This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/a2ddad-7d4d-41cb-a693-d2d9241ec5db/1/x3j0YXNfrQ1uoL9p2fnHwDo4Voo.roa File: x3j0YXNfrQ1uoL9p2fnHwDo4Voo.roa (raw, json) Hash identifier: +HeOEQXq41iJ7S0nO2qqAI09YN5UE1e6xIQ3R8exCoQ= Subject key identifier: C7:78:F4:61:73:5F:AD:0D:6E:A0:BF:69:D9:F9:C7:C0:3A:38:56:8A Certificate issuer: /CN=3372f5d118abd1291ae248e6c69d64a99a9aef06 Certificate serial: 019B77C6B7B3C5AD88075BDF6137BEB9BDA3 Authority key identifier: 33:72:F5:D1:18:AB:D1:29:1A:E2:48:E6:C6:9D:64:A9:9A:9A:EF:06 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M3L10Rir0Ska4kjmxp1kqZqa7wY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/a2ddad-7d4d-41cb-a693-d2d9241ec5db/1/x3j0YXNfrQ1uoL9p2fnHwDo4Voo.roa Signing time: Thu 01 Jan 2026 04:17:50 +0000 ROA not before: Thu 01 Jan 2026 04:17:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39345 IP address blocks: 195.178.102.0/23 maxlen: 23 2001:678:164::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/a2ddad-7d4d-41cb-a693-d2d9241ec5db/1/M3L10Rir0Ska4kjmxp1kqZqa7wY.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/a2ddad-7d4d-41cb-a693-d2d9241ec5db/1/M3L10Rir0Ska4kjmxp1kqZqa7wY.mft rsync://rpki.ripe.net/repository/DEFAULT/M3L10Rir0Ska4kjmxp1kqZqa7wY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:b7:b3:c5:ad:88:07:5b:df:61:37:be:b9:bd:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3372f5d118abd1291ae248e6c69d64a99a9aef06 Validity Not Before: Jan 1 04:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c778f461735fad0d6ea0bf69d9f9c7c03a38568a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:72:da:9d:06:a8:53:7a:4b:1d:1e:d6:63:34: 3d:cf:d3:3b:5f:ed:a0:fe:98:48:79:4b:52:d8:91: ec:56:c1:1e:d1:2c:9a:1e:a6:8d:6c:1c:7d:81:23: d3:2d:a1:e5:f4:b5:7e:14:24:b5:a0:b9:7c:fd:57: 43:3d:13:fc:c2:0d:cf:14:d9:cf:8f:f5:f5:e3:bf: 73:d6:d6:3b:a3:cb:a0:f2:af:74:51:97:e5:91:ab: 5b:51:2e:98:5a:ed:31:df:d0:85:56:57:7d:53:ab: c4:fc:1e:ed:e6:58:4e:b2:ab:a6:61:e9:b9:09:c1: 86:15:4e:1e:62:80:3d:da:da:d3:b1:70:76:7e:c7: 47:52:99:f9:9c:ad:16:ce:ee:d6:5c:76:a9:99:a6: 1e:c8:df:18:43:dc:47:01:d5:d7:d3:c4:95:3c:a2: ab:6d:f0:06:be:32:90:ec:92:f1:5e:44:cb:5c:7e: 88:06:92:2e:ac:41:4f:e6:3f:89:7e:67:ff:f5:13: bf:24:b5:eb:fa:35:f5:31:56:a7:1b:00:81:c5:05: 3e:e1:1a:4b:45:22:27:28:11:2d:62:bb:42:dc:3d: 98:bb:4e:5e:a4:a7:5a:94:93:e7:b3:8d:d2:4c:6a: f3:a4:6a:64:2a:34:e4:94:79:28:48:95:03:ec:9e: e6:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:78:F4:61:73:5F:AD:0D:6E:A0:BF:69:D9:F9:C7:C0:3A:38:56:8A X509v3 Authority Key Identifier: keyid:33:72:F5:D1:18:AB:D1:29:1A:E2:48:E6:C6:9D:64:A9:9A:9A:EF:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M3L10Rir0Ska4kjmxp1kqZqa7wY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a2ddad-7d4d-41cb-a693-d2d9241ec5db/1/x3j0YXNfrQ1uoL9p2fnHwDo4Voo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a2ddad-7d4d-41cb-a693-d2d9241ec5db/1/M3L10Rir0Ska4kjmxp1kqZqa7wY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.178.102.0/23 