This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/fa77d3-cedb-459d-95cf-dc7e126ca234/1/3erXQOAGECj5Y6vmnhGhIcd5-n0.roa File: 3erXQOAGECj5Y6vmnhGhIcd5-n0.roa (raw, json) Hash identifier: 2WH+ODOD46XHxqKVl9QqMpQ4varGLr3ciy4ehJamGPA= Subject key identifier: DD:EA:D7:40:E0:06:10:28:F9:63:AB:E6:9E:11:A1:21:C7:79:FA:7D Certificate issuer: /CN=d447813ce52a823ea1efc9a0f4933c5d3353ee2b Certificate serial: 019B78348C67226A76562F56E677CDD2164F Authority key identifier: D4:47:81:3C:E5:2A:82:3E:A1:EF:C9:A0:F4:93:3C:5D:33:53:EE:2B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1EeBPOUqgj6h78mg9JM8XTNT7is.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/fa77d3-cedb-459d-95cf-dc7e126ca234/1/3erXQOAGECj5Y6vmnhGhIcd5-n0.roa Signing time: Thu 01 Jan 2026 06:17:48 +0000 ROA not before: Thu 01 Jan 2026 06:17:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200207 IP address blocks: 2a12:66c7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/fa77d3-cedb-459d-95cf-dc7e126ca234/1/1EeBPOUqgj6h78mg9JM8XTNT7is.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/fa77d3-cedb-459d-95cf-dc7e126ca234/1/1EeBPOUqgj6h78mg9JM8XTNT7is.mft rsync://rpki.ripe.net/repository/DEFAULT/1EeBPOUqgj6h78mg9JM8XTNT7is.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:8c:67:22:6a:76:56:2f:56:e6:77:cd:d2:16:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d447813ce52a823ea1efc9a0f4933c5d3353ee2b Validity Not Before: Jan 1 06:17:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ddead740e0061028f963abe69e11a121c779fa7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f9:f6:ff:c8:3a:b9:44:6b:64:b1:78:33:d9: c0:a2:fe:25:31:9d:74:fd:e0:67:e1:52:a7:14:ee: b3:e6:ca:e2:cf:ad:db:27:de:15:36:78:07:6e:38: ce:bc:8f:b4:b7:0e:dd:77:3b:8b:14:0d:17:43:b8: b8:75:c9:af:d6:b6:b2:dd:31:bf:47:08:9d:6f:48: bf:3c:9d:bf:4c:c0:1b:b9:67:42:6e:a5:51:14:49: 54:83:2a:9e:34:97:fa:37:5c:86:dd:b2:3a:e4:cd: 02:c2:09:ba:77:58:cb:ce:b1:26:03:d3:59:06:3c: b5:6a:18:75:a8:88:74:53:a0:19:6c:20:17:02:30: ec:49:6f:31:91:be:4c:af:04:67:c5:78:a6:37:2e: 64:cf:16:9d:64:b7:f1:5f:c6:8e:dd:ce:68:c1:8c: 00:cb:8b:98:da:5b:45:79:cc:39:a7:0f:82:d5:59: 85:eb:f3:f4:db:d3:a2:a4:60:47:78:27:4d:e3:73: fc:07:c9:1c:f6:96:4c:f8:70:06:e0:c6:34:32:f5: 7c:75:5c:03:67:7e:81:52:d9:16:ec:38:3c:7b:4d: 58:79:9f:c2:43:78:9d:6b:ad:dc:f3:8a:8e:89:02: eb:e3:33:79:64:53:c9:5c:9d:1a:5e:0b:20:fb:03: d0:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:EA:D7:40:E0:06:10:28:F9:63:AB:E6:9E:11:A1:21:C7:79:FA:7D X509v3 Authority Key Identifier: keyid:D4:47:81:3C:E5:2A:82:3E:A1:EF:C9:A0:F4:93:3C:5D:33:53:EE:2B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1EeBPOUqgj6h78mg9JM8XTNT7is.