:BD:D7:95:22:73:99:B5:6A:43:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PP7i6jzeCHOhkb3XlSJzmbVqQ7o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/f668e0-fb36-45a0-971f-6b2f9d151519/1/U1VjosqpBiqy2ZFxYLqdYxKnum4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/f668e0-fb36-45a0-971f-6b2f9d151519/1/PP7i6jzeCHOhkb3XlSJzmbVqQ7o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.153.196.0/22 Signature Algorithm: sha256WithRSAEncryption 1e:45:38:f9:65:61:ef:30:c1:0e:b7:4d:62:ec:20:85:75:a8: 65:b5:3a:14:e9:99:cc:26:35:29:58:29:d4:73:de:33:a2:ff: aa:dc:d3:30:85:e9:a5:d7:31:3c:d2:44:a4:1a:0b:67:65:a7: 70:15:f9:9a:95:79:89:79:60:8d:74:b2:f2:94:fe:22:14:d3: 77:d9:d9:bc:7d:20:20:7f:ed:81:3f:20:a9:36:a2:a7:d7:27: 3e:5d:a9:38:54:85:8d:23:48:66:8c:a6:cd:ff:e6:64:5a:e3: b6:09:25:85:da:0b:dd:e4:a4:0e:fb:1d:2f:39:37:a8:62:a3: 37:b9:50:87:b1:dc:4d:8d:04:a7:1d:b7:39:a9:1f:2b:89:7e: 94:37:a4:f6:1f:e7:bf:e0:95:13:c8:cc:72:ed:f2:05:c3:b8: 03:a0:4f:74:88:3e:3a:52:7d:b8:6d:03:6c:6b:7f:a1:df:a4: 88:cb:13:86:e3:8c:46:54:6d:bb:ee:e8:a9:6f:d8:77:02:60: c0:7b:57:56:fb:07:a6:e6:2f:aa:f1:6e:59:68:65:20:74:7f: 0d:3d:f3:02:f3:8c:08:40:61:57:02:08:14:8a:97:5e:a7:28: 75:40:4c:82:bb:3c:4e:b5:77:ad:54:64:1a:b9:20:54:d3:a3: a7:aa:e7:f9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NIWt92/P94DmFfXnKs2mMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNjZmVlMmVhM2NkZTA4NzNhMTkxYmRkNzk1MjI3Mzk5YjU2 YTQzYmEwHhcNMjYwMTAxMDYxNzQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MzU1NjNhMmNhYTkwNjJhYjJkOTkxNzE2MGJhOWQ2MzEyYTdiYTZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtfeNa8YXXRVtn1xmlj120P21nEsd SqC3mY3k9yPqKf2JdK5+ZJ2031AmkXtvS4BGKSSGtP1a6KPbitlcvrJH8itXvZMp Y2DTzxBGTyCYlQfAkuo8hGA4C3IOkOAWOiMcj+VjcG8fxXlqGqMEvFzr6QFM8Pcv lIh20SSPvj+b97J39UXg9cwPsYVzG2xR2J4miXJBTHC4Qrv0hC3Yov4QCpvtPC/j W/IOzXpZuYyV96TnQ4dAUeANyZX63M7tVZNcZsUtrHr7m6B+0ZmT0QnsMKyhDa/Q TQnts0y42r99leh21De5Ct3E8nHfgL1XKLOee0sAzZ1ATN3Zpm1oRkSvMQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFNVY6LKqQYqstmRcWC6nWMSp7puMB8GA1UdIwQY MBaAFDz+4uo83ghzoZG915Uic5m1akO6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUFA3aTZqemVDSE9oa2IzWGxTSnptYlZxUTdvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC9mNjY4ZTAtZmIzNi00NWEwLTk3MWYt NmIyZjlkMTUxNTE5LzEvVTFWam9zcXBCaXF5MlpGeFlMcWRZeEtudW00LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC9mNjY4ZTAtZmIzNi00NWEwLTk3MWYtNmIyZjlkMTUxNTE5 LzEvUFA3aTZqemVDSE9oa2IzWGxTSnptYlZxUTdvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuZnEMA0G CSqGSIb3DQEBCwUAA4IBAQAeRTj5ZWHvMMEOt01i7CCFdahltToU6ZnMJjUpWCnU c94zov+q3NMwheml1zE80kSkGgtnZadwFfmalXmJeWCNdLLylP4iFNN32dm8fSAg f+2BPyCpNqKn1yc+Xak4VIWNI0hmjKbN/+ZkWuO2CSWF2gvd5KQO+x0vOTeoYqM3 uVCHsdxNjQSnHbc5qR8riX6UN6T2H+e/4JUTyMxy7fIFw7gDoE90iD46Un24bQNs a3+h36SIyxOG44xGVG277uipb9h3AmDAe1dW+wem5i+q8W5ZaGUgdH8NPfMC84wI QGFXAggUipdepyh1QEyCuzxOtXetVGQauSBU06Onquf5 -----END CERTIFICATE-----Generated at Mon Jan 26 07:57:53 2026 by rpki-client