This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/5dd7b1-e337-404d-b764-ddb0b148e46b/1/US1mag2Y_3gLjw3yqH5mtWjR1xQ.roa File: US1mag2Y_3gLjw3yqH5mtWjR1xQ.roa (raw, json) Hash identifier: x23CUUEuBT6VTtfDeTHM6jIMOQ/mrX2YC4/4lHl02CU= Subject key identifier: 51:2D:66:6A:0D:98:FF:78:0B:8F:0D:F2:A8:7E:66:B5:68:D1:D7:14 Certificate issuer: /CN=9cb96ce59c59557530f0eaa44c664503d9c401ed Certificate serial: 019B7758875E1AAE11CADA84536A7D406904 Authority key identifier: 9C:B9:6C:E5:9C:59:55:75:30:F0:EA:A4:4C:66:45:03:D9:C4:01:ED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nLls5ZxZVXUw8OqkTGZFA9nEAe0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/5dd7b1-e337-404d-b764-ddb0b148e46b/1/US1mag2Y_3gLjw3yqH5mtWjR1xQ.roa Signing time: Thu 01 Jan 2026 02:17:29 +0000 ROA not before: Thu 01 Jan 2026 02:17:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 13903 IP address blocks: 193.29.148.0/24 maxlen: 24 193.29.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/5dd7b1-e337-404d-b764-ddb0b148e46b/1/nLls5ZxZVXUw8OqkTGZFA9nEAe0.crl rsync://rpki.ripe.net/repository/DEFAULT/19/5dd7b1-e337-404d-b764-ddb0b148e46b/1/nLls5ZxZVXUw8OqkTGZFA9nEAe0.mft rsync://rpki.ripe.net/repository/DEFAULT/nLls5ZxZVXUw8OqkTGZFA9nEAe0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 02:01:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:87:5e:1a:ae:11:ca:da:84:53:6a:7d:40:69:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9cb96ce59c59557530f0eaa44c664503d9c401ed Validity Not Before: Jan 1 02:17:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=512d666a0d98ff780b8f0df2a87e66b568d1d714 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:ff:21:83:e9:84:65:aa:0d:bf:bc:d6:bb:bc: 62:f7:12:b9:b3:29:25:e3:67:b1:15:25:28:4b:ad: 46:3f:e2:da:89:01:97:17:7f:de:65:39:b7:91:10: 35:17:88:33:3f:c5:63:ff:29:48:bc:8b:41:5c:34: 32:64:84:81:fb:b5:9b:4a:94:f1:36:fd:be:42:dc: 65:0d:38:63:51:f7:ad:63:5e:b0:73:85:3a:79:1c: 43:2a:d0:94:cf:86:38:d9:44:90:34:d2:eb:cd:84: ab:1b:39:fa:3f:e5:d0:2b:e5:75:d2:9b:d8:12:cd: a1:f2:f5:b1:dd:06:93:56:c9:40:ac:48:af:8a:4a: c9:dd:21:ac:49:13:91:bf:cd:95:a7:93:55:af:7d: 02:44:5b:6d:fa:dd:20:ed:3e:f0:08:dd:03:dd:40: 81:3d:d6:7f:64:74:01:d3:af:6c:85:8e:e2:ef:c2: 1c:b9:6c:04:a3:5c:b3:d8:b1:8e:54:41:0b:82:e9: 5d:26:b8:66:1b:c0:23:f7:10:0c:a4:0d:a3:1a:ed: 95:28:53:89:2a:a5:ef:99:3f:fe:fa:da:87:9b:75: 4c:8f:a3:52:59:61:70:ae:0a:1d:a9:2d:bf:e3:42: 0c:36:5c:14:f2:b4:f8:36:44:40:87:2f:49:98:e9: af:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:2D:66:6A:0D:98:FF:78:0B:8F:0D:F2:A8:7E:66:B5:68:D1:D7:14 X509v3 Authority Key Identifier: keyid:9C:B9:6C:E5:9C:59:55:75:30:F0:EA:A4:4C:66:45:03:D9:C4:01:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nLls5ZxZVXUw8OqkTGZFA9nEAe0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/5dd7b1-e337-404d-b764-ddb0b148e46b/1/US1mag2Y_3gLjw3yqH5mtWjR1xQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/5dd7b1-e337-404d-b764-ddb0b148e46b/1/nLls5ZxZVXUw8OqkTGZFA9nEAe0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.29.148.