This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/3NoAtRyFyT3mqxuhl8rikGi6CPw.roa File: 3NoAtRyFyT3mqxuhl8rikGi6CPw.roa (raw, json) Hash identifier: UkQRBoygiIXUDqnF/nZfu6Z2PAxT1DRUs4/Fx1lQwIc= Subject key identifier: DC:DA:00:B5:1C:85:C9:3D:E6:AB:1B:A1:97:CA:E2:90:68:BA:08:FC Certificate issuer: /CN=d434f1686102876c6216bcea28a5e502ec0d7b6b Certificate serial: 019B7C11588D976FA52DDCB57EC5ECEC77BF Authority key identifier: D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/3NoAtRyFyT3mqxuhl8rikGi6CPw.roa Signing time: Fri 02 Jan 2026 00:17:50 +0000 ROA not before: Fri 02 Jan 2026 00:17:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60675 IP address blocks: 62.174.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.mft rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:58:8d:97:6f:a5:2d:dc:b5:7e:c5:ec:ec:77:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d434f1686102876c6216bcea28a5e502ec0d7b6b Validity Not Before: Jan 2 00:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dcda00b51c85c93de6ab1ba197cae29068ba08fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:39:fc:f9:b8:70:d0:2c:ff:38:76:0e:21:20: c2:27:7b:b4:89:5e:3e:a9:64:be:70:33:7c:cd:68: 4a:36:04:8e:80:25:12:5c:29:ac:33:28:ff:11:1f: 69:9d:91:1e:e8:f2:69:69:97:c9:6d:67:4c:c9:d1: 1b:55:35:b3:41:94:5a:5f:27:8a:8c:e8:90:ee:9c: 55:b5:01:08:9b:43:51:a7:db:c1:bd:30:1b:6c:d0: 00:1b:d9:e2:b7:eb:01:27:78:23:0b:cd:2d:4b:ee: 6c:17:2e:b9:5d:c3:20:52:cc:d0:03:5a:ba:b5:91: bd:b6:63:e2:45:0f:b0:e4:15:7b:9b:b5:dc:ee:0d: d0:cb:1c:09:dd:fa:16:28:2d:fa:eb:a5:6a:4c:b3: 10:c5:13:46:da:0f:a5:93:05:3e:ea:52:ec:a2:7a: 0a:1f:22:88:10:25:7c:35:3b:a9:e7:08:d8:a1:43: 9e:97:8e:93:8a:33:1b:14:aa:bd:a5:92:9b:2c:62: 91:64:df:84:4f:19:3a:88:a4:f8:ea:71:3f:1a:8f: 5f:44:38:17:25:ec:69:1c:94:27:33:46:c8:ea:31: 1f:5b:85:a8:80:14:db:e7:1f:98:6b:85:b5:a0:fa: 44:fb:68:72:a8:73:6c:91:65:96:80:97:48:0f:9f: 2e:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:DA:00:B5:1C:85:C9:3D:E6:AB:1B:A1:97:CA:E2:90:68:BA:08:FC X509v3 Authority Key Identifier: keyid:D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/3NoAtRyFyT3mqxuhl8rikGi6CPw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.174.71.0/24 Signature Algorithm: sha256WithRSAEncryption 45:ab:c8:79:75:77:eb:cb:32:cb:45:fa:99:9b:77:72:65:b8: 02:a4:a3:ad:00:05:ba:fd:fb:45:e7:52:ce:7d:16:90:e0:71: 