This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/nCoVQp-9GoVs3ADjl3g0gBazokM.roa File: nCoVQp-9GoVs3ADjl3g0gBazokM.roa (raw, json) Hash identifier: lnGftBj6+HAUcV2587YKXP9gaJct0VpqL1P75Kb2wPs= Subject key identifier: 9C:2A:15:42:9F:BD:1A:85:6C:DC:00:E3:97:78:34:80:16:B3:A2:43 Certificate issuer: /CN=17b5042fc20d9bab1676e09af7ff1ba5bfadae75 Certificate serial: 019B984330EB08EB6BCF6C78D92AB593EFAA Authority key identifier: 17:B5:04:2F:C2:0D:9B:AB:16:76:E0:9A:F7:FF:1B:A5:BF:AD:AE:75 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F7UEL8INm6sWduCa9_8bpb-trnU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/nCoVQp-9GoVs3ADjl3g0gBazokM.roa Signing time: Wed 07 Jan 2026 11:41:38 +0000 ROA not before: Wed 07 Jan 2026 11:41:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212238 IP address blocks: 146.19.7.0/24 maxlen: 24 2a03:cc40::/29 maxlen: 32 2a0c:e500::/29 maxlen: 32 2a10:1d80::/29 maxlen: 32 2a11:ac00::/29 maxlen: 32 2a11:c000::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/F7UEL8INm6sWduCa9_8bpb-trnU.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/F7UEL8INm6sWduCa9_8bpb-trnU.mft rsync://rpki.ripe.net/repository/DEFAULT/F7UEL8INm6sWduCa9_8bpb-trnU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:98:43:30:eb:08:eb:6b:cf:6c:78:d9:2a:b5:93:ef:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=17b5042fc20d9bab1676e09af7ff1ba5bfadae75 Validity Not Before: Jan 7 11:41:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9c2a15429fbd1a856cdc00e39778348016b3a243 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:93:63:11:a5:f6:00:64:43:7b:01:52:92:09: 2b:79:1e:c1:50:cc:95:14:3f:22:24:15:b8:22:83: 5e:b6:1a:c8:34:2e:db:33:95:3a:af:f3:d7:84:43: 81:af:8b:9a:78:0e:91:61:c1:f8:22:6a:8d:24:6b: d4:94:c4:0c:11:9e:e3:7e:2e:d2:6d:ce:9a:75:82: b2:a0:94:27:5d:b2:56:9e:39:08:f1:0d:69:6d:11: 40:09:2a:f6:4f:a7:60:94:2c:d0:5e:72:1e:80:e3: 86:a4:02:19:de:13:49:71:9c:c0:88:2a:74:16:93: a2:12:89:f7:df:d4:89:a9:93:86:01:09:45:1a:eb: 56:76:3b:5a:56:3e:fb:d2:e2:62:e6:0b:fa:53:13: c5:d6:33:b7:38:e5:9c:fd:16:d3:7e:0f:7e:bd:24: 32:dd:d0:98:16:c6:20:9d:7f:6c:6e:f0:bf:12:68: 98:f5:d0:44:0a:8c:f1:be:72:67:e5:43:93:81:d8: 17:25:37:77:e9:ff:16:8a:02:5f:af:2b:e9:fa:d2: 56:9e:2b:3a:ad:aa:2c:40:d8:3c:c3:36:69:68:e5: 6a:41:c3:f5:bb:ab:8c:37:d2:e6:52:c7:5c:1e:be: af:92:1a:12:81:11:17:d2:5b:e1:8e:fd:49:b3:7c: bc:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:2A:15:42:9F:BD:1A:85:6C:DC:00:E3:97:78:34:80:16:B3:A2:43 X509v3 Authority Key Identifier: keyid:17:B5:04:2F:C2:0D:9B:AB:16:76:E0:9A:F7:FF:1B:A5:BF:AD:AE:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F7UEL8INm6sWduCa9_8bpb-trnU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/nCoVQp-9GoVs3ADjl3g0gBazokM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/F7UEL8INm6sWduCa9_8bpb-trnU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 