This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Nh6TGiZWo0EOxhMqHLoTd_RYjgw.roa File: Nh6TGiZWo0EOxhMqHLoTd_RYjgw.roa (raw, json) Hash identifier: jvTmWCCcSLAGtI/9GquGJ7vRIPsivGfTGeyKsvphVGk= Subject key identifier: 36:1E:93:1A:26:56:A3:41:0E:C6:13:2A:1C:BA:13:77:F4:58:8E:0C Certificate issuer: /CN=670ec53068393d90db601ec295e42908525e10c2 Certificate serial: 019B7F8475DDF27374BE5D141D895E259349 Authority key identifier: 67:0E:C5:30:68:39:3D:90:DB:60:1E:C2:95:E4:29:08:52:5E:10:C2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Nh6TGiZWo0EOxhMqHLoTd_RYjgw.roa Signing time: Fri 02 Jan 2026 16:22:25 +0000 ROA not before: Fri 02 Jan 2026 16:22:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 30781 IP address blocks: 193.0.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:75:dd:f2:73:74:be:5d:14:1d:89:5e:25:93:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=670ec53068393d90db601ec295e42908525e10c2 Validity Not Before: Jan 2 16:22:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=361e931a2656a3410ec6132a1cba1377f4588e0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ac:0c:4f:61:7a:36:a2:b0:a8:9e:c1:5e:4d: 9f:dd:49:15:34:95:2f:d7:41:51:a0:8a:19:d0:f0: 9d:d4:dc:3c:62:d8:0e:54:6a:38:8b:4e:06:d4:bf: 0c:22:74:d0:b8:57:25:84:40:90:c8:62:3a:52:eb: cd:3e:fb:95:96:d7:98:6e:43:cb:10:2b:d7:43:c8: 2e:18:ee:a3:95:ef:29:d4:88:6c:6d:ff:4c:47:27: 1e:d3:56:9a:cf:62:ff:a3:71:33:11:98:ac:40:df: ab:ba:57:0a:a5:97:9b:ac:37:4b:8b:e3:ad:9b:8a: b7:e4:d2:4b:fd:a8:2b:48:c6:27:21:86:e6:52:d4: c5:f3:c7:9f:e2:44:17:7e:a9:e4:33:e7:86:13:da: d9:85:0b:c1:dc:a7:5a:67:28:d0:a1:db:d8:8f:e2: 01:c2:6c:68:fc:9f:6e:b2:ca:be:a1:98:a0:5c:59: 63:b8:12:a5:df:a9:b5:c4:e8:fe:f7:46:22:40:f6: ac:31:0c:fa:e6:66:5f:69:73:ee:e2:48:ed:0c:ec: 81:6b:0e:08:25:b3:7a:cf:00:d0:26:3f:21:60:3e: 09:8e:4f:6f:65:20:f4:57:aa:39:7c:e8:76:63:6f: 7e:7f:0f:c6:f8:44:6a:f1:59:df:16:33:1c:aa:db: 9b:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:1E:93:1A:26:56:A3:41:0E:C6:13:2A:1C:BA:13:77:F4:58:8E:0C X509v3 Authority Key Identifier: keyid:67:0E:C5:30:68:39:3D:90:DB:60:1E:C2:95:E4:29:08:52:5E:10:C2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Nh6TGiZWo0EOxhMqHLoTd_RYjgw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.0.159.0/24 Signature Algorithm: sha256WithRSAEncryption 51:91:ee:17:73:e2:fa:f2:6b:05:fe:15:9c:04:8a:9e:79:20: b5:a2:7d:da:d3:a7:fa:d2:28:14:28:41:ad:0a:fd:4d:ab:aa: d0:a9:82:03:f6:07:c2:51:4f:52:16:89:29:b1:61:65:12:65: 8c:4d:1f:24:5f:12:a9:e9:86:4a:d4:3b:07:19:97:6b:dc:da: fb:f1:fe:44:3d:f3:9d:c3:8e:9b:05:62:f8:f9:b4:0c:64:96: e6:58:ec:0e:70:e8:ac:71:53:c2:39:a1:a5:00:67:bf:76:41: d2:69:9b:32:f7:de:14:b2:05:6a:e5:eb:92:98:21:8c:85:a9: ff:9c:40:48:fc:0f:80:63:ac:53:d1:00:a9:bf:96:41:ea:81: a8:0c:1f:1e:bd:6a:23:c9:7f:15:79:5e:03:5a:1c:fc:54:19: fc:25:11:65:c8:a8:b7:e1:cd:27:a6:c9:84:ca:e2:aa:20:54: 3b:73:a4:ea:26:63:27:f0:84:3d:a1:08:db:ae:53:62:35:a0: 2c:20:d2:0a:4d:f2:41:0d:7c:4c:19:d3:22:c4:f2:7e:89:0a: ae:f9:aa:87:98:d5:d0:b9:03:cc:f4:ee:b2:a7:2c:85:78:d6: d9:af:1a:5c:e6:82:90:f6:4b:55:a3:9d:60:21:ea:dd:2b:74: 12:34:e9:4a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hHXd8nN0vl0UHYleJZNJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3MGVjNTMwNjgzOTNkOTBkYjYwMWVjMjk1ZTQyOTA4NTI1 ZTEwYzIwHhcNMjYwMTAyMTYyMjI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNjFlOTMxYTI2NTZhMzQxMGVjNjEzMmExY2JhMTM3N2Y0NTg4ZTBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1KwMT2F6NqKwqJ7BXk2f3UkVNJUv 10FRoIoZ0PCd1Nw8YtgOVGo4i04G1L8MInTQuFclhECQyGI6UuvNPvuVlteYbkPL ECvXQ8guGO6jle8p1Ihsbf9MRyce01aaz2L/o3EzEZisQN+rulcKpZebrDdLi+Ot m4q35NJL/agrSMYnIYbmUtTF88ef4kQXfqnkM+eGE9rZhQvB3KdaZyjQodvYj+IB wmxo/J9ussq+oZigXFljuBKl36m1xOj+90YiQPasMQz65mZfaXPu4kjtDOyBaw4I JbN6zwDQJj8hYD4Jjk9vZSD0V6o5fOh2Y29+fw/G+ERq8VnfFjMcqtubkwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDYekxomVqNBDsYTKhy6E3f0WI4MMB8GA1UdIwQY MBaAFGcOxTBoOT2Q22AewpXkKQhSXhDCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWnc3Rk1HZzVQWkRiWUI3Q2xlUXBDRkplRU1JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My9jNDI0ZDEtMjdmZC00ZjQ3LWJiNzEt NzNkMjE4YTQ5MDNlLzEvTmg2VEdpWldvMEVPeGhNcUhMb1RkX1JZamd3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81My9jNDI0ZDEtMjdmZC00ZjQ3LWJiNzEtNzNkMjE4YTQ5MDNl LzEvWnc3Rk1HZzVQWkRiWUI3Q2xlUXBDRkplRU1JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwQCfMA0G CSqGSIb3DQEBCwUAA4IBAQBRke4Xc+L68msF/hWcBIqeeSC1on3a06f60igUKEGt Cv1Nq6rQqYID9gfCUU9SFokpsWFlEmWMTR8kXxKp6YZK1DsHGZdr3Nr78f5EPfOd w46bBWL4+bQMZJbmWOwOcOiscVPCOaGlAGe/dkHSaZsy994UsgVq5euSmCGMhan/ nEBI/A+AY6xT0QCpv5ZB6oGoDB8evWojyX8VeV4DWhz8VBn8JRFlyKi34c0npsmE yuKqIFQ7c6TqJmMn8IQ9oQjbrlNiNaAsINIKTfJBDXxMGdMixPJ+iQqu+aqHmNXQ uQPM9O6ypyyFeNbZrxpc5oKQ9ktVo51gIerdK3QSNOlK -----END CERTIFICATE-----Generated at Sun Jan 25 16:37:58 2026 by rpki-client