This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/7f290b-81c7-42b7-947f-d33fa1605ae1/1/N0slNiBHstffC-gao1MW1YQJ8PQ.roa File: N0slNiBHstffC-gao1MW1YQJ8PQ.roa (raw, json) Hash identifier: JaXa0++mAnzKhR6JZOxDsmM/XEgflmuCztEL8NWFM7Y= Subject key identifier: 37:4B:25:36:20:47:B2:D7:DF:0B:E8:1A:A3:53:16:D5:84:09:F0:F4 Certificate issuer: /CN=29db7ca4eee1e453d26fab99c8201adf894612be Certificate serial: 019B7B36A6BC587CC5E6E735477AB521F333 Authority key identifier: 29:DB:7C:A4:EE:E1:E4:53:D2:6F:AB:99:C8:20:1A:DF:89:46:12:BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kdt8pO7h5FPSb6uZyCAa34lGEr4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/7f290b-81c7-42b7-947f-d33fa1605ae1/1/N0slNiBHstffC-gao1MW1YQJ8PQ.roa Signing time: Thu 01 Jan 2026 20:18:57 +0000 ROA not before: Thu 01 Jan 2026 20:18:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3356 IP address blocks: 37.123.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/7f290b-81c7-42b7-947f-d33fa1605ae1/1/Kdt8pO7h5FPSb6uZyCAa34lGEr4.crl rsync://rpki.ripe.net/repository/DEFAULT/dc/7f290b-81c7-42b7-947f-d33fa1605ae1/1/Kdt8pO7h5FPSb6uZyCAa34lGEr4.mft rsync://rpki.ripe.net/repository/DEFAULT/Kdt8pO7h5FPSb6uZyCAa34lGEr4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:a6:bc:58:7c:c5:e6:e7:35:47:7a:b5:21:f3:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29db7ca4eee1e453d26fab99c8201adf894612be Validity Not Before: Jan 1 20:18:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=374b25362047b2d7df0be81aa35316d58409f0f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:99:76:40:76:f3:ce:2d:1f:64:c4:c3:a9:e9: cf:dd:cb:7f:33:1a:4d:b6:1e:ea:07:31:92:e9:a7: 90:44:12:0e:e3:5e:29:92:32:be:ec:6a:12:e5:49: bc:2e:4c:ab:3e:8a:87:dd:8d:46:18:87:64:d7:80: b8:d8:bf:a0:46:71:be:9f:96:4d:66:28:cc:e9:18: 74:d8:3b:c5:de:cd:de:75:c5:34:de:de:a6:b1:03: 35:c5:79:58:20:fc:5d:36:34:c1:f3:16:90:91:25: be:cd:6d:41:80:c9:bb:d8:b2:d1:47:be:83:53:3c: 77:e4:fb:53:f3:23:16:c6:20:cd:82:b4:e6:15:6d: 39:fc:66:43:f4:d2:ac:08:31:2c:21:2c:54:d2:fd: 1d:20:cb:e1:05:1f:34:54:12:18:77:3a:39:52:05: 01:ee:11:46:1a:22:16:c8:bf:2e:41:1f:3d:30:8c: 59:04:34:ef:cd:0d:fa:de:bd:87:1f:3c:be:48:67: 52:1c:6e:5b:e4:b3:2a:b9:85:2c:26:16:b3:9b:0e: c8:de:06:22:32:f3:b9:e8:b7:9e:ba:48:2d:1f:ed: 0c:9d:4a:7e:5e:9e:e6:40:b3:bf:07:d2:e4:d3:a1: ce:96:c2:35:39:1a:00:d6:dd:bf:7a:2d:83:6a:a6: 6f:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:4B:25:36:20:47:B2:D7:DF:0B:E8:1A:A3:53:16:D5:84:09:F0:F4 X509v3 Authority Key Identifier: keyid:29:DB:7C:A4:EE:E1:E4:53:D2:6F:AB:99:C8:20:1A:DF:89:46:12:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kdt8pO7h5FPSb6uZyCAa34lGEr4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/7f290b-81c7-42b7-947f-d33fa1605ae1/1/N0slNiBHstffC-gao1MW1YQJ8PQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/7f290b-81c7-42b7-947f-d33fa1605ae1/1/Kdt8pO7h5FPSb6uZyCAa34lGEr4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.123.254.0/24 