This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/676499-9143-4877-9dff-2884103776c8/1/NZcLGrLahjEtjP7fLNWfO9mZoLE.roa File: NZcLGrLahjEtjP7fLNWfO9mZoLE.roa (raw, json) Hash identifier: zL4AvdmqKuWo9f0HM/Qoz6/mOwYwWcYK23qO3ml73Nc= Subject key identifier: 35:97:0B:1A:B2:DA:86:31:2D:8C:FE:DF:2C:D5:9F:3B:D9:99:A0:B1 Certificate issuer: /CN=312399b1290cd419a78bd2fb311e3bc7df9f5f1f Certificate serial: 019B7F8285C5DF2577D688A7AABAFF4A375F Authority key identifier: 31:23:99:B1:29:0C:D4:19:A7:8B:D2:FB:31:1E:3B:C7:DF:9F:5F:1F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MSOZsSkM1Bmni9L7MR47x9-fXx8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/676499-9143-4877-9dff-2884103776c8/1/NZcLGrLahjEtjP7fLNWfO9mZoLE.roa Signing time: Fri 02 Jan 2026 16:20:18 +0000 ROA not before: Fri 02 Jan 2026 16:20:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210311 IP address blocks: 91.233.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/676499-9143-4877-9dff-2884103776c8/1/MSOZsSkM1Bmni9L7MR47x9-fXx8.crl rsync://rpki.ripe.net/repository/DEFAULT/4a/676499-9143-4877-9dff-2884103776c8/1/MSOZsSkM1Bmni9L7MR47x9-fXx8.mft rsync://rpki.ripe.net/repository/DEFAULT/MSOZsSkM1Bmni9L7MR47x9-fXx8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 16:01:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:85:c5:df:25:77:d6:88:a7:aa:ba:ff:4a:37:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=312399b1290cd419a78bd2fb311e3bc7df9f5f1f Validity Not Before: Jan 2 16:20:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=35970b1ab2da86312d8cfedf2cd59f3bd999a0b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:91:8d:a3:c5:0a:60:45:02:31:41:f4:0c:00: 11:54:39:5b:fd:a3:ce:ab:b1:55:42:3a:d7:33:1b: 3a:2b:a4:a0:b0:73:09:d2:5b:74:a0:9c:92:1b:18: 16:ca:df:9a:50:8d:01:9a:41:7f:05:da:da:8f:19: 56:48:b7:ea:9d:aa:34:58:67:4f:16:3e:e6:b9:44: 8f:64:64:f7:c2:1f:d4:4f:68:39:b8:71:a9:11:c5: 73:34:26:b9:51:ea:35:4b:3c:b6:dd:8c:50:91:9c: 8b:ab:52:27:8b:22:05:62:f0:52:0d:4a:b1:26:ea: e9:17:0e:ed:9f:ae:f1:49:65:4d:2c:b0:57:32:8a: 58:6f:f2:cf:cc:de:bf:67:33:de:c0:69:99:ba:0c: 8d:f7:24:cb:1a:1f:62:b3:05:e4:30:a8:3c:90:04: f2:e2:78:99:ed:16:a6:d4:51:7c:5d:10:4b:aa:d9: 03:02:69:7c:97:74:41:e6:f0:36:8c:dc:ee:84:42: 4c:56:29:78:39:df:cd:e8:c7:37:43:90:66:7f:1e: d8:94:e0:dd:f6:6e:ce:f6:4d:a4:5b:c0:1e:ad:88: 21:91:47:3e:f0:16:e3:6d:23:ba:54:fb:fe:df:f8: 6f:d7:f3:20:6b:cd:04:a3:80:fa:9e:74:93:9f:91: 1e:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:97:0B:1A:B2:DA:86:31:2D:8C:FE:DF:2C:D5:9F:3B:D9:99:A0:B1 X509v3 Authority Key Identifier: keyid:31:23:99:B1:29:0C:D4:19:A7:8B:D2:FB:31:1E:3B:C7:DF:9F:5F:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MSOZsSkM1Bmni9L7MR47x9-fXx8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/676499-9143-4877-9dff-2884103776c8/1/NZcLGrLahjEtjP7fLNWfO9mZoLE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/676499-9143-4877-9dff-2884103776c8/1/MSOZsSkM1Bmni9L7MR47x9-fXx8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.233.180.