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/fa77d3-cedb-459d-95cf-dc7e126ca234/1/3erXQOAGECj5Y6vmnhGhIcd5-n0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/fa77d3-cedb-459d-95cf-dc7e126ca234/1/1EeBPOUqgj6h78mg9JM8XTNT7is.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:66c7::/48 Signature Algorithm: sha256WithRSAEncryption 91:e9:7c:2c:4d:2e:5c:a8:3e:6b:df:f6:08:4b:5f:2b:7d:69: 0f:12:49:3e:18:40:a6:67:f6:34:20:71:7d:13:2a:c6:b5:fb: 15:9c:cd:8b:79:ef:30:29:86:f3:43:af:0d:2a:ad:e9:c2:3d: f7:be:0b:f6:be:50:8a:a1:30:bc:56:cc:c8:f3:ad:06:16:3b: 39:18:53:66:cc:01:62:67:4d:4f:6b:8b:32:a5:2f:f7:e8:02: 30:ac:7e:0f:46:3c:bd:37:a8:db:cd:80:3a:cc:23:0f:19:53: 22:b3:19:5e:aa:7d:2c:2b:98:33:c8:8c:90:75:ce:3b:c2:7f: b9:e6:39:4a:67:04:57:93:00:8f:ab:75:34:65:29:bd:0c:db: a9:9f:4b:b2:38:fb:03:49:0c:06:89:cb:66:78:d8:7a:1c:20: 74:0d:5d:a8:f6:da:c1:75:03:61:18:09:ab:1b:04:d2:0a:14: 2d:c5:43:08:9e:f8:bd:0e:20:98:03:b1:7a:b7:28:7f:ae:87: e8:8e:b9:3f:e2:c4:6e:21:8f:ab:07:6c:59:3e:c4:ae:45:f7: af:4b:ce:3c:cc:5e:09:9b:ad:b8:33:de:ac:8a:a2:a0:9d:a4: f2:80:c8:69:84:c1:5a:b7:3a:0e:29:44:4f:d3:65:7b:10:c0: 31:85:9e:21 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt4NIxnImp2Vi9W5nfN0hZPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0NDc4MTNjZTUyYTgyM2VhMWVmYzlhMGY0OTMzYzVkMzM1 M2VlMmIwHhcNMjYwMTAxMDYxNzQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZGVhZDc0MGUwMDYxMDI4Zjk2M2FiZTY5ZTExYTEyMWM3NzlmYTdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyvn2/8g6uURrZLF4M9nAov4lMZ10 /eBn4VKnFO6z5sriz63bJ94VNngHbjjOvI+0tw7ddzuLFA0XQ7i4dcmv1ray3TG/ Rwidb0i/PJ2/TMAbuWdCbqVRFElUgyqeNJf6N1yG3bI65M0Cwgm6d1jLzrEmA9NZ Bjy1ahh1qIh0U6AZbCAXAjDsSW8xkb5MrwRnxXimNy5kzxadZLfxX8aO3c5owYwA y4uY2ltFecw5pw+C1VmF6/P029OipGBHeCdN43P8B8kc9pZM+HAG4MY0MvV8dVwD Z36BUtkW7Dg8e01YeZ/CQ3ida63c84qOiQLr4zN5ZFPJXJ0aXgsg+wPQNQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFN3q10DgBhAo+WOr5p4RoSHHefp9MB8GA1UdIwQY MBaAFNRHgTzlKoI+oe/JoPSTPF0zU+4rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUVlQlBPVXFnajZoNzhtZzlKTThYVE5UN2lzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9mYTc3ZDMtY2VkYi00NTlkLTk1Y2Yt ZGM3ZTEyNmNhMjM0LzEvM2VyWFFPQUdFQ2o1WTZ2bW5oR2hJY2Q1LW4wLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy9mYTc3ZDMtY2VkYi00NTlkLTk1Y2YtZGM3ZTEyNmNhMjM0 LzEvMUVlQlBPVXFnajZoNzhtZzlKTThYVE5UN2lzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhJmxwAA MA0GCSqGSIb3DQEBCwUAA4IBAQCR6XwsTS5cqD5r3/YIS18rfWkPEkk+GECmZ/Y0 IHF9EyrGtfsVnM2Lee8wKYbzQ68NKq3pwj33vgv2vlCKoTC8VszI860GFjs5GFNm zAFiZ01Pa4sypS/36AIwrH4PRjy9N6jbzYA6zCMPGVMisxleqn0sK5gzyIyQdc47 wn+55jlKZwRXkwCPq3U0ZSm9DNupn0uyOPsDSQwGictmeNh6HCB0DV2o9trBdQNh GAmrGwTSChQtxUMInvi9DiCYA7F6tyh/rofojrk/4sRuIY+rB2xZPsSuRfevS848 zF4Jm624M96siqKgnaTygMhphMFatzoOKURP02V7EMAxhZ4h -----END CERTIFICATE-----Generated at Mon Jan 26 07:07:22 2026 by rpki-client