This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/NTC2cMPhk0SZpUXnfVUNdbxiy68.roa File: NTC2cMPhk0SZpUXnfVUNdbxiy68.roa (raw, json) Hash identifier: fSC+ItkdMHuS+KtAJTymo9YewZheI45HplcmNpkgIpU= Subject key identifier: 35:30:B6:70:C3:E1:93:44:99:A5:45:E7:7D:55:0D:75:BC:62:CB:AF Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Certificate serial: 019B7F84C89ABD8AF605E2F68C6E9BE7B532 Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/NTC2cMPhk0SZpUXnfVUNdbxiy68.roa Signing time: Fri 02 Jan 2026 16:22:47 +0000 ROA not before: Fri 02 Jan 2026 16:22:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214979 IP address blocks: 31.56.3.0/24 maxlen: 24 31.56.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 06 Jan 2026 11:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:c8:9a:bd:8a:f6:05:e2:f6:8c:6e:9b:e7:b5:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Validity Not Before: Jan 2 16:22:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3530b670c3e1934499a545e77d550d75bc62cbaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e3:85:21:79:07:0b:3e:c9:2d:ea:b7:f0:c3: 19:17:b5:05:94:16:9c:cb:d9:75:d8:c1:87:ef:bd: da:94:e1:18:ac:2d:f0:7f:c9:db:c8:f8:c1:4c:b1: 8a:b5:65:c5:60:06:9a:3a:b5:53:43:26:85:fd:b8: cc:66:45:78:03:86:a9:37:ec:a5:b1:73:f2:e2:64: b5:36:67:04:df:54:5a:95:e4:93:56:cb:70:b6:13: 06:74:e0:9c:6a:2d:54:be:47:1b:e5:65:31:fc:6c: ce:20:a6:1d:67:a1:09:23:22:71:af:c4:fe:67:34: 45:70:a4:4b:3e:85:70:19:a0:51:3d:5b:fb:b8:88: 45:31:9f:43:19:88:c2:b6:46:7a:3d:f9:a7:a4:3c: 61:5e:55:c2:62:e2:14:61:00:dd:32:9f:78:8b:b4: a1:45:e5:ab:fb:da:21:04:4d:92:7e:79:68:cc:91: 2b:90:3e:8e:af:19:63:66:91:fa:ef:aa:7a:12:94: b5:a6:d4:01:98:27:0b:e4:f3:c0:2d:bc:5a:dd:aa: b4:62:32:61:58:75:1b:85:ce:b4:68:bd:74:a3:b3: 14:05:85:5d:8e:76:0f:6e:33:46:0c:80:d1:63:0c: 89:3b:e0:c7:49:63:75:18:e6:a7:e3:b7:2d:b1:8b: 43:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:30:B6:70:C3:E1:93:44:99:A5:45:E7:7D:55:0D:75:BC:62:CB:AF X509v3 Authority Key Identifier: keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/NTC2cMPhk0SZpUXnfVUNdbxiy68.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.56.3.0/24 31.56.104.0/24 Signature Algorithm: sha256WithRSAEncryption a0:2e:d8:dc:bf:ce:73:e9:8b:93:0f:03:d7:57:2b:52:7c:76: f4:0f:17:a9:08:cf:7a:7f:b8:a5:62:f8:9b:71:20:31:a7:b7: 52:70:2e:8c:e9:07:fb:4f:45:49:64:49:ac:1f:f0:b1:d4:64: d4:1c:58:80:cc:66:f1:ca:8e:c2:e9:42:a2:d7:34:6d:bb:71: a2:ca:c7:54:0a:3b:86:c8:5a:60:36:77:e3:9b:5f:78:bb:80: a7:d2:8b:58:f4:ef:45:54:31:de:cd:25:2b:3a:6d:c3:71:e8: 72:4e:6c:7a:64:b1:be:5b:43:18:9c:ee:bf:c4:19:58:f4:ad: 7f:86:91:22:a9:3a:24:3c:73:d1:2c:63:9b:f4:f8:2d:d0:51: 1e:54:45:a0:7f:0a:65:94:f5:01:d4:1a:a5:3d:14:f7:d4:3b: 24:51:fc:8f:c8:c9:9f:92:8a:1c:99:23:56:88:90:dd:d1:cd: a3:a6:d6:10:4c:83:a3:c0:73:fc:eb:2e:9d:02:c1:ee:3d:94: 1a:1f:90:a0:12:88:ca:92:61:b6:4a:fa:99:69:43:e0:db:43: 04:3d:d8:55:fb:bb:e3:fa:f7:2e:76:05:66:50:9d:16:1a:81: 7b:c2:38:4f:81:9d:c6:fe:3d:8d:f6:f6:52:01:3a:c3:63:ea: 14:bf:43:bd -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/hMiavYr2BeL2jG6b57UyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2 YjI1YzUwHhcNMjYwMTAyMTYyMjQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNTMwYjY3MGMzZTE5MzQ0OTlhNTQ1ZTc3ZDU1MGQ3NWJjNjJjYmFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxOOFIXkHCz7JLeq38MMZF7UFlBac y9l12MGH773alOEYrC3wf8nbyPjBTLGKtWXFYAaaOrVTQyaF/bjMZkV4A4apN+yl sXPy4mS1NmcE31RaleSTVstwthMGdOCcai1Uvkcb5WUx/GzOIKYdZ6EJIyJxr8T+ ZzRFcKRLPoVwGaBRPVv7uIhFMZ9DGYjCtkZ6PfmnpDxhXlXCYuIUYQDdMp94i7Sh ReWr+9ohBE2SfnlozJErkD6OrxljZpH676p6EpS1ptQBmCcL5PPALbxa3aq0YjJh WHUbhc60aL10o7MUBYVdjnYPbjNGDIDRYwyJO+DHSWN1GOan47ctsYtD1wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFDUwtnDD4ZNEmaVF531VDXW8YsuvMB8GA1UdIwQY MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt YjgxMWNmY2I5ZmQ1LzEvTlRDMmNNUGhrMFNacFVYbmZWVU5kYnhpeTY4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1 LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAHzgDAwQA HzhoMA0GCSqGSIb3DQEBCwUAA4IBAQCgLtjcv85z6YuTDwPXVytSfHb0DxepCM96 f7ilYvibcSAxp7dScC6M6Qf7T0VJZEmsH/Cx1GTUHFiAzGbxyo7C6UKi1zRtu3Gi ysdUCjuGyFpgNnfjm194u4Cn0otY9O9FVDHezSUrOm3DcehyTmx6ZLG+W0MYnO6/ xBlY9K1/hpEiqTokPHPRLGOb9Pgt0FEeVEWgfwpllPUB1BqlPRT31DskUfyPyMmf koocmSNWiJDd0c2jptYQTIOjwHP86y6dAsHuPZQaH5CgEojKkmG2SvqZaUPg20ME PdhV+7vj+vcudgVmUJ0WGoF7wjhPgZ3G/j2N9vZSATrDY+oUv0O9 -----END CERTIFICATE-----Generated at Mon Jan 5 14:32:44 2026 by rpki-client