06:f6:f4:24:96:ec:69:c0:0d:43:33:55:0d:57:32:76:20:dc: 64:bf:05:f6:8e:92:37:0d:be:b6:d4:38:52:cc:b2:c5:a5:25: 62:b5:f1:65:67:55:6b:f5:71:6c:eb:8b:5d:17:f6:7c:94:bf: b0:14:5a:69:92:50:28:2d:03:34:39:6f:98:8f:2b:39:a5:1f: 9c:5c:63:5c:3c:f4:a0:a3:3b:02:93:ea:75:e6:f8:43:1d:1d: 46:ac:50:7c:6e:69:3e:f0:f3:2b:e8:73:f5:c0:62:65:05:54: 5d:3d:13:94:87:14:25:8e:84:a8:18:7b:b6:ad:26:1d:d0:26: ea:eb:b4:f8:0c:b8:c0:4d:5e:a7:1d:b6:39:23:dd:a8:b6:af: 74:d5:da:6e:ec:04:76:69:d5:95:c3:27:e5:9d:44:09:a8:de: ce:6c:da:fa:46:fc:6b:83:83:e5:fa:a3:58:db:1a:20:0c:70: 2c:fa:9c:04:85:e8:79:24:8b:60:75:93:76:63:2b:76:7b:d3: 5c:af:b7:6b:dd:21:a3:1f:eb:ee:e4:1e:4d:21:47:e5:42:fa: f4:96:cc:98 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EViNl2+lLdy1fsXs7He/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0MzRmMTY4NjEwMjg3NmM2MjE2YmNlYTI4YTVlNTAyZWMw ZDdiNmIwHhcNMjYwMTAyMDAxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkY2RhMDBiNTFjODVjOTNkZTZhYjFiYTE5N2NhZTI5MDY4YmEwOGZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtTn8+bhw0Cz/OHYOISDCJ3u0iV4+ qWS+cDN8zWhKNgSOgCUSXCmsMyj/ER9pnZEe6PJpaZfJbWdMydEbVTWzQZRaXyeK jOiQ7pxVtQEIm0NRp9vBvTAbbNAAG9nit+sBJ3gjC80tS+5sFy65XcMgUszQA1q6 tZG9tmPiRQ+w5BV7m7Xc7g3QyxwJ3foWKC3666VqTLMQxRNG2g+lkwU+6lLsonoK HyKIECV8NTup5wjYoUOel46TijMbFKq9pZKbLGKRZN+ETxk6iKT46nE/Go9fRDgX JexpHJQnM0bI6jEfW4WogBTb5x+Ya4W1oPpE+2hyqHNskWWWgJdID58u/QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNzaALUchck95qsboZfK4pBougj8MB8GA1UdIwQY MBaAFNQ08WhhAodsYha86iil5QLsDXtrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMURUeGFHRUNoMnhpRnJ6cUtLWGxBdXdOZTJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC83MjZiYjQtNWQ4Ny00MDJkLTkxY2Ut NTcxMmQ5NWFlNjM4LzEvM05vQXRSeUZ5VDNtcXh1aGw4cmlrR2k2Q1B3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC83MjZiYjQtNWQ4Ny00MDJkLTkxY2UtNTcxMmQ5NWFlNjM4 LzEvMURUeGFHRUNoMnhpRnJ6cUtLWGxBdXdOZTJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPq5HMA0G CSqGSIb3DQEBCwUAA4IBAQBFq8h5dXfryzLLRfqZm3dyZbgCpKOtAAW6/ftF51LO fRaQ4HEG9vQkluxpwA1DM1UNVzJ2INxkvwX2jpI3Db621DhSzLLFpSVitfFlZ1Vr 9XFs64tdF/Z8lL+wFFppklAoLQM0OW+Yjys5pR+cXGNcPPSgozsCk+p15vhDHR1G rFB8bmk+8PMr6HP1wGJlBVRdPROUhxQljoSoGHu2rSYd0Cbq67T4DLjATV6nHbY5 I92otq901dpu7AR2adWVwyflnUQJqN7ObNr6Rvxrg4Pl+qNY2xogDHAs+pwEheh5 JItgdZN2Yyt2e9Ncr7dr3SGjH+vu5B5NIUflQvr0lsyY -----END CERTIFICATE-----Generated at Sun Jan 25 20:47:47 2026 by rpki-client