This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/m0TLqxN9KekhUPa5wXJPShkunmA.roa File: m0TLqxN9KekhUPa5wXJPShkunmA.roa (raw, json) Hash identifier: XIQaSrj919AgeSjXlerK3LATLao0jVY6HZfVZ2pe898= Subject key identifier: 9B:44:CB:AB:13:7D:29:E9:21:50:F6:B9:C1:72:4F:4A:19:2E:9E:60 Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da Certificate serial: 019B7E37B27BF3DCD773A6C00CC6F6E581AF Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/m0TLqxN9KekhUPa5wXJPShkunmA.roa Signing time: Fri 02 Jan 2026 10:18:57 +0000 ROA not before: Fri 02 Jan 2026 10:18:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20746 IP address blocks: 158.173.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.mft rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 00:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:b2:7b:f3:dc:d7:73:a6:c0:0c:c6:f6:e5:81:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da Validity Not Before: Jan 2 10:18:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9b44cbab137d29e92150f6b9c1724f4a192e9e60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c9:ae:cc:f5:4b:5f:3c:29:97:86:8f:60:eb: 43:e4:9c:6a:fe:3d:29:7b:03:59:34:f2:a8:33:7b: 66:21:57:58:77:ed:30:50:3a:60:ce:f1:d4:4c:a7: 8d:36:2f:c3:16:0d:92:72:bf:cc:d8:e0:1b:c8:2c: 7f:21:c7:46:6c:6e:ca:f1:29:07:6f:39:2d:3e:d7: e1:19:4d:9a:d0:53:95:91:eb:a6:13:54:37:2a:34: a7:b7:a1:bd:d2:14:60:eb:75:70:19:35:61:b8:fa: 4a:2c:fd:17:70:cc:78:26:b4:a1:61:f9:d3:9c:0a: 20:64:b2:c8:bd:b4:47:04:23:14:c3:36:5d:14:1b: 81:83:1c:b9:66:cb:0d:39:82:1c:d7:58:d6:e4:77: d3:7c:93:c2:c7:0f:ff:dd:a1:a3:6e:b9:c6:e3:94: 1a:88:90:a6:1b:5c:5a:ab:6d:8e:42:d6:72:2f:89: 54:6b:c9:b2:68:4e:4f:55:b8:6a:ce:1b:5e:88:f0: 2a:cb:b5:25:c4:5c:6d:ff:b9:65:fc:51:2f:54:5d: 53:ed:9e:62:5a:50:a1:90:10:69:d8:16:75:cc:da: 4d:ca:86:5a:d9:1d:c8:93:70:92:c1:5e:d2:9e:fa: a3:41:a8:b7:9c:a3:ae:63:ff:10:5c:c5:fb:7c:42: 28:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:44:CB:AB:13:7D:29:E9:21:50:F6:B9:C1:72:4F:4A:19:2E:9E:60 X509v3 Authority Key Identifier: keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/m0TLqxN9KekhUPa5wXJPShkunmA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.173.163.0/24 Signature Algorithm: sha256WithRSAEncryption a5:16:d5:d1:b5:2b:0c:c1:d7:80:db:f0:49:ba:50:96:df:2b: 16:19:16:dd:db:96:a1:d2:49:3f:6a:90:19:28:eb:37:42:45: 25:0e:0e:c9:6c:64:25:52:f5:6b:c4:06:c0:a5:85:05:e1:8f: 67:f3:23:50:17:fe:28:77:3d:ea:11:08:ba:e4:52:08:cc:5c: d4:a3:a8:92:ae:df:10:54:51:95:f1:40:fd:57:a3:e5:34:90: 4d:b7:53:dd:f1:eb:38:6e:cf:71:d9:cb:f4:d3:ec:37:f4:03: c0:43:10:64:95:f1:ff:bb:bb:ae:0c:00:c3:c9:96:f8:0e:0a: b5:a5:df:b7:0b:9d:0b:20:c0:26:79:ad:5e:4c:0c:1a:cb:d0: 77:ac:13:94:50:bc:d6:c8:c0:5e:84:03:d2:8a:3d:16:96:ff: b4:21:04:da:af:5d:76:26:1e:fd:8d:ab:a9:93:9a:74:b3:4c: 62:4a:5a:99:86:c9:8b:7d:fd:5c:40:2f:ae:b2:82:ca:3d:73: 10:80:ce:0e:8b:b6:e9:c1:b6:42:ee:38:97:13:ee:bb:42:bc: 45:cd:76:68:9b:cd:ed:9d:de:05:4d:c5:09:cd:37:c6:e9:9c: 2d:96:d3:e2:a1:f3:42:ff:60:3b:37:89:87:0b:a5:4f:68:73: 34:84:fd:9f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+N7J789zXc6bADMb25YGvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwNGE1ODA0N2YzN2JiYzA1Nzk0NGJiZjhjYWQ4NzQyODc5 NTkyZGEwHhcNMjYwMTAyMTAxODU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YjQ0Y2JhYjEzN2QyOWU5MjE1MGY2YjljMTcyNGY0YTE5MmU5ZTYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAucmuzPVLXzwpl4aPYOtD5Jxq/j0p ewNZNPKoM3tmIVdYd+0wUDpgzvHUTKeNNi/DFg2Scr/M2OAbyCx/IcdGbG7K8SkH bzktPtfhGU2a0FOVkeumE1Q3KjSnt6G90hRg63VwGTVhuPpKLP0XcMx4JrShYfnT nAogZLLIvbRHBCMUwzZdFBuBgxy5ZssNOYIc11jW5HfTfJPCxw//3aGjbrnG45Qa iJCmG1xaq22OQtZyL4lUa8myaE5PVbhqzhteiPAqy7UlxFxt/7ll/FEvVF1T7Z5i WlChkBBp2BZ1zNpNyoZa2R3Ik3CSwV7SnvqjQai3nKOuY/8QXMX7fEIoHQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJtEy6sTfSnpIVD2ucFyT0oZLp5gMB8GA1UdIwQY MBaAFPBKWAR/N7vAV5RLv4yth0KHlZLaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYt ZjVmYjcxYjlhNTFmLzEvbTBUTHF4TjlLZWtoVVBhNXdYSlBTaGt1bm1BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYtZjVmYjcxYjlhNTFm LzEvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnq2jMA0G CSqGSIb3DQEBCwUAA4IBAQClFtXRtSsMwdeA2/BJulCW3ysWGRbd25ah0kk/apAZ KOs3QkUlDg7JbGQlUvVrxAbApYUF4Y9n8yNQF/4odz3qEQi65FIIzFzUo6iSrt8Q VFGV8UD9V6PlNJBNt1Pd8es4bs9x2cv00+w39APAQxBklfH/u7uuDADDyZb4Dgq1 pd+3C50LIMAmea1eTAway9B3rBOUULzWyMBehAPSij0Wlv+0IQTar112Jh79jaup k5p0s0xiSlqZhsmLff1cQC+usoLKPXMQgM4Oi7bpwbZC7jiXE+67QrxFzXZom83t nd4FTcUJzTfG6ZwtltPiofNC/2A7N4mHC6VPaHM0hP2f -----END CERTIFICATE-----Generated at Fri Jan 23 04:39:25 2026 by rpki-client