This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/NwXP9XjEV_tAQNFwDQBmSN78alU.roa File: NwXP9XjEV_tAQNFwDQBmSN78alU.roa (raw, json) Hash identifier: I0Ts9gFxat3bJUV/IHoujUultkWM8WN3TtuoR0WHIVg= Subject key identifier: 37:05:CF:F5:78:C4:57:FB:40:40:D1:70:0D:00:66:48:DE:FC:6A:55 Certificate issuer: /CN=76815c7d0e863c21780f8bf4b9ecc3a9c6459298 Certificate serial: 019B7CEE4B6008D54C6C0B889596CED6FE51 Authority key identifier: 76:81:5C:7D:0E:86:3C:21:78:0F:8B:F4:B9:EC:C3:A9:C6:45:92:98 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/doFcfQ6GPCF4D4v0uezDqcZFkpg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/NwXP9XjEV_tAQNFwDQBmSN78alU.roa Signing time: Fri 02 Jan 2026 04:19:10 +0000 ROA not before: Fri 02 Jan 2026 04:19:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12859 IP address blocks: 193.104.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.mft rsync://rpki.ripe.net/repository/DEFAULT/doFcfQ6GPCF4D4v0uezDqcZFkpg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 10:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:4b:60:08:d5:4c:6c:0b:88:95:96:ce:d6:fe:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=76815c7d0e863c21780f8bf4b9ecc3a9c6459298 Validity Not Before: Jan 2 04:19:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3705cff578c457fb4040d1700d006648defc6a55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:1a:d7:59:23:5a:a9:be:09:44:07:49:70:4d: ff:bf:84:0e:79:f3:e3:74:e3:76:5f:0d:8d:2f:f2: 26:f1:65:9e:c3:d1:b7:92:b6:43:a5:34:83:cd:dc: a7:e1:4f:22:95:89:19:f5:7e:1c:2e:0f:86:d4:aa: 9e:61:e5:3a:01:43:b1:fb:3b:c8:25:af:fd:46:99: 2d:7b:cd:da:92:24:12:2c:cf:63:5d:73:97:0e:be: 3f:d8:14:7e:c8:9e:94:6e:f7:80:b8:1e:9b:9c:71: b4:1f:eb:53:67:90:14:83:7f:40:d6:e8:b5:9d:74: bb:7b:b5:a0:5b:ea:f1:1a:41:d6:6c:da:c1:c7:77: 20:4b:e5:07:f0:eb:0c:44:a7:96:be:33:b2:44:54: 49:0a:77:0b:74:3b:7c:6e:84:e1:cf:d7:c5:ff:dd: 86:ae:47:1a:5d:20:b3:49:e5:06:11:32:b0:41:c3: c4:ff:61:41:87:f8:a2:26:12:28:26:25:2a:6e:52: 17:de:16:7e:1b:87:f6:b9:10:ef:ea:44:fd:95:c6: ca:74:0f:62:bb:8f:f9:b7:3b:0b:51:40:a4:0f:91: 2b:2c:3e:5f:c1:45:46:b3:e0:fe:50:6d:73:18:59: d9:2d:d9:7e:5b:db:5d:aa:ba:5d:5b:54:5a:41:8a: 6f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:05:CF:F5:78:C4:57:FB:40:40:D1:70:0D:00:66:48:DE:FC:6A:55 X509v3 Authority Key Identifier: keyid:76:81:5C:7D:0E:86:3C:21:78:0F:8B:F4:B9:EC:C3:A9:C6:45:92:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/doFcfQ6GPCF4D4v0uezDqcZFkpg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/NwXP9XjEV_tAQNFwDQBmSN78alU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.104.104.