This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/cdc024-ea9c-4508-b936-80b9120738ca/1/rm6gBchORJ-jpmu9RaApbnzR-8w.roa File: rm6gBchORJ-jpmu9RaApbnzR-8w.roa (raw, json) Hash identifier: lte7WLkbI36lJ+4fiNF1yu19eeqodaTXa0g3tAj6qk4= Subject key identifier: AE:6E:A0:05:C8:4E:44:9F:A3:A6:6B:BD:45:A0:29:6E:7C:D1:FB:CC Certificate issuer: /CN=584d44ad55c262d84efd442dc8767b0413e1b162 Certificate serial: 019B7759115B35EA4FD6A977B298D1F370B9 Authority key identifier: 58:4D:44:AD:55:C2:62:D8:4E:FD:44:2D:C8:76:7B:04:13:E1:B1:62 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WE1ErVXCYthO_UQtyHZ7BBPhsWI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/cdc024-ea9c-4508-b936-80b9120738ca/1/rm6gBchORJ-jpmu9RaApbnzR-8w.roa Signing time: Thu 01 Jan 2026 02:18:04 +0000 ROA not before: Thu 01 Jan 2026 02:18:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49556 IP address blocks: 194.32.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/cdc024-ea9c-4508-b936-80b9120738ca/1/WE1ErVXCYthO_UQtyHZ7BBPhsWI.crl rsync://rpki.ripe.net/repository/DEFAULT/7d/cdc024-ea9c-4508-b936-80b9120738ca/1/WE1ErVXCYthO_UQtyHZ7BBPhsWI.mft rsync://rpki.ripe.net/repository/DEFAULT/WE1ErVXCYthO_UQtyHZ7BBPhsWI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 20:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:11:5b:35:ea:4f:d6:a9:77:b2:98:d1:f3:70:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=584d44ad55c262d84efd442dc8767b0413e1b162 Validity Not Before: Jan 1 02:18:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ae6ea005c84e449fa3a66bbd45a0296e7cd1fbcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:0f:2a:58:3e:58:63:16:77:78:c7:c4:d6:fc: 9b:94:4a:56:6d:0b:32:f7:ce:59:cc:4a:fd:f3:36: ed:43:7e:23:01:cf:a6:25:4a:90:df:94:2f:fb:7e: eb:0a:50:95:72:a3:b9:0b:21:93:d4:f9:4b:f2:eb: f1:53:07:10:5a:1d:72:88:28:08:9b:d1:da:fb:dc: 4c:6d:73:e7:02:a0:27:c5:e0:07:17:3b:d9:ab:2a: 7e:b4:87:53:73:af:b7:b2:6b:0f:5e:c9:24:59:a1: 05:87:30:24:22:db:56:76:0f:b5:75:0b:5d:8b:dd: 4e:65:9b:0b:32:46:53:ee:26:8b:fa:73:b3:75:7a: d2:ac:2c:a7:55:34:5c:6b:f3:89:cd:8a:1a:49:de: 83:a8:53:4d:7b:c4:f9:9c:05:f3:aa:9e:d5:af:28: 45:80:0a:2d:77:58:04:ba:ff:e0:95:07:cf:a6:a7: 17:77:60:d7:23:2d:7b:e4:8f:a5:27:9d:f9:99:b1: ed:af:4e:ad:82:d7:5b:3c:c5:b9:41:f3:4f:a8:ee: b6:c3:63:f5:6a:10:91:a5:5e:29:10:e9:fa:e4:d6: 6e:7e:02:bf:f0:c7:a3:81:0f:85:61:83:68:e6:cc: 2f:08:4f:e3:5b:1e:77:9b:03:4f:8e:e4:26:f5:97: fd:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:6E:A0:05:C8:4E:44:9F:A3:A6:6B:BD:45:A0:29:6E:7C:D1:FB:CC X509v3 Authority Key Identifier: keyid:58:4D:44:AD:55:C2:62:D8:4E:FD:44:2D:C8:76:7B:04:13:E1:B1:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WE1ErVXCYthO_UQtyHZ7BBPhsWI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/cdc024-ea9c-4508-b936-80b9120738ca/1/rm6gBchORJ-jpmu9RaApbnzR-8w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/cdc024-ea9c-4508-b936-80b9120738ca/1/WE1ErVXCYthO_UQtyHZ7BBPhsWI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.32.214.