This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/Not7xN4xCy6Olxz8v3TTpBm960A.roa File: Not7xN4xCy6Olxz8v3TTpBm960A.roa (raw, json) Hash identifier: lEJJnZkSYykzWNfylINFb6sj60+PeKxAabc8JQckrw4= Subject key identifier: 36:8B:7B:C4:DE:31:0B:2E:8E:97:1C:FC:BF:74:D3:A4:19:BD:EB:40 Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Certificate serial: 019B783469DF196340383C3DF9EDE21DEAD3 Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/Not7xN4xCy6Olxz8v3TTpBm960A.roa Signing time: Thu 01 Jan 2026 06:17:39 +0000 ROA not before: Thu 01 Jan 2026 06:17:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50572 IP address blocks: 192.36.242.0/24 maxlen: 24 193.180.0.0/24 maxlen: 24 193.182.251.0/24 maxlen: 24 193.182.252.0/24 maxlen: 24 193.182.253.0/24 maxlen: 24 194.14.104.0/24 maxlen: 24 194.68.229.0/24 maxlen: 24 194.103.228.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:69:df:19:63:40:38:3c:3d:f9:ed:e2:1d:ea:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Validity Not Before: Jan 1 06:17:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=368b7bc4de310b2e8e971cfcbf74d3a419bdeb40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:d6:d0:40:6f:5b:a2:43:9e:bc:1b:2b:49:77: b2:45:a2:b3:e3:7f:34:b4:ce:df:5d:c9:be:38:a6: 20:47:6a:05:4a:66:72:2e:27:05:f8:4a:fe:1b:1a: 2d:34:ac:d2:61:8d:10:49:db:43:28:da:5e:fb:7e: 53:f8:f6:dc:2c:d0:0d:28:67:e1:c3:59:d6:29:67: 44:9d:8e:b2:50:af:62:e4:a8:a6:ac:08:a7:15:30: e4:f9:72:bd:fe:85:0f:13:9f:b3:e7:c6:1e:55:cd: 49:0b:4d:a4:c7:d0:fc:b4:02:19:1a:ec:c3:6b:c6: 8b:f4:09:c9:c7:da:37:24:f6:88:9a:b5:ff:ea:0e: 7f:3d:34:41:15:f2:c3:f6:81:ab:83:e3:3b:e1:a9: e6:be:42:68:52:0c:fd:b9:ae:72:30:97:21:14:3b: fa:ef:23:36:f7:e5:7e:b3:d5:c9:22:94:10:3a:1e: d2:eb:95:b3:a7:e3:f5:a1:47:2e:80:88:a2:29:c6: bc:73:a7:75:f7:ff:99:f9:0b:da:46:1d:f3:c5:df: 6d:61:94:35:4a:ee:40:dc:cb:00:9a:30:92:70:a1: bf:e3:3e:27:d4:35:60:8b:1c:4e:0c:c4:af:db:b4: bf:81:fd:ca:9e:a9:e7:9a:af:23:56:4d:e0:ed:6b: ca:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:8B:7B:C4:DE:31:0B:2E:8E:97:1C:FC:BF:74:D3:A4:19:BD:EB:40 X509v3 Authority Key Identifier: keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/Not7xN4xCy6Olxz8v3TTpBm960A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.36.242.0/24 193.180.0.0/24 193.182.251.0-193.182.253.255 194.14.104.0/24 194.68.229.0/24 194.103.228.0/22 