This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/853c76-a398-435a-be41-7d0ac52815a6/1/ngezMG7cjg7kdta93owuwynmRkU.roa File: ngezMG7cjg7kdta93owuwynmRkU.roa (raw, json) Hash identifier: AWPdd4TuywUrgEAGlpfA8F/3L75UudUwvDZHYHDHNyo= Subject key identifier: 9E:07:B3:30:6E:DC:8E:0E:E4:76:D6:BD:DE:8C:2E:C3:29:E6:46:45 Certificate issuer: /CN=dbd7c951348bd2e09ccaf76f57b8385f15df44e4 Certificate serial: 019B7C124DCBB507D60AA9EF79B9979F2C7C Authority key identifier: DB:D7:C9:51:34:8B:D2:E0:9C:CA:F7:6F:57:B8:38:5F:15:DF:44:E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/29fJUTSL0uCcyvdvV7g4XxXfROQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/853c76-a398-435a-be41-7d0ac52815a6/1/ngezMG7cjg7kdta93owuwynmRkU.roa Signing time: Fri 02 Jan 2026 00:18:52 +0000 ROA not before: Fri 02 Jan 2026 00:18:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12902 IP address blocks: 176.124.253.0/24 maxlen: 24 185.64.32.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/853c76-a398-435a-be41-7d0ac52815a6/1/29fJUTSL0uCcyvdvV7g4XxXfROQ.crl rsync://rpki.ripe.net/repository/DEFAULT/01/853c76-a398-435a-be41-7d0ac52815a6/1/29fJUTSL0uCcyvdvV7g4XxXfROQ.mft rsync://rpki.ripe.net/repository/DEFAULT/29fJUTSL0uCcyvdvV7g4XxXfROQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 18:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:4d:cb:b5:07:d6:0a:a9:ef:79:b9:97:9f:2c:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dbd7c951348bd2e09ccaf76f57b8385f15df44e4 Validity Not Before: Jan 2 00:18:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9e07b3306edc8e0ee476d6bdde8c2ec329e64645 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:73:0f:6b:1a:0b:64:f0:66:f0:00:06:ac:84: 38:20:84:d2:12:c1:c6:3e:cb:fb:0f:a6:32:f6:13: c5:ef:d9:9a:12:96:18:1d:27:c5:43:7f:f9:17:86: 10:d2:ca:16:fd:35:39:7a:7d:e2:15:36:2a:36:6c: 70:1c:18:49:21:db:fa:32:19:ae:88:65:d0:30:25: 6a:94:9b:70:8f:72:20:74:d6:f3:7c:03:56:6a:29: 00:38:50:50:0c:69:99:3e:60:73:b6:d2:b7:04:cd: 8d:46:ac:60:db:e8:ad:68:50:6b:b8:82:ec:77:6e: 40:7f:b4:93:88:bb:2c:b2:06:8f:03:cb:79:fd:b3: 0b:5c:22:de:35:36:9a:02:68:56:f4:ce:2f:4b:2b: 5c:62:ba:4c:db:4f:b1:73:37:1e:74:4e:2a:ee:47: 4c:14:a1:39:dd:4a:9d:73:e9:1f:09:3c:b8:b5:8d: 7d:a7:08:6f:5e:4a:0d:4d:3b:cc:79:e6:5a:67:53: 88:70:a5:67:66:24:a7:1d:c7:8e:fb:33:d6:90:15: 58:13:3e:f2:18:97:52:af:cf:bb:99:c3:e9:dd:1d: ab:0c:81:2a:e4:bd:11:9e:77:20:9e:23:60:3e:77: 0b:bb:bd:8b:5c:07:00:7b:df:b1:75:59:52:a4:1b: 58:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:07:B3:30:6E:DC:8E:0E:E4:76:D6:BD:DE:8C:2E:C3:29:E6:46:45 X509v3 Authority Key Identifier: keyid:DB:D7:C9:51:34:8B:D2:E0:9C:CA:F7:6F:57:B8:38:5F:15:DF:44:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/29fJUTSL0uCcyvdvV7g4XxXfROQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/853c76-a398-435a-be41-7d0ac52815a6/1/ngezMG7cjg7kdta93owuwynmRkU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/853c76-a398-435a-be41-7d0ac52815a6/1/29fJUTSL0uCcyvdvV7g4XxXfROQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.124.253.0/24 185.64.32.0/22 Signature Algorithm: sha256WithRSAEncryption 72:ca:bf:e3:78:dd:54:b0:62:05:fc:06:dd:07:ef:34:76:46: f3:76:bc:5f:57:8d:fc:c4:c4:0a:33:96:ed:f6:26:09:08:87: d1:17:1f:f5:8c:0e:bf:9c:e1:47:17:4e:a4:65:86:1f:cd:c0: 0a:40:e0:a7:e5:e3:5f:62:79:4c:99:4e:08:e4:f0:2d:79:72: 18:e5:87:4a:5f:9d:4d:f5:dc:b5:de:86:2a:62:a4:fe:da:03: 8a:82:36:48:0b:95:02:de:ca:41:ac:be:35:d6:bd:51:eb:92: 1c:76:1a:1b:d5:53:a3:86:13:3b:11:b8:44:1c:2f:68:8f:3a: 4e:20:a3:ce:b3:ef:75:03:1f:aa:34:1b:04:61:91:42:f1:c6: 71:6d:57:f6:9e:29:bf:51:1c:ec:b7:70:a2:13:a3:9d:12:b9: 77:f7:cc:e3:1a:ac:b8:a6:cb:72:6e:35:82:29:b3:2d:bd:82: 02:5a:2c:25:ae:71:68:c4:bb:91:85:9a:73:14:33:2f:de:9d: 85:03:09:5d:13:ad:02:09:41:d4:f4:ef:e8:3d:31:56:36:b5: 2d:fc:0c:99:b4:98:6a:55:65:e8:45:fb:9d:4a:7a:f5:a8:4a: e9:e2:e9:f0:25:c5:33:f2:a3:e1:bf:50:b9:6d:61:3d:8e:88: 81:09:73:08 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8Ek3LtQfWCqnvebmXnyx8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiZDdjOTUxMzQ4YmQyZTA5Y2NhZjc2ZjU3YjgzODVmMTVk ZjQ0ZTQwHhcNMjYwMTAyMDAxODUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZTA3YjMzMDZlZGM4ZTBlZTQ3NmQ2YmRkZThjMmVjMzI5ZTY0NjQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz3MPaxoLZPBm8AAGrIQ4IITSEsHG Psv7D6Yy9hPF79maEpYYHSfFQ3/5F4YQ0soW/TU5en3iFTYqNmxwHBhJIdv6Mhmu iGXQMCVqlJtwj3IgdNbzfANWaikAOFBQDGmZPmBzttK3BM2NRqxg2+itaFBruILs d25Af7STiLsssgaPA8t5/bMLXCLeNTaaAmhW9M4vSytcYrpM20+xczcedE4q7kdM FKE53Uqdc+kfCTy4tY19pwhvXkoNTTvMeeZaZ1OIcKVnZiSnHceO+zPWkBVYEz7y GJdSr8+7mcPp3R2rDIEq5L0RnncgniNgPncLu72LXAcAe9+xdVlSpBtY6QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFJ4HszBu3I4O5HbWvd6MLsMp5kZFMB8GA1UdIwQY MBaAFNvXyVE0i9LgnMr3b1e4OF8V30TkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMjlmSlVUU0wwdUNjeXZkdlY3ZzRYeFhmUk9RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS84NTNjNzYtYTM5OC00MzVhLWJlNDEt N2QwYWM1MjgxNWE2LzEvbmdlek1HN2NqZzdrZHRhOTNvd3V3eW5tUmtVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS84NTNjNzYtYTM5OC00MzVhLWJlNDEtN2QwYWM1MjgxNWE2 LzEvMjlmSlVUU0wwdUNjeXZkdlY3ZzRYeFhmUk9RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAsHz9AwQC uUAgMA0GCSqGSIb3DQEBCwUAA4IBAQByyr/jeN1UsGIF/AbdB+80dkbzdrxfV438 xMQKM5bt9iYJCIfRFx/1jA6/nOFHF06kZYYfzcAKQOCn5eNfYnlMmU4I5PAteXIY 5YdKX51N9dy13oYqYqT+2gOKgjZIC5UC3spBrL411r1R65Icdhob1VOjhhM7EbhE HC9ojzpOIKPOs+91Ax+qNBsEYZFC8cZxbVf2nim/URzst3CiE6OdErl398zjGqy4 pstybjWCKbMtvYICWiwlrnFoxLuRhZpzFDMv3p2FAwldE60CCUHU9O/oPTFWNrUt /AyZtJhqVWXoRfudSnr1qErp4unwJcUz8qPhv1C5bWE9joiBCXMI -----END CERTIFICATE-----Generated at Tue Jan 27 02:50:46 2026 by rpki-client