This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/a45520-d9cc-45f2-8645-3ffa39b4dc0b/1/nXJHcqoIsxI3drmHw3AQC7elZ7E.roa File: nXJHcqoIsxI3drmHw3AQC7elZ7E.roa (raw, json) Hash identifier: ryIugqab9wVDLPyjvx2CM1nlUVNf6KLlapmc6lrRPd4= Subject key identifier: 9D:72:47:72:AA:08:B3:12:37:76:B9:87:C3:70:10:0B:B7:A5:67:B1 Certificate issuer: /CN=d9115590ca6f6b5440c6e25343cd8401868e3a1c Certificate serial: 019ACA975AFCD765DAAE98162274E4E13054 Authority key identifier: D9:11:55:90:CA:6F:6B:54:40:C6:E2:53:43:CD:84:01:86:8E:3A:1C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2RFVkMpva1RAxuJTQ82EAYaOOhw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/a45520-d9cc-45f2-8645-3ffa39b4dc0b/1/nXJHcqoIsxI3drmHw3AQC7elZ7E.roa Signing time: Fri 28 Nov 2025 13:11:48 +0000 ROA not before: Fri 28 Nov 2025 13:11:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 33885 IP address blocks: 193.178.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/a45520-d9cc-45f2-8645-3ffa39b4dc0b/1/2RFVkMpva1RAxuJTQ82EAYaOOhw.crl rsync://rpki.ripe.net/repository/DEFAULT/9e/a45520-d9cc-45f2-8645-3ffa39b4dc0b/1/2RFVkMpva1RAxuJTQ82EAYaOOhw.mft rsync://rpki.ripe.net/repository/DEFAULT/2RFVkMpva1RAxuJTQ82EAYaOOhw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:ca:97:5a:fc:d7:65:da:ae:98:16:22:74:e4:e1:30:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d9115590ca6f6b5440c6e25343cd8401868e3a1c Validity Not Before: Nov 28 13:11:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=9d724772aa08b3123776b987c370100bb7a567b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f2:cc:1d:19:2f:04:d6:86:d3:c8:aa:c5:b7: 4a:46:38:68:15:06:80:14:96:7d:e7:7c:94:d9:53: ff:bb:7d:05:37:72:57:28:1b:54:89:a4:a1:e6:ff: 38:ea:22:35:5f:64:9a:a4:ba:e9:db:f9:da:c2:2c: c0:98:60:26:82:12:21:fe:2e:a2:4f:78:08:32:bb: bc:c0:96:9c:12:2c:d6:bb:29:66:a9:54:d8:05:62: a1:80:d6:f3:c2:92:7c:87:57:b8:6c:07:b8:22:20: 03:40:22:00:96:02:d7:98:61:83:f6:8c:50:fa:f7: 7b:e6:2d:97:19:da:27:1b:c6:0e:7d:d2:59:57:61: c0:6a:1c:1a:48:65:34:84:33:6c:62:da:d5:24:e4: 97:a3:e9:39:15:a1:39:bc:6a:e5:64:a5:ab:31:81: 61:62:13:0a:e2:7b:79:83:22:30:41:ab:47:25:d6: d8:4a:57:1d:61:ce:e8:2a:b5:b4:3a:a0:72:6c:bb: 34:d9:35:7c:9b:09:7c:91:67:ac:d6:38:7c:87:83: 49:19:9f:22:81:7b:4f:7b:33:ab:ae:f9:b0:3e:76: 82:98:99:46:4a:26:64:81:f9:24:96:6e:db:b7:99: c8:d7:93:7c:40:2a:95:48:74:ce:88:50:5e:e5:1c: 9c:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:72:47:72:AA:08:B3:12:37:76:B9:87:C3:70:10:0B:B7:A5:67:B1 X509v3 Authority Key Identifier: keyid:D9:11:55:90:CA:6F:6B:54:40:C6:E2:53:43:CD:84:01:86:8E:3A:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2RFVkMpva1RAxuJTQ82EAYaOOhw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/a45520-d9cc-45f2-8645-3ffa39b4dc0b/1/nXJHcqoIsxI3drmHw3AQC7elZ7E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/a45520-d9cc-45f2-8645-3ffa39b4dc0b/1/2RFVkMpva1RAxuJTQ82EAYaOOhw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.178.130.0/24 