This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/3wThh6CKhn_ncQErP2xOaMw46vM.roa File: 3wThh6CKhn_ncQErP2xOaMw46vM.roa (raw, json) Hash identifier: U/vQzD8zfdM0QCfGbqv0YkKIdI6EBacCC74VpNhb6LI= Subject key identifier: DF:04:E1:87:A0:8A:86:7F:E7:71:01:2B:3F:6C:4E:68:CC:38:EA:F3 Certificate issuer: /CN=e58024b729d99f05133ec6d14390c73eb36db99e Certificate serial: 019B7EA6A771C426D9692F57DB24697EE0F2 Authority key identifier: E5:80:24:B7:29:D9:9F:05:13:3E:C6:D1:43:90:C7:3E:B3:6D:B9:9E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5YAktynZnwUTPsbRQ5DHPrNtuZ4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/3wThh6CKhn_ncQErP2xOaMw46vM.roa Signing time: Fri 02 Jan 2026 12:20:09 +0000 ROA not before: Fri 02 Jan 2026 12:20:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57043 IP address blocks: 80.91.65.0/24 maxlen: 24 80.91.88.0/24 maxlen: 24 81.2.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/5YAktynZnwUTPsbRQ5DHPrNtuZ4.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/5YAktynZnwUTPsbRQ5DHPrNtuZ4.mft rsync://rpki.ripe.net/repository/DEFAULT/5YAktynZnwUTPsbRQ5DHPrNtuZ4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:a7:71:c4:26:d9:69:2f:57:db:24:69:7e:e0:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e58024b729d99f05133ec6d14390c73eb36db99e Validity Not Before: Jan 2 12:20:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=df04e187a08a867fe771012b3f6c4e68cc38eaf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:1b:33:0e:9f:0f:d4:56:a6:3a:16:80:b4:26: af:60:14:16:c0:37:50:7e:dc:45:d7:62:b5:98:8f: 42:87:c3:3c:0f:e1:15:59:6c:10:bd:7b:dc:e4:e1: 5a:af:e2:e1:ea:fe:fc:49:53:70:1a:47:3d:13:e2: 08:85:8c:5b:b9:b0:d9:7d:59:74:5a:65:ab:f6:0a: 5c:f3:3e:bf:a7:97:be:41:40:7c:c0:8b:4a:93:a3: 16:6b:d3:ce:9e:60:f6:3a:6c:11:2e:77:8f:b8:a4: 0f:58:03:81:2a:04:43:75:b4:b1:d3:2a:af:8e:43: 80:73:71:d5:7b:07:68:bc:bc:f0:2a:0c:0f:66:76: c5:16:61:ab:16:46:ac:de:36:94:e1:b4:5b:2f:4b: b3:ad:da:9c:80:dd:8b:71:d1:3f:47:47:11:86:17: 97:1a:8f:7d:b0:e4:c7:61:31:06:d6:c2:ee:62:db: a2:a0:d1:87:76:53:29:f0:80:df:bf:bb:ba:72:cc: 65:62:e6:c2:ab:24:e5:a8:0d:41:bd:55:ed:41:c7: fe:aa:2a:42:45:49:2d:1a:66:e8:8e:2b:33:df:e9: 11:20:92:9b:9b:2d:0e:0d:5c:93:89:09:6f:92:8e: 26:88:6e:45:8f:a5:84:16:9d:8d:a8:87:44:dc:2d: a7:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:04:E1:87:A0:8A:86:7F:E7:71:01:2B:3F:6C:4E:68:CC:38:EA:F3 X509v3 Authority Key Identifier: keyid:E5:80:24:B7:29:D9:9F:05:13:3E:C6:D1:43:90:C7:3E:B3:6D:B9:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5YAktynZnwUTPsbRQ5DHPrNtuZ4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/3wThh6CKhn_ncQErP2xOaMw46vM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/5YAktynZnwUTPsbRQ5DHPrNtuZ4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.91.65.0/24 80.91.88.0/24 81.2.131.