This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/0N9Uxg8fR7Nyrc_u_br799CvD3w.roa File: 0N9Uxg8fR7Nyrc_u_br799CvD3w.roa (raw, json) Hash identifier: uOgfIOlH3kKqWEbcGQ4cdmk7+jvbyKuPe/nGe0W6i/Y= Subject key identifier: D0:DF:54:C6:0F:1F:47:B3:72:AD:CF:EE:FD:BA:FB:F7:D0:AF:0F:7C Certificate issuer: /CN=202f4c1a37e9313cdd2eea7750ae028d18cd5aae Certificate serial: 019B76EB1FD4F2257A44CE91BA73BC692AD3 Authority key identifier: 20:2F:4C:1A:37:E9:31:3C:DD:2E:EA:77:50:AE:02:8D:18:CD:5A:AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IC9MGjfpMTzdLup3UK4CjRjNWq4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/0N9Uxg8fR7Nyrc_u_br799CvD3w.roa Signing time: Thu 01 Jan 2026 00:17:59 +0000 ROA not before: Thu 01 Jan 2026 00:17:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206632 IP address blocks: 156.17.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/IC9MGjfpMTzdLup3UK4CjRjNWq4.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/IC9MGjfpMTzdLup3UK4CjRjNWq4.mft rsync://rpki.ripe.net/repository/DEFAULT/IC9MGjfpMTzdLup3UK4CjRjNWq4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:1f:d4:f2:25:7a:44:ce:91:ba:73:bc:69:2a:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=202f4c1a37e9313cdd2eea7750ae028d18cd5aae Validity Not Before: Jan 1 00:17:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d0df54c60f1f47b372adcfeefdbafbf7d0af0f7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:8a:25:66:fe:9e:ec:6e:a1:b8:f9:6a:8e:a3: 9c:f7:ca:bf:f0:2d:53:d7:d4:fb:93:8b:d2:0d:dc: 0b:9e:ff:62:25:71:35:7c:17:48:c8:0a:d8:70:40: 78:9d:76:ab:0c:7f:fb:fe:5b:b7:55:12:d0:45:f9: 70:43:05:73:42:a0:b6:71:6b:ad:f7:63:25:b5:cb: d3:24:7f:82:e9:34:e1:08:13:4f:ae:c2:f8:9e:31: 51:af:c3:b8:32:ce:06:94:b1:c0:67:4c:0a:c2:41: 79:65:a2:8a:e6:4c:23:1e:47:05:fa:0d:32:80:7c: c7:3f:09:e5:8c:63:6b:4f:9a:d6:f3:7c:8d:78:4e: 5b:10:61:1c:a4:b3:a7:94:26:fa:e4:6d:f5:65:f1: a0:aa:18:49:31:d7:34:92:a8:64:6a:61:27:0a:9e: d4:2e:68:1c:41:62:ae:28:82:19:4e:ad:88:05:df: 1d:2d:57:25:92:10:de:19:21:17:f1:42:a8:e1:9e: 00:dd:f0:68:95:f4:7a:56:1c:c9:c9:9c:c9:a7:3c: 4e:da:bd:3a:41:05:34:c8:02:ff:71:6b:ac:b5:db: 2a:a5:cf:4c:f6:9c:5b:ce:b8:04:80:82:c8:9d:70: 54:d7:4b:a3:a4:d1:6d:9c:1d:1b:34:62:da:1b:7f: f6:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:DF:54:C6:0F:1F:47:B3:72:AD:CF:EE:FD:BA:FB:F7:D0:AF:0F:7C X509v3 Authority Key Identifier: keyid:20:2F:4C:1A:37:E9:31:3C:DD:2E:EA:77:50:AE:02:8D:18:CD:5A:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IC9MGjfpMTzdLup3UK4CjRjNWq4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/0N9Uxg8fR7Nyrc_u_br799CvD3w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/IC9MGjfpMTzdLup3UK4CjRjNWq4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 