This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/nAG5lZSxj6V-wheZnmYE_Q6WWfU.roa File: nAG5lZSxj6V-wheZnmYE_Q6WWfU.roa (raw, json) Hash identifier: tMCGq6CAVBv6m8gzjuzDgfNy/wvlZB8HIzsnhiNlqsg= Subject key identifier: 9C:01:B9:95:94:B1:8F:A5:7E:C2:17:99:9E:66:04:FD:0E:96:59:F5 Certificate issuer: /CN=bb830630f23b070a2b7bdf529f73948c97eacd40 Certificate serial: 019B7F13B9DB0BB1A0B7C143C550FFF07A56 Authority key identifier: BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/nAG5lZSxj6V-wheZnmYE_Q6WWfU.roa Signing time: Fri 02 Jan 2026 14:19:17 +0000 ROA not before: Fri 02 Jan 2026 14:19:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 53363 IP address blocks: 193.203.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.crl rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.mft rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:b9:db:0b:b1:a0:b7:c1:43:c5:50:ff:f0:7a:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bb830630f23b070a2b7bdf529f73948c97eacd40 Validity Not Before: Jan 2 14:19:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9c01b99594b18fa57ec217999e6604fd0e9659f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b1:24:ff:79:77:c3:15:ff:a6:9e:07:31:9d: 6e:2c:97:9d:d2:9b:a7:5f:b1:ad:07:14:50:84:0e: ae:97:2c:bd:65:c1:39:be:bd:9c:21:bf:5b:80:ac: 8b:3a:b9:98:08:c6:61:fc:f7:90:a1:0d:b0:ca:99: 6c:39:45:fc:ca:2e:6e:71:0d:3a:ae:81:35:3f:39: 29:d9:b3:11:0e:1a:c5:4a:46:2b:8e:35:fc:6c:ef: e2:cf:9a:74:e1:ca:15:ec:b4:0f:65:cd:0c:69:ce: ce:3a:42:bf:96:de:22:bb:a1:90:e6:89:8a:70:d3: 6a:e5:ac:6b:8b:65:d8:7a:55:bd:f4:00:e9:49:96: 53:41:61:f7:3e:e5:1c:c6:60:32:c8:9f:62:5d:37: 4a:ba:72:0f:51:e5:e2:5f:b3:ba:d7:4e:96:4a:da: 1e:1c:9d:63:c1:fd:29:45:08:4d:c5:5c:1c:86:03: f3:d3:e5:6b:97:38:f9:a2:0a:5b:41:f0:58:53:fd: c7:0c:08:bb:4a:75:fe:78:f7:90:02:61:8a:2f:e4: 9a:09:a0:2b:44:8d:c6:76:34:d7:3a:39:70:1a:f8: 2e:19:c6:7b:35:4c:67:59:2b:96:d5:3e:7c:e2:02: 50:86:e3:f7:b9:c2:20:e6:ab:17:87:d6:e6:b8:f7: 9e:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:01:B9:95:94:B1:8F:A5:7E:C2:17:99:9E:66:04:FD:0E:96:59:F5 X509v3 Authority Key Identifier: keyid:BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/nAG5lZSxj6V-wheZnmYE_Q6WWfU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.203.203.