This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b05667-e850-4c45-aee3-aded1c469eaf/1/nBm950xJAm9pONVZhHt0wVFEq7Y.roa File: nBm950xJAm9pONVZhHt0wVFEq7Y.roa (raw, json) Hash identifier: ZyCH9JBRPWP0WR4LL51Jbb1msIvVHDWA7bezxMkIVWY= Subject key identifier: 9C:19:BD:E7:4C:49:02:6F:69:38:D5:59:84:7B:74:C1:51:44:AB:B6 Certificate issuer: /CN=e1ef9694aa48d81279e8ede430795f2768d2dd52 Certificate serial: 019B7FF17A6BB98361F223BC926BF64380A1 Authority key identifier: E1:EF:96:94:AA:48:D8:12:79:E8:ED:E4:30:79:5F:27:68:D2:DD:52 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4e-WlKpI2BJ56O3kMHlfJ2jS3VI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b05667-e850-4c45-aee3-aded1c469eaf/1/nBm950xJAm9pONVZhHt0wVFEq7Y.roa Signing time: Fri 02 Jan 2026 18:21:30 +0000 ROA not before: Fri 02 Jan 2026 18:21:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 142111 IP address blocks: 185.39.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/b05667-e850-4c45-aee3-aded1c469eaf/1/4e-WlKpI2BJ56O3kMHlfJ2jS3VI.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/b05667-e850-4c45-aee3-aded1c469eaf/1/4e-WlKpI2BJ56O3kMHlfJ2jS3VI.mft rsync://rpki.ripe.net/repository/DEFAULT/4e-WlKpI2BJ56O3kMHlfJ2jS3VI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f1:7a:6b:b9:83:61:f2:23:bc:92:6b:f6:43:80:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e1ef9694aa48d81279e8ede430795f2768d2dd52 Validity Not Before: Jan 2 18:21:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9c19bde74c49026f6938d559847b74c15144abb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a0:98:b3:54:e4:5e:58:0d:ac:2f:5d:bf:e5: 43:ef:88:69:1c:8c:a0:69:dc:be:3f:0c:95:4f:a8: 2f:aa:dd:6b:d8:0a:9b:d6:cf:f7:24:30:84:24:02: 2d:b9:e3:30:38:e5:87:1a:50:0b:be:0f:bf:87:0d: 8f:01:59:dc:51:07:e4:0e:a8:db:f9:ee:d7:b7:13: b9:a6:a2:13:57:b0:95:8c:63:6e:fb:0c:98:9d:6c: 5d:ec:cf:25:2d:5f:82:24:d1:d4:fa:8d:bb:11:27: 10:78:e3:6e:b5:7f:e2:c9:f7:ed:6b:00:53:b6:15: 99:58:f5:72:99:54:a6:45:2d:44:8c:57:e0:80:23: 8f:37:22:32:5f:5a:ff:c7:10:9b:39:6b:73:6f:36: fa:36:0f:08:56:ab:fb:9b:7e:59:9d:ba:e9:a1:46: b7:f7:18:04:1d:f9:97:75:c3:6b:f6:5f:c2:74:c2: 8c:ec:17:34:d2:4e:98:a0:26:61:43:be:14:a2:86: ec:9e:66:ce:fb:26:ac:6e:a4:2f:8c:9c:c6:8f:20: 6e:41:87:3e:9f:2c:bb:d3:0a:04:ae:d9:1f:ad:3a: f8:fe:db:50:dd:44:2d:ec:cd:b7:8e:ed:47:1c:eb: 6c:43:08:89:67:2a:5b:0f:cc:43:b1:6e:6d:7a:8d: 00:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:19:BD:E7:4C:49:02:6F:69:38:D5:59:84:7B:74:C1:51:44:AB:B6 X509v3 Authority Key Identifier: keyid:E1:EF:96:94:AA:48:D8:12:79:E8:ED:E4:30:79:5F:27:68:D2:DD:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e-WlKpI2BJ56O3kMHlfJ2jS3VI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b05667-e850-4c45-aee3-aded1c469eaf/1/nBm950xJAm9pONVZhHt0wVFEq7Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b05667-e850-4c45-aee3-aded1c469eaf/1/4e-WlKpI2BJ56O3kMHlfJ2jS3VI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.39.51.