This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/c26199-3303-4223-9f0f-5dafc634ccd6/1/n8zARsIOBpHO-_C7tzB3YGju7H4.roa File: n8zARsIOBpHO-_C7tzB3YGju7H4.roa (raw, json) Hash identifier: em6ynddbBEnzvLtotX/PQZUnXz7ZD/kDDU89M7ttH+s= Subject key identifier: 9F:CC:C0:46:C2:0E:06:91:CE:FB:F0:BB:B7:30:77:60:68:EE:EC:7E Certificate issuer: /CN=320ad0cb1c8fabd2a7172723f2eb53ea02e84a69 Certificate serial: 019B7DCAC7A6339F7E9E6E5C0A087601412A Authority key identifier: 32:0A:D0:CB:1C:8F:AB:D2:A7:17:27:23:F2:EB:53:EA:02:E8:4A:69 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MgrQyxyPq9KnFycj8utT6gLoSmk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/c26199-3303-4223-9f0f-5dafc634ccd6/1/n8zARsIOBpHO-_C7tzB3YGju7H4.roa Signing time: Fri 02 Jan 2026 08:19:59 +0000 ROA not before: Fri 02 Jan 2026 08:19:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213757 IP address blocks: 37.72.111.0/24 maxlen: 24 217.119.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/c26199-3303-4223-9f0f-5dafc634ccd6/1/MgrQyxyPq9KnFycj8utT6gLoSmk.crl rsync://rpki.ripe.net/repository/DEFAULT/dc/c26199-3303-4223-9f0f-5dafc634ccd6/1/MgrQyxyPq9KnFycj8utT6gLoSmk.mft rsync://rpki.ripe.net/repository/DEFAULT/MgrQyxyPq9KnFycj8utT6gLoSmk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:c7:a6:33:9f:7e:9e:6e:5c:0a:08:76:01:41:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=320ad0cb1c8fabd2a7172723f2eb53ea02e84a69 Validity Not Before: Jan 2 08:19:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9fccc046c20e0691cefbf0bbb730776068eeec7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:2a:2e:24:8e:6c:fb:4a:6b:69:bc:e8:06:15: f1:83:6b:7c:be:2b:01:4f:fe:62:04:24:6a:2b:e3: ce:c2:9b:48:f2:fe:d5:00:24:6a:86:1c:c9:6d:77: 0a:16:a2:7d:1d:44:40:c2:5d:77:96:c7:ae:25:d7: 7a:5a:96:28:df:62:35:24:e4:e7:7b:21:a2:21:2d: 5e:4c:a9:87:17:5b:86:82:ad:24:a2:70:e2:ee:a8: dd:2a:0e:3b:3b:0a:51:f1:94:24:a2:45:74:c5:1b: 23:be:9c:7a:6d:3a:0a:f8:d2:5c:fc:17:18:22:57: 1c:ad:b9:a1:a8:b4:2a:6c:db:0d:2c:94:74:cc:4e: 7d:1c:c2:7e:db:3c:24:f6:a5:26:74:9b:cb:61:4e: 3a:33:c2:75:4c:b5:2e:57:6c:7a:0c:f1:aa:a6:4a: b1:66:b5:a4:72:20:a1:18:63:2b:8c:2a:67:d7:cb: 1e:60:95:1e:16:c5:27:cf:e9:d7:8e:96:84:74:1e: 39:8f:c1:29:e3:b9:0c:f8:5d:91:b6:d6:8a:01:18: 64:2c:a3:31:9c:70:63:8d:1d:5f:b7:09:3c:ae:dd: 3c:e5:3a:9a:62:91:36:64:4a:cf:48:e1:19:b6:68: 0b:59:d5:f4:28:ce:34:eb:f2:c6:a0:28:c7:46:af: c3:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:CC:C0:46:C2:0E:06:91:CE:FB:F0:BB:B7:30:77:60:68:EE:EC:7E X509v3 Authority Key Identifier: keyid:32:0A:D0:CB:1C:8F:AB:D2:A7:17:27:23:F2:EB:53:EA:02:E8:4A:69 