This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/n_wG9iVSHDA1S5sDP6hsgnyLUeM.roa File: n_wG9iVSHDA1S5sDP6hsgnyLUeM.roa (raw, json) Hash identifier: ua/WiXBHCDh+UjGW6tTYYLV5l14SAIb1E5cjunxEu5U= Subject key identifier: 9F:FC:06:F6:25:52:1C:30:35:4B:9B:03:3F:A8:6C:82:7C:8B:51:E3 Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003 Certificate serial: 019B38D17585E8D91ED6D4724E423FB90193 Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/n_wG9iVSHDA1S5sDP6hsgnyLUeM.roa Signing time: Fri 19 Dec 2025 22:53:29 +0000 ROA not before: Fri 19 Dec 2025 22:53:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 215730 IP address blocks: 64.188.91.0/24 maxlen: 24 144.31.0.0/21 maxlen: 24 144.31.90.0/24 maxlen: 24 144.31.94.0/24 maxlen: 24 144.31.125.0/24 maxlen: 24 144.31.128.0/23 maxlen: 24 144.31.130.0/23 maxlen: 24 193.23.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.mft rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:38:d1:75:85:e8:d9:1e:d6:d4:72:4e:42:3f:b9:01:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003 Validity Not Before: Dec 19 22:53:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=9ffc06f625521c30354b9b033fa86c827c8b51e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a2:f4:3b:00:56:88:92:11:07:fb:76:da:90: 8a:cc:ef:6b:15:27:59:45:2b:df:f6:9e:f4:4a:8f: a1:d2:2d:a4:09:4e:16:b1:78:0f:0b:ef:6c:7d:19: 8a:db:e0:d0:db:d7:3c:25:5e:87:de:52:e2:5d:52: 46:96:a1:61:63:e8:70:24:a1:01:3b:6b:79:26:ec: 41:68:00:40:a6:6f:6f:bd:6d:01:f9:a1:cc:13:56: f6:9b:6c:38:2f:98:e5:3a:2f:cb:f3:12:13:75:b8: 94:07:74:ff:51:8b:32:aa:84:d6:60:df:f8:35:da: 44:b7:10:a7:15:c9:ec:75:65:da:54:a6:cb:39:13: ac:87:d3:8e:1e:36:ec:52:a7:84:bc:97:48:62:4f: 67:da:60:ee:9e:bc:9c:68:2d:32:4d:28:77:e1:68: f5:9d:24:90:14:40:83:7a:8c:e7:1a:e9:e6:46:93: d0:be:1e:04:d4:33:66:8c:23:23:a3:35:5c:d2:31: 86:db:b5:de:9e:44:48:73:6c:db:b1:fb:98:f1:c8: 64:bb:c5:81:ba:98:33:7f:dc:8a:04:e3:f9:df:f5: 0d:a9:6c:52:3a:46:3e:a8:1f:f7:b3:19:ff:82:cb: f0:ac:aa:42:83:93:bb:93:cd:c9:9e:78:9a:fa:37: fe:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:FC:06:F6:25:52:1C:30:35:4B:9B:03:3F:A8:6C:82:7C:8B:51:E3 X509v3 Authority Key Identifier: keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/n_wG9iVSHDA1S5sDP6hsgnyLUeM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.188.91.0/24 144.31.0.0/21 144.31.90.0/24 144.31.94.0/24 144.31.125.0/24 144.31.128.0/22 193.23.193.0/24 