This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/a481e7-a777-4002-b882-65a294a1fbae/1/n70et20FpRZ0Oftj2S9UBmLkpLw.roa File: n70et20FpRZ0Oftj2S9UBmLkpLw.roa (raw, json) Hash identifier: /VTb10e5Be/TJ6TGNlem6e21ZHMxwrWVWKFFEq6/U1Q= Subject key identifier: 9F:BD:1E:B7:6D:05:A5:16:74:39:FB:63:D9:2F:54:06:62:E4:A4:BC Certificate issuer: /CN=f0ec6ce24301db2e51dd536d5c0c15cf970c722a Certificate serial: 019B76EB64452FC9B8878B28DAAD06DD1ECE Authority key identifier: F0:EC:6C:E2:43:01:DB:2E:51:DD:53:6D:5C:0C:15:CF:97:0C:72:2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8Oxs4kMB2y5R3VNtXAwVz5cMcio.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/a481e7-a777-4002-b882-65a294a1fbae/1/n70et20FpRZ0Oftj2S9UBmLkpLw.roa Signing time: Thu 01 Jan 2026 00:18:16 +0000 ROA not before: Thu 01 Jan 2026 00:18:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56517 IP address blocks: 31.24.48.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/a481e7-a777-4002-b882-65a294a1fbae/1/8Oxs4kMB2y5R3VNtXAwVz5cMcio.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/a481e7-a777-4002-b882-65a294a1fbae/1/8Oxs4kMB2y5R3VNtXAwVz5cMcio.mft rsync://rpki.ripe.net/repository/DEFAULT/8Oxs4kMB2y5R3VNtXAwVz5cMcio.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:64:45:2f:c9:b8:87:8b:28:da:ad:06:dd:1e:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f0ec6ce24301db2e51dd536d5c0c15cf970c722a Validity Not Before: Jan 1 00:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9fbd1eb76d05a5167439fb63d92f540662e4a4bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b8:86:c2:64:28:8a:2b:32:5d:fe:d3:f2:bb: b2:1e:e9:7f:70:15:06:dc:0f:b4:12:04:3a:fc:49: 12:74:e4:ea:1d:05:a3:f8:ea:4d:b1:3e:06:08:94: 4d:be:4e:df:17:b0:21:96:b6:6a:c7:d3:f7:ad:12: c5:41:5f:31:34:df:c7:a0:4c:8e:1f:02:9f:58:7d: fa:6e:5c:fc:11:8c:09:27:01:3a:14:96:d2:29:4a: 63:c6:c3:bf:3d:a0:48:ef:bb:d5:df:9c:d2:8c:07: 46:d9:f4:f4:8e:9f:53:e7:97:2d:4b:86:7e:aa:c0: ac:0b:7f:16:54:c9:59:7c:e9:68:e8:f5:bf:de:33: 9f:34:58:f6:2c:a9:e0:c1:ce:b4:ec:c3:29:7b:da: 4d:82:39:a2:76:a3:c6:92:f0:da:17:8d:53:d6:e0: aa:80:c7:dd:1d:0c:c4:30:a4:c4:9e:e6:32:0c:a3: 50:58:eb:ed:f7:8f:0f:23:52:39:a1:7e:e8:b7:4f: 9c:35:5e:ab:ee:14:84:cf:1b:fc:d2:59:5d:fc:9e: 6b:12:6f:c8:27:1b:22:45:be:0a:5c:ed:d2:1a:1f: 50:4b:4f:76:bf:1e:33:04:e2:63:7d:8c:46:e0:3c: 88:05:b5:4b:d3:e1:f4:ef:69:79:ab:2c:77:ea:86: c8:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:BD:1E:B7:6D:05:A5:16:74:39:FB:63:D9:2F:54:06:62:E4:A4:BC X509v3 Authority Key Identifier: keyid:F0:EC:6C:E2:43:01:DB:2E:51:DD:53:6D:5C:0C:15:CF:97:0C:72:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8Oxs4kMB2y5R3VNtXAwVz5cMcio.