This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/NT59yITAGw4CQu0wNGlB0flPhLE.roa File: NT59yITAGw4CQu0wNGlB0flPhLE.roa (raw, json) Hash identifier: vF1M/FvWyUbkzcmVJRAjpxNQpMJ/cC0HrEjIy+HXR5s= Subject key identifier: 35:3E:7D:C8:84:C0:1B:0E:02:42:ED:30:34:69:41:D1:F9:4F:84:B1 Certificate issuer: /CN=6222e1c2a5315334b66d80f78d5b50b42e480b9c Certificate serial: 019B7AC7865E06ED5C0AC053F47305CA2CBB Authority key identifier: 62:22:E1:C2:A5:31:53:34:B6:6D:80:F7:8D:5B:50:B4:2E:48:0B:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YiLhwqUxUzS2bYD3jVtQtC5IC5w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/NT59yITAGw4CQu0wNGlB0flPhLE.roa Signing time: Thu 01 Jan 2026 18:17:34 +0000 ROA not before: Thu 01 Jan 2026 18:17:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8492 IP address blocks: 185.195.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/YiLhwqUxUzS2bYD3jVtQtC5IC5w.crl rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/YiLhwqUxUzS2bYD3jVtQtC5IC5w.mft rsync://rpki.ripe.net/repository/DEFAULT/YiLhwqUxUzS2bYD3jVtQtC5IC5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:86:5e:06:ed:5c:0a:c0:53:f4:73:05:ca:2c:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6222e1c2a5315334b66d80f78d5b50b42e480b9c Validity Not Before: Jan 1 18:17:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=353e7dc884c01b0e0242ed30346941d1f94f84b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:37:14:9a:7c:82:f8:2b:a3:89:6c:b0:0d:61: fd:8e:d0:b4:1d:5c:bd:80:f8:34:38:c5:f2:8d:8b: b3:47:db:3a:e4:58:af:46:15:5b:44:ea:84:27:fe: 43:2d:a4:de:dc:05:b3:ba:fa:be:b7:65:92:38:ab: 99:4c:b9:5c:7e:c2:f3:06:16:8a:70:d5:a4:57:63: 5f:3f:fb:85:99:b8:2e:ed:68:76:08:a1:c1:f8:85: a0:65:0a:3c:14:21:5b:7f:bc:b7:e4:8b:de:35:0c: cc:03:ee:e9:af:20:36:60:0f:70:3b:3e:5a:54:7e: 1f:e9:dc:0e:6e:04:9b:57:2f:2d:a6:8b:12:88:93: 76:6c:f6:38:ca:a6:5e:97:55:33:c5:b4:65:67:ae: 7a:59:96:c4:a0:a4:2b:9e:37:3d:8e:92:43:a9:3e: 38:ee:a2:d1:99:d4:9d:3c:db:d8:c4:cc:27:8b:ee: 54:62:fb:07:68:f6:bf:35:a0:f7:8c:31:dd:9e:b5: 42:b5:d3:6f:d5:70:c8:f8:e6:9f:bc:e7:8c:0e:cf: 53:fa:2c:96:0b:92:98:e0:b3:07:c9:b5:33:39:07: e3:71:d7:19:81:8f:56:aa:92:e0:4f:9d:34:71:bb: af:f4:d7:60:43:ce:4b:77:5f:02:de:7a:08:14:f4: b8:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:3E:7D:C8:84:C0:1B:0E:02:42:ED:30:34:69:41:D1:F9:4F:84:B1 X509v3 Authority Key Identifier: keyid:62:22:E1:C2:A5:31:53:34:B6:6D:80:F7:8D:5B:50:B4:2E:48:0B:9C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YiLhwqUxUzS2bYD3jVtQtC5IC5w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/NT59yITAGw4CQu0wNGlB0flPhLE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/YiLhwqUxUzS2bYD3jVtQtC5IC5w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.195.242.0/24 