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:79:18:39:c1:41:0b:20:c5:d1:13:a4:58:e2:a5:01:74:c3: 9b:86:9e:61:12:7a:18:bc:b0:ac:cb:bb:9e:61:1c:d8:3e:21: 1d:30:43:c6:0c:1f:a5:3d:25:34:27:d7:04:0e:30:9f:73:59: a0:91:16:9d:32:9b:ba:4c:4f:5b:62:95:d9:3e:c2:3f:1f:be: a2:8f:01:03:e4:38:69:13:56:25:ce:4c:3b:71:ae:e0:d9:b9: 42:d1:fd:44:42:97:1e:e3:42:f5:5e:be:b3:44:4b:c8:53:0c: 0e:74:4e:f5:cd:cf:f1:8c:05:aa:fb:dc:b4:44:b4:84:1c:7d: 73:cb:e8:04:c5:92:32:83:74:95:0f:30:6e:47:75:c2:cf:61: 41:5f:af:16:c2:84:73:04:fc:3b:d0:33:79:56:d9:11:85:72: a6:cc:6c:f5:0e:3c:a8:83:41:3e:d5:d8:35:48:b6:59:72:db: 66:51:c2:6e:a9:91:e6:f8:d5:2a:5c:0e:56:b9:0a:6a:21:f2: 84:a6:a8:68:0b:fa:2d:43:32:91:a2:0b:76:a3:3d:b8:b6:f6: bd:1c:85:4a:85:f4:e2:f3:a3:a2:d2:22:4c:9d:fa:2d:78:84: 4f:6e:78:6c:ec:17:e5:91:e7:ac:c5:d2:06:5d:22:e1:e9:7a: fd:be:1c:ab -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt+pqdxxCbZaS9X2yRpfuDyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1ODAyNGI3MjlkOTlmMDUxMzNlYzZkMTQzOTBjNzNlYjM2 ZGI5OWUwHhcNMjYwMTAyMTIyMDA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZjA0ZTE4N2EwOGE4NjdmZTc3MTAxMmIzZjZjNGU2OGNjMzhlYWYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzBszDp8P1FamOhaAtCavYBQWwDdQ ftxF12K1mI9Ch8M8D+EVWWwQvXvc5OFar+Lh6v78SVNwGkc9E+IIhYxbubDZfVl0 WmWr9gpc8z6/p5e+QUB8wItKk6MWa9POnmD2OmwRLnePuKQPWAOBKgRDdbSx0yqv jkOAc3HVewdovLzwKgwPZnbFFmGrFkas3jaU4bRbL0uzrdqcgN2LcdE/R0cRhheX Go99sOTHYTEG1sLuYtuioNGHdlMp8IDfv7u6csxlYubCqyTlqA1BvVXtQcf+qipC RUktGmbojisz3+kRIJKbmy0ODVyTiQlvko4miG5Fj6WEFp2NqIdE3C2n1QIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFN8E4YegioZ/53EBKz9sTmjMOOrzMB8GA1UdIwQY MBaAFOWAJLcp2Z8FEz7G0UOQxz6zbbmeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNVlBa3R5blpud1VUUHNiUlE1REhQck50dVo0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC9kNTYyOGEtZDliMS00ZGE5LWE3NDQt OTU2ZjZiNWM2MTcwLzEvM3dUaGg2Q0tobl9uY1FFclAyeE9hTXc0NnZNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC9kNTYyOGEtZDliMS00ZGE5LWE3NDQtOTU2ZjZiNWM2MTcw LzEvNVlBa3R5blpud1VUUHNiUlE1REhQck50dVo0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAUFtBAwQA UFtYAwQAUQKDMA0GCSqGSIb3DQEBCwUAA4IBAQAueRg5wUELIMXRE6RY4qUBdMOb hp5hEnoYvLCsy7ueYRzYPiEdMEPGDB+lPSU0J9cEDjCfc1mgkRadMpu6TE9bYpXZ PsI/H76ijwED5DhpE1Ylzkw7ca7g2blC0f1EQpce40L1Xr6zREvIUwwOdE71zc/x jAWq+9y0RLSEHH1zy+gExZIyg3SVDzBuR3XCz2FBX68WwoRzBPw70DN5VtkRhXKm zGz1Djyog0E+1dg1SLZZcttmUcJuqZHm+NUqXA5WuQpqIfKEpqhoC/otQzKRogt2 oz24tva9HIVKhfTi86Oi0iJMnfoteIRPbnhs7BflkeesxdIGXSLh6Xr9vhyr -----END CERTIFICATE-----Generated at Sun Jan 25 16:15:18 2026 by rpki-client