This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/nmpthTHAT4WUcq8Q3IMochngGiw.roa File: nmpthTHAT4WUcq8Q3IMochngGiw.roa (raw, json) Hash identifier: WMNeejxSLtwCCkkRDHZIffdNUGROwkauBCQwzToW+EM= Subject key identifier: 9E:6A:6D:85:31:C0:4F:85:94:72:AF:10:DC:83:28:72:19:E0:1A:2C Certificate issuer: /CN=d422367433765b541a37390a998997b737c46472 Certificate serial: 019B7E391179F8ECF73D5DE5BE77A6E2C9C2 Authority key identifier: D4:22:36:74:33:76:5B:54:1A:37:39:0A:99:89:97:B7:37:C4:64:72 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1CI2dDN2W1QaNzkKmYmXtzfEZHI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/nmpthTHAT4WUcq8Q3IMochngGiw.roa Signing time: Fri 02 Jan 2026 10:20:27 +0000 ROA not before: Fri 02 Jan 2026 10:20:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 137 IP address blocks: 151.100.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.crl rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.mft rsync://rpki.ripe.net/repository/DEFAULT/1CI2dDN2W1QaNzkKmYmXtzfEZHI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:11:79:f8:ec:f7:3d:5d:e5:be:77:a6:e2:c9:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d422367433765b541a37390a998997b737c46472 Validity Not Before: Jan 2 10:20:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9e6a6d8531c04f859472af10dc83287219e01a2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:91:2b:28:ab:48:2c:89:05:85:34:5b:5b:97: db:93:db:7d:87:07:fb:40:b8:20:2b:38:21:51:98: 8e:12:50:67:31:c3:96:e9:fb:db:19:a8:e0:d7:73: 2d:ef:0b:30:57:c4:5b:ad:20:a9:b9:da:21:07:cc: a4:de:70:c6:5e:08:9d:55:79:9e:07:cc:82:78:e7: 6e:10:fc:bc:19:4d:37:73:11:94:5a:3a:1b:47:00: ff:6b:c2:52:0e:ee:24:ae:10:af:53:f3:b6:9f:c9: b7:0f:3d:94:bc:0f:d6:dc:8d:36:3e:7c:27:3f:3e: ed:90:eb:65:41:9d:da:23:73:f0:59:a3:58:f4:8b: 47:bb:c9:82:5e:3b:b3:1f:6b:27:69:a5:f8:e3:1a: 46:f0:3b:3a:ed:fe:9e:52:18:55:1f:d3:12:0e:9e: 67:2e:5e:e3:0b:e6:b7:3e:cc:92:45:34:56:7e:e6: 4b:2c:9e:2d:c3:d0:ea:21:3a:54:e4:06:96:f5:17: e3:de:1b:f2:50:e0:fc:5f:b6:02:61:75:09:af:28: 50:7b:ae:9d:28:dd:65:23:c9:3c:bd:73:00:54:01: 9d:4d:b5:52:bb:c0:78:2a:89:cc:f1:20:95:51:67: ec:23:8a:5e:87:2c:a1:02:e8:9b:ac:b8:33:10:ee: d5:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:6A:6D:85:31:C0:4F:85:94:72:AF:10:DC:83:28:72:19:E0:1A:2C X509v3 Authority Key Identifier: keyid:D4:22:36:74:33:76:5B:54:1A:37:39:0A:99:89:97:B7:37:C4:64:72 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1CI2dDN2W1QaNzkKmYmXtzfEZHI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/nmpthTHAT4WUcq8Q3IMochngGiw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.100.