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:be:b4:6f:81:59:c3:d7:c3:78:c0:c4:f7:9f:a2:5e:a5:1c: 2c:89:18:97:72:d0:c6:2e:a3:6f:0b:de:eb:aa:3e:26:79:f7: be:34:12:bf:9f:52:a5:1b:a2:39:1e:3e:40:fe:25:8f:01:07: e8:69:c6:1a:71:55:bb:33:80:30:36:a6:1b:1c:bd:9e:d7:e4: 19:9b:9c:97:c6:ce:65:93:b1:9d:ac:b5:b0:c8:c0:ae:56:4d: 85:de:b5:38:35:26:94:d8:f2:4d:90:a7:e5:86:83:5c:43:02: 28:1f:17:5e:17:34:0b:9d:60:28:c9:1a:2b:49:b5:68:d3:12: 03:bc:77:63:49:15:04:a5:de:0e:5c:fa:cf:79:ec:92:e5:18: 34:d0:52:8b:98:6c:c1:29:3e:aa:19:b4:a6:52:b6:64:5c:49: 9b:3f:04:c4:0c:2f:4e:d2:78:49:1a:7d:be:11:7e:9b:74:57: df:1e:23:df:77:7c:82:21:81:a4:49:9a:c7:85:6f:66:ea:be: 10:7c:1c:77:92:e3:78:a0:13:07:4e:bc:d8:f7:e5:1c:e0:3f: d0:96:fb:58:f8:6a:72:f7:42:95:8a:2a:9e:d7:01:0f:de:38: b5:21:c1:3b:c7:bc:90:cf:c6:e1:b1:59:6f:f8:9c:4d:6d:9f: 05:29:88:75 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87ktgCNVMbAuIlZbO1v5RMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2ODE1YzdkMGU4NjNjMjE3ODBmOGJmNGI5ZWNjM2E5YzY0 NTkyOTgwHhcNMjYwMTAyMDQxOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNzA1Y2ZmNTc4YzQ1N2ZiNDA0MGQxNzAwZDAwNjY0OGRlZmM2YTU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2RrXWSNaqb4JRAdJcE3/v4QOefPj dON2Xw2NL/Im8WWew9G3krZDpTSDzdyn4U8ilYkZ9X4cLg+G1KqeYeU6AUOx+zvI Ja/9Rpkte83akiQSLM9jXXOXDr4/2BR+yJ6UbveAuB6bnHG0H+tTZ5AUg39A1ui1 nXS7e7WgW+rxGkHWbNrBx3cgS+UH8OsMRKeWvjOyRFRJCncLdDt8boThz9fF/92G rkcaXSCzSeUGETKwQcPE/2FBh/iiJhIoJiUqblIX3hZ+G4f2uRDv6kT9lcbKdA9i u4/5tzsLUUCkD5ErLD5fwUVGs+D+UG1zGFnZLdl+W9tdqrpdW1RaQYpvCwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDcFz/V4xFf7QEDRcA0AZkje/GpVMB8GA1UdIwQY MBaAFHaBXH0OhjwheA+L9Lnsw6nGRZKYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZG9GY2ZRNkdQQ0Y0RDR2MHVlekRxY1pGa3BnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8yYWFhNDktMjgyMy00ZWUyLWI1ZDEt ZTU0NzM5NWQ2YjQ3LzEvTndYUDlYakVWX3RBUU5Gd0RRQm1TTjc4YWxVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS8yYWFhNDktMjgyMy00ZWUyLWI1ZDEtZTU0NzM5NWQ2YjQ3 LzEvZG9GY2ZRNkdQQ0Y0RDR2MHVlekRxY1pGa3BnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwWhoMA0G CSqGSIb3DQEBCwUAA4IBAQCOvrRvgVnD18N4wMT3n6JepRwsiRiXctDGLqNvC97r qj4mefe+NBK/n1KlG6I5Hj5A/iWPAQfoacYacVW7M4AwNqYbHL2e1+QZm5yXxs5l k7GdrLWwyMCuVk2F3rU4NSaU2PJNkKflhoNcQwIoHxdeFzQLnWAoyRorSbVo0xID vHdjSRUEpd4OXPrPeeyS5Rg00FKLmGzBKT6qGbSmUrZkXEmbPwTEDC9O0nhJGn2+ EX6bdFffHiPfd3yCIYGkSZrHhW9m6r4QfBx3kuN4oBMHTrzY9+Uc4D/QlvtY+Gpy 90KViiqe1wEP3ji1IcE7x7yQz8bhsVlv+JxNbZ8FKYh1 -----END CERTIFICATE-----Generated at Sun Jan 25 18:06:23 2026 by rpki-client