This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/n70k782e6Gxq_-Hc2YO_idjOcAs.roa File: n70k782e6Gxq_-Hc2YO_idjOcAs.roa (raw, json) Hash identifier: 9xPDUcAeeZeb+V1tJdiN4n6+fuVQh1F2hwH4+x4MOiQ= Subject key identifier: 9F:BD:24:EF:CD:9E:E8:6C:6A:FF:E1:DC:D9:83:BF:89:D8:CE:70:0B Certificate issuer: /CN=23259da3b1b38ca0939f490fb9043fcd89cfd062 Certificate serial: 019B7A5B358A095E70DE55388ABA3CAC99C8 Authority key identifier: 23:25:9D:A3:B1:B3:8C:A0:93:9F:49:0F:B9:04:3F:CD:89:CF:D0:62 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/n70k782e6Gxq_-Hc2YO_idjOcAs.roa Signing time: Thu 01 Jan 2026 16:19:16 +0000 ROA not before: Thu 01 Jan 2026 16:19:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198002 IP address blocks: 149.255.64.0/19 maxlen: 19 2a03:1180::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:35:8a:09:5e:70:de:55:38:8a:ba:3c:ac:99:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23259da3b1b38ca0939f490fb9043fcd89cfd062 Validity Not Before: Jan 1 16:19:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9fbd24efcd9ee86c6affe1dcd983bf89d8ce700b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:21:c4:bd:09:d2:02:b4:26:8e:64:d2:81:1a: db:56:d5:5b:bb:59:91:09:80:15:f3:9a:fa:4d:01: 12:40:10:a9:b9:10:d3:21:04:c9:46:48:df:47:37: e9:35:4d:ee:82:b9:ca:33:63:0e:1d:93:dc:72:de: bb:0f:9d:62:a5:58:e4:d0:98:a2:24:69:d2:86:9a: ee:10:8e:ad:15:f3:fa:d8:13:e0:39:24:74:dc:35: 98:6d:ff:74:e8:0e:45:a4:4f:04:ea:01:28:98:bb: 60:38:5d:32:f2:44:50:26:61:79:af:fa:32:bc:b4: 45:62:87:c6:95:dc:44:cd:7d:1a:f7:c2:d0:81:bb: 2e:73:78:48:d9:f0:fd:b4:1d:37:1a:ef:36:8f:a6: 0b:75:24:9e:da:ab:21:65:14:99:42:39:1d:5b:46: 6e:dc:49:36:4c:f9:f8:ac:e1:21:c6:06:c0:52:03: a2:82:12:d1:69:0b:36:ee:4a:96:8f:13:95:2b:60: 75:7e:97:9e:07:3d:ae:a0:da:0d:b7:89:26:16:b3: 6e:fc:c7:62:74:cd:41:67:52:8c:7d:0c:dc:c8:c4: c0:70:fe:d6:94:a2:bb:1d:3a:6f:a7:d3:2d:65:0f: b9:a4:0b:fb:b1:02:75:ca:19:ea:07:54:37:fe:5d: 54:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:BD:24:EF:CD:9E:E8:6C:6A:FF:E1:DC:D9:83:BF:89:D8:CE:70:0B X509v3 Authority Key Identifier: keyid:23:25:9D:A3:B1:B3:8C:A0:93:9F:49:0F:B9:04:3F:CD:89:CF:D0:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/n70k782e6Gxq_-Hc2YO_idjOcAs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 149.255.64.0/19 IPv6: 2a03:1180::/32 Signature Algorithm: sha256WithRSAEncryption 