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:a9:11:d6:ba:4c:83:69:6a:86:8c:ac:60:e4:99:f0:8a:b1: 72:29:49:5a:4d:26:ce:e3:c8:f6:31:1e:db:7e:92:5f:e0:c5: 96:d3:0e:6c:22:0e:bf:52:df:b7:63:78:9d:c4:44:4c:11:f2: f1:9d:30:b8:44:8f:7d:7a:44:e0:f6:46:fe:3b:34:23:e5:0f: 38:a0:cf:1a:9b:5e:5e:5f:21:ae:9e:4d:cd:70:3d:fd:e4:a3: 6e:c1:53:91:0c:9c:02:2d:41:0a:35:3e:a8:fc:51:b9:06:e4: 23:9e:44:c8:a4:25:7d:13:62:42:18:7a:ce:d3:c7:e2:48:3f: 86:44:af:67:9c:fb:8f:76:1f:76:4a:87:be:d0:6a:29:46:c8: 5e:f9:60:e4:e2:e8:aa:5f:f7:2e:37:9d:9d:5a:7c:d5:fc:a3: 5e:b6:1a:36:f2:dd:b7:5a:39:c1:55:26:54:01:7b:9a:a5:6c: 87:1f:37:ea:77:ea:e1:ed:75:fd:06:e0:50:6e:6a:af:91:01: 37:02:ca:f0:db:ac:bb:32:88:a7:f5:ac:92:63:22:31:21:c5: 06:64:13:17:e1:da:65:03:e7:68:61:67:3c:6d:c9:0c:3c:a3: 3e:8c:3d:aa:3d:74:81:51:63:58:54:13:59:1f:9a:3f:51:12: 84:d1:9b:a7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/E7nbC7Ggt8FDxVD/8HpWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiODMwNjMwZjIzYjA3MGEyYjdiZGY1MjlmNzM5NDhjOTdl YWNkNDAwHhcNMjYwMTAyMTQxOTE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YzAxYjk5NTk0YjE4ZmE1N2VjMjE3OTk5ZTY2MDRmZDBlOTY1OWY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo7Ek/3l3wxX/pp4HMZ1uLJed0pun X7GtBxRQhA6ulyy9ZcE5vr2cIb9bgKyLOrmYCMZh/PeQoQ2wyplsOUX8yi5ucQ06 roE1Pzkp2bMRDhrFSkYrjjX8bO/iz5p04coV7LQPZc0Mac7OOkK/lt4iu6GQ5omK cNNq5axri2XYelW99ADpSZZTQWH3PuUcxmAyyJ9iXTdKunIPUeXiX7O6106WStoe HJ1jwf0pRQhNxVwchgPz0+Vrlzj5ogpbQfBYU/3HDAi7SnX+ePeQAmGKL+SaCaAr RI3GdjTXOjlwGvguGcZ7NUxnWSuW1T584gJQhuP3ucIg5qsXh9bmuPeeiwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJwBuZWUsY+lfsIXmZ5mBP0Olln1MB8GA1UdIwQY MBaAFLuDBjDyOwcKK3vfUp9zlIyX6s1AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdTRNR01QSTdCd29yZTk5U24zT1VqSmZxelVBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS9mNzZlMjAtNTg1OS00MTVkLTg2YjMt MTE5ZWZjYmIyMDIzLzEvbkFHNWxaU3hqNlYtd2hlWm5tWUVfUTZXV2ZVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZS9mNzZlMjAtNTg1OS00MTVkLTg2YjMtMTE5ZWZjYmIyMDIz LzEvdTRNR01QSTdCd29yZTk5U24zT1VqSmZxelVBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwcvLMA0G CSqGSIb3DQEBCwUAA4IBAQAeqRHWukyDaWqGjKxg5JnwirFyKUlaTSbO48j2MR7b fpJf4MWW0w5sIg6/Ut+3Y3idxERMEfLxnTC4RI99ekTg9kb+OzQj5Q84oM8am15e XyGunk3NcD395KNuwVORDJwCLUEKNT6o/FG5BuQjnkTIpCV9E2JCGHrO08fiSD+G RK9nnPuPdh92Soe+0GopRshe+WDk4uiqX/cuN52dWnzV/KNetho28t23WjnBVSZU AXuapWyHHzfqd+rh7XX9BuBQbmqvkQE3Asrw26y7Moin9aySYyIxIcUGZBMX4dpl A+doYWc8bckMPKM+jD2qPXSBUWNYVBNZH5o/URKE0Zun -----END CERTIFICATE-----Generated at Wed Jan 21 15:37:09 2026 by rpki-client