This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/stNqzIw6qQRyW22hrj_jya1vgPM.roa File: stNqzIw6qQRyW22hrj_jya1vgPM.roa (raw, json) Hash identifier: R7iZW3oZGdaZLmvsasGhYvRkXeTvpYwH54Of8otwpTw= Subject key identifier: B2:D3:6A:CC:8C:3A:A9:04:72:5B:6D:A1:AE:3F:E3:C9:AD:6F:80:F3 Certificate issuer: /CN=ca0046a25341cd1103b60cce0b99ea3754ba5c41 Certificate serial: 019B7F139184963E37AF4BEC450AEC2187DD Authority key identifier: CA:00:46:A2:53:41:CD:11:03:B6:0C:CE:0B:99:EA:37:54:BA:5C:41 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/stNqzIw6qQRyW22hrj_jya1vgPM.roa Signing time: Fri 02 Jan 2026 14:19:07 +0000 ROA not before: Fri 02 Jan 2026 14:19:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25400 IP address blocks: 193.160.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.crl rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:91:84:96:3e:37:af:4b:ec:45:0a:ec:21:87:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca0046a25341cd1103b60cce0b99ea3754ba5c41 Validity Not Before: Jan 2 14:19:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b2d36acc8c3aa904725b6da1ae3fe3c9ad6f80f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:04:14:e4:87:2b:63:fc:ac:71:9f:7f:81:53: 81:ff:4a:53:cd:59:04:1d:b0:63:61:6d:28:24:ee: 56:1b:d1:dd:1f:33:d0:c1:bd:6d:e8:fc:c7:fe:60: b9:82:19:34:a8:11:a5:e7:39:94:c3:ef:15:8b:07: 78:d8:e8:7b:41:43:59:9c:db:50:7a:ab:2d:2a:70: 67:49:5f:a5:2a:62:7c:bd:6e:f7:ac:3e:84:d8:ef: 89:bf:85:5b:ef:a9:e4:7c:56:79:91:84:8a:b5:98: d6:b8:78:ca:42:86:b0:27:76:e2:03:a4:56:19:1b: 8f:12:d1:d6:bd:11:2b:73:ca:4b:a7:97:d7:50:78: 02:f9:45:61:62:de:88:24:be:19:7e:b7:4e:6e:09: c0:5a:cc:00:e4:8a:e6:68:d0:c9:e6:1f:49:10:50: c0:49:b5:6c:c8:9a:4d:96:c7:b7:1b:e0:8c:d5:28: 31:c1:7c:b9:9f:55:3a:d1:2b:2c:1b:a0:b3:29:2c: 71:cc:b9:58:f3:58:bc:e3:dd:a9:d2:36:73:42:64: 01:11:02:9d:72:ea:77:94:e7:3d:75:5f:ad:66:5c: 46:34:3c:b9:9e:22:8e:39:2b:c0:ec:20:69:31:5f: d8:fb:00:26:f4:50:41:32:3c:de:be:42:df:51:ce: c7:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:D3:6A:CC:8C:3A:A9:04:72:5B:6D:A1:AE:3F:E3:C9:AD:6F:80:F3 X509v3 Authority Key Identifier: keyid:CA:00:46:A2:53:41:CD:11:03:B6:0C:CE:0B:99:EA:37:54:BA:5C:41 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/stNqzIw6qQRyW22hrj_jya1vgPM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.160.252.0/24 Signature Algorithm: sha256WithRSAEncryption 95:49:a5:4b:bc:dd:9e:fd:b8:56:0f:4b:0c:50:92:ef:d6:52: 