This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/0x_1nq4yAiz3bLUNLnuoIFU42no.roa File: 0x_1nq4yAiz3bLUNLnuoIFU42no.roa (raw, json) Hash identifier: wIRP7tIjjaF52fjKq0CE9x39KS2RntmZGX3bFplbUto= Subject key identifier: D3:1F:F5:9E:AE:32:02:2C:F7:6C:B5:0D:2E:7B:A8:20:55:38:DA:7A Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da Certificate serial: 019B7E37B729D2F1970D375C2A62A999D698 Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/0x_1nq4yAiz3bLUNLnuoIFU42no.roa Signing time: Fri 02 Jan 2026 10:18:59 +0000 ROA not before: Fri 02 Jan 2026 10:18:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42708 IP address blocks: 170.62.246.0/24 maxlen: 24 170.62.247.0/24 maxlen: 24 198.55.30.0/24 maxlen: 24 212.78.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.mft rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 07:02:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:b7:29:d2:f1:97:0d:37:5c:2a:62:a9:99:d6:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da Validity Not Before: Jan 2 10:18:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d31ff59eae32022cf76cb50d2e7ba8205538da7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:97:2d:40:72:17:9e:55:80:d7:48:19:3a:bf: 11:54:82:95:c2:d6:d8:a4:c3:c7:c4:c0:ab:cd:aa: dd:23:38:cf:55:6f:7f:6a:7d:ce:f1:9a:4a:49:3b: a2:44:15:46:75:5d:0d:bd:2c:2d:d7:fd:26:a9:4d: ed:95:3c:ce:97:c0:0e:8b:fb:63:f4:3f:d2:da:35: 25:9c:c2:77:93:0f:c0:e7:79:55:6e:e4:a0:cb:24: ed:1f:05:c6:d7:e4:5b:9d:68:3c:da:c2:7b:ae:2e: b4:18:2d:cb:50:da:ac:fc:c5:d4:bd:9a:71:54:23: 10:d5:33:b2:3f:a6:20:af:79:4e:97:be:1b:7a:fb: 82:02:19:b7:9a:42:08:6e:97:e1:e4:3d:31:26:ed: 2b:fa:b0:21:91:86:10:0b:3e:08:e0:2c:2e:3f:76: 3e:7c:69:7c:7c:a5:bc:17:00:60:d5:a0:d4:d6:86: 82:ba:8f:1d:a5:c9:26:86:28:bd:44:db:91:69:3d: e2:99:12:e7:aa:c7:af:d1:22:7f:0f:f5:21:05:3f: 69:ad:4f:f3:dd:ad:c0:08:61:b3:ba:0e:68:42:a9: bf:b8:8b:df:24:62:40:5d:5f:0e:e1:77:71:78:81: 42:ed:65:10:15:b2:cb:9e:5e:3d:dd:e6:7f:e7:43: 84:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:1F:F5:9E:AE:32:02:2C:F7:6C:B5:0D:2E:7B:A8:20:55:38:DA:7A X509v3 Authority Key Identifier: keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/0x_1nq4yAiz3bLUNLnuoIFU42no.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.62.246.0/23 198.55.30.0/24 212.78.244.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:6e:e5:e4:dc:e2:fd:05:3b:4a:a8:76:bc:49:78:de:e3:cf: fa:b2:af:8f:be:59:f8:ce:b5:b2:8c:9a:d5:c7:b6:68:80:70: 68:7f:64:ef:fd:9c:e7:89:ba:b1:3f:2b:e0:60:80:30:d2:33: f2:5d:1c:b3:b2:24:3c:3b:99:65:03:82:58:f4:ef:31:76:22: 1f:3c:6d:90:eb:3d:1b:94:78:fa:07:7a:bb:77:b8:7e:85:65: 8e:6b:ff:4e:66:03:67:07:db:2f:7f:07:63:bc:35:79:ed:03: 56:29:cf:20:60:c6:e3:ea:65:1a:17:31:2b:9f:e6:f7:cc:71: ce:78:a2:0a:51:55:87:a6:67:eb:bb:17:ac:f7:19:16:46:b1: d5:c4:d0:ee:87:68:19:6b:88:cc:39:3e:af:03:a2:54:0e:55: c6:61:8c:4c:7a:4b:cf:03:13:85:1e:af:fd:5f:6f:3c:cd:3d: b6:fb:89:43:5b:7d:ea:96:34:5f:72:0c:06:5e:d9:90:82:7a: 9a:4f:b9:17:0d:a1:25:2b:62:10:2f:cd:13:4a:72:63:3a:71: 38:cf:f8:77:16:13:9e:19:c9:fc:63:e4:5c:56:73:58:21:24: ec:05:42:ae:39:ec:7e:a3:5e:10:59:7d:f9:a7:66:3c:e0:97: e2:b0:af:5d -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt+N7cp0vGXDTdcKmKpmdaYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwNGE1ODA0N2YzN2JiYzA1Nzk0NGJiZjhjYWQ4NzQyODc5 NTkyZGEwHhcNMjYwMTAyMTAxODU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMzFmZjU5ZWFlMzIwMjJjZjc2Y2I1MGQyZTdiYTgyMDU1MzhkYTdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzZctQHIXnlWA10gZOr8RVIKVwtbY pMPHxMCrzardIzjPVW9/an3O8ZpKSTuiRBVGdV0NvSwt1/0mqU3tlTzOl8AOi/tj 9D/S2jUlnMJ3kw/A53lVbuSgyyTtHwXG1+RbnWg82sJ7ri60GC3LUNqs/MXUvZpx VCMQ1TOyP6Ygr3lOl74bevuCAhm3mkIIbpfh5D0xJu0r+rAhkYYQCz4I4CwuP3Y+ fGl8fKW8FwBg1aDU1oaCuo8dpckmhii9RNuRaT3imRLnqsev0SJ/D/UhBT9prU/z 3a3ACGGzug5oQqm/uIvfJGJAXV8O4XdxeIFC7WUQFbLLnl493eZ/50OEvwIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFNMf9Z6uMgIs92y1DS57qCBVONp6MB8GA1UdIwQY MBaAFPBKWAR/N7vAV5RLv4yth0KHlZLaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYt ZjVmYjcxYjlhNTFmLzEvMHhfMW5xNHlBaXozYkxVTkxudW9JRlU0Mm5vLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYtZjVmYjcxYjlhNTFm LzEvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQBqj72AwQA xjceAwQA1E70MA0GCSqGSIb3DQEBCwUAA4IBAQA+buXk3OL9BTtKqHa8SXje48/6 sq+Pvln4zrWyjJrVx7ZogHBof2Tv/ZznibqxPyvgYIAw0jPyXRyzsiQ8O5llA4JY 9O8xdiIfPG2Q6z0blHj6B3q7d7h+hWWOa/9OZgNnB9svfwdjvDV57QNWKc8gYMbj 6mUaFzErn+b3zHHOeKIKUVWHpmfruxes9xkWRrHVxNDuh2gZa4jMOT6vA6JUDlXG YYxMekvPAxOFHq/9X288zT22+4lDW33qljRfcgwGXtmQgnqaT7kXDaElK2IQL80T SnJjOnE4z/h3FhOeGcn8Y+RcVnNYISTsBUKuOex+o14QWX35p2Y84JfisK9d -----END CERTIFICATE-----Generated at Mon Jan 19 17:50:29 2026 by rpki-client