This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/d5ffe7-3b48-4f80-8d6a-317c2fb0a35b/1/Nr34upPMc1itfVkdnNNT1AsCW_w.roa File: Nr34upPMc1itfVkdnNNT1AsCW_w.roa (raw, json) Hash identifier: FFJtZD22Fu2rvHlrFEbupNfTchtF8nOl9Mph7JlreGw= Subject key identifier: 36:BD:F8:BA:93:CC:73:58:AD:7D:59:1D:9C:D3:53:D4:0B:02:5B:FC Certificate issuer: /CN=51618df006d548d1d87ed6419550662db6fc0606 Certificate serial: 019B7F856F9E8563DA335AE9C254EF526A11 Authority key identifier: 51:61:8D:F0:06:D5:48:D1:D8:7E:D6:41:95:50:66:2D:B6:FC:06:06 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UWGN8AbVSNHYftZBlVBmLbb8BgY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/d5ffe7-3b48-4f80-8d6a-317c2fb0a35b/1/Nr34upPMc1itfVkdnNNT1AsCW_w.roa Signing time: Fri 02 Jan 2026 16:23:29 +0000 ROA not before: Fri 02 Jan 2026 16:23:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50022 IP address blocks: 213.110.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/d5ffe7-3b48-4f80-8d6a-317c2fb0a35b/1/UWGN8AbVSNHYftZBlVBmLbb8BgY.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/d5ffe7-3b48-4f80-8d6a-317c2fb0a35b/1/UWGN8AbVSNHYftZBlVBmLbb8BgY.mft rsync://rpki.ripe.net/repository/DEFAULT/UWGN8AbVSNHYftZBlVBmLbb8BgY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:6f:9e:85:63:da:33:5a:e9:c2:54:ef:52:6a:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51618df006d548d1d87ed6419550662db6fc0606 Validity Not Before: Jan 2 16:23:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=36bdf8ba93cc7358ad7d591d9cd353d40b025bfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:7b:8e:e7:40:59:21:1c:ed:58:e1:52:12:0d: f4:91:2a:1a:50:c5:4d:e7:1a:42:79:a3:74:77:6e: 5c:ef:eb:72:b0:dd:84:a8:7a:b0:f1:7b:d1:fe:99: 1d:90:2e:c7:71:86:d2:65:46:68:19:36:77:0e:46: b9:11:4c:2a:ce:d0:6d:a2:69:ce:9c:d6:52:ce:b4: 3c:9b:cf:fb:14:03:89:44:c2:4d:42:c6:c0:f3:10: 05:f3:5c:7e:f4:f4:88:84:d1:64:77:91:ba:c7:3a: 8f:9e:f2:b9:a0:80:68:09:27:3f:23:5d:3f:44:f3: 89:a8:e6:9b:6c:ef:ec:4b:22:9b:e1:5c:6a:0c:3a: ea:08:55:c3:d3:ce:e3:15:e3:e8:5a:08:7d:26:87: e1:5b:a1:69:5d:bc:0a:03:83:bc:83:14:b4:61:4e: 84:17:4b:75:c9:fb:f3:90:4f:f0:8e:70:b4:34:d1: 4a:3b:07:3f:9e:b2:2c:8c:5f:80:b9:05:41:fb:b1: eb:81:2f:94:64:b2:bc:7d:37:f1:f0:7b:4a:4f:78: 46:0b:8b:7e:af:52:eb:ba:e8:49:cd:08:fc:e5:39: 4c:84:00:ce:c6:6f:42:61:83:41:b4:2c:7a:3d:2b: 39:01:8c:93:8a:33:b2:58:bd:c6:b0:cd:ac:ef:7f: 54:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:BD:F8:BA:93:CC:73:58:AD:7D:59:1D:9C:D3:53:D4:0B:02:5B:FC X509v3 Authority Key Identifier: keyid:51:61:8D:F0:06:D5:48:D1:D8:7E:D6:41:95:50:66:2D:B6:FC:06:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UWGN8AbVSNHYftZBlVBmLbb8BgY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/d5ffe7-3b48-4f80-8d6a-317c2fb0a35b/1/Nr34upPMc1itfVkdnNNT1AsCW_w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/d5ffe7-3b48-4f80-8d6a-317c2fb0a35b/1/UWGN8AbVSNHYftZBlVBmLbb8BgY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.110.240.0/20 