This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/d99947-2298-422f-9da0-fe0d28b68cd5/1/A3bEVCjxQvPLMxQoQRFrfr3LYCE.roa File: A3bEVCjxQvPLMxQoQRFrfr3LYCE.roa (raw, json) Hash identifier: AV5Q/UsHYUl+wYyKfubmLjYkNKAlrWiQN+uv4NMNSSI= Subject key identifier: 03:76:C4:54:28:F1:42:F3:CB:33:14:28:41:11:6B:7E:BD:CB:60:21 Certificate issuer: /CN=06e4bbdab896e66113f351b4d9c82df50e66a712 Certificate serial: 019B7F134BA6605E8CB1CF662DCB35C2F86B Authority key identifier: 06:E4:BB:DA:B8:96:E6:61:13:F3:51:B4:D9:C8:2D:F5:0E:66:A7:12 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BuS72riW5mET81G02cgt9Q5mpxI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/d99947-2298-422f-9da0-fe0d28b68cd5/1/A3bEVCjxQvPLMxQoQRFrfr3LYCE.roa Signing time: Fri 02 Jan 2026 14:18:49 +0000 ROA not before: Fri 02 Jan 2026 14:18:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15497 IP address blocks: 31.28.160.0/19 maxlen: 24 31.28.160.0/22 maxlen: 22 31.28.164.0/22 maxlen: 22 31.28.168.0/22 maxlen: 24 31.28.169.0/24 maxlen: 24 31.28.172.0/22 maxlen: 22 31.28.176.0/22 maxlen: 22 31.28.180.0/22 maxlen: 22 31.28.184.0/22 maxlen: 22 31.28.184.0/24 maxlen: 24 31.28.188.0/22 maxlen: 22 31.28.188.0/24 maxlen: 24 31.28.190.0/24 maxlen: 24 31.28.191.0/24 maxlen: 24 62.149.0.0/19 maxlen: 24 62.149.2.0/24 maxlen: 24 62.149.10.0/24 maxlen: 24 62.149.15.0/24 maxlen: 24 2a03:6300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/d99947-2298-422f-9da0-fe0d28b68cd5/1/BuS72riW5mET81G02cgt9Q5mpxI.crl rsync://rpki.ripe.net/repository/DEFAULT/67/d99947-2298-422f-9da0-fe0d28b68cd5/1/BuS72riW5mET81G02cgt9Q5mpxI.mft rsync://rpki.ripe.net/repository/DEFAULT/BuS72riW5mET81G02cgt9Q5mpxI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:4b:a6:60:5e:8c:b1:cf:66:2d:cb:35:c2:f8:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06e4bbdab896e66113f351b4d9c82df50e66a712 Validity Not Before: Jan 2 14:18:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0376c45428f142f3cb33142841116b7ebdcb6021 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d0:cc:cd:49:ce:a2:dc:d1:b5:31:2e:21:50: bb:97:b3:30:75:ec:80:6f:98:e3:a0:7e:e1:6b:6f: 46:03:21:35:fe:a9:0d:0b:8b:c4:05:39:92:b3:d4: 3e:79:46:86:e2:d4:84:85:b6:0c:4b:3d:fc:b2:d6: e3:92:4d:9e:c9:2c:7d:6d:02:f3:e1:4b:d2:aa:b0: 9b:92:68:3a:f0:0d:57:48:4b:12:c4:d1:98:0e:c0: 86:3e:e2:25:e6:b7:f7:f3:f7:cd:ca:6b:2f:fa:9c: 5e:3f:63:74:19:f4:89:07:4a:e1:02:b5:9f:b8:0e: c3:67:f9:d7:0f:f9:2e:85:37:1f:e1:85:0d:e4:0a: 95:97:8f:6e:b4:b5:8e:93:af:a1:f3:f3:7c:05:26: 69:0b:98:d8:d1:ea:11:08:05:5e:bd:5d:7e:f5:60: 59:29:9a:dc:39:27:8f:bb:07:e6:85:46:c3:0a:e5: 04:d3:00:1d:58:0e:4a:9f:53:bd:d2:e4:2d:a0:cb: b9:73:29:d2:7d:a2:65:cb:e2:8f:43:92:97:39:85: 0d:c6:bd:11:d8:c1:e3:b3:ba:ce:8f:c3:9a:41:b8: 38:04:27:b2:9d:bd:15:09:5d:fb:1e:d3:3d:7a:ce: f6:3f:0c:a0:d4:5c:42:61:c9:5a:2a:4d:73:c2:cd: 0f:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:76:C4:54:28:F1:42:F3:CB:33:14:28:41:11:6B:7E:BD:CB:60:21 X509v3 Authority Key Identifier: keyid:06:E4:BB:DA:B8:96:E6:61:13:F3:51:B4:D9:C8:2D:F5:0E:66:A7:12 