Signature Algorithm: sha256WithRSAEncryption c2:2c:57:0c:cd:64:aa:4c:b7:e4:22:33:59:63:1d:02:22:37: 64:25:f0:b7:7f:9a:80:58:6f:b1:39:07:78:ec:97:48:b9:8c: 0e:57:50:7e:49:1e:7a:48:51:b9:95:01:ab:5f:14:a3:4e:7f: 8f:9b:fc:3e:b3:1d:5f:b0:b7:7f:6f:f8:7d:0a:21:4f:08:c3: af:f4:87:83:b3:f9:68:f5:dd:37:d1:46:33:62:5c:cb:4f:a5: d6:40:64:44:c8:6b:66:b0:da:6e:e8:42:6b:53:53:f3:7e:f8: ab:4e:ef:ad:60:00:6a:ce:59:a9:b1:bf:07:ab:20:a5:5f:d1: 9e:74:69:35:22:b8:15:f6:23:b5:07:d5:e4:d6:f5:c9:8c:73: 5b:42:20:2c:75:9c:72:26:19:0c:8d:b4:76:c6:bd:49:e9:4e: a1:34:51:fc:61:fa:1b:5c:4f:bf:40:ec:86:cb:0b:8a:88:a6: 9a:5e:54:d7:0e:5f:fd:b0:1d:b3:51:9f:d9:9f:7d:b9:57:8f: b2:ad:11:88:48:59:88:84:a5:45:57:53:32:5f:31:a5:81:bf: ae:87:4b:84:5e:36:a6:53:f2:b0:80:1e:7d:04:6e:b1:76:b8: 58:84:7b:1c:9c:a8:f1:95:69:6a:f7:77:5f:e3:ef:04:92:60: 8a:7f:0e:78 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZrKl1r812XarpgWInTk4TBUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5MTE1NTkwY2E2ZjZiNTQ0MGM2ZTI1MzQzY2Q4NDAxODY4 ZTNhMWMwHhcNMjUxMTI4MTMxMTQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZDcyNDc3MmFhMDhiMzEyMzc3NmI5ODdjMzcwMTAwYmI3YTU2N2IxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0vLMHRkvBNaG08iqxbdKRjhoFQaA FJZ953yU2VP/u30FN3JXKBtUiaSh5v846iI1X2SapLrp2/nawizAmGAmghIh/i6i T3gIMru8wJacEizWuylmqVTYBWKhgNbzwpJ8h1e4bAe4IiADQCIAlgLXmGGD9oxQ +vd75i2XGdonG8YOfdJZV2HAahwaSGU0hDNsYtrVJOSXo+k5FaE5vGrlZKWrMYFh YhMK4nt5gyIwQatHJdbYSlcdYc7oKrW0OqBybLs02TV8mwl8kWes1jh8h4NJGZ8i gXtPezOrrvmwPnaCmJlGSiZkgfkklm7bt5nI15N8QCqVSHTOiFBe5RycNwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJ1yR3KqCLMSN3a5h8NwEAu3pWexMB8GA1UdIwQY MBaAFNkRVZDKb2tUQMbiU0PNhAGGjjocMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMlJGVmtNcHZhMVJBeHVKVFE4MkVBWWFPT2h3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS9hNDU1MjAtZDljYy00NWYyLTg2NDUt M2ZmYTM5YjRkYzBiLzEvblhKSGNxb0lzeEkzZHJtSHczQVFDN2VsWjdFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZS9hNDU1MjAtZDljYy00NWYyLTg2NDUtM2ZmYTM5YjRkYzBi LzEvMlJGVmtNcHZhMVJBeHVKVFE4MkVBWWFPT2h3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwbKCMA0G CSqGSIb3DQEBCwUAA4IBAQDCLFcMzWSqTLfkIjNZYx0CIjdkJfC3f5qAWG+xOQd4 7JdIuYwOV1B+SR56SFG5lQGrXxSjTn+Pm/w+sx1fsLd/b/h9CiFPCMOv9IeDs/lo 9d030UYzYlzLT6XWQGREyGtmsNpu6EJrU1PzfvirTu+tYABqzlmpsb8HqyClX9Ge dGk1IrgV9iO1B9Xk1vXJjHNbQiAsdZxyJhkMjbR2xr1J6U6hNFH8YfobXE+/QOyG ywuKiKaaXlTXDl/9sB2zUZ/Zn325V4+yrRGISFmIhKVFV1MyXzGlgb+uh0uEXjam U/KwgB59BG6xdrhYhHscnKjxlWlq93df4+8EkmCKfw54 -----END CERTIFICATE-----Generated at Sat Dec 6 10:51:28 2025 by rpki-client