This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/3Xzw0ot56N_EusWh2h58eLSz4B0.roa File: 3Xzw0ot56N_EusWh2h58eLSz4B0.roa (raw, json) Hash identifier: iH4AA+yRWyX27I6HolfVM6gPaKu1WmLVwGw6HZLB8y4= Subject key identifier: DD:7C:F0:D2:8B:79:E8:DF:C4:BA:C5:A1:DA:1E:7C:78:B4:B3:E0:1D Certificate issuer: /CN=3ee770f47fd903925d80ac58e05e076f3baa110b Certificate serial: 019B79106026F4A00DF22D1EDF60615915C4 Authority key identifier: 3E:E7:70:F4:7F:D9:03:92:5D:80:AC:58:E0:5E:07:6F:3B:AA:11:0B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/3Xzw0ot56N_EusWh2h58eLSz4B0.roa Signing time: Thu 01 Jan 2026 10:17:54 +0000 ROA not before: Thu 01 Jan 2026 10:17:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9304 IP address blocks: 185.38.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.crl rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.mft rsync://rpki.ripe.net/repository/DEFAULT/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:60:26:f4:a0:0d:f2:2d:1e:df:60:61:59:15:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ee770f47fd903925d80ac58e05e076f3baa110b Validity Not Before: Jan 1 10:17:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dd7cf0d28b79e8dfc4bac5a1da1e7c78b4b3e01d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:af:97:80:ca:5e:cf:40:01:aa:35:28:8a:52: 21:8f:f8:0d:38:2d:8a:c1:e1:c9:95:03:1a:c1:d0: f1:47:9f:c4:7a:94:92:93:bb:ab:82:e8:0f:b3:5b: da:69:f1:1b:14:fb:ec:cf:d3:a0:1f:cf:63:c1:69: bb:79:83:7e:ef:ab:9a:78:cf:d9:b3:32:12:c1:16: 3f:38:e9:e0:08:8b:3f:d5:ae:3b:a3:1d:15:2e:2d: a1:e7:79:72:6c:23:19:0b:ac:8a:23:43:0b:1b:ee: 51:5f:d9:03:85:10:5a:f8:6a:cc:9a:33:91:3f:7e: 87:4f:2b:e6:0e:de:37:89:c8:eb:65:57:bb:cf:71: b4:a6:73:3f:00:2c:c7:54:89:65:cb:06:b1:a2:04: 4b:5e:c2:ee:b4:c6:0b:d5:83:71:71:5f:e8:fb:07: 96:48:7a:c8:8f:8e:32:44:62:b8:7e:8e:2b:e4:05: ba:4a:a6:5a:b8:3f:47:f1:a5:a5:1c:98:bc:cf:eb: 99:1d:f3:31:a7:1b:3d:9e:3e:b2:49:d7:8e:af:65: 21:a1:49:b2:26:26:d0:be:c2:3c:d0:d1:cc:99:6e: ad:5e:4c:03:3f:a8:38:35:13:b8:5b:8b:49:77:5e: 2a:57:f6:c7:f2:68:75:d3:e5:0a:e7:8b:40:b4:28: 5c:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:7C:F0:D2:8B:79:E8:DF:C4:BA:C5:A1:DA:1E:7C:78:B4:B3:E0:1D X509v3 Authority Key Identifier: keyid:3E:E7:70:F4:7F:D9:03:92:5D:80:AC:58:E0:5E:07:6F:3B:AA:11:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/3Xzw0ot56N_EusWh2h58eLSz4B0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.38.26.0/24 Signature Algorithm: sha256WithRSAEncryption 