This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/1a27ec-eb0a-4406-a1d1-07ed46b149c3/1/NaTtSMcFSdIxu8H6S2lvgqrJ0Uk.roa File: NaTtSMcFSdIxu8H6S2lvgqrJ0Uk.roa (raw, json) Hash identifier: 3H1l6ys+xgmXRMr5rMXY56PSQg72vyKmuhKkZeQKlIw= Subject key identifier: 35:A4:ED:48:C7:05:49:D2:31:BB:C1:FA:4B:69:6F:82:AA:C9:D1:49 Certificate issuer: /CN=31242850cad41cdf75a3c9d60b21fca543f74384 Certificate serial: 019B7B36468C79FD0D745B885BF9011BEEB7 Authority key identifier: 31:24:28:50:CA:D4:1C:DF:75:A3:C9:D6:0B:21:FC:A5:43:F7:43:84 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MSQoUMrUHN91o8nWCyH8pUP3Q4Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/1a27ec-eb0a-4406-a1d1-07ed46b149c3/1/NaTtSMcFSdIxu8H6S2lvgqrJ0Uk.roa Signing time: Thu 01 Jan 2026 20:18:33 +0000 ROA not before: Thu 01 Jan 2026 20:18:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 0 IP address blocks: 193.201.149.0/26 maxlen: 26 2001:7f8:25::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/1a27ec-eb0a-4406-a1d1-07ed46b149c3/1/MSQoUMrUHN91o8nWCyH8pUP3Q4Q.crl rsync://rpki.ripe.net/repository/DEFAULT/a4/1a27ec-eb0a-4406-a1d1-07ed46b149c3/1/MSQoUMrUHN91o8nWCyH8pUP3Q4Q.mft rsync://rpki.ripe.net/repository/DEFAULT/MSQoUMrUHN91o8nWCyH8pUP3Q4Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:46:8c:79:fd:0d:74:5b:88:5b:f9:01:1b:ee:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=31242850cad41cdf75a3c9d60b21fca543f74384 Validity Not Before: Jan 1 20:18:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=35a4ed48c70549d231bbc1fa4b696f82aac9d149 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4a:f5:c1:3f:86:0c:99:c4:99:e0:68:ee:2f: a5:52:ae:70:56:8e:44:52:16:95:b6:6b:27:69:c0: d0:b6:8f:21:49:c9:2d:9d:22:98:3a:e7:23:9e:38: b5:13:a0:28:5b:cd:6a:b3:51:2c:76:b6:8d:9a:0c: 25:cd:f8:1c:10:17:61:7b:de:62:1b:30:a4:ce:eb: d2:f9:4d:92:b2:52:87:d9:3a:25:2b:1c:89:2a:b5: c6:4c:c7:3d:e2:f4:1e:b9:3e:5a:a4:56:0d:86:a8: e8:41:ba:de:b0:50:51:61:53:e4:8b:6b:fe:e7:5a: 6e:aa:45:09:50:ac:e2:69:23:98:c1:49:4b:09:40: 3a:2e:fe:60:6b:5f:61:ee:20:20:9c:b0:fa:ff:77: b0:e1:b2:dd:49:a6:18:60:b6:68:fe:e8:90:69:d4: 02:78:47:13:cc:8f:59:e4:e6:fe:22:6b:c6:27:9f: d9:1d:b6:5b:8f:2c:af:af:90:97:53:07:22:d3:b7: 6d:fa:ce:03:7d:3a:37:f2:c6:7f:15:9c:f0:54:26: 6f:50:a1:52:46:9b:df:cf:80:bd:83:38:e0:fd:59: 19:70:71:d3:fe:02:0a:eb:96:bb:10:9f:33:a8:fe: 30:76:ea:e4:d2:eb:59:89:d1:58:25:23:11:c0:61: 27:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:A4:ED:48:C7:05:49:D2:31:BB:C1:FA:4B:69:6F:82:AA:C9:D1:49 X509v3 Authority Key Identifier: keyid:31:24:28:50:CA:D4:1C:DF:75:A3:C9:D6:0B:21:FC:A5:43:F7:43:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MSQoUMrUHN91o8nWCyH8pUP3Q4Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1a27ec-eb0a-4406-a1d1-07ed46b149c3/1/NaTtSMcFSdIxu8H6S2lvgqrJ0Uk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1a27ec-eb0a-4406-a1d1-07ed46b149c3/1/MSQoUMrUHN91o8nWCyH8pUP3Q4Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.201.149.0/26 