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MgrQyxyPq9KnFycj8utT6gLoSmk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c26199-3303-4223-9f0f-5dafc634ccd6/1/n8zARsIOBpHO-_C7tzB3YGju7H4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c26199-3303-4223-9f0f-5dafc634ccd6/1/MgrQyxyPq9KnFycj8utT6gLoSmk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.72.111.0/24 217.119.138.0/24 Signature Algorithm: sha256WithRSAEncryption 60:5d:3c:fb:06:6d:da:ae:fc:0c:c3:21:85:b4:d7:59:f5:95: 13:ea:28:1d:03:d7:29:31:81:af:45:92:ee:a6:df:7a:a2:b9: 43:89:90:74:0b:47:8f:b4:e4:a4:93:84:a4:aa:f8:2e:8d:a8: e1:d2:5d:5a:3a:7e:07:02:a5:6e:c0:ea:8b:7a:5a:c0:12:d6: c8:5c:f3:51:06:8f:20:32:cd:63:84:68:c2:5e:76:d7:a6:2d: e7:2d:85:b5:0f:2e:84:e1:71:66:e9:90:ac:84:fb:19:63:47: 35:60:5e:34:8a:0e:aa:0e:12:fc:19:2b:5c:81:00:aa:e1:f0: ad:ff:e1:c5:d0:55:f5:f7:42:f9:32:6d:c5:8e:9f:47:a2:44: 8d:9c:b9:c9:fd:2d:df:76:49:db:41:b1:25:d2:fc:34:22:72: e9:b9:72:0a:58:54:9e:cd:95:0a:19:8f:fd:26:fb:26:31:92: 27:28:3f:57:e9:33:83:f8:41:ef:f2:31:95:b2:17:f4:de:0d: 57:98:8a:a0:51:c1:7a:0f:d4:8b:99:d1:c4:5d:bf:a5:e5:0a: fb:f4:a1:ae:78:cc:e7:f0:40:fd:90:78:55:25:49:a8:86:29: 13:bf:61:45:7e:cd:5d:65:21:ad:3c:70:0e:3b:9e:8e:46:d1: cf:a4:b8:9c -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt9ysemM59+nm5cCgh2AUEqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyMGFkMGNiMWM4ZmFiZDJhNzE3MjcyM2YyZWI1M2VhMDJl ODRhNjkwHhcNMjYwMTAyMDgxOTU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZmNjYzA0NmMyMGUwNjkxY2VmYmYwYmJiNzMwNzc2MDY4ZWVlYzdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1youJI5s+0prabzoBhXxg2t8visB T/5iBCRqK+POwptI8v7VACRqhhzJbXcKFqJ9HURAwl13lseuJdd6WpYo32I1JOTn eyGiIS1eTKmHF1uGgq0konDi7qjdKg47OwpR8ZQkokV0xRsjvpx6bToK+NJc/BcY IlccrbmhqLQqbNsNLJR0zE59HMJ+2zwk9qUmdJvLYU46M8J1TLUuV2x6DPGqpkqx ZrWkciChGGMrjCpn18seYJUeFsUnz+nXjpaEdB45j8Ep47kM+F2RttaKARhkLKMx nHBjjR1ftwk8rt085TqaYpE2ZErPSOEZtmgLWdX0KM406/LGoCjHRq/DQQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFJ/MwEbCDgaRzvvwu7cwd2Bo7ux+MB8GA1UdIwQY MBaAFDIK0Mscj6vSpxcnI/LrU+oC6EppMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWdyUXl4eVBxOUtuRnljajh1dFQ2Z0xvU21rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9jMjYxOTktMzMwMy00MjIzLTlmMGYt NWRhZmM2MzRjY2Q2LzEvbjh6QVJzSU9CcEhPLV9DN3R6QjNZR2p1N0g0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYy9jMjYxOTktMzMwMy00MjIzLTlmMGYtNWRhZmM2MzRjY2Q2 LzEvTWdyUXl4eVBxOUtuRnljajh1dFQ2Z0xvU21rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAJUhvAwQA 2XeKMA0GCSqGSIb3DQEBCwUAA4IBAQBgXTz7Bm3arvwMwyGFtNdZ9ZUT6igdA9cp MYGvRZLupt96orlDiZB0C0ePtOSkk4Skqvgujajh0l1aOn4HAqVuwOqLelrAEtbI XPNRBo8gMs1jhGjCXnbXpi3nLYW1Dy6E4XFm6ZCshPsZY0c1YF40ig6qDhL8GStc gQCq4fCt/+HF0FX190L5Mm3Fjp9HokSNnLnJ/S3fdknbQbEl0vw0InLpuXIKWFSe zZUKGY/9JvsmMZInKD9X6TOD+EHv8jGVshf03g1XmIqgUcF6D9SLmdHEXb+l5Qr7 9KGueMzn8ED9kHhVJUmohikTv2FFfs1dZSGtPHAOO56ORtHPpLic -----END CERTIFICATE-----Generated at Mon Jan 26 01:42:21 2026 by rpki-client