This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/nhyjm7D6al7EpAE5-ppc0phK6ug.roa File: nhyjm7D6al7EpAE5-ppc0phK6ug.roa (raw, json) Hash identifier: bzgBcNhH/L/WdFoXHkNgpYN1MstwXa59GxokxwoanEk= Subject key identifier: 9E:1C:A3:9B:B0:FA:6A:5E:C4:A4:01:39:FA:9A:5C:D2:98:4A:EA:E8 Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Certificate serial: 019BB747CE69B40DF1B2AE2D8850DFD87FD8 Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/nhyjm7D6al7EpAE5-ppc0phK6ug.roa Signing time: Tue 13 Jan 2026 12:14:54 +0000 ROA not before: Tue 13 Jan 2026 12:14:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12552 IP address blocks: 192.36.87.0/24 maxlen: 24 192.36.92.0/24 maxlen: 24 192.71.200.0/24 maxlen: 24 192.121.63.0/24 maxlen: 24 193.181.71.0/24 maxlen: 24 193.182.6.0/24 maxlen: 24 193.182.105.0/24 maxlen: 24 193.182.156.0/24 maxlen: 24 193.182.159.0/24 maxlen: 24 194.14.240.0/24 maxlen: 24 194.14.242.0/24 maxlen: 24 194.68.3.0/24 maxlen: 24 194.103.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:b7:47:ce:69:b4:0d:f1:b2:ae:2d:88:50:df:d8:7f:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Validity Not Before: Jan 13 12:14:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9e1ca39bb0fa6a5ec4a40139fa9a5cd2984aeae8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:73:20:7c:55:49:9f:a4:bc:be:b5:59:23:c2: bd:07:51:a4:59:98:23:59:19:45:10:71:6b:c4:1d: 50:f3:d7:54:e7:b0:fe:27:66:d8:a4:3e:2a:61:84: c2:09:c7:e5:85:bd:68:a0:37:dc:e9:5e:16:bd:24: bc:71:fc:b3:d5:88:86:cd:7e:81:34:3e:cd:11:c1: 22:5a:03:15:fb:b4:c2:57:e2:cd:8c:a0:f6:b5:6e: ec:aa:de:f1:03:d8:e2:01:8a:02:ee:a0:30:cd:b8: 79:96:2f:89:b5:1e:bd:81:ee:de:3c:46:23:3b:de: cb:ef:5d:ec:32:29:f4:f9:cd:d7:84:e6:5d:13:88: 87:28:df:0f:c4:0f:dc:02:2e:b1:bb:13:61:6f:ba: a0:21:d7:a8:36:91:2c:bd:01:23:00:a6:fa:22:f8: 0b:36:fd:dd:cd:a6:52:67:d0:f8:73:fe:ee:5b:70: 35:91:ac:a4:4f:c9:0a:e2:bd:53:ad:ad:55:71:f2: 45:39:da:65:4f:ca:24:c2:02:77:15:30:0b:cf:74: 2d:cb:11:44:95:5c:b0:22:12:26:a1:f3:ca:e8:bc: 4c:eb:f1:15:38:26:78:ff:15:33:46:0d:d1:bb:bb: 77:26:87:4b:08:9c:b6:36:a1:88:e0:8d:a0:8c:2c: 40:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:1C:A3:9B:B0:FA:6A:5E:C4:A4:01:39:FA:9A:5C:D2:98:4A:EA:E8 X509v3 Authority Key Identifier: keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/nhyjm7D6al7EpAE5-ppc0phK6ug.