05:c8:b5:be:fa:c9:35:b0:3d:40:f0:bf:79:b4:3e:4c:69:05: c8:9d:ff:b7:53:23:7f:bf:4d:e1:10:61:03:8d:2c:4c:c1:28: 9e:e8:0d:df:58:67:ab:c5:af:20:87:33:a4:62:69:8e:66:07: 17:5d:19:63:cb:46:6a:3b:d5:34:b6:b9:c9:ea:02:24:b4:0e: 48:22:5a:a8:89:5a:eb:13:35:76:3a:2e:56:3a:ec:b7:be:82: 9a:ec:3c:bc:81:ba:ca:b6:97:43:e8:df:7c:de:33:19:b0:ae: c3:fd:f1:01:41:a8:1b:3f:97:e0:d0:87:30:0c:5a:bd:b3:83: 3c:e2:53:70:8d:30:ec:39:30:99:74:34:4b:fe:7c:0a:b8:10: 3a:ae:3f:a9:56:ed:ea:ff:0a:ab:7a:95:96:bf:7c:a7:7f:ce: 29:9d:07:87:08:26:d9:b0:b1:91:1a:c3:a1:5c:fa:f1:ab:c9: 4d:74:3c:30:3b:a1:50:65:3c:04:93:35:ac:fa:de:94:15:dc: 3f:cb:01:40:4a:22:83:c2:ec:d0:59:dc:c9:68:82:ab:1a:6b: df:cf:51:bc:23:33:0f:4d:73:dd:02:e2:6c:34:fd:54:69:e1: d0:c0:81:49:6f:bc:cb:21:76:9e:74:46:1e:e8:e5:e8:e6:77: c2:bd:af:e1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EGAm9KAN8i0e32BhWRXEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlZTc3MGY0N2ZkOTAzOTI1ZDgwYWM1OGUwNWUwNzZmM2Jh YTExMGIwHhcNMjYwMTAxMTAxNzU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZDdjZjBkMjhiNzllOGRmYzRiYWM1YTFkYTFlN2M3OGI0YjNlMDFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAua+XgMpez0ABqjUoilIhj/gNOC2K weHJlQMawdDxR5/EepSSk7urgugPs1vaafEbFPvsz9OgH89jwWm7eYN+76uaeM/Z szISwRY/OOngCIs/1a47ox0VLi2h53lybCMZC6yKI0MLG+5RX9kDhRBa+GrMmjOR P36HTyvmDt43icjrZVe7z3G0pnM/ACzHVIllywaxogRLXsLutMYL1YNxcV/o+weW SHrIj44yRGK4fo4r5AW6SqZauD9H8aWlHJi8z+uZHfMxpxs9nj6ySdeOr2UhoUmy JibQvsI80NHMmW6tXkwDP6g4NRO4W4tJd14qV/bH8mh10+UK54tAtChcHQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFN188NKLeejfxLrFodoefHi0s+AdMB8GA1UdIwQY MBaAFD7ncPR/2QOSXYCsWOBeB287qhELMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUHVkdzlIX1pBNUpkZ0t4WTRGNEhienVxRVFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi80MzQzNDQtMzIzZS00OGY4LWFkZTIt NjI0ZjgzNjgyMTY5LzEvM1h6dzBvdDU2Tl9FdXNXaDJoNThlTFN6NEIwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi80MzQzNDQtMzIzZS00OGY4LWFkZTItNjI0ZjgzNjgyMTY5 LzEvUHVkdzlIX1pBNUpkZ0t4WTRGNEhienVxRVFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuSYaMA0G CSqGSIb3DQEBCwUAA4IBAQAFyLW++sk1sD1A8L95tD5MaQXInf+3UyN/v03hEGED jSxMwSie6A3fWGerxa8ghzOkYmmOZgcXXRljy0ZqO9U0trnJ6gIktA5IIlqoiVrr EzV2Oi5WOuy3voKa7Dy8gbrKtpdD6N983jMZsK7D/fEBQagbP5fg0IcwDFq9s4M8 4lNwjTDsOTCZdDRL/nwKuBA6rj+pVu3q/wqrepWWv3ynf84pnQeHCCbZsLGRGsOh XPrxq8lNdDwwO6FQZTwEkzWs+t6UFdw/ywFASiKDwuzQWdzJaIKrGmvfz1G8IzMP TXPdAuJsNP1UaeHQwIFJb7zLIXaedEYe6OXo5nfCva/h -----END CERTIFICATE-----Generated at Sun Jan 11 23:38:31 2026 by rpki-client