0c:c6:84:c5:3b:57:29:d9:26:37:35:b2:57:55:80:57:8e:70: 99:21:09:7e:2e:7d:2c:d1:c7:48:88:c0:5f:7b:d9:40:69:bd: b5:cd:05:c6:65:06:75:0d:c2:9c:43:8a:fb:c9:ad:20:69:ad: 7e:b5:23:1a:1d:13:d8:75:a2:e8:2f:0b:b1:3d:99:ea:77:f4: 82:78:ac:25:0c:f1:82:90:23:18:42:ee:8d:b4:a4:7c:9f:c0: 5d:5b:9e:bd:f4:95:ee:49:c0:29:7e:57:32:95:3e:6a:f2:90: 7f:83:24:37:7c:8f:0a:32:07:27:58:01:e8:2e:58:57:0a:00: f4:99:29:de:bc:99:ea:c6:ec:d8:2c:8d:46:41:32:f9:d3:87: 12:1e:7d:5b:08:b2:a1:76:a4:c8:49:e6:50:05:a8:6e:b0:47: 1f:02:44:05:e0:eb:b9:d8:79:3f:21:2c:8e:86:ea:2b:33:b6: af:a6:68:6c:7c:e4:b1:59:9c:29:65:4c:43:df:64:96:69:58: db:ef:d7:1c:0d:ce:89:50:e6:8e:94:99:c9:0d:76:74:b6:c6: b4:b5:3f:a7:74:ab:c4:fd:1c:60:f3:2f:06:12:63:a4:f8:ba: c6:13:d3:39 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/E5GElj43r0vsRQrsIYfdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhMDA0NmEyNTM0MWNkMTEwM2I2MGNjZTBiOTllYTM3NTRi YTVjNDEwHhcNMjYwMTAyMTQxOTA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMmQzNmFjYzhjM2FhOTA0NzI1YjZkYTFhZTNmZTNjOWFkNmY4MGYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxwQU5IcrY/yscZ9/gVOB/0pTzVkE HbBjYW0oJO5WG9HdHzPQwb1t6PzH/mC5ghk0qBGl5zmUw+8Viwd42Oh7QUNZnNtQ eqstKnBnSV+lKmJ8vW73rD6E2O+Jv4Vb76nkfFZ5kYSKtZjWuHjKQoawJ3biA6RW GRuPEtHWvRErc8pLp5fXUHgC+UVhYt6IJL4ZfrdObgnAWswA5IrmaNDJ5h9JEFDA SbVsyJpNlse3G+CM1SgxwXy5n1U60SssG6CzKSxxzLlY81i8492p0jZzQmQBEQKd cup3lOc9dV+tZlxGNDy5niKOOSvA7CBpMV/Y+wAm9FBBMjzevkLfUc7HFQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLLTasyMOqkEclttoa4/48mtb4DzMB8GA1UdIwQY MBaAFMoARqJTQc0RA7YMzguZ6jdUulxBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWdCR29sTkJ6UkVEdGd6T0M1bnFOMVM2WEVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC8zNmJkNDAtNGE0OC00YzA0LTk3MTAt NWU3NjNkM2E0ZDFkLzEvc3ROcXpJdzZxUVJ5VzIyaHJqX2p5YTF2Z1BNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC8zNmJkNDAtNGE0OC00YzA0LTk3MTAtNWU3NjNkM2E0ZDFk LzEveWdCR29sTkJ6UkVEdGd6T0M1bnFOMVM2WEVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwaD8MA0G CSqGSIb3DQEBCwUAA4IBAQCVSaVLvN2e/bhWD0sMUJLv1lIMxoTFO1cp2SY3NbJX VYBXjnCZIQl+Ln0s0cdIiMBfe9lAab21zQXGZQZ1DcKcQ4r7ya0gaa1+tSMaHRPY daLoLwuxPZnqd/SCeKwlDPGCkCMYQu6NtKR8n8BdW5699JXuScApflcylT5q8pB/ gyQ3fI8KMgcnWAHoLlhXCgD0mSnevJnqxuzYLI1GQTL504cSHn1bCLKhdqTISeZQ BahusEcfAkQF4Ou52Hk/ISyOhuorM7avpmhsfOSxWZwpZUxD32SWaVjb79ccDc6J UOaOlJnJDXZ0tsa0tT+ndKvE/Rxg8y8GEmOk+LrGE9M5 -----END CERTIFICATE-----Generated at Mon Jan 26 11:44:29 2026 by rpki-client