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:2d:92:77:f3:e2:27:42:32:80:07:f9:50:32:35:fe:9b:3a: 09:b6:c2:95:c2:85:26:3c:a8:3c:6f:5a:97:17:57:25:cd:5f: 39:97:1c:cd:0b:d2:8a:84:0d:b4:4c:aa:1e:e9:c9:fe:75:67: 24:04:52:fd:ac:94:6c:36:39:65:2b:eb:9b:e5:45:50:dd:16: fe:53:fb:21:d4:2d:f0:f2:8f:ec:91:c8:5a:97:4e:33:3d:0d: e4:27:14:85:70:40:4a:31:2a:f3:50:a3:b6:70:3b:7d:14:6b: 94:f2:2c:6c:50:c2:e4:9f:2d:71:22:a2:3c:f8:55:08:9d:58: 1b:f2:0c:31:53:76:85:0c:67:77:15:6a:8d:97:da:13:3f:86: 4c:d8:c0:00:90:13:ff:df:a7:5a:fd:f7:fe:cf:7a:d1:94:76: 22:ad:fc:10:97:52:4f:df:61:71:cd:d0:ab:89:9a:98:72:0a: a8:1e:15:46:8e:15:65:12:d7:0d:d2:22:d5:b1:af:d6:bf:f8: 3c:5b:cd:c2:ff:59:d9:e7:56:5d:7a:b3:bc:5e:c9:8f:cc:d9: f9:8f:d5:8b:1b:76:ff:bd:82:f3:e2:4f:ca:94:99:8f:07:bc: 53:70:73:19:ea:ef:36:d2:d5:dc:23:80:4a:90:54:da:f8:5d: ae:1c:3b:06 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3WRFbNepP1ql3spjR83C5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4NGQ0NGFkNTVjMjYyZDg0ZWZkNDQyZGM4NzY3YjA0MTNl MWIxNjIwHhcNMjYwMTAxMDIxODA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZTZlYTAwNWM4NGU0NDlmYTNhNjZiYmQ0NWEwMjk2ZTdjZDFmYmNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmw8qWD5YYxZ3eMfE1vyblEpWbQsy 985ZzEr98zbtQ34jAc+mJUqQ35Qv+37rClCVcqO5CyGT1PlL8uvxUwcQWh1yiCgI m9Ha+9xMbXPnAqAnxeAHFzvZqyp+tIdTc6+3smsPXskkWaEFhzAkIttWdg+1dQtd i91OZZsLMkZT7iaL+nOzdXrSrCynVTRca/OJzYoaSd6DqFNNe8T5nAXzqp7VryhF gAotd1gEuv/glQfPpqcXd2DXIy175I+lJ535mbHtr06tgtdbPMW5QfNPqO62w2P1 ahCRpV4pEOn65NZufgK/8MejgQ+FYYNo5swvCE/jWx53mwNPjuQm9Zf9lQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFK5uoAXITkSfo6ZrvUWgKW580fvMMB8GA1UdIwQY MBaAFFhNRK1VwmLYTv1ELch2ewQT4bFiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0UxRXJWWENZdGhPX1VRdHlIWjdCQlBoc1dJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC9jZGMwMjQtZWE5Yy00NTA4LWI5MzYt ODBiOTEyMDczOGNhLzEvcm02Z0JjaE9SSi1qcG11OVJhQXBibnpSLTh3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83ZC9jZGMwMjQtZWE5Yy00NTA4LWI5MzYtODBiOTEyMDczOGNh LzEvV0UxRXJWWENZdGhPX1VRdHlIWjdCQlBoc1dJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwiDWMA0G CSqGSIb3DQEBCwUAA4IBAQCNLZJ38+InQjKAB/lQMjX+mzoJtsKVwoUmPKg8b1qX F1clzV85lxzNC9KKhA20TKoe6cn+dWckBFL9rJRsNjllK+ub5UVQ3Rb+U/sh1C3w 8o/skchal04zPQ3kJxSFcEBKMSrzUKO2cDt9FGuU8ixsUMLkny1xIqI8+FUInVgb 8gwxU3aFDGd3FWqNl9oTP4ZM2MAAkBP/36da/ff+z3rRlHYirfwQl1JP32FxzdCr iZqYcgqoHhVGjhVlEtcN0iLVsa/Wv/g8W83C/1nZ51ZderO8XsmPzNn5j9WLG3b/ vYLz4k/KlJmPB7xTcHMZ6u820tXcI4BKkFTa+F2uHDsG -----END CERTIFICATE-----Generated at Mon Jan 26 05:30:34 2026 by rpki-client