This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/be40ea-89c9-4fe3-9d0c-4c5b200b6709/1/N9S_icddgxWVBWPh-3jbM68-tq8.roa File: N9S_icddgxWVBWPh-3jbM68-tq8.roa (raw, json) Hash identifier: s2bnj7pTz/QN+Yh854SACOr/RPnNWxQwyzh+alMj+6w= Subject key identifier: 37:D4:BF:89:C7:5D:83:15:95:05:63:E1:FB:78:DB:33:AF:3E:B6:AF Certificate issuer: /CN=073848d8281be439e77750885b547a28152801bb Certificate serial: 019B7EA6AFF4A96DABE88D176E0B290294CF Authority key identifier: 07:38:48:D8:28:1B:E4:39:E7:77:50:88:5B:54:7A:28:15:28:01:BB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BzhI2Cgb5Dnnd1CIW1R6KBUoAbs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/be40ea-89c9-4fe3-9d0c-4c5b200b6709/1/N9S_icddgxWVBWPh-3jbM68-tq8.roa Signing time: Fri 02 Jan 2026 12:20:11 +0000 ROA not before: Fri 02 Jan 2026 12:20:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3292 IP address blocks: 193.32.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/be40ea-89c9-4fe3-9d0c-4c5b200b6709/1/BzhI2Cgb5Dnnd1CIW1R6KBUoAbs.crl rsync://rpki.ripe.net/repository/DEFAULT/19/be40ea-89c9-4fe3-9d0c-4c5b200b6709/1/BzhI2Cgb5Dnnd1CIW1R6KBUoAbs.mft rsync://rpki.ripe.net/repository/DEFAULT/BzhI2Cgb5Dnnd1CIW1R6KBUoAbs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:af:f4:a9:6d:ab:e8:8d:17:6e:0b:29:02:94:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=073848d8281be439e77750885b547a28152801bb Validity Not Before: Jan 2 12:20:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=37d4bf89c75d8315950563e1fb78db33af3eb6af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2d:0d:ea:b3:66:91:a0:a3:b1:7b:f5:b8:b0: 35:4a:71:f1:9e:f0:8a:54:cb:cb:43:5f:23:d5:40: 57:49:56:81:3f:ae:f7:39:23:8f:77:d2:88:25:72: a4:80:17:4d:23:53:86:ac:bc:54:5d:70:e2:31:fd: 46:86:15:aa:30:24:00:6e:4d:82:b6:82:90:ce:83: 9d:2d:55:d3:67:0d:fe:85:04:53:d9:aa:ea:23:07: d7:c1:61:30:3d:20:8d:8f:d0:ca:e4:fb:86:e5:61: 48:c6:23:50:25:c0:c2:b0:0c:22:62:29:ef:55:7e: 68:3a:e6:f5:05:94:00:16:e0:f2:d2:59:b9:50:5a: de:41:27:d9:85:df:16:16:c8:06:ec:0a:05:a3:c5: 81:23:a8:81:0f:b8:e1:37:16:52:58:fa:fe:0c:b6: 1a:fd:f5:48:13:e2:9d:20:85:45:4e:91:3c:c6:23: 6b:7f:cc:01:ff:a2:4b:9b:12:8d:69:b8:44:db:20: f1:3c:08:c4:1f:4a:0d:0a:95:b7:7f:49:0b:15:8d: b1:ab:50:70:60:d6:43:84:b4:e8:c3:ef:5d:a0:f1: 16:19:81:11:b0:0c:d3:68:5f:3a:16:b0:ca:57:e5: 27:29:d6:2c:8b:ae:44:c0:c2:8c:77:3b:74:72:f2: 07:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:D4:BF:89:C7:5D:83:15:95:05:63:E1:FB:78:DB:33:AF:3E:B6:AF X509v3 Authority Key Identifier: keyid:07:38:48:D8:28:1B:E4:39:E7:77:50:88:5B:54:7A:28:15:28:01:BB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BzhI2Cgb5Dnnd1CIW1R6KBUoAbs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/be40ea-89c9-4fe3-9d0c-4c5b200b6709/1/N9S_icddgxWVBWPh-3jbM68-tq8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/be40ea-89c9-4fe3-9d0c-4c5b200b6709/1/BzhI2Cgb5Dnnd1CIW1R6KBUoAbs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.32.65.0/24 