IPv6: 2001:7f8:25::/64 Signature Algorithm: sha256WithRSAEncryption c8:fd:90:31:df:b2:5d:10:34:68:99:ab:1a:97:57:a6:06:10: b8:b2:75:43:bb:48:e0:c7:88:35:68:a3:99:73:31:c1:46:94: d2:8a:12:ed:4a:dc:51:9d:bb:c4:27:f2:10:57:30:f4:ac:81: 11:9c:8c:df:24:19:f6:3a:e2:5d:18:ee:b8:31:68:45:0a:5b: a3:00:9f:67:d4:67:b2:df:82:83:92:99:86:64:70:fb:8a:66: e2:68:49:0a:a3:31:91:fc:3d:ca:d4:8b:11:95:b1:f4:71:a3: 3c:6f:3a:ed:45:89:f1:62:d9:d1:b9:73:18:19:ee:4e:a1:f3: 2d:ff:35:0d:90:91:6c:9e:04:c4:71:59:72:07:fb:a4:f6:8e: 12:67:77:93:95:ca:33:2b:56:d9:d8:c4:e0:22:11:eb:23:71: 99:d6:83:c2:cf:b0:28:a9:22:4f:58:15:31:8b:d7:0e:b4:10: 48:df:9b:f3:a5:4a:72:8c:e6:e8:84:29:5c:29:3c:2a:b3:19: 5d:fe:62:a3:ec:c5:ed:c1:cb:1f:15:bc:c2:43:bb:bb:7c:17: 8f:d0:e8:a4:77:02:f5:c6:c2:57:e1:d7:2f:f3:99:a6:99:6c: 19:ae:8c:d2:b7:e8:2d:59:e3:ee:a1:c7:21:e2:0f:0e:6c:f4: bb:7b:23:37 -----BEGIN CERTIFICATE----- MIIFETCCA/mgAwIBAgISAZt7NkaMef0NdFuIW/kBG+63MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMxMjQyODUwY2FkNDFjZGY3NWEzYzlkNjBiMjFmY2E1NDNm NzQzODQwHhcNMjYwMTAxMjAxODMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNWE0ZWQ0OGM3MDU0OWQyMzFiYmMxZmE0YjY5NmY4MmFhYzlkMTQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqUr1wT+GDJnEmeBo7i+lUq5wVo5E UhaVtmsnacDQto8hScktnSKYOucjnji1E6AoW81qs1EsdraNmgwlzfgcEBdhe95i GzCkzuvS+U2SslKH2TolKxyJKrXGTMc94vQeuT5apFYNhqjoQbresFBRYVPki2v+ 51puqkUJUKziaSOYwUlLCUA6Lv5ga19h7iAgnLD6/3ew4bLdSaYYYLZo/uiQadQC eEcTzI9Z5Ob+ImvGJ5/ZHbZbjyyvr5CXUwci07dt+s4DfTo38sZ/FZzwVCZvUKFS Rpvfz4C9gzjg/VkZcHHT/gIK65a7EJ8zqP4wdurk0utZidFYJSMRwGEnqQIDAQAB o4ICHTCCAhkwHQYDVR0OBBYEFDWk7UjHBUnSMbvB+ktpb4KqydFJMB8GA1UdIwQY MBaAFDEkKFDK1BzfdaPJ1gsh/KVD90OEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTVNRb1VNclVITjkxbzhuV0N5SDhwVVAzUTRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC8xYTI3ZWMtZWIwYS00NDA2LWExZDEt MDdlZDQ2YjE0OWMzLzEvTmFUdFNNY0ZTZEl4dThINlMybHZncXJKMFVrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNC8xYTI3ZWMtZWIwYS00NDA2LWExZDEtMDdlZDQ2YjE0OWMz LzEvTVNRb1VNclVITjkxbzhuV0N5SDhwVVAzUTRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjANBAIAATAHAwUGwcmVADAR BAIAAjALAwkAIAEH+AAlAAAwDQYJKoZIhvcNAQELBQADggEBAMj9kDHfsl0QNGiZ qxqXV6YGELiydUO7SODHiDVoo5lzMcFGlNKKEu1K3FGdu8Qn8hBXMPSsgRGcjN8k GfY64l0Y7rgxaEUKW6MAn2fUZ7LfgoOSmYZkcPuKZuJoSQqjMZH8PcrUixGVsfRx ozxvOu1FifFi2dG5cxgZ7k6h8y3/NQ2QkWyeBMRxWXIH+6T2jhJnd5OVyjMrVtnY xOAiEesjcZnWg8LPsCipIk9YFTGL1w60EEjfm/OlSnKM5uiEKVwpPCqzGV3+YqPs xe3Byx8VvMJDu7t8F4/Q6KR3AvXGwlfh1y/zmaaZbBmujNK36C1Z4+6hxyHiDw5s 9Lt7Izc= -----END CERTIFICATE-----Generated at Wed Jan 7 23:48:13 2026 by rpki-client