This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/Nx6wDnUBSBZqmYN5kHz4xnaVIhE.roa File: Nx6wDnUBSBZqmYN5kHz4xnaVIhE.roa (raw, json) Hash identifier: 5HADbF1OJPVJpyW+dJGox7lC/+M8lgU6YWr2jOeJnE0= Subject key identifier: 37:1E:B0:0E:75:01:48:16:6A:99:83:79:90:7C:F8:C6:76:95:22:11 Certificate issuer: /CN=1c7b06bf41300dc4d30f3d0e180c9b95d2bcddff Certificate serial: 019B79ECF8DCCEFC2AF8A794CE2A5FFB7660 Authority key identifier: 1C:7B:06:BF:41:30:0D:C4:D3:0F:3D:0E:18:0C:9B:95:D2:BC:DD:FF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HHsGv0EwDcTTDz0OGAybldK83f8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/Nx6wDnUBSBZqmYN5kHz4xnaVIhE.roa Signing time: Thu 01 Jan 2026 14:18:51 +0000 ROA not before: Thu 01 Jan 2026 14:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214167 IP address blocks: 147.78.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/HHsGv0EwDcTTDz0OGAybldK83f8.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/HHsGv0EwDcTTDz0OGAybldK83f8.mft rsync://rpki.ripe.net/repository/DEFAULT/HHsGv0EwDcTTDz0OGAybldK83f8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:f8:dc:ce:fc:2a:f8:a7:94:ce:2a:5f:fb:76:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c7b06bf41300dc4d30f3d0e180c9b95d2bcddff Validity Not Before: Jan 1 14:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=371eb00e750148166a998379907cf8c676952211 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:11:ca:21:f3:e9:5b:61:e8:95:27:53:96:20: b3:1c:c1:c8:e7:8b:4a:81:39:2b:56:21:8e:5a:9a: c7:aa:b9:18:bf:4d:6f:8c:ea:fb:35:c3:2c:d9:8e: 88:6b:32:9b:65:54:15:6d:82:97:99:75:42:93:49: 0b:3d:3a:a9:59:0c:0b:e8:c4:9a:07:32:40:ca:55: 1e:e8:4d:8d:9a:7e:da:52:79:9b:1a:11:78:b6:92: 47:32:ee:de:4e:c7:c7:1a:9c:32:47:8e:f2:06:2f: 1b:d7:cb:6a:d2:f0:e4:9b:bd:13:bb:d6:05:8c:24: f6:35:cd:45:95:36:6c:15:42:bc:14:3c:73:37:1d: 77:b1:31:6e:5a:32:fb:97:6e:ad:9c:21:d3:75:79: e6:6a:ea:ef:3c:e5:ea:d4:9a:5a:ab:1e:5d:bc:ce: 98:be:ad:48:d9:a8:9e:d9:1e:5a:eb:9c:dc:b3:b1: 5e:b5:c5:74:40:7e:44:00:7e:bf:38:cc:3c:a0:92: 08:e7:9a:a4:88:d1:f8:35:cb:64:30:0b:d4:29:4d: 46:55:33:bb:ec:e0:fa:37:69:a0:bb:9e:7c:64:d0: f5:86:f2:2e:3a:4c:64:2d:23:db:e5:43:1b:d5:aa: be:50:25:ac:a7:c0:b0:41:e0:5f:e7:39:43:2e:5c: fe:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:1E:B0:0E:75:01:48:16:6A:99:83:79:90:7C:F8:C6:76:95:22:11 X509v3 Authority Key Identifier: keyid:1C:7B:06:BF:41:30:0D:C4:D3:0F:3D:0E:18:0C:9B:95:D2:BC:DD:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HHsGv0EwDcTTDz0OGAybldK83f8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/Nx6wDnUBSBZqmYN5kHz4xnaVIhE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/HHsGv0EwDcTTDz0OGAybldK83f8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.78.219.