This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/7c3726-2dbe-4174-b164-a89889ce5f84/1/ncypf2iinEe-q_LnbnKjYSF5rJc.roa File: ncypf2iinEe-q_LnbnKjYSF5rJc.roa (raw, json) Hash identifier: X77xC4nNcyrrbUpykZ9gvEucbXtxd0H2H3Sybmc5J48= Subject key identifier: 9D:CC:A9:7F:68:A2:9C:47:BE:AB:F2:E7:6E:72:A3:61:21:79:AC:97 Certificate issuer: /CN=2bbc002a2b359b1aa8879e1c4d70455b3192efac Certificate serial: 019B79EC0A5F5D896CB065EFD2DFCAF05DE8 Authority key identifier: 2B:BC:00:2A:2B:35:9B:1A:A8:87:9E:1C:4D:70:45:5B:31:92:EF:AC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K7wAKis1mxqoh54cTXBFWzGS76w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/7c3726-2dbe-4174-b164-a89889ce5f84/1/ncypf2iinEe-q_LnbnKjYSF5rJc.roa Signing time: Thu 01 Jan 2026 14:17:50 +0000 ROA not before: Thu 01 Jan 2026 14:17:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1257 IP address blocks: 159.72.0.0/17 maxlen: 17 159.72.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/7c3726-2dbe-4174-b164-a89889ce5f84/1/K7wAKis1mxqoh54cTXBFWzGS76w.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/7c3726-2dbe-4174-b164-a89889ce5f84/1/K7wAKis1mxqoh54cTXBFWzGS76w.mft rsync://rpki.ripe.net/repository/DEFAULT/K7wAKis1mxqoh54cTXBFWzGS76w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 08:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:0a:5f:5d:89:6c:b0:65:ef:d2:df:ca:f0:5d:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2bbc002a2b359b1aa8879e1c4d70455b3192efac Validity Not Before: Jan 1 14:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9dcca97f68a29c47beabf2e76e72a3612179ac97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:17:6d:0e:b8:5a:d6:1d:b4:fb:44:a9:50:40: a5:7f:8d:0a:81:e2:af:08:58:e7:89:f0:f9:2e:10: b8:98:f0:7c:51:2e:88:71:cd:49:8c:33:62:74:03: 33:8e:97:45:58:5d:99:04:a3:30:88:ed:03:59:fa: 78:23:ef:99:d8:24:a8:1c:23:59:55:00:be:70:58: 58:65:51:c5:d8:c4:59:ab:67:81:a0:d2:7d:d9:3a: 0f:2a:2e:20:68:41:2d:7c:7f:ff:86:8f:d1:6a:10: c6:bd:13:34:ba:ce:2d:a1:0f:0d:19:af:84:81:36: 9d:aa:cc:e8:ce:8b:96:52:07:e2:66:ab:db:12:e0: 10:24:5a:7d:be:7f:ab:7e:3f:64:f8:63:98:31:cb: 8f:37:f7:51:2c:68:76:98:67:47:f7:d3:08:6a:43: c2:8f:22:50:98:fc:88:13:bf:d7:3a:45:9f:60:05: 65:56:89:7c:a5:bd:af:4d:f1:1a:f5:1e:51:67:ff: 9e:4f:33:76:7f:21:da:d3:3e:e4:d8:af:9b:bf:c6: e8:3e:e5:03:2b:2e:d3:b5:6f:e8:a7:e2:b4:67:9d: d8:16:ac:97:a4:1c:f8:89:9a:60:6e:d0:3c:a9:34: 75:24:6f:e5:c6:a6:70:29:32:f3:6c:07:e6:00:38: da:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:CC:A9:7F:68:A2:9C:47:BE:AB:F2:E7:6E:72:A3:61:21:79:AC:97 X509v3 Authority Key Identifier: keyid:2B:BC:00:2A:2B:35:9B:1A:A8:87:9E:1C:4D:70:45:5B:31:92:EF:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K7wAKis1mxqoh54cTXBFWzGS76w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/7c3726-2dbe-4174-b164-a89889ce5f84/1/ncypf2iinEe-q_LnbnKjYSF5rJc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/7c3726-2dbe-4174-b164-a89889ce5f84/1/K7wAKis1mxqoh54cTXBFWzGS76w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 159.72.0.0/17 159.72.192.0/18 Signature Algorithm: sha256WithRSAEncryption 0a:44:30:a1:55:a6:73:0d:14:c3:ca:ff:cc:c2:89:ac:a7:c3: a2:84:41:a1:8c:47:2b:0f:fa:8a:3a:61:40:ca:b2:66:82:37: 79:48:ce:d4:13:71:4d:8f:e2:4d:5c:af:bc:b7:74:28:75:e4: a3:56:00:18:66:94:1f:a1:e8:2c:e4:b8:60:11:b6:6d:ea:12: a0:ec:c5:b8:70:61:a7:1e:d1:52:f3:db:79:ba:28:50:81:9a: 53:bf:4c:4b:63:77:c8:ad:97:c6:8a:05:0d:04:ca:5f:cb:21: a7:00:39:2c:51:f6:e7:a6:29:9b:96:07:ae:67:d7:fb:da:cf: ae:15:92:cc:8c:15:5e:86:73:9a:09:90:71:67:2e:31:25:bb: c2:c9:7f:c4:a5:dd:d1:83:7e:d3:9b:4a:13:26:91:f8:46:7d: dd:c0:95:19:2a:ab:e9:90:c3:5e:bb:ba:f9:00:27:a9:15:af: 00:77:f9:eb:e7:97:b0:9c:66:a2:9b:98:0c:7e:f0:58:7f:4a: f0:7b:c6:90:97:46:fc:41:37:b3:47:6a:a3:3b:8b:38:ae:fb: 77:ca:6b:43:09:8a:b1:fb:5c:1f:4a:37:00:f6:3f:4c:f1:33: ab:75:c5:ad:ef:2f:c6:4e:46:71:67:12:eb:13:49:37:a8:c9: a3:4f:58:3f -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt57ApfXYlssGXv0t/K8F3oMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJiYmMwMDJhMmIzNTliMWFhODg3OWUxYzRkNzA0NTViMzE5 MmVmYWMwHhcNMjYwMTAxMTQxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZGNjYTk3ZjY4YTI5YzQ3YmVhYmYyZTc2ZTcyYTM2MTIxNzlhYzk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5xdtDrha1h20+0SpUEClf40KgeKv CFjnifD5LhC4mPB8US6Icc1JjDNidAMzjpdFWF2ZBKMwiO0DWfp4I++Z2CSoHCNZ VQC+cFhYZVHF2MRZq2eBoNJ92ToPKi4gaEEtfH//ho/RahDGvRM0us4toQ8NGa+E gTadqszozouWUgfiZqvbEuAQJFp9vn+rfj9k+GOYMcuPN/dRLGh2mGdH99MIakPC jyJQmPyIE7/XOkWfYAVlVol8pb2vTfEa9R5RZ/+eTzN2fyHa0z7k2K+bv8boPuUD Ky7TtW/op+K0Z53YFqyXpBz4iZpgbtA8qTR1JG/lxqZwKTLzbAfmADjaqQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFJ3MqX9oopxHvqvy525yo2EheayXMB8GA1UdIwQY MBaAFCu8ACorNZsaqIeeHE1wRVsxku+sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSzd3QUtpczFteHFvaDU0Y1RYQkZXekdTNzZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi83YzM3MjYtMmRiZS00MTc0LWIxNjQt YTg5ODg5Y2U1Zjg0LzEvbmN5cGYyaWluRWUtcV9MbmJuS2pZU0Y1ckpjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi83YzM3MjYtMmRiZS00MTc0LWIxNjQtYTg5ODg5Y2U1Zjg0 LzEvSzd3QUtpczFteHFvaDU0Y1RYQkZXekdTNzZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQHn0gAAwQG n0jAMA0GCSqGSIb3DQEBCwUAA4IBAQAKRDChVaZzDRTDyv/Mwomsp8OihEGhjEcr D/qKOmFAyrJmgjd5SM7UE3FNj+JNXK+8t3QodeSjVgAYZpQfoegs5LhgEbZt6hKg 7MW4cGGnHtFS89t5uihQgZpTv0xLY3fIrZfGigUNBMpfyyGnADksUfbnpimblgeu Z9f72s+uFZLMjBVehnOaCZBxZy4xJbvCyX/Epd3Rg37Tm0oTJpH4Rn3dwJUZKqvp kMNeu7r5ACepFa8Ad/nr55ewnGaim5gMfvBYf0rwe8aQl0b8QTezR2qjO4s4rvt3 ymtDCYqx+1wfSjcA9j9M8TOrdcWt7y/GTkZxZxLrE0k3qMmjT1g/ -----END CERTIFICATE-----Generated at Mon Jan 26 14:05:04 2026 by rpki-client