Signature Algorithm: sha256WithRSAEncryption 06:41:dd:6a:84:f4:03:60:7d:0d:38:cf:c8:3b:3d:66:ba:b6: 18:69:db:9a:08:a8:89:eb:ea:85:0a:da:07:d4:43:6f:63:fa: e3:19:7f:ec:a1:ee:3a:e4:97:ce:bb:f0:a6:ba:bb:38:e6:24: 65:94:84:5e:71:b4:d7:2b:01:41:f2:89:76:fa:c6:1e:4a:e1: b5:74:2f:2a:a7:cd:23:90:c9:1f:ed:84:67:0c:fc:95:c4:06: 06:cf:ce:7f:32:1f:c7:80:a1:c3:ce:e6:b1:45:31:62:36:7b: a7:dc:00:32:99:1c:7e:3d:fa:38:d2:2f:82:63:69:97:e1:27: 09:02:ae:38:d0:ab:1c:56:31:ec:17:f3:2b:49:b7:a5:3c:0f: 7b:af:3d:77:a3:40:22:48:ff:3f:c6:cb:80:8e:f0:3b:f2:d7: f1:bb:a2:a5:e5:fa:6b:ec:50:4c:18:6b:79:18:79:97:83:c4: 11:e6:06:2b:43:67:4e:e4:07:34:7e:ac:92:a2:76:5c:d9:e2: 8b:72:b8:61:ac:6f:4e:a1:83:52:91:59:31:db:7e:4c:71:c0: 8b:52:ff:69:67:4e:5c:17:f4:0e:ac:97:a3:a0:e8:b2:a3:73: e8:80:63:94:12:45:e0:a4:89:93:17:21:21:08:73:20:a8:b9: 4b:43:58:f1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6x4ZeBu1cCsBT9HMFyiy7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyMjJlMWMyYTUzMTUzMzRiNjZkODBmNzhkNWI1MGI0MmU0 ODBiOWMwHhcNMjYwMTAxMTgxNzM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNTNlN2RjODg0YzAxYjBlMDI0MmVkMzAzNDY5NDFkMWY5NGY4NGIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzjcUmnyC+CujiWywDWH9jtC0HVy9 gPg0OMXyjYuzR9s65FivRhVbROqEJ/5DLaTe3AWzuvq+t2WSOKuZTLlcfsLzBhaK cNWkV2NfP/uFmbgu7Wh2CKHB+IWgZQo8FCFbf7y35IveNQzMA+7pryA2YA9wOz5a VH4f6dwObgSbVy8tposSiJN2bPY4yqZel1UzxbRlZ656WZbEoKQrnjc9jpJDqT44 7qLRmdSdPNvYxMwni+5UYvsHaPa/NaD3jDHdnrVCtdNv1XDI+OafvOeMDs9T+iyW C5KY4LMHybUzOQfjcdcZgY9WqpLgT500cbuv9NdgQ85Ld18C3noIFPS4IQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDU+fciEwBsOAkLtMDRpQdH5T4SxMB8GA1UdIwQY MBaAFGIi4cKlMVM0tm2A941bULQuSAucMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWlMaHdxVXhVelMyYllEM2pWdFF0QzVJQzV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS85OTliOTctYzczMS00MTkyLTg1ZjEt NTczNzAxYzg0ODMzLzEvTlQ1OXlJVEFHdzRDUXUwd05HbEIwZmxQaExFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS85OTliOTctYzczMS00MTkyLTg1ZjEtNTczNzAxYzg0ODMz LzEvWWlMaHdxVXhVelMyYllEM2pWdFF0QzVJQzV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAucPyMA0G CSqGSIb3DQEBCwUAA4IBAQAGQd1qhPQDYH0NOM/IOz1murYYaduaCKiJ6+qFCtoH 1ENvY/rjGX/soe465JfOu/Cmurs45iRllIRecbTXKwFB8ol2+sYeSuG1dC8qp80j kMkf7YRnDPyVxAYGz85/Mh/HgKHDzuaxRTFiNnun3AAymRx+Pfo40i+CY2mX4ScJ Aq440KscVjHsF/MrSbelPA97rz13o0AiSP8/xsuAjvA78tfxu6Kl5fpr7FBMGGt5 GHmXg8QR5gYrQ2dO5Ac0fqySonZc2eKLcrhhrG9OoYNSkVkx235MccCLUv9pZ05c F/QOrJejoOiyo3PogGOUEkXgpImTFyEhCHMgqLlLQ1jx -----END CERTIFICATE-----Generated at Mon Jan 19 20:35:03 2026 by rpki-client