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/a481e7-a777-4002-b882-65a294a1fbae/1/n70et20FpRZ0Oftj2S9UBmLkpLw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/a481e7-a777-4002-b882-65a294a1fbae/1/8Oxs4kMB2y5R3VNtXAwVz5cMcio.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.24.48.0/22 Signature Algorithm: sha256WithRSAEncryption 39:b4:15:82:15:ad:b7:4e:f9:9a:d0:ac:df:05:83:9c:9f:16: e4:4c:eb:09:39:6f:54:06:be:35:8f:a5:ba:35:f1:17:d1:f8: 6f:b2:05:c2:b0:32:05:b1:0d:ee:f9:d7:05:34:d7:6b:6b:40: c4:69:1a:aa:c8:64:eb:61:55:58:06:0c:ce:5e:ca:c1:0e:84: 35:21:c6:c5:e6:11:2e:3a:19:43:cc:6a:0d:62:14:e1:df:6f: e7:6c:f7:05:38:0f:9f:6c:b0:c6:2b:82:e6:a1:16:2f:af:c5: 7d:88:ba:2b:fe:50:af:cf:b0:13:ca:e4:33:4c:b6:65:2a:e3: 24:85:13:76:cb:17:84:34:60:0e:d3:81:cd:e2:75:70:22:ed: 6b:6c:94:f7:70:1c:46:d4:45:ad:0a:25:9a:36:70:18:cb:c1: 2a:71:30:56:f2:d9:49:10:51:e8:e0:ee:b0:2d:be:77:a9:66: e1:3d:09:46:ef:20:e7:7a:dc:e3:a9:8d:6d:38:b9:aa:12:69: 91:48:74:d2:0f:74:e9:e7:1e:81:34:bc:ed:2d:fb:12:ad:cd: bc:66:6c:e4:99:e7:1b:d4:59:7d:f8:5b:78:24:9e:bb:3d:38: df:74:e1:47:88:fe:c0:ef:fd:7b:df:e8:7b:7c:b8:c9:ba:24: 2e:5a:65:8b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt262RFL8m4h4so2q0G3R7OMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwZWM2Y2UyNDMwMWRiMmU1MWRkNTM2ZDVjMGMxNWNmOTcw YzcyMmEwHhcNMjYwMTAxMDAxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZmJkMWViNzZkMDVhNTE2NzQzOWZiNjNkOTJmNTQwNjYyZTRhNGJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtLiGwmQoiisyXf7T8ruyHul/cBUG 3A+0EgQ6/EkSdOTqHQWj+OpNsT4GCJRNvk7fF7AhlrZqx9P3rRLFQV8xNN/HoEyO HwKfWH36blz8EYwJJwE6FJbSKUpjxsO/PaBI77vV35zSjAdG2fT0jp9T55ctS4Z+ qsCsC38WVMlZfOlo6PW/3jOfNFj2LKngwc607MMpe9pNgjmidqPGkvDaF41T1uCq gMfdHQzEMKTEnuYyDKNQWOvt948PI1I5oX7ot0+cNV6r7hSEzxv80lld/J5rEm/I JxsiRb4KXO3SGh9QS092vx4zBOJjfYxG4DyIBbVL0+H072l5qyx36obIbwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJ+9HrdtBaUWdDn7Y9kvVAZi5KS8MB8GA1UdIwQY MBaAFPDsbOJDAdsuUd1TbVwMFc+XDHIqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOE94czRrTUIyeTVSM1ZOdFhBd1Z6NWNNY2lvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi9hNDgxZTctYTc3Ny00MDAyLWI4ODIt NjVhMjk0YTFmYmFlLzEvbjcwZXQyMEZwUlowT2Z0ajJTOVVCbUxrcEx3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi9hNDgxZTctYTc3Ny00MDAyLWI4ODItNjVhMjk0YTFmYmFl LzEvOE94czRrTUIyeTVSM1ZOdFhBd1Z6NWNNY2lvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCHxgwMA0G CSqGSIb3DQEBCwUAA4IBAQA5tBWCFa23Tvma0KzfBYOcnxbkTOsJOW9UBr41j6W6 NfEX0fhvsgXCsDIFsQ3u+dcFNNdra0DEaRqqyGTrYVVYBgzOXsrBDoQ1IcbF5hEu OhlDzGoNYhTh32/nbPcFOA+fbLDGK4LmoRYvr8V9iLor/lCvz7ATyuQzTLZlKuMk hRN2yxeENGAO04HN4nVwIu1rbJT3cBxG1EWtCiWaNnAYy8EqcTBW8tlJEFHo4O6w Lb53qWbhPQlG7yDnetzjqY1tOLmqEmmRSHTSD3Tp5x6BNLztLfsSrc28Zmzkmecb 1Fl9+Ft4JJ67PTjfdOFHiP7A7/173+h7fLjJuiQuWmWL -----END CERTIFICATE-----Generated at Tue Feb 10 04:14:40 2026 by rpki-client