Signature Algorithm: sha256WithRSAEncryption 81:8b:af:bf:5e:55:4a:fc:a4:85:f3:9a:87:e4:bb:08:be:ac: f2:c4:02:d1:09:ce:b6:b7:9d:f3:43:c4:ac:be:e4:35:3a:59: 5a:18:c0:37:d2:01:f8:0f:e3:eb:39:d8:4a:57:ba:1a:2f:86: 69:af:49:35:80:13:ed:e4:e4:82:9f:f1:3b:d3:ae:99:9c:54: f0:fd:d7:5a:f6:7f:35:05:c2:48:72:11:da:bb:8a:5c:d0:de: 95:52:13:eb:a9:88:37:ea:18:ed:35:9c:47:c2:e5:fd:55:c2: db:72:6b:0d:d0:a2:02:48:86:c4:85:85:1e:48:fb:87:b8:30: e2:53:b1:e6:8e:64:08:4d:76:29:ab:3a:8a:b3:ca:8a:06:ab: 96:d2:42:b2:d5:ff:83:0c:43:e7:2e:93:37:d2:a7:72:3a:11: 35:5e:09:b8:32:6c:53:5e:22:70:62:9f:fe:3e:85:43:51:94: 91:fd:b3:06:25:4b:f8:41:ef:59:cb:8d:01:94:a2:15:41:b1: 17:5a:40:68:31:f2:0e:ed:6e:43:4b:c1:ad:4d:5a:d7:bb:53: f7:f8:ec:7a:5a:4a:ff:3d:26:5a:e2:db:b2:1e:7d:8a:be:7e: 86:42:30:c9:f0:d9:d5:11:75:5c:5c:d4:10:53:1f:3f:fc:65: a7:4b:a8:c3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hW+ehWPaM1rpwlTvUmoRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUxNjE4ZGYwMDZkNTQ4ZDFkODdlZDY0MTk1NTA2NjJkYjZm YzA2MDYwHhcNMjYwMTAyMTYyMzI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNmJkZjhiYTkzY2M3MzU4YWQ3ZDU5MWQ5Y2QzNTNkNDBiMDI1YmZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq3uO50BZIRztWOFSEg30kSoaUMVN 5xpCeaN0d25c7+tysN2EqHqw8XvR/pkdkC7HcYbSZUZoGTZ3Dka5EUwqztBtomnO nNZSzrQ8m8/7FAOJRMJNQsbA8xAF81x+9PSIhNFkd5G6xzqPnvK5oIBoCSc/I10/ RPOJqOabbO/sSyKb4VxqDDrqCFXD087jFePoWgh9JofhW6FpXbwKA4O8gxS0YU6E F0t1yfvzkE/wjnC0NNFKOwc/nrIsjF+AuQVB+7HrgS+UZLK8fTfx8HtKT3hGC4t+ r1LruuhJzQj85TlMhADOxm9CYYNBtCx6PSs5AYyTijOyWL3GsM2s739UxQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDa9+LqTzHNYrX1ZHZzTU9QLAlv8MB8GA1UdIwQY MBaAFFFhjfAG1UjR2H7WQZVQZi22/AYGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVVdHTjhBYlZTTkhZZnRaQmxWQm1MYmI4QmdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9kNWZmZTctM2I0OC00ZjgwLThkNmEt MzE3YzJmYjBhMzViLzEvTnIzNHVwUE1jMWl0ZlZrZG5OTlQxQXNDV193LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS9kNWZmZTctM2I0OC00ZjgwLThkNmEtMzE3YzJmYjBhMzVi LzEvVVdHTjhBYlZTTkhZZnRaQmxWQm1MYmI4QmdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE1W7wMA0G CSqGSIb3DQEBCwUAA4IBAQCBi6+/XlVK/KSF85qH5LsIvqzyxALRCc62t53zQ8Ss vuQ1OllaGMA30gH4D+PrOdhKV7oaL4Zpr0k1gBPt5OSCn/E7066ZnFTw/dda9n81 BcJIchHau4pc0N6VUhPrqYg36hjtNZxHwuX9VcLbcmsN0KICSIbEhYUeSPuHuDDi U7HmjmQITXYpqzqKs8qKBquW0kKy1f+DDEPnLpM30qdyOhE1Xgm4MmxTXiJwYp/+ PoVDUZSR/bMGJUv4Qe9Zy40BlKIVQbEXWkBoMfIO7W5DS8GtTVrXu1P3+Ox6Wkr/ PSZa4tuyHn2Kvn6GQjDJ8NnVEXVcXNQQUx8//GWnS6jD -----END CERTIFICATE-----Generated at Mon Feb 9 22:15:37 2026 by rpki-client