This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/0187d6-8bfc-4c59-a6c4-6ad3252a1427/1/nbFoGiZrK3Fb5OWjy4HYDx8RqMs.roa File: nbFoGiZrK3Fb5OWjy4HYDx8RqMs.roa (raw, json) Hash identifier: nACQPDtwAyQqYR5SdSIolmQFC3RDWoo+IhA3GV/1VsQ= Subject key identifier: 9D:B1:68:1A:26:6B:2B:71:5B:E4:E5:A3:CB:81:D8:0F:1F:11:A8:CB Certificate issuer: /CN=588cabf6f523f26e267db03b524347841aaaa465 Certificate serial: 019B7758A0186C4D722165481E045B46A694 Authority key identifier: 58:8C:AB:F6:F5:23:F2:6E:26:7D:B0:3B:52:43:47:84:1A:AA:A4:65 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIyr9vUj8m4mfbA7UkNHhBqqpGU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/0187d6-8bfc-4c59-a6c4-6ad3252a1427/1/nbFoGiZrK3Fb5OWjy4HYDx8RqMs.roa Signing time: Thu 01 Jan 2026 02:17:35 +0000 ROA not before: Thu 01 Jan 2026 02:17:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202916 IP address blocks: 86.109.20.0/24 maxlen: 24 2a04:1cc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/0187d6-8bfc-4c59-a6c4-6ad3252a1427/1/WIyr9vUj8m4mfbA7UkNHhBqqpGU.crl rsync://rpki.ripe.net/repository/DEFAULT/07/0187d6-8bfc-4c59-a6c4-6ad3252a1427/1/WIyr9vUj8m4mfbA7UkNHhBqqpGU.mft rsync://rpki.ripe.net/repository/DEFAULT/WIyr9vUj8m4mfbA7UkNHhBqqpGU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:a0:18:6c:4d:72:21:65:48:1e:04:5b:46:a6:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=588cabf6f523f26e267db03b524347841aaaa465 Validity Not Before: Jan 1 02:17:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9db1681a266b2b715be4e5a3cb81d80f1f11a8cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c4:96:61:5c:b7:51:a7:6e:a4:3c:87:1a:88: 75:34:60:a8:c7:36:48:89:88:8d:d6:32:e5:3a:08: 2c:0b:45:cc:57:f4:dc:61:97:44:ab:5d:a8:03:bf: 5c:6b:d7:8c:3f:2d:1d:a1:2d:a2:29:be:6c:53:19: ec:5b:62:97:4d:b9:86:ad:bb:c7:69:75:9e:6f:3f: 51:1f:d5:e7:c7:c2:fd:9b:e6:38:e9:85:8f:fe:3b: 58:6c:79:0d:e1:aa:da:66:2b:82:b6:0d:d2:ea:e9: 46:30:dd:37:10:5d:30:48:4e:c2:d9:49:0c:41:33: 0a:fd:2e:44:09:79:63:2f:05:2a:f5:5c:1e:84:04: d6:b7:d6:40:66:d6:a1:83:43:51:bf:7a:eb:2e:34: 98:57:1f:0c:06:3f:af:33:c1:29:ef:ad:98:8e:eb: 5a:44:f7:a5:72:01:17:66:5b:62:57:8b:1e:64:9f: fd:3f:40:5a:15:b8:3b:3e:be:8e:c9:ae:b5:91:da: 97:5d:3d:1f:23:f2:ad:dc:7a:2e:dd:09:9c:22:e7: 14:48:77:8c:3c:03:2d:c3:ad:cd:6d:0c:b2:bd:81: e8:be:b1:1f:8e:91:62:f0:02:16:4a:e3:31:81:84: 77:9f:7a:a4:86:9a:a1:0e:b0:62:14:16:df:2b:ab: cb:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:B1:68:1A:26:6B:2B:71:5B:E4:E5:A3:CB:81:D8:0F:1F:11:A8:CB X509v3 Authority Key Identifier: keyid:58:8C:AB:F6:F5:23:F2:6E:26:7D:B0:3B:52:43:47:84:1A:AA:A4:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIyr9vUj8m4mfbA7UkNHhBqqpGU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0187d6-8bfc-4c59-a6c4-6ad3252a1427/1/nbFoGiZrK3Fb5OWjy4HYDx8RqMs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0187d6-8bfc-4c59-a6c4-6ad3252a1427/1/WIyr9vUj8m4mfbA7UkNHhBqqpGU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.109.20.0/24 