146.19.7.0/24 IPv6: 2a03:cc40::/29 2a0c:e500::/29 2a10:1d80::/29 2a11:ac00::/29 2a11:c000::/29 Signature Algorithm: sha256WithRSAEncryption 2f:2a:66:5a:61:6c:06:bc:3e:28:64:47:c1:fd:67:55:9b:cb: 4d:7b:0a:cb:42:55:13:19:5b:7a:d4:2c:c3:2e:f0:08:00:66: 1b:b4:ee:2d:3c:69:4c:d7:76:87:0b:a6:20:bd:dc:03:e3:43: 81:36:9c:3e:9c:24:65:ab:41:a5:6d:6c:79:a4:f1:9c:09:28: 3b:6c:61:1b:df:74:a3:b6:5f:c8:ae:b7:61:d8:22:1c:d2:22: fa:5a:e0:67:18:bd:04:4a:24:50:16:80:5f:d1:c2:82:3c:60: 54:13:71:30:bb:1e:a9:55:89:75:a2:6c:af:cf:1f:b9:3c:75: 18:5d:ff:44:93:e3:af:e7:6c:ad:c0:3f:9e:d7:9c:56:f7:6b: ad:bd:8e:0c:f2:2a:4d:fd:19:41:04:3b:8a:ef:32:db:d4:59: cc:91:f8:d7:84:16:83:70:c8:27:e8:eb:76:b8:c2:b9:9a:dd: d4:a4:0f:b2:d5:ae:a0:17:8e:3e:6e:82:13:19:ec:60:68:98: 66:d3:84:c3:7b:f2:e4:55:51:c2:fc:6c:4e:6b:54:79:9d:28: 91:f1:f6:1f:a8:5e:c9:34:19:5f:6e:41:c5:fd:c2:30:da:97: 43:07:98:7b:e0:ce:c1:f2:b5:fd:79:b1:fd:0a:f8:13:80:72: f5:38:f2:08 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgISAZuYQzDrCOtrz2x42Sq1k++qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE3YjUwNDJmYzIwZDliYWIxNjc2ZTA5YWY3ZmYxYmE1YmZh ZGFlNzUwHhcNMjYwMTA3MTE0MTM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YzJhMTU0MjlmYmQxYTg1NmNkYzAwZTM5Nzc4MzQ4MDE2YjNhMjQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtJNjEaX2AGRDewFSkgkreR7BUMyV FD8iJBW4IoNethrINC7bM5U6r/PXhEOBr4uaeA6RYcH4ImqNJGvUlMQMEZ7jfi7S bc6adYKyoJQnXbJWnjkI8Q1pbRFACSr2T6dglCzQXnIegOOGpAIZ3hNJcZzAiCp0 FpOiEon339SJqZOGAQlFGutWdjtaVj770uJi5gv6UxPF1jO3OOWc/RbTfg9+vSQy 3dCYFsYgnX9sbvC/EmiY9dBECozxvnJn5UOTgdgXJTd36f8WigJfryvp+tJWnis6 raosQNg8wzZpaOVqQcP1u6uMN9LmUsdcHr6vkhoSgREX0lvhjv1Js3y8xQIDAQAB o4ICNDCCAjAwHQYDVR0OBBYEFJwqFUKfvRqFbNwA45d4NIAWs6JDMB8GA1UdIwQY MBaAFBe1BC/CDZurFnbgmvf/G6W/ra51MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRjdVRUw4SU5tNnNXZHVDYTlfOGJwYi10cm5VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS82NWU1NDMtN2U3YS00YWFiLWFjNzQt YmM2Nzk0ZTk1ZTVhLzEvbkNvVlFwLTlHb1ZzM0FEamwzZzBnQmF6b2tNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS82NWU1NDMtN2U3YS00YWFiLWFjNzQtYmM2Nzk0ZTk1ZTVh LzEvRjdVRUw4SU5tNnNXZHVDYTlfOGJwYi10cm5VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEoGCCsGAQUFBwEHAQH/BDswOTAMBAIAATAGAwQAkhMHMCkE AgACMCMDBQMqA8xAAwUDKgzlAAMFAyoQHYADBQMqEawAAwUDKhHAADANBgkqhkiG 9w0BAQsFAAOCAQEALypmWmFsBrw+KGRHwf1nVZvLTXsKy0JVExlbetQswy7wCABm G7TuLTxpTNd2hwumIL3cA+NDgTacPpwkZatBpW1seaTxnAkoO2xhG990o7ZfyK63 YdgiHNIi+lrgZxi9BEokUBaAX9HCgjxgVBNxMLseqVWJdaJsr88fuTx1GF3/RJPj r+dsrcA/ntecVvdrrb2ODPIqTf0ZQQQ7iu8y29RZzJH414QWg3DIJ+jrdrjCuZrd 1KQPstWuoBeOPm6CExnsYGiYZtOEw3vy5FVRwvxsTmtUeZ0okfH2H6heyTQZX25B xf3CMNqXQweYe+DOwfK1/Xmx/Qr4E4By9TjyCA== -----END CERTIFICATE-----Generated at Sun Jan 25 22:29:49 2026 by rpki-client