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:54:1f:b1:93:ab:1d:68:64:0d:23:0a:e4:f7:33:40:5b:0f: f8:46:7c:87:2f:7e:fe:a5:13:77:57:84:1f:12:55:44:29:c7: 2d:a9:76:b2:93:1d:ff:ce:17:4e:32:46:70:7a:ff:c5:60:2e: 8c:50:50:be:8d:4e:e9:79:d2:2b:ea:b7:f2:d6:32:1d:5b:59: 42:6b:a3:28:9c:90:3d:be:c5:8d:c8:13:a7:52:90:b8:b0:17: 82:66:45:1e:27:af:09:9c:1e:1e:46:99:71:9f:9b:b7:6d:c8: 89:67:21:69:45:62:d9:63:e5:53:e8:6b:9a:d3:2a:9b:5a:44: 46:5e:cd:37:40:9d:01:65:02:18:f5:c9:a2:3d:fb:e0:06:ae: 5a:78:90:5e:af:d6:0a:ee:d6:4b:e4:c6:13:10:8f:f7:bb:64: 8e:f4:fb:6b:90:5a:df:3c:2f:e3:91:25:2e:d6:37:26:d8:69: 46:be:b2:f7:fd:cf:1e:9e:fa:a1:90:d6:4f:37:fb:2d:69:cb: ce:93:da:33:a0:66:a8:a3:0f:13:f5:65:ac:f0:6c:9f:ca:90: 8c:d8:91:31:ce:27:b0:56:b5:4a:43:91:55:bc:7e:af:21:1c: d4:8d:79:e0:fd:32:6e:53:d0:89:63:c9:04:0c:77:b1:15:14: a4:55:43:e3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/goXF3yV31oinqrr/SjdfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMxMjM5OWIxMjkwY2Q0MTlhNzhiZDJmYjMxMWUzYmM3ZGY5 ZjVmMWYwHhcNMjYwMTAyMTYyMDE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNTk3MGIxYWIyZGE4NjMxMmQ4Y2ZlZGYyY2Q1OWYzYmQ5OTlhMGIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu5GNo8UKYEUCMUH0DAARVDlb/aPO q7FVQjrXMxs6K6SgsHMJ0lt0oJySGxgWyt+aUI0BmkF/BdrajxlWSLfqnao0WGdP Fj7muUSPZGT3wh/UT2g5uHGpEcVzNCa5Ueo1Szy23YxQkZyLq1IniyIFYvBSDUqx JurpFw7tn67xSWVNLLBXMopYb/LPzN6/ZzPewGmZugyN9yTLGh9iswXkMKg8kATy 4niZ7Ram1FF8XRBLqtkDAml8l3RB5vA2jNzuhEJMVil4Od/N6Mc3Q5Bmfx7YlODd 9m7O9k2kW8AerYghkUc+8BbjbSO6VPv+3/hv1/Mga80Eo4D6nnSTn5EeVwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDWXCxqy2oYxLYz+3yzVnzvZmaCxMB8GA1UdIwQY MBaAFDEjmbEpDNQZp4vS+zEeO8ffn18fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTVNPWnNTa00xQm1uaTlMN01SNDd4OS1mWHg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS82NzY0OTktOTE0My00ODc3LTlkZmYt Mjg4NDEwMzc3NmM4LzEvTlpjTEdyTGFoakV0alA3ZkxOV2ZPOW1ab0xFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80YS82NzY0OTktOTE0My00ODc3LTlkZmYtMjg4NDEwMzc3NmM4 LzEvTVNPWnNTa00xQm1uaTlMN01SNDd4OS1mWHg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+m0MA0G CSqGSIb3DQEBCwUAA4IBAQArVB+xk6sdaGQNIwrk9zNAWw/4RnyHL37+pRN3V4Qf ElVEKcctqXaykx3/zhdOMkZwev/FYC6MUFC+jU7pedIr6rfy1jIdW1lCa6MonJA9 vsWNyBOnUpC4sBeCZkUeJ68JnB4eRplxn5u3bciJZyFpRWLZY+VT6Gua0yqbWkRG Xs03QJ0BZQIY9cmiPfvgBq5aeJBer9YK7tZL5MYTEI/3u2SO9PtrkFrfPC/jkSUu 1jcm2GlGvrL3/c8envqhkNZPN/stacvOk9ozoGaoow8T9WWs8GyfypCM2JExziew VrVKQ5FVvH6vIRzUjXng/TJuU9CJY8kEDHexFRSkVUPj -----END CERTIFICATE-----Generated at Fri Jan 9 00:11:54 2026 by rpki-client