IPv6: 2a04:1cc0::/32 Signature Algorithm: sha256WithRSAEncryption 4e:62:d3:fa:01:ab:b2:02:02:e0:ff:f0:df:5f:21:04:27:2d: 74:74:52:84:64:4c:a1:c7:08:70:96:2f:cd:97:92:72:97:3f: 03:c1:11:b9:85:dd:d0:b2:16:49:fd:87:97:ba:70:f8:77:5b: c3:5c:1a:22:70:f8:f3:ae:c8:e5:d0:1f:61:8f:9b:ce:e4:ac: ed:58:74:1e:7d:46:5c:63:12:37:d9:43:fc:8f:bf:8f:c2:ed: 7b:91:cf:2d:22:32:e6:26:b3:c5:df:33:1e:ce:58:a0:ec:b3: f9:ca:33:97:3c:81:78:c5:e1:34:b8:8a:d7:3c:a5:48:65:19: 8b:81:d2:7b:0d:7b:fe:4b:bb:a8:6c:79:82:b6:59:23:37:89: a1:b4:fa:1c:65:22:e2:6d:b0:00:ee:5e:a7:5d:5f:7e:85:31: 16:c5:11:cc:04:95:b0:c9:46:5f:e4:9f:77:a5:c8:22:4c:79: 3c:65:12:dc:74:a1:39:61:69:da:a2:22:16:12:da:e4:80:37: 55:b6:19:1e:e7:05:d3:a8:c5:76:da:35:fa:47:1a:fa:34:1c: 31:ad:1a:39:9e:cf:85:98:8c:de:9f:04:03:c5:f7:f9:7b:c0: f5:2c:0c:00:d2:b6:ac:ac:59:68:2d:ab:86:5b:be:58:39:af: f8:6b:fc:97 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt3WKAYbE1yIWVIHgRbRqaUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4OGNhYmY2ZjUyM2YyNmUyNjdkYjAzYjUyNDM0Nzg0MWFh YWE0NjUwHhcNMjYwMTAxMDIxNzM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZGIxNjgxYTI2NmIyYjcxNWJlNGU1YTNjYjgxZDgwZjFmMTFhOGNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxsSWYVy3UadupDyHGoh1NGCoxzZI iYiN1jLlOggsC0XMV/TcYZdEq12oA79ca9eMPy0doS2iKb5sUxnsW2KXTbmGrbvH aXWebz9RH9Xnx8L9m+Y46YWP/jtYbHkN4araZiuCtg3S6ulGMN03EF0wSE7C2UkM QTMK/S5ECXljLwUq9VwehATWt9ZAZtahg0NRv3rrLjSYVx8MBj+vM8Ep762Yjuta RPelcgEXZltiV4seZJ/9P0BaFbg7Pr6Oya61kdqXXT0fI/Kt3Hou3QmcIucUSHeM PAMtw63NbQyyvYHovrEfjpFi8AIWSuMxgYR3n3qkhpqhDrBiFBbfK6vLNQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFJ2xaBomaytxW+Tlo8uB2A8fEajLMB8GA1UdIwQY MBaAFFiMq/b1I/JuJn2wO1JDR4QaqqRlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0l5cjl2VWo4bTRtZmJBN1VrTkhoQnFxcEdVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy8wMTg3ZDYtOGJmYy00YzU5LWE2YzQt NmFkMzI1MmExNDI3LzEvbmJGb0dpWnJLM0ZiNU9Xank0SFlEeDhScU1zLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy8wMTg3ZDYtOGJmYy00YzU5LWE2YzQtNmFkMzI1MmExNDI3 LzEvV0l5cjl2VWo4bTRtZmJBN1VrTkhoQnFxcEdVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAVm0UMA0E AgACMAcDBQAqBBzAMA0GCSqGSIb3DQEBCwUAA4IBAQBOYtP6AauyAgLg//DfXyEE Jy10dFKEZEyhxwhwli/Nl5Jylz8DwRG5hd3QshZJ/YeXunD4d1vDXBoicPjzrsjl 0B9hj5vO5KztWHQefUZcYxI32UP8j7+Pwu17kc8tIjLmJrPF3zMezlig7LP5yjOX PIF4xeE0uIrXPKVIZRmLgdJ7DXv+S7uobHmCtlkjN4mhtPocZSLibbAA7l6nXV9+ hTEWxRHMBJWwyUZf5J93pcgiTHk8ZRLcdKE5YWnaoiIWEtrkgDdVthke5wXTqMV2 2jX6Rxr6NBwxrRo5ns+FmIzenwQDxff5e8D1LAwA0rasrFloLauGW75YOa/4a/yX -----END CERTIFICATE-----Generated at Sun Jan 25 22:30:01 2026 by rpki-client