This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/613508-0832-41f6-acb7-831f7e6f5ccd/1/17Np1y-dxxhXZQRQoDGfhlgHSac.roa File: 17Np1y-dxxhXZQRQoDGfhlgHSac.roa (raw, json) Hash identifier: AmSzrL+ixbKTyqpiqkExdglo4ra/UrlgCqcfSDgSmgM= Subject key identifier: D7:B3:69:D7:2F:9D:C7:18:57:65:04:50:A0:31:9F:86:58:07:49:A7 Certificate issuer: /CN=424feffb576e411de511871dc1e0bd7a20e2c4d7 Certificate serial: 019B797F0C79A0655062CBFE65D0C48C0AB5 Authority key identifier: 42:4F:EF:FB:57:6E:41:1D:E5:11:87:1D:C1:E0:BD:7A:20:E2:C4:D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qk_v-1duQR3lEYcdweC9eiDixNc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/613508-0832-41f6-acb7-831f7e6f5ccd/1/17Np1y-dxxhXZQRQoDGfhlgHSac.roa Signing time: Thu 01 Jan 2026 12:18:47 +0000 ROA not before: Thu 01 Jan 2026 12:18:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211043 IP address blocks: 194.31.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/613508-0832-41f6-acb7-831f7e6f5ccd/1/Qk_v-1duQR3lEYcdweC9eiDixNc.crl rsync://rpki.ripe.net/repository/DEFAULT/dc/613508-0832-41f6-acb7-831f7e6f5ccd/1/Qk_v-1duQR3lEYcdweC9eiDixNc.mft rsync://rpki.ripe.net/repository/DEFAULT/Qk_v-1duQR3lEYcdweC9eiDixNc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:0c:79:a0:65:50:62:cb:fe:65:d0:c4:8c:0a:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=424feffb576e411de511871dc1e0bd7a20e2c4d7 Validity Not Before: Jan 1 12:18:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d7b369d72f9dc71857650450a0319f86580749a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d8:51:ca:45:1f:cd:cc:a5:ad:8e:dc:2b:9e: 0c:22:67:11:7f:cd:c5:5a:fc:ad:ba:cd:b7:d1:60: 26:83:b5:e1:f6:2a:72:79:f6:12:c8:26:f3:82:a7: 97:e6:a3:f6:51:05:b6:1a:8d:60:fe:07:55:c2:7f: 25:12:32:26:c9:4b:e3:59:cb:7d:72:e6:d8:26:d1: 49:97:29:bf:38:2a:f8:f9:e8:d1:9f:36:dd:72:e9: d0:a2:c8:c8:aa:55:2a:15:19:ae:e9:6b:28:db:1a: 00:30:a0:eb:ed:f2:82:58:22:96:08:9a:8f:c1:58: 7a:e0:f4:d5:be:31:e5:ca:99:5c:00:12:30:38:94: 03:1c:a2:a4:1e:95:36:d4:ca:17:db:5c:7d:8c:ae: 7b:a8:37:ce:82:43:e4:d9:ed:57:fa:cd:b5:d5:69: 74:ca:51:5a:16:db:10:90:ae:d2:2e:ad:e3:dc:56: 6c:6f:5f:a1:ff:58:67:1f:fe:44:7f:76:3d:26:8c: 0b:b7:35:19:e6:42:5c:59:1b:90:2d:0a:9c:0e:bd: 70:df:36:77:33:ef:7d:4c:73:47:65:7e:72:96:e8: 10:5b:d0:a1:f1:76:aa:df:10:ff:fd:59:44:3f:28: b0:15:49:a1:2f:7d:9d:9f:90:a8:da:23:b4:7c:b9: 35:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:B3:69:D7:2F:9D:C7:18:57:65:04:50:A0:31:9F:86:58:07:49:A7 X509v3 Authority Key Identifier: keyid:42:4F:EF:FB:57:6E:41:1D:E5:11:87:1D:C1:E0:BD:7A:20:E2:C4:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qk_v-1duQR3lEYcdweC9eiDixNc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/613508-0832-41f6-acb7-831f7e6f5ccd/1/17Np1y-dxxhXZQRQoDGfhlgHSac.