This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/3bor1lJpsbxwoxpTVw7SPphj0KA.roa File: 3bor1lJpsbxwoxpTVw7SPphj0KA.roa (raw, json) Hash identifier: MKCpN8MSRgBkERkhEGqpPaY9qiTFWm3a9NewCeOTHfw= Subject key identifier: DD:BA:2B:D6:52:69:B1:BC:70:A3:1A:53:57:0E:D2:3E:98:63:D0:A0 Certificate issuer: /CN=c755702467770ed69b367b77bbe640bc6db4153e Certificate serial: 019B797E5561F754850BC0FDB9904074CEDE Authority key identifier: C7:55:70:24:67:77:0E:D6:9B:36:7B:77:BB:E6:40:BC:6D:B4:15:3E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x1VwJGd3DtabNnt3u-ZAvG20FT4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/3bor1lJpsbxwoxpTVw7SPphj0KA.roa Signing time: Thu 01 Jan 2026 12:18:01 +0000 ROA not before: Thu 01 Jan 2026 12:18:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 40306 IP address blocks: 213.209.176.0/24 maxlen: 24 213.209.177.0/24 maxlen: 24 213.209.178.0/24 maxlen: 24 213.209.180.0/24 maxlen: 24 213.209.181.0/24 maxlen: 24 213.209.181.128/26 maxlen: 26 213.209.182.0/24 maxlen: 24 213.209.183.0/24 maxlen: 24 213.209.188.0/24 maxlen: 24 213.209.189.0/24 maxlen: 24 213.209.190.0/24 maxlen: 24 213.209.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/x1VwJGd3DtabNnt3u-ZAvG20FT4.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/x1VwJGd3DtabNnt3u-ZAvG20FT4.mft rsync://rpki.ripe.net/repository/DEFAULT/x1VwJGd3DtabNnt3u-ZAvG20FT4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:55:61:f7:54:85:0b:c0:fd:b9:90:40:74:ce:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c755702467770ed69b367b77bbe640bc6db4153e Validity Not Before: Jan 1 12:18:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ddba2bd65269b1bc70a31a53570ed23e9863d0a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b8:af:8c:98:80:b6:4a:e5:a0:26:e0:a3:e5: d0:80:29:50:4d:70:89:a9:a1:5f:80:46:e0:d9:53: 64:70:ef:55:b8:46:ff:0e:e0:e4:75:5d:71:9a:39: 49:f2:ce:20:06:cc:09:32:6c:9a:6a:8a:90:76:10: 91:16:18:a2:7f:ed:bd:c4:e9:91:e2:49:3c:62:0d: f7:c6:71:65:93:0e:4f:26:b2:04:c1:f5:c2:7c:0f: c9:f0:79:cf:90:eb:c9:01:91:f3:0c:d0:fa:a1:56: 2b:26:b4:71:2d:b5:8e:8b:f6:55:b9:23:01:23:83: 87:07:29:1f:bd:70:10:18:b4:5b:7b:d9:d4:70:74: 2b:a3:a6:f8:df:56:88:5f:eb:01:98:40:01:59:52: cc:2e:6e:59:ea:d8:d6:e1:94:dd:22:44:c2:2e:70: 87:68:66:fa:82:83:ea:d8:b7:b8:34:2f:ef:a0:3b: 51:0b:a7:be:90:8b:f4:eb:e6:e5:51:70:4e:f5:d8: 77:b1:2b:97:79:f3:d0:4a:50:f2:f4:aa:90:91:10: a3:0b:cb:24:62:3c:d6:99:41:bf:73:38:47:1a:ef: 87:90:71:f7:9f:5d:9d:57:60:41:97:a7:03:b0:3d: 3f:8c:a3:d8:54:3e:7c:bf:2f:10:9b:1f:87:3f:a9: fc:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:BA:2B:D6:52:69:B1:BC:70:A3:1A:53:57:0E:D2:3E:98:63:D0:A0 X509v3 Authority Key Identifier: keyid:C7:55:70:24:67:77:0E:D6:9B:36:7B:77:BB:E6:40:BC:6D:B4:15:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x1VwJGd3DtabNnt3u-ZAvG20FT4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/3bor1lJpsbxwoxpTVw7SPphj0KA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/x1VwJGd3DtabNnt3u-ZAvG20FT4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.209.176.0-213.209.178.255 213.209.180.0/22 213.209.188.0/22 Signature Algorithm: sha256WithRSAEncryption 9f:eb:6d:0b:e8:a5:31:78:9c:46:e0:08:d1:0f:3b:7f:89:65: 18:a8:0c:57:d8:0b:4d:e9:dd:f9:9f:86:3c:1a:16:f2:9b:fa: e8:d4:7a:0f:89:59:62:da:c2:13:ee:4c:72:87:05:b5:c9:98: 86:06:e0:da:82:fd:35:f7:53:18:a4:c8:1d:00:9f:9b:11:77: 1e:ed:bd:b1:77:4f:40:28:f0:d9:36:3e:cf:18:0f:85:4f:f9: 4f:8c:5d:c5:1f:94:36:3a:61:26:4f:37:84:6d:e8:04:6d:d0: 55:ea:82:59:58:cf:3e:09:76:1c:37:f0:51:8d:72:7f:45:da: 96:e7:cd:ae:78:db:1a:47:0d:19:26:e8:47:3c:5e:01:0a:97: f2:e0:8d:c0:b0:ba:e8:4e:e3:c4:dd:81:a9:cc:3e:b9:e0:d0: c9:5e:66:86:4b:39:5d:00:04:1d:f8:5e:37:f0:b5:12:40:25: d9:d7:cb:28:97:b0:c9:42:54:b1:d0:ff:06:5a:96:42:5b:ca: 3c:27:ca:4d:bb:b5:0f:52:2b:f9:62:6d:ab:d3:51:67:0d:90: a3:97:3b:fd:7e:0a:21:1c:ef:98:6f:4d:dc:e7:49:4c:36:8c: 2c:6a:56:1f:ef:4e:92:8f:12:38:02:ff:15:f1:97:40:5c:e1: bb:a2:8a:ce -----BEGIN CERTIFICATE----- MIIFETCCA/mgAwIBAgISAZt5flVh91SFC8D9uZBAdM7eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM3NTU3MDI0Njc3NzBlZDY5YjM2N2I3N2JiZTY0MGJjNmRi NDE1M2UwHhcNMjYwMTAxMTIxODAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZGJhMmJkNjUyNjliMWJjNzBhMzFhNTM1NzBlZDIzZTk4NjNkMGEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvbivjJiAtkrloCbgo+XQgClQTXCJ qaFfgEbg2VNkcO9VuEb/DuDkdV1xmjlJ8s4gBswJMmyaaoqQdhCRFhiif+29xOmR 4kk8Yg33xnFlkw5PJrIEwfXCfA/J8HnPkOvJAZHzDND6oVYrJrRxLbWOi/ZVuSMB I4OHBykfvXAQGLRbe9nUcHQro6b431aIX+sBmEABWVLMLm5Z6tjW4ZTdIkTCLnCH aGb6goPq2Le4NC/voDtRC6e+kIv06+blUXBO9dh3sSuXefPQSlDy9KqQkRCjC8sk YjzWmUG/czhHGu+HkHH3n12dV2BBl6cDsD0/jKPYVD58vy8Qmx+HP6n85QIDAQAB o4ICHTCCAhkwHQYDVR0OBBYEFN26K9ZSabG8cKMaU1cO0j6YY9CgMB8GA1UdIwQY MBaAFMdVcCRndw7WmzZ7d7vmQLxttBU+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveDFWd0pHZDNEdGFiTm50M3UtWkF2RzIwRlQ0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy8yNDNmOTEtODc0Ny00OTgxLTljYmYt MWQzNzM0OTk5MjRlLzEvM2JvcjFsSnBzYnh3b3hwVFZ3N1NQcGhqMEtBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy8yNDNmOTEtODc0Ny00OTgxLTljYmYtMWQzNzM0OTk5MjRl LzEveDFWd0pHZDNEdGFiTm50M3UtWkF2RzIwRlQ0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaMAwDBATV0bAD BADV0bIDBALV0bQDBALV0bwwDQYJKoZIhvcNAQELBQADggEBAJ/rbQvopTF4nEbg CNEPO3+JZRioDFfYC03p3fmfhjwaFvKb+ujUeg+JWWLawhPuTHKHBbXJmIYG4NqC /TX3UxikyB0An5sRdx7tvbF3T0Ao8Nk2Ps8YD4VP+U+MXcUflDY6YSZPN4Rt6ARt 0FXqgllYzz4Jdhw38FGNcn9F2pbnza542xpHDRkm6Ec8XgEKl/LgjcCwuuhO48Td ganMPrng0MleZoZLOV0ABB34XjfwtRJAJdnXyyiXsMlCVLHQ/wZalkJbyjwnyk27 tQ9SK/libavTUWcNkKOXO/1+CiEc75hvTdznSUw2jCxqVh/vTpKPEjgC/xXxl0Bc 4buiis4= -----END CERTIFICATE-----Generated at Sun Jan 25 10:32:09 2026 by rpki-client