This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/ePncBm_zUWkpSAh2VkTDJa2iY6s.roa File: ePncBm_zUWkpSAh2VkTDJa2iY6s.roa (raw, json) Hash identifier: CtbwVNu4/LtstGLzDFbKqTc0vfU0p7D+0L2KyeMMSLw= Subject key identifier: 78:F9:DC:06:6F:F3:51:69:29:48:08:76:56:44:C3:25:AD:A2:63:AB Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1 Certificate serial: 019B7F15DE4CC21B5E955D10F9EF7C5D891E Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/ePncBm_zUWkpSAh2VkTDJa2iY6s.roa Signing time: Fri 02 Jan 2026 14:21:38 +0000 ROA not before: Fri 02 Jan 2026 14:21:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 2601 IP address blocks: 45.9.31.0/24 maxlen: 24 193.28.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.mft rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 07 Jan 2026 14:32:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:de:4c:c2:1b:5e:95:5d:10:f9:ef:7c:5d:89:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1 Validity Not Before: Jan 2 14:21:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=78f9dc066ff35169294808765644c325ada263ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2e:16:61:b2:e1:b3:92:92:3c:b0:23:90:f9: 26:28:2c:ce:34:6f:dc:50:35:fa:83:ea:ef:03:41: 64:db:96:70:22:c0:a8:e3:0f:d2:ef:e5:1e:a8:8a: 05:2b:6f:62:30:b1:0d:57:c0:76:ad:a7:f2:13:7d: 66:36:2f:08:86:6c:ad:c2:5a:68:50:b6:18:17:81: 4a:99:d6:88:f7:1f:7c:6d:f6:9e:5d:1c:34:b9:df: 57:a3:26:12:9b:07:23:2a:f1:db:27:84:13:7c:23: 45:70:7a:a6:26:3d:42:c6:82:5e:c3:c8:0d:e8:fd: 0a:92:a2:8d:47:c5:59:f7:ed:e2:f4:c8:f5:6a:61: e8:59:f7:c3:66:bb:84:85:d0:84:ca:66:54:6a:80: 26:4b:e5:7f:c4:13:2e:7c:d4:56:72:b5:e0:67:12: 69:6a:6c:8e:75:64:20:15:dc:34:e0:ef:21:75:04: f2:06:d8:39:cb:fc:8e:5f:fa:51:d0:f1:50:7d:55: 4d:ef:e7:4d:31:44:29:c1:01:e4:cb:af:86:c2:bf: a9:67:09:b2:65:64:63:3d:ca:0d:66:86:c4:09:a7: 3d:6b:e4:e5:7f:8d:ad:c1:88:3e:bf:1a:a3:67:6d: 3c:c4:9a:c1:49:37:2a:3e:ea:a8:e1:85:33:e0:89: ea:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:F9:DC:06:6F:F3:51:69:29:48:08:76:56:44:C3:25:AD:A2:63:AB X509v3 Authority Key Identifier: keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/ePncBm_zUWkpSAh2VkTDJa2iY6s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.9.31.0/24 193.28.177.0/24 Signature Algorithm: sha256WithRSAEncryption ba:37:bc:75:d0:b0:16:a9:9f:92:e0:d5:05:66:74:1b:df:5d: c1:4d:45:67:a1:c9:4e:57:78:0b:53:7d:b7:20:0c:fe:2b:68: 15:54:79:f7:3a:04:98:fa:e8:24:90:5b:de:41:02:37:1b:93: 8d:1a:79:9f:f6:a4:1c:2e:5d:7e:10:4c:1d:f7:db:cd:47:36: 0e:68:18:2b:4b:f8:b8:1f:b1:4f:aa:7f:1f:a7:6b:98:a9:9d: d8:3b:0b:ae:70:71:85:4f:e0:96:10:5c:06:0a:e3:40:c8:46: 7c:0b:a0:bc:d8:a2:25:09:48:21:51:88:2e:9f:c4:ee:1e:2d: 34:8d:b1:c8:02:01:a8:9d:31:7d:1a:92:79:b0:e7:55:1d:e4: 66:9d:c1:c8:a9:e4:7f:66:f2:d2:b6:87:e9:7e:81:45:97:76: 05:47:a3:c5:33:3d:9b:e7:7d:8d:95:81:66:1b:25:7d:58:a5: 0d:05:85:1f:20:cd:6b:5c:e7:14:a2:44:8d:cf:36:e7:8c:67: ae:1d:3e:77:7c:88:70:b1:60:53:dd:40:b4:db:aa:3b:6b:98: 4c:8a:ea:9b:a9:c8:a7:5d:f3:40:9d:65:62:13:a2:0b:6f:a7: 5e:2d:f9:7c:e0:89:17:c2:bf:d7:39:b6:f5:da:dc:ea:63:3d: 51:69:9c:76 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/Fd5MwhtelV0Q+e98XYkeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlkMmE0NzhiYjBiMDhlNjYxYjBiMmY5ZmJlODkzNWJjOWMy YTI4YTEwHhcNMjYwMTAyMTQyMTM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3OGY5ZGMwNjZmZjM1MTY5Mjk0ODA4NzY1NjQ0YzMyNWFkYTI2M2FiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtC4WYbLhs5KSPLAjkPkmKCzONG/c UDX6g+rvA0Fk25ZwIsCo4w/S7+UeqIoFK29iMLENV8B2rafyE31mNi8Ihmytwlpo ULYYF4FKmdaI9x98bfaeXRw0ud9XoyYSmwcjKvHbJ4QTfCNFcHqmJj1CxoJew8gN 6P0KkqKNR8VZ9+3i9Mj1amHoWffDZruEhdCEymZUaoAmS+V/xBMufNRWcrXgZxJp amyOdWQgFdw04O8hdQTyBtg5y/yOX/pR0PFQfVVN7+dNMUQpwQHky6+Gwr+pZwmy ZWRjPcoNZobECac9a+Tlf42twYg+vxqjZ208xJrBSTcqPuqo4YUz4InqyQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFHj53AZv81FpKUgIdlZEwyWtomOrMB8GA1UdIwQY MBaAFJ0qR4uwsI5mGwsvn76JNbycKiihMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMt ZWVmMzUxMWY2YzYwLzEvZVBuY0JtX3pVV2twU0FoMlZrVERKYTJpWTZzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMtZWVmMzUxMWY2YzYw LzEvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALQkfAwQA wRyxMA0GCSqGSIb3DQEBCwUAA4IBAQC6N7x10LAWqZ+S4NUFZnQb313BTUVnoclO V3gLU323IAz+K2gVVHn3OgSY+ugkkFveQQI3G5ONGnmf9qQcLl1+EEwd99vNRzYO aBgrS/i4H7FPqn8fp2uYqZ3YOwuucHGFT+CWEFwGCuNAyEZ8C6C82KIlCUghUYgu n8TuHi00jbHIAgGonTF9GpJ5sOdVHeRmncHIqeR/ZvLStofpfoFFl3YFR6PFMz2b 532NlYFmGyV9WKUNBYUfIM1rXOcUokSNzzbnjGeuHT53fIhwsWBT3UC026o7a5hM iuqbqcinXfNAnWViE6ILb6deLfl84IkXwr/XObb12tzqYz1RaZx2 -----END CERTIFICATE-----Generated at Tue Jan 6 20:51:30 2026 by rpki-client