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.36.87.0/24 192.36.92.0/24 192.71.200.0/24 192.121.63.0/24 193.181.71.0/24 193.182.6.0/24 193.182.105.0/24 193.182.156.0/24 193.182.159.0/24 194.14.240.0/24 194.14.242.0/24 194.68.3.0/24 194.103.248.0/24 Signature Algorithm: sha256WithRSAEncryption 48:e5:35:84:79:35:eb:2c:eb:16:9c:d1:35:7c:60:8d:34:8d: 10:a8:dc:eb:32:ad:08:61:cb:5d:8c:0c:d8:a5:23:0e:bd:50: ac:ae:54:57:2e:22:17:d6:b8:ab:30:ef:f8:2f:93:10:86:45: b5:67:11:46:9d:36:65:80:75:0f:bb:ef:5d:c8:08:85:6c:a9: 39:49:f4:c8:f5:2a:a1:09:b5:c8:fb:9a:65:96:03:ed:b8:e1: 03:b5:ba:63:38:54:a0:39:d0:fe:75:0e:a3:33:83:a7:c8:75: 7c:71:c6:42:99:d3:ff:a7:56:66:b7:7f:89:e4:25:c5:2a:fa: 8d:61:c9:5a:f0:47:65:b6:66:82:cd:93:61:c6:39:13:0a:20: a3:6f:68:d5:74:d9:8e:91:78:23:9d:4c:e9:7d:57:25:c7:86: b7:a0:33:e7:41:62:96:e0:0c:53:3a:52:7f:07:67:9e:91:33: 30:42:ac:e3:6c:cd:65:45:77:dc:41:1f:76:94:cd:84:01:4a: 2a:df:64:fb:3a:82:54:84:38:b4:96:14:35:c7:cb:2a:0a:b9: 86:51:0d:3b:d5:f6:0d:e5:07:53:e1:b4:27:68:bb:01:13:5e: b3:fb:3e:77:c5:17:cc:20:5a:0e:83:8c:dd:4e:2c:57:43:42: 35:ef:ed:d7 -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgISAZu3R85ptA3xsq4tiFDf2H/YMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh ZGFmMWIwHhcNMjYwMTEzMTIxNDU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZTFjYTM5YmIwZmE2YTVlYzRhNDAxMzlmYTlhNWNkMjk4NGFlYWU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwXMgfFVJn6S8vrVZI8K9B1GkWZgj WRlFEHFrxB1Q89dU57D+J2bYpD4qYYTCCcflhb1ooDfc6V4WvSS8cfyz1YiGzX6B ND7NEcEiWgMV+7TCV+LNjKD2tW7sqt7xA9jiAYoC7qAwzbh5li+JtR69ge7ePEYj O97L713sMin0+c3XhOZdE4iHKN8PxA/cAi6xuxNhb7qgIdeoNpEsvQEjAKb6IvgL Nv3dzaZSZ9D4c/7uW3A1kaykT8kK4r1Tra1VcfJFOdplT8okwgJ3FTALz3QtyxFE lVywIhImofPK6LxM6/EVOCZ4/xUzRg3Ru7t3JodLCJy2NqGI4I2gjCxA+wIDAQAB o4ICUTCCAk0wHQYDVR0OBBYEFJ4co5uw+mpexKQBOfqaXNKYSuroMB8GA1UdIwQY MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt OTQzZDAzMzIxMzI2LzEvbmh5am03RDZhbDdFcEFFNS1wcGMwcGhLNnVnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2 LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGcGCCsGAQUFBwEHAQH/BFgwVjBUBAIAATBOAwQAwCRXAwQA wCRcAwQAwEfIAwQAwHk/AwQAwbVHAwQAwbYGAwQAwbZpAwQAwbacAwQAwbafAwQA wg7wAwQAwg7yAwQAwkQDAwQAwmf4MA0GCSqGSIb3DQEBCwUAA4IBAQBI5TWEeTXr LOsWnNE1fGCNNI0QqNzrMq0IYctdjAzYpSMOvVCsrlRXLiIX1rirMO/4L5MQhkW1 ZxFGnTZlgHUPu+9dyAiFbKk5SfTI9SqhCbXI+5pllgPtuOEDtbpjOFSgOdD+dQ6j M4OnyHV8ccZCmdP/p1Zmt3+J5CXFKvqNYcla8EdltmaCzZNhxjkTCiCjb2jVdNmO kXgjnUzpfVclx4a3oDPnQWKW4AxTOlJ/B2eekTMwQqzjbM1lRXfcQR92lM2EAUoq 32T7OoJUhDi0lhQ1x8sqCrmGUQ071fYN5QdT4bQnaLsBE16z+z53xRfMIFoOg4zd TixXQ0I17+3X -----END CERTIFICATE-----Generated at Sun Jan 25 09:04:30 2026 by rpki-client