This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/nT0gX219zpnkTh45cM50OlXAKh0.roa File: nT0gX219zpnkTh45cM50OlXAKh0.roa (raw, json) Hash identifier: 110ttFX+PxmRUsIF9g0d2Nd72JC5uRMEBivNv2VyprI= Subject key identifier: 9D:3D:20:5F:6D:7D:CE:99:E4:4E:1E:39:70:CE:74:3A:55:C0:2A:1D Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da Certificate serial: 019B7E37AA1A32D01154A418A720D6EEDDCD Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/nT0gX219zpnkTh45cM50OlXAKh0.roa Signing time: Fri 02 Jan 2026 10:18:55 +0000 ROA not before: Fri 02 Jan 2026 10:18:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 5650 IP address blocks: 158.173.180.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.mft rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 06:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:aa:1a:32:d0:11:54:a4:18:a7:20:d6:ee:dd:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da Validity Not Before: Jan 2 10:18:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9d3d205f6d7dce99e44e1e3970ce743a55c02a1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:59:ec:5f:df:36:47:f7:e5:94:a4:fb:c8:46: c1:7b:7a:6a:7f:70:ce:5c:2f:66:43:a6:1a:d6:09: df:66:4e:9b:48:16:4c:9a:a6:1b:ca:14:4a:43:1a: 98:e6:c0:2a:dd:6f:eb:c3:c0:85:65:36:3a:54:a5: e0:37:b6:ef:08:f7:de:11:da:97:f0:50:f5:a3:40: 5a:68:e4:89:f8:e9:04:78:4d:e9:9c:7d:ca:45:b3: 2b:fe:f2:32:c7:e3:b1:eb:59:60:5b:04:73:45:55: d9:5a:47:7e:53:cb:ef:2a:93:73:06:1a:72:4e:46: 01:17:6d:e2:6a:95:5f:79:d0:4b:57:3d:86:84:ba: 0f:c8:f3:aa:3e:c7:cb:5b:3e:99:86:c7:ab:71:13: 1e:9e:8f:ce:6d:6f:40:1e:c7:55:be:c0:6f:07:d8: 05:77:ae:3c:c6:ea:e6:e2:87:0a:61:b6:b2:7d:94: c8:b7:e8:b6:e0:43:22:30:ae:00:ae:bb:11:ca:92: 07:72:51:48:92:8b:ea:9e:47:26:82:1d:fa:f6:30: fb:ce:aa:12:49:4d:5b:12:61:d0:da:e6:ac:25:52: 83:50:3f:46:a4:f0:74:cb:67:2a:6f:2b:4b:3b:8f: e2:ce:0d:fd:aa:60:dc:c7:26:db:1b:43:c4:20:66: 49:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:3D:20:5F:6D:7D:CE:99:E4:4E:1E:39:70:CE:74:3A:55:C0:2A:1D X509v3 Authority Key Identifier: keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/nT0gX219zpnkTh45cM50OlXAKh0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.173.180.0/22 Signature Algorithm: sha256WithRSAEncryption a7:c7:e8:36:90:6c:e0:ee:5e:50:38:23:82:94:76:a6:a9:8f: 98:90:58:87:52:27:85:c9:b2:05:a8:df:ae:bf:b9:ad:a3:17: 3a:24:22:5c:d8:10:77:96:90:1e:11:59:46:94:3d:92:68:93: b0:91:50:19:2a:3d:e9:40:85:e1:a7:44:bf:90:9f:d8:09:25: ff:96:8d:67:85:8d:4a:86:ea:f4:be:c2:80:56:8f:6d:8d:12: 33:e7:a1:31:26:81:26:7b:15:56:d7:1c:86:24:db:c5:d4:09: 3e:5a:73:5d:e8:55:d8:14:3c:ac:65:58:58:52:29:7e:f1:64: 01:b8:05:de:d8:7f:18:cf:6e:58:17:34:8c:57:90:9f:b6:27: 42:2b:a0:ac:c3:4f:44:f7:da:13:68:79:9a:7a:5f:6a:51:48: fe:31:67:0e:50:1d:99:b8:74:7b:7a:a7:62:08:3e:45:c7:bb: 7f:4a:b9:f6:8d:79:a7:82:b4:5f:c9:b2:01:51:25:04:92:59: 47:4f:95:73:54:1c:cf:d6:df:a6:b6:72:d1:20:e6:31:3a:31: 5b:e3:07:a7:42:20:d1:52:0e:b0:ee:c3:20:db:13:3d:70:83: f3:c1:7c:d3:75:fc:73:3b:42:61:23:18:b4:c3:5b:cf:78:be: d8:e5:f2:bb -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+N6oaMtARVKQYpyDW7t3NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwNGE1ODA0N2YzN2JiYzA1Nzk0NGJiZjhjYWQ4NzQyODc5 NTkyZGEwHhcNMjYwMTAyMTAxODU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZDNkMjA1ZjZkN2RjZTk5ZTQ0ZTFlMzk3MGNlNzQzYTU1YzAyYTFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA61nsX982R/fllKT7yEbBe3pqf3DO XC9mQ6Ya1gnfZk6bSBZMmqYbyhRKQxqY5sAq3W/rw8CFZTY6VKXgN7bvCPfeEdqX 8FD1o0BaaOSJ+OkEeE3pnH3KRbMr/vIyx+Ox61lgWwRzRVXZWkd+U8vvKpNzBhpy TkYBF23iapVfedBLVz2GhLoPyPOqPsfLWz6ZhsercRMeno/ObW9AHsdVvsBvB9gF d648xurm4ocKYbayfZTIt+i24EMiMK4ArrsRypIHclFIkovqnkcmgh369jD7zqoS SU1bEmHQ2uasJVKDUD9GpPB0y2cqbytLO4/izg39qmDcxybbG0PEIGZJlwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJ09IF9tfc6Z5E4eOXDOdDpVwCodMB8GA1UdIwQY MBaAFPBKWAR/N7vAV5RLv4yth0KHlZLaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYt ZjVmYjcxYjlhNTFmLzEvblQwZ1gyMTl6cG5rVGg0NWNNNTBPbFhBS2gwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYtZjVmYjcxYjlhNTFm LzEvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCnq20MA0G CSqGSIb3DQEBCwUAA4IBAQCnx+g2kGzg7l5QOCOClHamqY+YkFiHUieFybIFqN+u v7mtoxc6JCJc2BB3lpAeEVlGlD2SaJOwkVAZKj3pQIXhp0S/kJ/YCSX/lo1nhY1K hur0vsKAVo9tjRIz56ExJoEmexVW1xyGJNvF1Ak+WnNd6FXYFDysZVhYUil+8WQB uAXe2H8Yz25YFzSMV5CftidCK6Csw09E99oTaHmael9qUUj+MWcOUB2ZuHR7eqdi CD5Fx7t/Srn2jXmngrRfybIBUSUEkllHT5VzVBzP1t+mtnLRIOYxOjFb4wenQiDR Ug6w7sMg2xM9cIPzwXzTdfxzO0JhIxi0w1vPeL7Y5fK7 -----END CERTIFICATE-----Generated at Sun Jan 18 11:04:21 2026 by rpki-client