IPv6: 2001:678:164::/48 Signature Algorithm: sha256WithRSAEncryption 91:07:e4:1b:db:d5:bf:22:61:b7:7a:62:a5:29:79:ca:e7:ef: d5:ba:5c:67:d3:81:a0:fd:d8:41:79:86:95:f9:39:48:d7:a8: 0a:54:28:b4:79:44:9f:df:1e:52:3f:79:ea:e3:bd:83:41:80: d4:de:c7:9f:1e:18:50:c4:89:4c:10:db:81:46:9a:11:f9:31: b9:fc:33:81:b8:3b:1d:eb:f8:51:02:20:21:b8:0d:c7:be:4f: a1:e7:50:2c:e4:45:0e:ff:f7:fc:66:1d:f8:02:c9:78:55:bc: f8:da:e0:5a:a9:1a:fd:00:d2:97:56:51:e4:02:d9:d8:91:3f: dc:9c:de:1f:98:d9:4a:09:ed:65:ce:5a:62:3f:d7:65:36:3a: d7:b7:62:e7:a2:08:1b:28:04:3d:14:59:9c:35:dd:99:2c:73: 35:d3:4d:9c:0d:7f:4e:38:4c:18:95:1a:c3:f7:91:18:da:9b: 98:53:b1:e6:3d:33:62:8b:92:ba:f6:47:c4:4c:d8:d4:d4:6d: 02:df:b7:97:91:69:05:f4:39:5a:f3:6e:9c:63:6a:e6:b7:0e: 34:dc:a3:62:24:a2:61:60:30:44:e0:6a:83:4a:e4:bc:7d:52: 5b:35:5b:21:d1:5d:32:f2:e2:86:82:78:3d:da:12:00:08:1a: 73:31:fa:32 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt3xrezxa2IB1vfYTe+ub2jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMzNzJmNWQxMThhYmQxMjkxYWUyNDhlNmM2OWQ2NGE5OWE5 YWVmMDYwHhcNMjYwMTAxMDQxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNzc4ZjQ2MTczNWZhZDBkNmVhMGJmNjlkOWY5YzdjMDNhMzg1NjhhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArXLanQaoU3pLHR7WYzQ9z9M7X+2g /phIeUtS2JHsVsEe0SyaHqaNbBx9gSPTLaHl9LV+FCS1oLl8/VdDPRP8wg3PFNnP j/X1479z1tY7o8ug8q90UZflkatbUS6YWu0x39CFVld9U6vE/B7t5lhOsqumYem5 CcGGFU4eYoA92trTsXB2fsdHUpn5nK0Wzu7WXHapmaYeyN8YQ9xHAdXX08SVPKKr bfAGvjKQ7JLxXkTLXH6IBpIurEFP5j+Jfmf/9RO/JLXr+jX1MVanGwCBxQU+4RpL RSInKBEtYrtC3D2Yu05epKdalJPns43STGrzpGpkKjTklHkoSJUD7J7muQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFMd49GFzX60NbqC/adn5x8A6OFaKMB8GA1UdIwQY MBaAFDNy9dEYq9EpGuJI5sadZKmamu8GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTTNMMTBSaXIwU2thNGtqbXhwMWtxWnFhN3dZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9hMmRkYWQtN2Q0ZC00MWNiLWE2OTMt ZDJkOTI0MWVjNWRiLzEveDNqMFlYTmZyUTF1b0w5cDJmbkh3RG80Vm9vLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS9hMmRkYWQtN2Q0ZC00MWNiLWE2OTMtZDJkOTI0MWVjNWRi LzEvTTNMMTBSaXIwU2thNGtqbXhwMWtxWnFhN3dZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBw7JmMA8E AgACMAkDBwAgAQZ4AWQwDQYJKoZIhvcNAQELBQADggEBAJEH5Bvb1b8iYbd6YqUp ecrn79W6XGfTgaD92EF5hpX5OUjXqApUKLR5RJ/fHlI/eerjvYNBgNTex58eGFDE iUwQ24FGmhH5Mbn8M4G4Ox3r+FECICG4Dce+T6HnUCzkRQ7/9/xmHfgCyXhVvPja 4FqpGv0A0pdWUeQC2diRP9yc3h+Y2UoJ7WXOWmI/12U2Ote3YueiCBsoBD0UWZw1 3ZksczXTTZwNf044TBiVGsP3kRjam5hTseY9M2KLkrr2R8RM2NTUbQLft5eRaQX0 OVrzbpxjaua3DjTco2IkomFgMETgaoNK5Lx9Uls1WyHRXTLy4oaCeD3aEgAIGnMx +jI= -----END CERTIFICATE-----Generated at Mon Jan 26 02:01:39 2026 by rpki-client