156.17.201.0/24 Signature Algorithm: sha256WithRSAEncryption 63:f7:72:4d:f0:a7:c0:78:bf:fb:13:99:40:72:72:78:1c:9c: 21:28:ba:22:cb:1e:66:a3:50:2a:c3:0b:dc:a6:ba:91:a5:8c: 8b:22:36:31:83:68:9f:1a:b9:81:1a:96:92:97:ab:88:57:4d: 6b:53:71:e4:4a:a4:4a:bd:2a:a8:ce:31:3a:82:3d:37:1a:f8: bb:98:f4:e4:94:c0:00:d0:c0:64:73:2f:03:c6:7a:88:29:03: 1c:d2:ae:cc:60:4b:02:81:a4:d0:7d:f9:17:b8:cf:fe:7f:d6: df:73:95:d3:67:76:45:63:a6:16:e4:b9:e0:31:24:c9:d3:f1: 8c:72:a2:45:1e:99:30:be:6c:65:3a:bd:30:8b:4a:a9:f3:98: 92:50:6e:e8:82:1e:1f:b9:d1:8d:17:c0:2f:08:1e:1e:a6:59: 46:c7:70:19:6d:a9:b3:cb:9b:cb:89:23:29:cf:65:8c:1f:f4: 1f:c9:ed:2d:80:e8:a0:15:8b:11:40:7d:51:7f:35:93:82:02: a3:32:2d:94:b9:bc:01:90:12:ba:fd:ec:f8:03:89:30:06:27: 52:1e:56:df:a3:dd:71:7a:b0:59:ad:3b:3b:a0:05:d2:be:11: 76:5a:1c:89:54:61:24:2d:51:92:59:b0:26:c1:59:e8:4e:b5: 19:a9:9f:f9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt26x/U8iV6RM6RunO8aSrTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwMmY0YzFhMzdlOTMxM2NkZDJlZWE3NzUwYWUwMjhkMThj ZDVhYWUwHhcNMjYwMTAxMDAxNzU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMGRmNTRjNjBmMWY0N2IzNzJhZGNmZWVmZGJhZmJmN2QwYWYwZjdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtoolZv6e7G6huPlqjqOc98q/8C1T 19T7k4vSDdwLnv9iJXE1fBdIyArYcEB4nXarDH/7/lu3VRLQRflwQwVzQqC2cWut 92MltcvTJH+C6TThCBNPrsL4njFRr8O4Ms4GlLHAZ0wKwkF5ZaKK5kwjHkcF+g0y gHzHPwnljGNrT5rW83yNeE5bEGEcpLOnlCb65G31ZfGgqhhJMdc0kqhkamEnCp7U LmgcQWKuKIIZTq2IBd8dLVclkhDeGSEX8UKo4Z4A3fBolfR6VhzJyZzJpzxO2r06 QQU0yAL/cWustdsqpc9M9pxbzrgEgILInXBU10ujpNFtnB0bNGLaG3/2eQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNDfVMYPH0ezcq3P7v26+/fQrw98MB8GA1UdIwQY MBaAFCAvTBo36TE83S7qd1CuAo0YzVquMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSUM5TUdqZnBNVHpkTHVwM1VLNENqUmpOV3E0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9lZGI4Y2QtMDAzZC00ODNhLTkwNmEt ZjZiNzhlMmIxN2ExLzEvME45VXhnOGZSN055cmNfdV9icjc5OUN2RDN3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS9lZGI4Y2QtMDAzZC00ODNhLTkwNmEtZjZiNzhlMmIxN2Ex LzEvSUM5TUdqZnBNVHpkTHVwM1VLNENqUmpOV3E0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnBHJMA0G CSqGSIb3DQEBCwUAA4IBAQBj93JN8KfAeL/7E5lAcnJ4HJwhKLoiyx5mo1Aqwwvc prqRpYyLIjYxg2ifGrmBGpaSl6uIV01rU3HkSqRKvSqozjE6gj03Gvi7mPTklMAA 0MBkcy8DxnqIKQMc0q7MYEsCgaTQffkXuM/+f9bfc5XTZ3ZFY6YW5LngMSTJ0/GM cqJFHpkwvmxlOr0wi0qp85iSUG7ogh4fudGNF8AvCB4epllGx3AZbamzy5vLiSMp z2WMH/Qfye0tgOigFYsRQH1RfzWTggKjMi2UubwBkBK6/ez4A4kwBidSHlbfo91x erBZrTs7oAXSvhF2WhyJVGEkLVGSWbAmwVnoTrUZqZ/5 -----END CERTIFICATE-----Generated at Mon Jan 26 02:22:09 2026 by rpki-client