This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/nBEaBoyNQIJT2c6OD-Lm24Jz7QY.roa File: nBEaBoyNQIJT2c6OD-Lm24Jz7QY.roa (raw, json) Hash identifier: rUyYfZNIni8di4NZvzEU7mokTXK4qkZ3DW4L+g9KkUk= Subject key identifier: 9C:11:1A:06:8C:8D:40:82:53:D9:CE:8E:0F:E2:E6:DB:82:73:ED:06 Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034 Certificate serial: 019B7F82CB1F1FBA538CF4D237E02A6A9EF8 Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/nBEaBoyNQIJT2c6OD-Lm24Jz7QY.roa Signing time: Fri 02 Jan 2026 16:20:36 +0000 ROA not before: Fri 02 Jan 2026 16:20:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205212 IP address blocks: 193.34.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.mft rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 07:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:cb:1f:1f:ba:53:8c:f4:d2:37:e0:2a:6a:9e:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034 Validity Not Before: Jan 2 16:20:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9c111a068c8d408253d9ce8e0fe2e6db8273ed06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:cc:fe:05:2d:b6:52:01:c1:ba:3c:f6:f3:40: 3c:c8:11:58:b9:9c:a4:04:97:e5:57:c5:89:5e:34: 16:03:e7:5a:ac:09:1e:6e:c8:84:86:ec:24:95:75: 22:ff:78:7f:f0:9c:7c:27:ec:df:37:62:77:4d:5e: d5:c8:76:d6:ca:e8:37:e1:00:7f:65:ea:0b:dc:27: 12:51:e0:9e:fc:0c:df:15:f6:05:1e:f3:0f:cf:3a: 6b:88:b7:3b:70:b7:e2:99:fc:66:d9:df:d1:38:3d: af:77:bb:41:0f:c1:98:dc:90:88:9f:ca:f3:ab:f1: 83:59:2d:37:9a:9c:c0:2e:a2:2d:7c:0e:24:4d:06: 8f:cc:fd:aa:18:08:99:c5:74:bf:38:04:64:49:17: 0f:35:9d:d6:02:bd:b7:a6:7b:ab:29:27:d1:75:c0: 32:31:48:50:8c:61:19:2b:79:e3:74:a5:c0:80:4b: 81:d8:1d:86:ad:5d:2f:d4:2a:a4:7e:8c:ff:5a:3e: a5:c9:19:07:55:71:7d:07:55:84:63:20:53:8e:a0: 57:4c:86:4c:8b:68:33:64:e2:2b:93:6e:0d:d1:f0: ff:9a:3c:3c:97:7f:08:98:bd:b1:df:f5:6b:0e:25: 11:2c:22:5e:a6:49:5a:df:bd:37:55:69:c0:21:f1: d5:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:11:1A:06:8C:8D:40:82:53:D9:CE:8E:0F:E2:E6:DB:82:73:ED:06 X509v3 Authority Key Identifier: keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/nBEaBoyNQIJT2c6OD-Lm24Jz7QY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.34.76.0/24 Signature Algorithm: sha256WithRSAEncryption e1:52:05:60:20:a1:d3:9a:28:34:bd:74:ac:7e:34:70:0b:c4: b9:60:10:2e:fa:b0:ee:80:52:8e:fb:ab:0a:78:4c:81:b9:71: 47:85:8f:30:5d:f5:b4:f3:2f:8d:68:2c:40:65:e2:c4:9e:d5: c2:6f:40:d3:81:0b:d8:90:9e:0c:2f:37:a0:d2:99:08:4f:9b: d6:d2:74:61:0f:5f:36:86:b9:28:d3:e0:c4:38:bb:0b:3a:f8: 43:22:07:d9:7f:9c:8d:f2:98:43:22:d5:6a:3b:33:52:8c:38: ee:e2:eb:6b:de:15:4e:e6:28:f8:2a:e7:44:61:9b:c1:f5:34: 23:82:a1:a9:8d:f7:e5:e2:81:66:bb:10:72:33:97:63:5b:6e: ec:ae:3a:af:18:3f:c9:10:93:a0:92:68:d4:1c:3b:42:1f:46: 57:9a:37:16:aa:4b:df:67:8b:82:d7:65:34:b2:8a:67:9b:1c: 74:8c:a9:d2:60:df:ee:79:07:a8:71:13:04:a8:d9:57:bb:6a: 3c:0b:0c:7d:2d:c3:98:35:e5:b2:fb:94:67:b3:0f:57:cc:8d: 2f:21:e8:ac:03:10:58:63:70:e0:e3:a1:82:a6:95:22:f8:81: 05:66:23:be:be:62:53:51:ba:44:30:fa:66:b5:37:f1:1f:8a: 1e:5d:57:33 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/gssfH7pTjPTSN+Aqap74MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxYTdiMGQ4ZGU4MjUxZDM2ZDdjODNmYWY2YmM3ZWZlYzcz YjUwMzQwHhcNMjYwMTAyMTYyMDM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YzExMWEwNjhjOGQ0MDgyNTNkOWNlOGUwZmUyZTZkYjgyNzNlZDA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArsz+BS22UgHBujz280A8yBFYuZyk BJflV8WJXjQWA+darAkebsiEhuwklXUi/3h/8Jx8J+zfN2J3TV7VyHbWyug34QB/ ZeoL3CcSUeCe/AzfFfYFHvMPzzpriLc7cLfimfxm2d/ROD2vd7tBD8GY3JCIn8rz q/GDWS03mpzALqItfA4kTQaPzP2qGAiZxXS/OARkSRcPNZ3WAr23pnurKSfRdcAy MUhQjGEZK3njdKXAgEuB2B2GrV0v1Cqkfoz/Wj6lyRkHVXF9B1WEYyBTjqBXTIZM i2gzZOIrk24N0fD/mjw8l38ImL2x3/VrDiURLCJepkla3703VWnAIfHVaQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJwRGgaMjUCCU9nOjg/i5tuCc+0GMB8GA1UdIwQY MBaAFLGnsNjeglHTbXyD+va8fv7HO1A0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2It Mzk0YWNkMjFmMzliLzEvbkJFYUJveU5RSUpUMmM2T0QtTG0yNEp6N1FZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2ItMzk0YWNkMjFmMzli LzEvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwSJMMA0G CSqGSIb3DQEBCwUAA4IBAQDhUgVgIKHTmig0vXSsfjRwC8S5YBAu+rDugFKO+6sK eEyBuXFHhY8wXfW08y+NaCxAZeLEntXCb0DTgQvYkJ4MLzeg0pkIT5vW0nRhD182 hrko0+DEOLsLOvhDIgfZf5yN8phDItVqOzNSjDju4utr3hVO5ij4KudEYZvB9TQj gqGpjffl4oFmuxByM5djW27srjqvGD/JEJOgkmjUHDtCH0ZXmjcWqkvfZ4uC12U0 sopnmxx0jKnSYN/ueQeocRMEqNlXu2o8Cwx9LcOYNeWy+5Rnsw9XzI0vIeisAxBY Y3Dg46GCppUi+IEFZiO+vmJTUbpEMPpmtTfxH4oeXVcz -----END CERTIFICATE-----Generated at Tue Jan 20 15:20:57 2026 by rpki-client