Signature Algorithm: sha256WithRSAEncryption 0e:4b:96:9c:b2:97:9b:5b:ad:0f:2e:0b:a9:43:eb:98:7f:33: 3b:29:5e:71:53:28:1a:b9:41:d9:d3:c7:ff:ad:d9:71:c4:af: 33:f6:e0:03:c3:23:cd:7c:72:67:b0:fd:40:27:92:c2:d2:84: 7c:72:5d:13:9b:eb:56:91:99:6b:68:98:2a:28:f1:f0:92:c4: e3:ed:36:b0:b1:34:41:28:82:73:ac:8d:eb:8b:0c:f1:45:73: fa:58:8d:40:1d:46:f1:03:00:c6:b8:33:3a:62:96:e6:41:f1: 53:cd:79:9c:41:59:e5:92:78:e0:4b:58:40:fc:a9:52:a0:db: 4e:74:0b:f1:45:4c:c2:a9:1e:b7:c7:45:2c:41:fd:10:6a:69: e4:14:e8:39:9b:1e:4f:eb:44:76:c7:f8:c3:ff:80:52:9e:a7: d0:86:54:6e:99:56:e6:7b:a2:7e:5a:96:b1:d8:c1:b7:41:2e: 00:a8:8b:5e:59:2a:a5:d4:33:72:a9:3e:2f:cf:9d:03:75:e5: 4c:75:41:75:10:e7:18:0f:c6:ae:fa:f1:f0:7f:82:ef:9e:92: b6:76:8e:7b:3b:b8:4f:7d:df:fa:b8:b8:e1:37:54:83:e2:c9: 6a:8e:61:4c:5f:79:ec:11:06:e9:74:57:d6:b0:f5:df:20:6e: 46:1c:91:da -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgISAZt4NGnfGWNAODw9+e3iHerTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh ZGFmMWIwHhcNMjYwMTAxMDYxNzM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNjhiN2JjNGRlMzEwYjJlOGU5NzFjZmNiZjc0ZDNhNDE5YmRlYjQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAntbQQG9bokOevBsrSXeyRaKz4380 tM7fXcm+OKYgR2oFSmZyLicF+Er+GxotNKzSYY0QSdtDKNpe+35T+PbcLNANKGfh w1nWKWdEnY6yUK9i5KimrAinFTDk+XK9/oUPE5+z58YeVc1JC02kx9D8tAIZGuzD a8aL9AnJx9o3JPaImrX/6g5/PTRBFfLD9oGrg+M74anmvkJoUgz9ua5yMJchFDv6 7yM29+V+s9XJIpQQOh7S65Wzp+P1oUcugIiiKca8c6d19/+Z+QvaRh3zxd9tYZQ1 Su5A3MsAmjCScKG/4z4n1DVgixxODMSv27S/gf3Knqnnmq8jVk3g7WvKWQIDAQAB o4ICLzCCAiswHQYDVR0OBBYEFDaLe8TeMQsujpcc/L9006QZvetAMB8GA1UdIwQY MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt OTQzZDAzMzIxMzI2LzEvTm90N3hONHhDeTZPbHh6OHYzVFRwQm05NjBBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2 LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEUGCCsGAQUFBwEHAQH/BDYwNDAyBAIAATAsAwQAwCTyAwQA wbQAMAwDBADBtvsDBAHBtvwDBADCDmgDBADCROUDBALCZ+QwDQYJKoZIhvcNAQEL BQADggEBAA5Llpyyl5tbrQ8uC6lD65h/MzspXnFTKBq5QdnTx/+t2XHErzP24APD I818cmew/UAnksLShHxyXROb61aRmWtomCoo8fCSxOPtNrCxNEEognOsjeuLDPFF c/pYjUAdRvEDAMa4MzpiluZB8VPNeZxBWeWSeOBLWED8qVKg2050C/FFTMKpHrfH RSxB/RBqaeQU6DmbHk/rRHbH+MP/gFKep9CGVG6ZVuZ7on5alrHYwbdBLgCoi15Z KqXUM3KpPi/PnQN15Ux1QXUQ5xgPxq768fB/gu+ekrZ2jns7uE993/q4uOE3VIPi yWqOYUxfeewRBul0V9aw9d8gbkYckdo= -----END CERTIFICATE-----Generated at Sun Jan 25 09:04:19 2026 by rpki-client