This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/aa5972-3538-4361-a134-31de1769fd8a/1/NMgthEWSDkhf_cRJefWOwwwKa-w.roa File: NMgthEWSDkhf_cRJefWOwwwKa-w.roa (raw, json) Hash identifier: VQXO+94YOu0/0F/wMTO4bq00aYkrqkoxk+yxuAK1KCo= Subject key identifier: 34:C8:2D:84:45:92:0E:48:5F:FD:C4:49:79:F5:8E:C3:0C:0A:6B:EC Certificate issuer: /CN=be8b15c237f34c5c5c5344b4079ebb3a589d0148 Certificate serial: 019B7BA34184B9EBB1C7477822138B9FB437 Authority key identifier: BE:8B:15:C2:37:F3:4C:5C:5C:53:44:B4:07:9E:BB:3A:58:9D:01:48 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vosVwjfzTFxcU0S0B567OlidAUg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/aa5972-3538-4361-a134-31de1769fd8a/1/NMgthEWSDkhf_cRJefWOwwwKa-w.roa Signing time: Thu 01 Jan 2026 22:17:35 +0000 ROA not before: Thu 01 Jan 2026 22:17:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34259 IP address blocks: 193.0.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/aa5972-3538-4361-a134-31de1769fd8a/1/vosVwjfzTFxcU0S0B567OlidAUg.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/aa5972-3538-4361-a134-31de1769fd8a/1/vosVwjfzTFxcU0S0B567OlidAUg.mft rsync://rpki.ripe.net/repository/DEFAULT/vosVwjfzTFxcU0S0B567OlidAUg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:41:84:b9:eb:b1:c7:47:78:22:13:8b:9f:b4:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=be8b15c237f34c5c5c5344b4079ebb3a589d0148 Validity Not Before: Jan 1 22:17:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=34c82d8445920e485ffdc44979f58ec30c0a6bec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:71:b5:7c:4f:7f:32:7c:7f:c1:7f:22:fa:1b: 4d:10:4c:c6:ed:17:8d:23:5b:4e:74:af:dc:01:3b: 0f:6a:3a:2d:eb:93:4e:c6:b0:22:17:b8:c2:f0:d7: af:28:0e:a7:99:5d:3f:ca:a4:88:27:3c:35:f8:cc: 33:0b:5b:08:54:1d:29:02:71:63:30:6c:51:94:85: 2d:31:fd:8d:48:98:97:d4:8f:7e:8c:86:bb:27:5a: 63:1b:73:aa:89:e7:e7:a6:40:7d:4b:a3:2b:9c:0a: 56:bf:8e:64:e2:f4:6c:9e:59:d7:7a:a2:f1:1c:7d: 74:fe:99:26:5b:64:b2:c1:ed:66:72:45:d1:92:c9: d9:1a:5b:5b:92:89:91:50:ef:63:1b:d4:6d:35:34: 92:54:65:06:af:69:0f:70:cd:eb:bf:ad:e4:2f:ca: 6a:9d:03:40:28:1a:6b:c1:d3:85:5a:bf:b9:42:5d: ed:bf:54:cd:e8:a3:7a:5a:cf:f0:4e:0d:7d:02:3d: 4e:7d:82:76:5e:b3:68:0b:c4:d8:3b:c4:5f:61:ba: fa:d5:f2:16:11:25:62:04:d3:57:43:39:11:3d:32: 59:69:b7:3b:52:0d:df:04:fd:11:0a:90:f7:22:3c: 57:a3:1c:e2:9e:0c:6c:42:30:76:3d:40:67:28:20: 4a:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:C8:2D:84:45:92:0E:48:5F:FD:C4:49:79:F5:8E:C3:0C:0A:6B:EC X509v3 Authority Key Identifier: keyid:BE:8B:15:C2:37:F3:4C:5C:5C:53:44:B4:07:9E:BB:3A:58:9D:01:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vosVwjfzTFxcU0S0B567OlidAUg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/aa5972-3538-4361-a134-31de1769fd8a/1/NMgthEWSDkhf_cRJefWOwwwKa-w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/aa5972-3538-4361-a134-31de1769fd8a/1/vosVwjfzTFxcU0S0B567OlidAUg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.0.223.0/24 