4d:a8:bd:26:3a:98:df:13:c2:02:38:cf:54:7f:52:be:d3:3a: be:a2:d9:5d:43:c8:fc:66:c6:9f:f3:e6:94:44:4d:81:37:5c: 5d:b6:25:19:af:14:99:f7:22:93:3e:6c:8a:13:e3:64:b8:8f: 24:7a:b6:63:18:31:c7:1f:b6:5b:13:6c:fd:42:e1:49:b6:35: d1:6c:7a:4c:10:5c:27:62:51:87:c7:90:e4:3e:92:34:ec:2e: 50:82:53:c5:8b:7b:b0:39:cc:4b:4d:2b:58:b9:8e:52:ab:25: 00:23:9f:81:d3:21:11:fd:aa:c7:28:19:38:a4:fd:ef:7b:7a: 36:58:a6:64:be:8b:ac:6a:73:2e:07:08:bc:54:5e:76:93:85: f3:0c:bc:50:d8:a4:d8:14:ff:ca:e8:f7:8d:f4:0b:3a:56:b8: d8:cf:a6:53:54:c9:9f:cb:7e:25:a6:f9:4a:5d:3e:9b:50:2a: c6:3d:0f:00:64:ec:fd:21:48:a0:9c:e8:eb:ca:b1:fe:76:fe: 18:5c:cc:8d:42:9d:1f:f8:00:b8:fa:16:b6:2d:41:7c:59:13: 23:2b:dc:01:62:db:3c:95:2c:e3:a6:0e:d2:68:2f:be:38:54: 00:76:dd:c5:30:86:63:20:79:36:78:5f:2b:44:f0:39:9b:4d: 50:50:09:7e -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt6WzWKCV5w3lU4iro8rJnIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzMjU5ZGEzYjFiMzhjYTA5MzlmNDkwZmI5MDQzZmNkODlj ZmQwNjIwHhcNMjYwMTAxMTYxOTE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZmJkMjRlZmNkOWVlODZjNmFmZmUxZGNkOTgzYmY4OWQ4Y2U3MDBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlSHEvQnSArQmjmTSgRrbVtVbu1mR CYAV85r6TQESQBCpuRDTIQTJRkjfRzfpNU3ugrnKM2MOHZPcct67D51ipVjk0Jii JGnShpruEI6tFfP62BPgOSR03DWYbf906A5FpE8E6gEomLtgOF0y8kRQJmF5r/oy vLRFYofGldxEzX0a98LQgbsuc3hI2fD9tB03Gu82j6YLdSSe2qshZRSZQjkdW0Zu 3Ek2TPn4rOEhxgbAUgOighLRaQs27kqWjxOVK2B1fpeeBz2uoNoNt4kmFrNu/Mdi dM1BZ1KMfQzcyMTAcP7WlKK7HTpvp9MtZQ+5pAv7sQJ1yhnqB1Q3/l1U2QIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFJ+9JO/Nnuhsav/h3NmDv4nYznALMB8GA1UdIwQY MBaAFCMlnaOxs4ygk59JD7kEP82Jz9BiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy85MWE1ZmQtZTU2Yy00ZDg3LWJkNzUt NjU0ZGQ2NDQyY2U0LzEvbjcwazc4MmU2R3hxXy1IYzJZT19pZGpPY0FzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy85MWE1ZmQtZTU2Yy00ZDg3LWJkNzUtNjU0ZGQ2NDQyY2U0 LzEvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQFlf9AMA0E AgACMAcDBQAqAxGAMA0GCSqGSIb3DQEBCwUAA4IBAQBNqL0mOpjfE8ICOM9Uf1K+ 0zq+otldQ8j8Zsaf8+aURE2BN1xdtiUZrxSZ9yKTPmyKE+NkuI8kerZjGDHHH7Zb E2z9QuFJtjXRbHpMEFwnYlGHx5DkPpI07C5QglPFi3uwOcxLTStYuY5SqyUAI5+B 0yER/arHKBk4pP3ve3o2WKZkvousanMuBwi8VF52k4XzDLxQ2KTYFP/K6PeN9As6 VrjYz6ZTVMmfy34lpvlKXT6bUCrGPQ8AZOz9IUignOjryrH+dv4YXMyNQp0f+AC4 +ha2LUF8WRMjK9wBYts8lSzjpg7SaC++OFQAdt3FMIZjIHk2eF8rRPA5m01QUAl+ -----END CERTIFICATE-----Generated at Mon Jan 26 11:29:28 2026 by rpki-client