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/613508-0832-41f6-acb7-831f7e6f5ccd/1/Qk_v-1duQR3lEYcdweC9eiDixNc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.31.96.0/24 Signature Algorithm: sha256WithRSAEncryption 80:36:59:1f:69:86:f5:c8:0a:10:d0:a3:4f:de:65:bb:a7:11: 63:7b:df:e7:e6:79:9b:c5:b5:e6:43:82:00:4b:13:c1:7d:18: 80:d9:4e:02:fc:1e:f3:9b:d2:75:ce:76:d2:a3:e5:f0:37:7f: f3:90:3a:1a:0d:c4:d4:63:35:45:c3:63:15:ca:ab:54:88:4a: d2:c7:18:2b:5e:27:61:02:ac:96:00:e5:c8:aa:b2:bc:07:18: 50:1e:2d:6f:1b:f2:c9:c7:db:91:ea:a6:6d:37:1e:1e:42:8e: ee:5f:56:31:98:14:53:d7:1a:8f:7a:2e:ad:f5:ea:87:41:2c: b3:9f:31:1b:dd:d1:e1:fc:16:bc:e1:61:f3:c0:47:31:77:f2: 02:d9:10:08:17:57:e3:5b:3e:17:65:e7:d0:91:07:04:f1:7d: cd:57:68:0a:c6:32:b8:b7:03:70:56:38:88:77:1c:8e:9a:e1: 8b:a9:df:e0:90:a5:c1:e1:d4:12:a1:45:f7:0a:15:c7:56:20: bb:66:8a:33:48:38:d3:7e:ed:00:49:e9:3c:e9:4a:b5:4c:cd: e2:7b:36:6d:23:51:0c:bb:c3:0f:1b:85:29:b6:d9:bd:57:30: 61:41:23:ea:b1:dc:88:db:df:b6:2d:c6:98:19:d0:0c:fa:a6: b1:14:d1:e0 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fwx5oGVQYsv+ZdDEjAq1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyNGZlZmZiNTc2ZTQxMWRlNTExODcxZGMxZTBiZDdhMjBl MmM0ZDcwHhcNMjYwMTAxMTIxODQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkN2IzNjlkNzJmOWRjNzE4NTc2NTA0NTBhMDMxOWY4NjU4MDc0OWE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxthRykUfzcylrY7cK54MImcRf83F Wvytus230WAmg7Xh9ipyefYSyCbzgqeX5qP2UQW2Go1g/gdVwn8lEjImyUvjWct9 cubYJtFJlym/OCr4+ejRnzbdcunQosjIqlUqFRmu6Wso2xoAMKDr7fKCWCKWCJqP wVh64PTVvjHlyplcABIwOJQDHKKkHpU21MoX21x9jK57qDfOgkPk2e1X+s211Wl0 ylFaFtsQkK7SLq3j3FZsb1+h/1hnH/5Ef3Y9JowLtzUZ5kJcWRuQLQqcDr1w3zZ3 M+99THNHZX5ylugQW9Ch8Xaq3xD//VlEPyiwFUmhL32dn5Co2iO0fLk1FwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNezadcvnccYV2UEUKAxn4ZYB0mnMB8GA1UdIwQY MBaAFEJP7/tXbkEd5RGHHcHgvXog4sTXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWtfdi0xZHVRUjNsRVljZHdlQzllaURpeE5jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy82MTM1MDgtMDgzMi00MWY2LWFjYjct ODMxZjdlNmY1Y2NkLzEvMTdOcDF5LWR4eGhYWlFSUW9ER2ZobGdIU2FjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYy82MTM1MDgtMDgzMi00MWY2LWFjYjctODMxZjdlNmY1Y2Nk LzEvUWtfdi0xZHVRUjNsRVljZHdlQzllaURpeE5jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwh9gMA0G CSqGSIb3DQEBCwUAA4IBAQCANlkfaYb1yAoQ0KNP3mW7pxFje9/n5nmbxbXmQ4IA SxPBfRiA2U4C/B7zm9J1znbSo+XwN3/zkDoaDcTUYzVFw2MVyqtUiErSxxgrXidh AqyWAOXIqrK8BxhQHi1vG/LJx9uR6qZtNx4eQo7uX1YxmBRT1xqPei6t9eqHQSyz nzEb3dHh/Ba84WHzwEcxd/IC2RAIF1fjWz4XZefQkQcE8X3NV2gKxjK4twNwVjiI dxyOmuGLqd/gkKXB4dQSoUX3ChXHViC7ZoozSDjTfu0ASek86Uq1TM3iezZtI1EM u8MPG4Upttm9VzBhQSPqsdyI29+2LcaYGdAM+qaxFNHg -----END CERTIFICATE-----Generated at Wed Jan 21 06:08:45 2026 by rpki-client