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:05:c9:59:35:b6:13:06:1f:7e:df:e7:4e:8e:b2:e3:b8:9d: d9:fd:3e:b9:cd:fd:19:d1:c8:56:5b:2e:4b:33:31:a6:67:3e: 4c:b0:25:0a:ed:0f:07:2c:cb:e5:24:81:f5:b5:e5:b1:0c:de: cf:c7:81:15:01:ee:71:7d:7b:cc:9e:00:8f:e0:a5:23:c5:d6: 0c:82:76:fa:86:fb:80:dd:cc:a4:d9:be:69:c9:40:1f:1c:fc: 0c:0b:64:f3:8a:73:bd:73:cf:33:53:d6:8f:06:2d:be:8e:88: 89:f9:cb:ee:8f:1f:36:fb:10:66:08:56:4d:72:4f:d3:8a:1e: 89:3e:36:5c:9d:2f:a4:4b:de:71:be:f4:65:f3:8c:67:9e:78: b1:11:01:b6:62:39:34:ea:f0:aa:d9:2d:fb:d9:b2:a6:bc:76: 62:bc:06:6b:55:50:da:20:eb:67:c6:52:fb:b1:56:e0:10:b0: 29:ba:9c:c0:ee:d0:9f:62:7b:f6:4f:15:af:c3:f0:ee:ad:76: 9b:9e:1f:26:2d:7b:77:13:1c:ca:84:b0:4f:3e:37:d7:1f:b7: 2a:49:13:0a:0d:02:db:e3:65:4c:ba:60:47:8e:e7:b3:ce:5c: b6:16:bd:8f:9c:3f:71:f9:7a:c8:7b:71:6d:fd:e1:36:52:33: 9f:6f:9c:79 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57Pjczvwq+KeUzipf+3ZgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjN2IwNmJmNDEzMDBkYzRkMzBmM2QwZTE4MGM5Yjk1ZDJi Y2RkZmYwHhcNMjYwMTAxMTQxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNzFlYjAwZTc1MDE0ODE2NmE5OTgzNzk5MDdjZjhjNjc2OTUyMjExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuBHKIfPpW2HolSdTliCzHMHI54tK gTkrViGOWprHqrkYv01vjOr7NcMs2Y6IazKbZVQVbYKXmXVCk0kLPTqpWQwL6MSa BzJAylUe6E2Nmn7aUnmbGhF4tpJHMu7eTsfHGpwyR47yBi8b18tq0vDkm70Tu9YF jCT2Nc1FlTZsFUK8FDxzNx13sTFuWjL7l26tnCHTdXnmaurvPOXq1Jpaqx5dvM6Y vq1I2aie2R5a65zcs7FetcV0QH5EAH6/OMw8oJII55qkiNH4NctkMAvUKU1GVTO7 7OD6N2mgu558ZND1hvIuOkxkLSPb5UMb1aq+UCWsp8CwQeBf5zlDLlz+4wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDcesA51AUgWapmDeZB8+MZ2lSIRMB8GA1UdIwQY MBaAFBx7Br9BMA3E0w89DhgMm5XSvN3/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEhzR3YwRXdEY1RURHowT0dBeWJsZEs4M2Y4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS83MDJiMjgtZTE1OC00MGMwLTgzMzAt MjRmZGRjNmQxNDdiLzEvTng2d0RuVUJTQlpxbVlONWtIejR4bmFWSWhFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS83MDJiMjgtZTE1OC00MGMwLTgzMzAtMjRmZGRjNmQxNDdi LzEvSEhzR3YwRXdEY1RURHowT0dBeWJsZEs4M2Y4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAk07bMA0G CSqGSIb3DQEBCwUAA4IBAQB8BclZNbYTBh9+3+dOjrLjuJ3Z/T65zf0Z0chWWy5L MzGmZz5MsCUK7Q8HLMvlJIH1teWxDN7Px4EVAe5xfXvMngCP4KUjxdYMgnb6hvuA 3cyk2b5pyUAfHPwMC2TzinO9c88zU9aPBi2+joiJ+cvujx82+xBmCFZNck/Tih6J PjZcnS+kS95xvvRl84xnnnixEQG2Yjk06vCq2S372bKmvHZivAZrVVDaIOtnxlL7 sVbgELApupzA7tCfYnv2TxWvw/DurXabnh8mLXt3ExzKhLBPPjfXH7cqSRMKDQLb 42VMumBHjuezzly2Fr2PnD9x+XrIe3Ft/eE2UjOfb5x5 -----END CERTIFICATE-----Generated at Mon Jan 26 03:07:04 2026 by rpki-client