Signature Algorithm: sha256WithRSAEncryption 75:a0:a1:9e:a3:73:91:b7:88:b3:d0:70:cf:fd:5a:ef:2c:7d: 70:63:1a:47:0a:2d:11:a0:a2:06:97:e6:25:d0:6a:ed:61:27: d8:18:a9:95:78:6b:b9:e9:34:7b:29:ef:f3:ee:6a:35:cb:61: d8:48:c6:5a:92:e8:ff:9b:7f:01:3b:97:56:09:4d:0e:05:ea: 31:fb:52:31:45:6a:3a:84:a5:2e:b4:b1:0c:5a:13:82:a1:c0: 53:09:52:37:74:03:a9:f7:d1:9a:79:ed:66:29:b1:b2:8f:96: 22:99:e0:e3:fa:63:f6:f8:b6:f3:e0:86:96:e4:04:5d:7e:15: 0a:bf:cf:90:99:0c:3d:9d:45:d5:ad:e8:0c:52:31:ac:a5:72: df:9f:69:96:c2:fa:98:1f:4e:8c:67:67:85:51:86:5f:52:72: 3d:95:8f:e1:b3:d3:57:01:ef:0d:91:f6:eb:bf:32:d9:bd:4d: 51:15:e4:72:de:ae:18:c6:d9:b3:46:91:d4:7e:c6:21:4e:b9: 1c:b5:ab:49:d5:1a:8b:70:25:76:4e:ce:2b:5e:09:11:54:79: 57:11:1c:95:03:10:e8:d7:79:c0:83:5a:a5:01:ae:d3:e3:84: 04:3e:01:02:98:86:99:b1:62:30:2d:78:5c:e8:c8:5a:64:14: d9:e3:7e:c7 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZs40XWF6Nke1tRyTkI/uQGTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjOTYzZTNkMjI4NDdkNDY2YzI2MmMyMDg3OGMyNzgwZDg4 NDAwMDMwHhcNMjUxMjE5MjI1MzI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZmZjMDZmNjI1NTIxYzMwMzU0YjliMDMzZmE4NmM4MjdjOGI1MWUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzaL0OwBWiJIRB/t22pCKzO9rFSdZ RSvf9p70So+h0i2kCU4WsXgPC+9sfRmK2+DQ29c8JV6H3lLiXVJGlqFhY+hwJKEB O2t5JuxBaABApm9vvW0B+aHME1b2m2w4L5jlOi/L8xITdbiUB3T/UYsyqoTWYN/4 NdpEtxCnFcnsdWXaVKbLOROsh9OOHjbsUqeEvJdIYk9n2mDunrycaC0yTSh34Wj1 nSSQFECDeoznGunmRpPQvh4E1DNmjCMjozVc0jGG27XenkRIc2zbsfuY8chku8WB upgzf9yKBOP53/UNqWxSOkY+qB/3sxn/gsvwrKpCg5O7k83Jnnia+jf+0QIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFJ/8BvYlUhwwNUubAz+obIJ8i1HjMB8GA1UdIwQY MBaAFByWPj0ihH1GbCYsIIeMJ4DYhAADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQt MTQzOTY3YThmZTA4LzEvbl93RzlpVlNIREExUzVzRFA2aHNnbnlMVWVNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQtMTQzOTY3YThmZTA4 LzEvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQAQLxbAwQD kB8AAwQAkB9aAwQAkB9eAwQAkB99AwQCkB+AAwQAwRfBMA0GCSqGSIb3DQEBCwUA A4IBAQB1oKGeo3ORt4iz0HDP/VrvLH1wYxpHCi0RoKIGl+Yl0GrtYSfYGKmVeGu5 6TR7Ke/z7mo1y2HYSMZakuj/m38BO5dWCU0OBeox+1IxRWo6hKUutLEMWhOCocBT CVI3dAOp99Gaee1mKbGyj5YimeDj+mP2+Lbz4IaW5ARdfhUKv8+QmQw9nUXVregM UjGspXLfn2mWwvqYH06MZ2eFUYZfUnI9lY/hs9NXAe8NkfbrvzLZvU1RFeRy3q4Y xtmzRpHUfsYhTrkctatJ1RqLcCV2Ts4rXgkRVHlXERyVAxDo13nAg1qlAa7T44QE PgECmIaZsWIwLXhc6MhaZBTZ437H -----END CERTIFICATE-----Generated at Sat Dec 20 01:45:37 2025 by rpki-client