Signature Algorithm: sha256WithRSAEncryption c5:62:f1:d3:01:a9:d1:63:b1:67:da:f7:3f:80:22:a1:c6:a2: a8:1a:30:fd:cb:9f:2a:09:23:1e:e2:f0:f9:5c:c2:6a:1b:92: a4:1a:ae:4e:16:da:be:b5:84:e8:f1:b3:d1:e9:43:50:8a:e6: 4c:27:76:a4:f6:20:0f:5c:bb:20:8a:1c:83:f1:03:ba:b2:1f: 48:e2:cf:d4:c4:84:19:b7:6d:d6:e2:a7:4a:ca:77:06:65:e3: 83:8a:2e:f6:fd:4d:78:df:14:c9:3f:6c:b9:e8:d6:e6:47:20: 76:46:9c:36:76:ee:2d:08:f3:ba:13:32:f1:44:31:89:6d:1d: 03:1e:4b:51:b6:71:9a:dd:5f:2e:6b:ce:1c:4a:a7:d4:10:91: e7:f3:2a:2a:79:51:67:13:b4:8b:cc:aa:4b:09:3b:27:4d:00: f4:6f:fa:8e:b2:64:35:78:a2:b3:d6:10:52:5a:8b:3c:12:d5: e3:90:1a:46:26:f9:2c:d7:c6:d1:e2:af:d0:5a:66:dc:8a:c3: a0:33:83:81:34:68:69:31:94:ba:68:33:cf:5d:40:6e:c0:c5: df:47:49:e5:e1:e2:e0:ce:12:a3:56:ca:3e:ea:95:13:f7:7b: bb:a0:21:b9:4d:38:b5:f7:f8:ef:ca:82:b6:4c:37:00:a8:b3: 68:cd:e8:f4 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+pq/0qW2r6I0XbgspApTPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA3Mzg0OGQ4MjgxYmU0MzllNzc3NTA4ODViNTQ3YTI4MTUy ODAxYmIwHhcNMjYwMTAyMTIyMDExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzN2Q0YmY4OWM3NWQ4MzE1OTUwNTYzZTFmYjc4ZGIzM2FmM2ViNmFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvy0N6rNmkaCjsXv1uLA1SnHxnvCK VMvLQ18j1UBXSVaBP673OSOPd9KIJXKkgBdNI1OGrLxUXXDiMf1GhhWqMCQAbk2C toKQzoOdLVXTZw3+hQRT2arqIwfXwWEwPSCNj9DK5PuG5WFIxiNQJcDCsAwiYinv VX5oOub1BZQAFuDy0lm5UFreQSfZhd8WFsgG7AoFo8WBI6iBD7jhNxZSWPr+DLYa /fVIE+KdIIVFTpE8xiNrf8wB/6JLmxKNabhE2yDxPAjEH0oNCpW3f0kLFY2xq1Bw YNZDhLTow+9doPEWGYERsAzTaF86FrDKV+UnKdYsi65EwMKMdzt0cvIHxwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDfUv4nHXYMVlQVj4ft42zOvPravMB8GA1UdIwQY MBaAFAc4SNgoG+Q553dQiFtUeigVKAG7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQnpoSTJDZ2I1RG5uZDFDSVcxUjZLQlVvQWJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS9iZTQwZWEtODljOS00ZmUzLTlkMGMt NGM1YjIwMGI2NzA5LzEvTjlTX2ljZGRneFdWQldQaC0zamJNNjgtdHE4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS9iZTQwZWEtODljOS00ZmUzLTlkMGMtNGM1YjIwMGI2NzA5 LzEvQnpoSTJDZ2I1RG5uZDFDSVcxUjZLQlVvQWJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwSBBMA0G CSqGSIb3DQEBCwUAA4IBAQDFYvHTAanRY7Fn2vc/gCKhxqKoGjD9y58qCSMe4vD5 XMJqG5KkGq5OFtq+tYTo8bPR6UNQiuZMJ3ak9iAPXLsgihyD8QO6sh9I4s/UxIQZ t23W4qdKyncGZeODii72/U143xTJP2y56NbmRyB2Rpw2du4tCPO6EzLxRDGJbR0D HktRtnGa3V8ua84cSqfUEJHn8yoqeVFnE7SLzKpLCTsnTQD0b/qOsmQ1eKKz1hBS Wos8EtXjkBpGJvks18bR4q/QWmbcisOgM4OBNGhpMZS6aDPPXUBuwMXfR0nl4eLg zhKjVso+6pUT93u7oCG5TTi19/jvyoK2TDcAqLNozej0 -----END CERTIFICATE-----Generated at Sun Jan 25 22:14:41 2026 by rpki-client