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BuS72riW5mET81G02cgt9Q5mpxI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/d99947-2298-422f-9da0-fe0d28b68cd5/1/A3bEVCjxQvPLMxQoQRFrfr3LYCE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/d99947-2298-422f-9da0-fe0d28b68cd5/1/BuS72riW5mET81G02cgt9Q5mpxI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.28.160.0/19 62.149.0.0/19 IPv6: 2a03:6300::/32 Signature Algorithm: sha256WithRSAEncryption 18:4f:4d:0a:65:c0:a6:17:ae:be:9c:9a:40:50:f6:1f:47:de: 1c:83:72:48:dd:ab:ed:0f:1e:60:97:de:c2:33:80:bb:b8:43: b9:a3:05:f9:66:96:61:4d:2a:a7:5f:83:6f:9d:05:80:5a:ae: 1c:8e:fe:5b:20:ae:8b:fc:26:a0:6c:43:d6:40:f0:4b:fd:a0: ef:00:54:a4:d4:11:c6:b1:9e:9f:82:92:93:1b:e3:be:a4:6c: 20:a5:ae:ae:99:75:2b:cf:91:c8:a8:fb:d9:26:74:c2:26:88: 18:a6:a2:61:ee:81:bb:10:32:c7:a0:cd:a5:0e:0c:cb:ff:42: 8f:33:74:9f:a1:58:96:10:25:6e:22:65:87:f6:92:00:d8:84: 15:c2:3f:d1:76:f4:9a:66:e5:15:76:a8:dc:d6:11:e6:e6:5c: be:26:ac:e3:70:6a:26:4a:af:ea:1a:bd:d9:5d:4e:3d:dc:78: ca:c5:0d:99:21:ad:71:6e:e8:20:2f:56:7e:c4:53:83:ad:0b: 96:1b:de:3d:ba:d0:8d:b7:5f:f3:10:6d:b5:99:14:c4:7d:d0: ad:e5:61:5e:43:77:e0:81:ff:37:88:1e:d6:a0:d4:64:45:6a: 70:ed:b2:da:6d:e5:bb:b1:e9:a0:aa:3f:a5:9a:37:c1:7a:da: db:29:52:c2 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt/E0umYF6Msc9mLcs1wvhrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2ZTRiYmRhYjg5NmU2NjExM2YzNTFiNGQ5YzgyZGY1MGU2 NmE3MTIwHhcNMjYwMTAyMTQxODQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMzc2YzQ1NDI4ZjE0MmYzY2IzMzE0Mjg0MTExNmI3ZWJkY2I2MDIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvNDMzUnOotzRtTEuIVC7l7MwdeyA b5jjoH7ha29GAyE1/qkNC4vEBTmSs9Q+eUaG4tSEhbYMSz38stbjkk2eySx9bQLz 4UvSqrCbkmg68A1XSEsSxNGYDsCGPuIl5rf38/fNymsv+pxeP2N0GfSJB0rhArWf uA7DZ/nXD/kuhTcf4YUN5AqVl49utLWOk6+h8/N8BSZpC5jY0eoRCAVevV1+9WBZ KZrcOSePuwfmhUbDCuUE0wAdWA5Kn1O90uQtoMu5cynSfaJly+KPQ5KXOYUNxr0R 2MHjs7rOj8OaQbg4BCeynb0VCV37HtM9es72Pwyg1FxCYclaKk1zws0POwIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFAN2xFQo8ULzyzMUKEERa369y2AhMB8GA1UdIwQY MBaAFAbku9q4luZhE/NRtNnILfUOZqcSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQnVTNzJyaVc1bUVUODFHMDJjZ3Q5UTVtcHhJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny9kOTk5NDctMjI5OC00MjJmLTlkYTAt ZmUwZDI4YjY4Y2Q1LzEvQTNiRVZDanhRdlBMTXhRb1FSRnJmcjNMWUNFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny9kOTk5NDctMjI5OC00MjJmLTlkYTAtZmUwZDI4YjY4Y2Q1 LzEvQnVTNzJyaVc1bUVUODFHMDJjZ3Q5UTVtcHhJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQFHxygAwQF PpUAMA0EAgACMAcDBQAqA2MAMA0GCSqGSIb3DQEBCwUAA4IBAQAYT00KZcCmF66+ nJpAUPYfR94cg3JI3avtDx5gl97CM4C7uEO5owX5ZpZhTSqnX4NvnQWAWq4cjv5b IK6L/CagbEPWQPBL/aDvAFSk1BHGsZ6fgpKTG+O+pGwgpa6umXUrz5HIqPvZJnTC JogYpqJh7oG7EDLHoM2lDgzL/0KPM3SfoViWECVuImWH9pIA2IQVwj/RdvSaZuUV dqjc1hHm5ly+JqzjcGomSq/qGr3ZXU493HjKxQ2ZIa1xbuggL1Z+xFODrQuWG949 utCNt1/zEG21mRTEfdCt5WFeQ3fggf83iB7WoNRkRWpw7bLabeW7semgqj+lmjfB etrbKVLC -----END CERTIFICATE-----Generated at Wed Jan 7 22:47:15 2026 by rpki-client