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:f2:9c:ae:17:56:48:4f:c1:77:17:ce:32:11:16:4d:2d:f0: 1f:a2:1b:da:23:65:bb:2e:c4:c6:27:96:94:60:21:13:c1:09: fd:8a:a3:39:f6:77:d6:c1:d8:2b:4c:21:1b:2a:b6:00:4d:f3: 24:84:1e:5d:04:b5:94:c9:11:ad:43:60:ae:73:6d:fb:66:22: f2:0d:0c:83:07:e0:6e:46:f9:1b:5a:92:06:eb:e3:d6:08:68: 77:d1:ca:c8:54:0b:0d:27:93:c7:06:ab:85:df:7d:28:20:f7: 87:66:f9:b6:81:cd:02:2f:27:c1:d1:a7:da:4e:08:a9:3d:af: 42:04:18:72:c4:e3:83:56:77:ca:db:08:1c:0e:37:67:0c:0d: c7:99:c0:24:bd:60:99:45:10:37:60:7b:74:e2:43:66:3c:fe: b2:c2:01:cf:f7:28:67:a8:9e:66:aa:28:9f:f4:df:57:eb:2f: 64:31:91:d4:94:1a:f7:69:43:17:72:59:a8:b3:54:e5:64:55: ec:49:b7:9b:fd:52:17:b6:9a:36:c8:35:3a:f6:14:a8:c7:19: 7f:a7:6a:9e:50:24:fb:ae:02:81:1c:22:6d:cf:74:5e:c2:8f: 98:7f:72:6c:12:08:4c:8d:5d:bb:e3:2b:c2:ba:ff:19:28:a9: e1:5c:71:39 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3WIdeGq4RytqEU2p9QGkEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDljYjk2Y2U1OWM1OTU1NzUzMGYwZWFhNDRjNjY0NTAzZDlj NDAxZWQwHhcNMjYwMTAxMDIxNzI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MTJkNjY2YTBkOThmZjc4MGI4ZjBkZjJhODdlNjZiNTY4ZDFkNzE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6v8hg+mEZaoNv7zWu7xi9xK5sykl 42exFSUoS61GP+LaiQGXF3/eZTm3kRA1F4gzP8Vj/ylIvItBXDQyZISB+7WbSpTx Nv2+QtxlDThjUfetY16wc4U6eRxDKtCUz4Y42USQNNLrzYSrGzn6P+XQK+V10pvY Es2h8vWx3QaTVslArEivikrJ3SGsSRORv82Vp5NVr30CRFtt+t0g7T7wCN0D3UCB PdZ/ZHQB069shY7i78IcuWwEo1yz2LGOVEELguldJrhmG8Aj9xAMpA2jGu2VKFOJ KqXvmT/++tqHm3VMj6NSWWFwrgodqS2/40IMNlwU8rT4NkRAhy9JmOmvfwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFEtZmoNmP94C48N8qh+ZrVo0dcUMB8GA1UdIwQY MBaAFJy5bOWcWVV1MPDqpExmRQPZxAHtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbkxsczVaeFpWWFV3OE9xa1RHWkZBOW5FQWUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS81ZGQ3YjEtZTMzNy00MDRkLWI3NjQt ZGRiMGIxNDhlNDZiLzEvVVMxbWFnMllfM2dManczeXFINW10V2pSMXhRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS81ZGQ3YjEtZTMzNy00MDRkLWI3NjQtZGRiMGIxNDhlNDZi LzEvbkxsczVaeFpWWFV3OE9xa1RHWkZBOW5FQWUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwR2UMA0G CSqGSIb3DQEBCwUAA4IBAQBv8pyuF1ZIT8F3F84yERZNLfAfohvaI2W7LsTGJ5aU YCETwQn9iqM59nfWwdgrTCEbKrYATfMkhB5dBLWUyRGtQ2Cuc237ZiLyDQyDB+Bu RvkbWpIG6+PWCGh30crIVAsNJ5PHBquF330oIPeHZvm2gc0CLyfB0afaTgipPa9C BBhyxOODVnfK2wgcDjdnDA3HmcAkvWCZRRA3YHt04kNmPP6ywgHP9yhnqJ5mqiif 9N9X6y9kMZHUlBr3aUMXclmos1TlZFXsSbeb/VIXtpo2yDU69hSoxxl/p2qeUCT7 rgKBHCJtz3Rewo+Yf3JsEghMjV274yvCuv8ZKKnhXHE5 -----END CERTIFICATE-----Generated at Sun Jan 25 12:17:28 2026 by rpki-client