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7f:4d:bf:36:ee:31:ac:d5:89:26:84:23:00:b1:79:dc:ed:e9: 33:11:5b:70:c4:14:4b:12:9e:c2:ee:26:b0:a7:fb:66:1e:71: 7c:b7:3a:b8:a0:8a:f4:02:3c:0c:ad:0b:aa:61:b9:51:1f:74: b4:da:d0:44:70:4f:71:36:8c:15:fa:fb:b4:c0:1d:03:9d:bb: ca:4b:59:60:a5:04:d4:4f:6f:4c:7d:ec:26:98:40:68:c4:55: 87:9f:a3:b0:93:74:53:cc:3a:c5:13:f7:46:20:c4:a6:02:6a: 9b:40:c7:ad:ab:4e:69:2d:d0:14:66:a2:f2:2f:19:85:60:36: 0c:1b:49:1e:de:2e:53:8e:92:96:83:41:70:0a:eb:ef:be:29: 2e:4c:99:ec:4f:e1:06:84:30:4b:0d:ac:7e:9c:6d:d6:19:53: ab:c7:f8:dc:3b:e9:c1:98:23:6f:9b:f8:38:0f:49:f1:93:82: e8:0f:cd:08:bf:44:0b:cb:ce:03:71:35:cc:be:7a:69:b2:2d: a1:89:a7:1e:d9:56:80:7a:75:38:5e:8e:ef:be:c8:db:9f:8c: 42:6c:81:75:db:88:95:c5:c2:6c:60:98:85:d1:b6:7a:51:e8: a7:06:ae:22:a6:6d:45:c6:92:10:f3:88:7e:7f:ac:78:e4:13: 23:f7:2b:23 -----BEGIN CERTIFICATE----- MIIE/DCCA+SgAwIBAgISAZt+ORF5+Oz3PV3lvnem4snCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0MjIzNjc0MzM3NjViNTQxYTM3MzkwYTk5ODk5N2I3Mzdj NDY0NzIwHhcNMjYwMTAyMTAyMDI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZTZhNmQ4NTMxYzA0Zjg1OTQ3MmFmMTBkYzgzMjg3MjE5ZTAxYTJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt5ErKKtILIkFhTRbW5fbk9t9hwf7 QLggKzghUZiOElBnMcOW6fvbGajg13Mt7wswV8RbrSCpudohB8yk3nDGXgidVXme B8yCeOduEPy8GU03cxGUWjobRwD/a8JSDu4krhCvU/O2n8m3Dz2UvA/W3I02Pnwn Pz7tkOtlQZ3aI3PwWaNY9ItHu8mCXjuzH2snaaX44xpG8Ds67f6eUhhVH9MSDp5n Ll7jC+a3PsySRTRWfuZLLJ4tw9DqITpU5AaW9Rfj3hvyUOD8X7YCYXUJryhQe66d KN1lI8k8vXMAVAGdTbVSu8B4KonM8SCVUWfsI4pehyyhAuibrLgzEO7VgQIDAQAB o4ICCDCCAgQwHQYDVR0OBBYEFJ5qbYUxwE+FlHKvENyDKHIZ4BosMB8GA1UdIwQY MBaAFNQiNnQzdltUGjc5CpmJl7c3xGRyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUNJMmRETjJXMVFhTnprS21ZbVh0emZFWkhJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy80NWJlMzItODIxZi00NTE0LWFhMzEt YmM3NTQ2NjA0N2M5LzEvbm1wdGhUSEFUNFdVY3E4UTNJTW9jaG5nR2l3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYy80NWJlMzItODIxZi00NTE0LWFhMzEtYmM3NTQ2NjA0N2M5 LzEvMUNJMmRETjJXMVFhTnprS21ZbVh0emZFWkhJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAl2QwDQYJ KoZIhvcNAQELBQADggEBAH9NvzbuMazViSaEIwCxedzt6TMRW3DEFEsSnsLuJrCn +2YecXy3OrigivQCPAytC6phuVEfdLTa0ERwT3E2jBX6+7TAHQOdu8pLWWClBNRP b0x97CaYQGjEVYefo7CTdFPMOsUT90YgxKYCaptAx62rTmkt0BRmovIvGYVgNgwb SR7eLlOOkpaDQXAK6+++KS5MmexP4QaEMEsNrH6cbdYZU6vH+Nw76cGYI2+b+DgP SfGTgugPzQi/RAvLzgNxNcy+emmyLaGJpx7ZVoB6dTheju++yNufjEJsgXXbiJXF wmxgmIXRtnpR6KcGriKmbUXGkhDziH5/rHjkEyP3KyM= -----END CERTIFICATE-----Generated at Mon Feb 9 22:17:17 2026 by rpki-client