Signature Algorithm: sha256WithRSAEncryption b3:c4:4a:c2:28:6c:af:f0:41:59:19:61:11:e3:6c:d4:d1:54: f9:fa:00:16:d3:16:43:50:9e:df:67:84:df:35:ce:8b:59:ad: 7a:0b:f9:61:59:8c:c4:e4:4a:86:f2:38:a7:42:43:bd:68:24: d3:35:cd:ae:17:a5:8a:10:e7:dd:c1:12:13:5b:0b:b0:9e:57: 75:49:72:bc:8d:17:19:8e:15:a6:30:57:a1:8e:c6:49:fd:fa: 7b:c5:13:51:3e:5f:c0:a7:b4:ee:5f:2b:3b:53:de:95:2a:1c: 75:a1:92:71:41:52:35:da:5a:95:4f:20:ba:48:70:64:84:38: ec:44:8c:9d:43:dc:cc:1b:82:b9:14:52:9d:2b:ef:79:c4:4e: 3e:0c:0a:ae:b7:d2:e5:ca:72:74:73:fe:ac:f5:79:ba:7e:9b: 51:be:8a:f2:d8:68:f3:41:67:29:c5:13:b3:97:1d:cf:31:7a: 2e:81:81:fe:0d:00:46:ff:6e:00:9e:d4:97:da:2c:fb:99:68: 5a:e5:a8:ca:49:99:b0:03:b7:ce:06:0c:59:3d:14:47:ff:2d: d2:ac:6a:42:c4:1c:a4:bc:b7:3a:97:4e:76:8a:77:25:b0:e5: 7a:39:98:70:21:03:84:db:e9:3b:cf:0b:2c:b2:cc:47:14:61: 33:cc:8a:1d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7o0GEueuxx0d4IhOLn7Q3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJlOGIxNWMyMzdmMzRjNWM1YzUzNDRiNDA3OWViYjNhNTg5 ZDAxNDgwHhcNMjYwMTAxMjIxNzM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNGM4MmQ4NDQ1OTIwZTQ4NWZmZGM0NDk3OWY1OGVjMzBjMGE2YmVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqnG1fE9/Mnx/wX8i+htNEEzG7ReN I1tOdK/cATsPajot65NOxrAiF7jC8NevKA6nmV0/yqSIJzw1+MwzC1sIVB0pAnFj MGxRlIUtMf2NSJiX1I9+jIa7J1pjG3OqiefnpkB9S6MrnApWv45k4vRsnlnXeqLx HH10/pkmW2Sywe1mckXRksnZGltbkomRUO9jG9RtNTSSVGUGr2kPcM3rv63kL8pq nQNAKBprwdOFWr+5Ql3tv1TN6KN6Ws/wTg19Aj1OfYJ2XrNoC8TYO8RfYbr61fIW ESViBNNXQzkRPTJZabc7Ug3fBP0RCpD3IjxXoxzingxsQjB2PUBnKCBKiQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDTILYRFkg5IX/3ESXn1jsMMCmvsMB8GA1UdIwQY MBaAFL6LFcI380xcXFNEtAeeuzpYnQFIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdm9zVndqZnpURnhjVTBTMEI1NjdPbGlkQVVnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9hYTU5NzItMzUzOC00MzYxLWExMzQt MzFkZTE3NjlmZDhhLzEvTk1ndGhFV1NEa2hmX2NSSmVmV093d3dLYS13LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS9hYTU5NzItMzUzOC00MzYxLWExMzQtMzFkZTE3NjlmZDhh LzEvdm9zVndqZnpURnhjVTBTMEI1NjdPbGlkQVVnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwQDfMA0G CSqGSIb3DQEBCwUAA4IBAQCzxErCKGyv8EFZGWER42zU0VT5+gAW0xZDUJ7fZ4Tf Nc6LWa16C/lhWYzE5EqG8jinQkO9aCTTNc2uF6WKEOfdwRITWwuwnld1SXK8jRcZ jhWmMFehjsZJ/fp7xRNRPl/Ap7TuXys7U96VKhx1oZJxQVI12lqVTyC6SHBkhDjs RIydQ9zMG4K5FFKdK+95xE4+DAqut9LlynJ0c/6s9Xm6fptRvory2GjzQWcpxROz lx3PMXougYH+DQBG/24AntSX2iz7mWha5ajKSZmwA7fOBgxZPRRH/y3SrGpCxByk vLc6l052inclsOV6OZhwIQOE2+k7zwssssxHFGEzzIod -----END CERTIFICATE-----Generated at Fri Jan 2 09:57:02 2026 by rpki-client