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:b0:22:e3:c1:de:d0:97:a7:c3:0f:f4:ee:2c:8f:4c:df:8a: 74:48:f2:57:86:56:64:5c:ed:da:2f:e9:21:bc:7d:87:91:fe: bd:d8:75:25:22:9d:61:55:93:1c:ab:1b:53:9d:77:96:8d:2d: d4:94:45:d8:95:ee:ff:a7:41:47:e0:a5:d3:c8:d7:d1:04:45: 4a:d8:2e:a2:f4:16:f2:ac:40:af:d0:30:db:b4:2c:77:e2:dd: cb:52:50:34:6a:18:0a:f7:6b:29:2c:ac:6d:f6:71:3a:3d:51: 2a:e6:a8:31:28:7b:d5:6b:5d:d7:5d:27:38:c5:97:d4:4a:19: 39:58:32:62:78:42:23:1e:c5:01:75:81:6d:4b:7a:3d:43:73: 85:62:d3:2f:e3:10:02:bc:c3:81:22:1a:bb:7a:5d:cd:1d:70: 42:2c:42:71:0a:4e:7c:63:ae:9a:f3:5e:84:78:1a:38:d1:b3: ca:89:2d:6c:d2:e1:93:fb:39:b6:ef:29:12:40:fa:64:00:69: 43:ef:6c:ca:76:7d:9a:c3:3a:0d:09:14:94:23:9f:fa:99:55: 25:77:6c:d4:7e:4b:47:50:76:59:f1:e3:00:56:58:5e:60:e5: cd:99:c3:ac:c8:91:7a:e8:89:bd:30:75:37:7e:a7:51:41:33: 1b:22:45:62 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/8XpruYNh8iO8kmv2Q4ChMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUxZWY5Njk0YWE0OGQ4MTI3OWU4ZWRlNDMwNzk1ZjI3Njhk MmRkNTIwHhcNMjYwMTAyMTgyMTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YzE5YmRlNzRjNDkwMjZmNjkzOGQ1NTk4NDdiNzRjMTUxNDRhYmI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsqCYs1TkXlgNrC9dv+VD74hpHIyg ady+PwyVT6gvqt1r2Aqb1s/3JDCEJAItueMwOOWHGlALvg+/hw2PAVncUQfkDqjb +e7XtxO5pqITV7CVjGNu+wyYnWxd7M8lLV+CJNHU+o27EScQeONutX/iyfftawBT thWZWPVymVSmRS1EjFfggCOPNyIyX1r/xxCbOWtzbzb6Ng8IVqv7m35ZnbrpoUa3 9xgEHfmXdcNr9l/CdMKM7Bc00k6YoCZhQ74UoobsnmbO+yasbqQvjJzGjyBuQYc+ nyy70woErtkfrTr4/ttQ3UQt7M23ju1HHOtsQwiJZypbD8xDsW5teo0A3QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJwZvedMSQJvaTjVWYR7dMFRRKu2MB8GA1UdIwQY MBaAFOHvlpSqSNgSeejt5DB5Xydo0t1SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNGUtV2xLcEkyQko1Nk8za01IbGZKMmpTM1ZJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS9iMDU2NjctZTg1MC00YzQ1LWFlZTMt YWRlZDFjNDY5ZWFmLzEvbkJtOTUweEpBbTlwT05WWmhIdDB3VkZFcTdZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS9iMDU2NjctZTg1MC00YzQ1LWFlZTMtYWRlZDFjNDY5ZWFm LzEvNGUtV2xLcEkyQko1Nk8za01IbGZKMmpTM1ZJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuSczMA0G CSqGSIb3DQEBCwUAA4IBAQB7sCLjwd7Ql6fDD/TuLI9M34p0SPJXhlZkXO3aL+kh vH2Hkf692HUlIp1hVZMcqxtTnXeWjS3UlEXYle7/p0FH4KXTyNfRBEVK2C6i9Bby rECv0DDbtCx34t3LUlA0ahgK92spLKxt9nE6PVEq5qgxKHvVa13XXSc4xZfUShk5 WDJieEIjHsUBdYFtS3o9Q3OFYtMv4xACvMOBIhq7el3NHXBCLEJxCk58Y66a816E eBo40bPKiS1s0uGT+zm27ykSQPpkAGlD72zKdn2awzoNCRSUI5/6mVUld2zUfktH UHZZ8eMAVlheYOXNmcOsyJF66Im9MHU3fqdRQTMbIkVi -----END CERTIFICATE-----Generated at Sun Jan 25 16:56:05 2026 by rpki-client