Signature Algorithm: sha256WithRSAEncryption b9:2f:6d:25:bf:80:c4:ed:58:46:73:51:54:4a:c6:1d:9a:c7: 64:63:37:55:08:45:af:d9:b7:c7:c9:31:1c:9b:d4:96:a9:e5: bc:d6:ba:5a:dd:14:de:68:5e:46:bc:6d:53:c4:7c:dd:bb:ba: 0d:e9:af:a0:6f:5a:be:15:72:e4:96:7a:99:c9:67:8b:88:52: fe:2f:d8:4c:08:af:76:a8:da:88:f2:f7:4e:df:de:11:80:76: 90:c2:ea:49:ce:5d:39:51:93:4a:16:2a:37:b8:fa:f6:b0:22: a0:40:e7:43:d4:b0:39:1f:0d:7b:95:10:26:ea:23:97:49:30: fa:47:cb:72:c8:c8:22:ce:d1:e3:c6:a9:95:16:33:eb:e7:ac: 27:fe:84:ae:06:bc:74:ef:80:ef:78:93:e4:fb:04:e5:08:03: 8d:ba:5f:7d:1c:0a:07:20:ac:34:a0:bc:c0:1a:d8:a4:2f:4d: 82:e7:60:be:37:55:09:8c:46:b6:26:53:62:80:8b:47:74:3a: 36:d3:54:2c:1b:d2:d5:4a:d2:1f:6a:15:68:3b:4a:ed:4b:27: 7f:99:4c:7e:41:04:9e:b4:85:ad:7f:dc:ac:6d:12:b8:c0:28: 71:b9:ae:03:8c:ca:84:c9:fb:79:7b:2a:ee:35:f8:e2:85:92: 8b:f0:c2:90 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7Nqa8WHzF5uc1R3q1IfMzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ZGI3Y2E0ZWVlMWU0NTNkMjZmYWI5OWM4MjAxYWRmODk0 NjEyYmUwHhcNMjYwMTAxMjAxODU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNzRiMjUzNjIwNDdiMmQ3ZGYwYmU4MWFhMzUzMTZkNTg0MDlmMGY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAppl2QHbzzi0fZMTDqenP3ct/MxpN th7qBzGS6aeQRBIO414pkjK+7GoS5Um8LkyrPoqH3Y1GGIdk14C42L+gRnG+n5ZN ZijM6Rh02DvF3s3edcU03t6msQM1xXlYIPxdNjTB8xaQkSW+zW1BgMm72LLRR76D Uzx35PtT8yMWxiDNgrTmFW05/GZD9NKsCDEsISxU0v0dIMvhBR80VBIYdzo5UgUB 7hFGGiIWyL8uQR89MIxZBDTvzQ363r2HHzy+SGdSHG5b5LMquYUsJhazmw7I3gYi MvO56LeeukgtH+0MnUp+Xp7mQLO/B9Lk06HOlsI1ORoA1t2/ei2DaqZv3wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDdLJTYgR7LX3wvoGqNTFtWECfD0MB8GA1UdIwQY MBaAFCnbfKTu4eRT0m+rmcggGt+JRhK+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2R0OHBPN2g1RlBTYjZ1WnlDQWEzNGxHRXI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy83ZjI5MGItODFjNy00MmI3LTk0N2Yt ZDMzZmExNjA1YWUxLzEvTjBzbE5pQkhzdGZmQy1nYW8xTVcxWVFKOFBRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYy83ZjI5MGItODFjNy00MmI3LTk0N2YtZDMzZmExNjA1YWUx LzEvS2R0OHBPN2g1RlBTYjZ1WnlDQWEzNGxHRXI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJXv+MA0G CSqGSIb3DQEBCwUAA4IBAQC5L20lv4DE7VhGc1FUSsYdmsdkYzdVCEWv2bfHyTEc m9SWqeW81rpa3RTeaF5GvG1TxHzdu7oN6a+gb1q+FXLklnqZyWeLiFL+L9hMCK92 qNqI8vdO394RgHaQwupJzl05UZNKFio3uPr2sCKgQOdD1LA5Hw17lRAm6iOXSTD6 R8tyyMgiztHjxqmVFjPr56wn/oSuBrx074DveJPk+wTlCAONul99HAoHIKw0oLzA GtikL02C52C+N1UJjEa2JlNigItHdDo201QsG9LVStIfahVoO0rtSyd/mUx+QQSe tIWtf9ysbRK4wChxua4DjMqEyft5eyruNfjihZKL8MKQ -----END CERTIFICATE-----Generated at Fri Jan 23 16:03:53 2026 by rpki-client