This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ResNsjgX4oprSL1CLrse-V3yLNc.roa File: ResNsjgX4oprSL1CLrse-V3yLNc.roa (raw, json) Hash identifier: 1VvoSQuzHT8j5mTj6MhaRZ8wSVz9HD+GpEp9pRZvIUo= Subject key identifier: 45:EB:0D:B2:38:17:E2:8A:6B:48:BD:42:2E:BB:1E:F9:5D:F2:2C:D7 Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Certificate serial: 019B78347EBC3726010A73C5C5D0046ADB43 Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ResNsjgX4oprSL1CLrse-V3yLNc.roa Signing time: Thu 01 Jan 2026 06:17:44 +0000 ROA not before: Thu 01 Jan 2026 06:17:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202395 IP address blocks: 192.165.252.0/24 maxlen: 24 193.181.45.0/24 maxlen: 24 193.183.224.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:7e:bc:37:26:01:0a:73:c5:c5:d0:04:6a:db:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Validity Not Before: Jan 1 06:17:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=45eb0db23817e28a6b48bd422ebb1ef95df22cd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:16:cd:3a:4e:ef:9c:54:4d:f8:e5:5b:55:a1: 61:0d:71:25:0e:37:ab:ba:bd:86:05:0a:65:d9:bd: 0b:39:ad:3b:fa:f4:6a:e0:d8:59:2e:ae:c7:75:1d: a6:b1:c0:64:d5:5f:09:1a:16:13:30:02:a8:14:11: e3:91:cf:c1:c8:65:34:4f:3a:3f:54:22:d9:08:0f: dd:14:1f:1d:fc:a6:3c:8d:c3:7b:e6:47:3d:74:31: 07:78:41:bc:6e:05:61:b9:61:2f:8e:9f:51:50:4a: 95:ca:fc:41:f8:e1:0c:f0:b5:06:d4:fa:32:47:11: 58:73:c5:5a:a7:41:db:cc:a2:26:2d:35:1a:d7:97: e3:38:d8:f3:58:48:82:51:1d:24:5b:c5:4f:a2:3a: 4c:8f:2e:da:56:c1:2d:cb:15:7f:1a:1f:ea:90:dd: aa:6e:c9:d3:64:28:7d:46:d6:a5:35:39:f9:c7:8c: b2:10:a7:6d:51:7f:21:6d:05:3a:47:cf:c5:60:28: d8:2c:1f:b1:cf:84:a1:35:bf:c5:04:10:a9:3d:84: b4:b6:37:f3:77:69:6d:06:d6:62:71:89:d4:8f:4e: 86:8f:79:40:0b:13:61:01:57:60:8f:ec:c2:60:e9: 11:5d:3b:79:f3:ef:49:1c:29:20:e4:82:9c:16:73: 48:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:EB:0D:B2:38:17:E2:8A:6B:48:BD:42:2E:BB:1E:F9:5D:F2:2C:D7 X509v3 Authority Key Identifier: keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ResNsjgX4oprSL1CLrse-V3yLNc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.165.252.0/24 193.181.45.0/24 193.183.224.0/22 Signature Algorithm: sha256WithRSAEncryption a3:7e:50:0e:91:5c:05:6f:e8:53:bd:7c:bb:67:5b:5d:72:18: ef:af:37:6c:d1:33:66:14:d6:c7:ac:ff:76:0c:b1:cb:19:25: 29:41:62:94:4f:91:28:a5:02:4d:58:1b:0f:37:a0:1b:00:a4: d3:53:4e:c6:06:ac:ae:bd:c4:ad:8e:a3:27:7c:f6:67:93:db: 4b:db:49:e3:c0:a5:92:62:69:15:dd:c0:52:c5:fd:6b:f1:d8: 28:f8:11:97:3f:f9:77:8c:29:80:fc:d1:25:41:82:c2:a0:49: e7:9a:2b:46:4d:7a:b4:fa:ad:76:45:d9:d3:99:88:a8:60:bd: 9f:7b:60:91:42:ec:03:d9:6a:53:41:2e:af:7d:ba:fe:f5:cd: f8:00:54:d8:19:45:59:43:d3:6a:76:8e:01:d3:b6:8b:10:45: 16:05:39:a5:8e:b3:2e:3e:01:bf:33:b2:ac:74:e8:52:5c:70: 49:c6:e4:6c:bb:70:08:c0:6b:e2:b2:3d:d6:d4:b6:3a:28:5b: 7f:30:16:e9:07:0b:c9:e0:af:4e:cf:da:42:4a:15:77:26:30: 79:90:a1:95:2f:d8:d6:b2:e4:e4:bf:23:17:87:eb:3b:92:a4: 43:22:72:52:db:8d:6c:30:ac:32:36:3d:45:46:b2:a9:11:91: 75:6c:6a:6e -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt4NH68NyYBCnPFxdAEattDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh ZGFmMWIwHhcNMjYwMTAxMDYxNzQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NWViMGRiMjM4MTdlMjhhNmI0OGJkNDIyZWJiMWVmOTVkZjIyY2Q3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5xbNOk7vnFRN+OVbVaFhDXElDjer ur2GBQpl2b0LOa07+vRq4NhZLq7HdR2mscBk1V8JGhYTMAKoFBHjkc/ByGU0Tzo/ VCLZCA/dFB8d/KY8jcN75kc9dDEHeEG8bgVhuWEvjp9RUEqVyvxB+OEM8LUG1Poy RxFYc8Vap0HbzKImLTUa15fjONjzWEiCUR0kW8VPojpMjy7aVsEtyxV/Gh/qkN2q bsnTZCh9RtalNTn5x4yyEKdtUX8hbQU6R8/FYCjYLB+xz4ShNb/FBBCpPYS0tjfz d2ltBtZicYnUj06Gj3lACxNhAVdgj+zCYOkRXTt58+9JHCkg5IKcFnNI6wIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFEXrDbI4F+KKa0i9Qi67Hvld8izXMB8GA1UdIwQY MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt OTQzZDAzMzIxMzI2LzEvUmVzTnNqZ1g0b3ByU0wxQ0xyc2UtVjN5TE5jLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2 LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAwKX8AwQA wbUtAwQCwbfgMA0GCSqGSIb3DQEBCwUAA4IBAQCjflAOkVwFb+hTvXy7Z1tdchjv rzds0TNmFNbHrP92DLHLGSUpQWKUT5EopQJNWBsPN6AbAKTTU07GBqyuvcStjqMn fPZnk9tL20njwKWSYmkV3cBSxf1r8dgo+BGXP/l3jCmA/NElQYLCoEnnmitGTXq0 +q12RdnTmYioYL2fe2CRQuwD2WpTQS6vfbr+9c34AFTYGUVZQ9Nqdo4B07aLEEUW BTmljrMuPgG/M7KsdOhSXHBJxuRsu3AIwGvisj3W1LY6KFt/MBbpBwvJ4K9Oz9pC ShV3JjB5kKGVL9jWsuTkvyMXh+s7kqRDInJS241sMKwyNj1FRrKpEZF1bGpu -----END CERTIFICATE-----Generated at Sun Jan 25 09:04:34 2026 by rpki-client