This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/Nge12cx3-rmdpOzAYO1Z3ywrG1g.roa File: Nge12cx3-rmdpOzAYO1Z3ywrG1g.roa (raw, json) Hash identifier: OXOx6e9ueji1qy3RcI1OgwIcnaUEfUTAxHsXQUob3wg= Subject key identifier: 36:07:B5:D9:CC:77:FA:B9:9D:A4:EC:C0:60:ED:59:DF:2C:2B:1B:58 Certificate issuer: /CN=d217b472c841c1d68550a24f1936d29cc6c28f6a Certificate serial: 019B78A373BC51293259BB35143A3B5B4CF1 Authority key identifier: D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/Nge12cx3-rmdpOzAYO1Z3ywrG1g.roa Signing time: Thu 01 Jan 2026 08:18:56 +0000 ROA not before: Thu 01 Jan 2026 08:18:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50613 IP address blocks: 37.235.49.0/24 maxlen: 24 151.236.24.0/24 maxlen: 24 2a03:f80:354::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.mft rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:73:bc:51:29:32:59:bb:35:14:3a:3b:5b:4c:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d217b472c841c1d68550a24f1936d29cc6c28f6a Validity Not Before: Jan 1 08:18:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3607b5d9cc77fab99da4ecc060ed59df2c2b1b58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:6c:6a:44:a6:69:2d:04:b4:88:7d:30:d4:51: 00:bb:74:e5:0f:33:09:7d:5c:a5:57:d0:e7:43:cb: e2:48:f6:1d:df:b6:fc:2a:57:0d:f3:a1:40:4f:50: a3:ac:3b:fe:f8:d6:8d:7d:df:a0:79:cd:1c:c1:90: 31:99:aa:39:d0:af:d4:71:d6:68:e2:6e:82:f4:ed: 50:75:2f:18:1a:ba:c0:7a:1e:af:06:b7:a7:0b:1b: 19:a8:a6:80:eb:fa:87:f6:07:d0:ad:9f:7d:d5:d9: 69:5a:57:82:b9:77:19:68:e6:e0:3a:45:62:d3:8b: 12:9a:06:8c:7b:56:06:7d:8e:df:41:d9:25:04:92: ce:de:4e:bc:60:29:6d:7d:19:1d:67:77:6a:75:8d: ec:25:5b:b2:55:6a:88:63:6a:aa:bd:60:94:0c:04: d1:61:47:7e:cf:be:b2:81:fc:ea:20:e4:bd:ab:18: 13:3c:47:ac:76:cd:9f:96:3d:60:f9:4e:81:00:51: e9:2b:d8:fd:e2:03:af:97:a0:0e:0e:50:59:fb:06: 33:48:c6:d4:d5:69:4f:a1:4a:1e:1f:76:b8:60:2d: bc:96:1d:23:dd:44:db:81:08:ca:63:3b:85:d7:eb: 71:3a:5d:11:60:ca:df:87:2e:54:69:7a:19:4e:b1: 09:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:07:B5:D9:CC:77:FA:B9:9D:A4:EC:C0:60:ED:59:DF:2C:2B:1B:58 X509v3 Authority Key Identifier: keyid:D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/Nge12cx3-rmdpOzAYO1Z3ywrG1g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.235.49.0/24 151.236.24.0/24 IPv6: 2a03:f80:354::/48 Signature Algorithm: sha256WithRSAEncryption 5e:a7:50:25:58:2c:55:3e:9f:e1:d9:39:4b:1b:53:df:3d:97: 1b:63:b8:e9:a2:1f:3e:24:d4:83:e9:22:64:8e:4d:83:9b:72: 33:0b:10:3a:e1:38:73:c0:85:97:3e:6d:ff:72:82:ec:c7:d9: 0c:2c:1e:cd:e7:a6:69:41:49:fd:f2:f9:b7:24:27:60:e4:c7: 59:20:81:2f:49:0d:e0:93:f6:a6:3d:74:cf:81:22:0c:4c:ff: da:fa:30:04:56:9a:6a:9e:27:3c:cb:2f:08:8f:7a:e8:9a:87: f8:eb:16:6b:45:b6:d3:6a:51:19:bc:e7:2b:86:ab:64:74:f7: 3b:fd:6b:62:7e:11:00:9f:48:1e:08:50:5b:21:dc:a2:c9:71: ce:79:f9:5b:3c:f0:b1:5c:55:50:b6:2d:31:80:29:53:88:38: ab:2c:1a:e9:d4:43:32:37:62:6d:56:e7:55:5e:76:c8:e5:0b: b9:d5:55:31:b2:1e:ed:d8:19:fc:58:aa:c4:de:89:ac:d8:82: 8b:ea:7c:32:7e:b3:67:6a:50:ae:0f:85:31:23:8a:2e:52:bd: 42:33:95:03:d4:36:d5:93:71:5f:ed:5f:56:1f:b6:ff:f4:2f: e3:14:d0:44:98:ac:fc:01:8d:37:e2:82:14:67:81:f7:4b:ac: dd:27:06:39 -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgISAZt4o3O8USkyWbs1FDo7W0zxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyMTdiNDcyYzg0MWMxZDY4NTUwYTI0ZjE5MzZkMjljYzZj MjhmNmEwHhcNMjYwMTAxMDgxODU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNjA3YjVkOWNjNzdmYWI5OWRhNGVjYzA2MGVkNTlkZjJjMmIxYjU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo2xqRKZpLQS0iH0w1FEAu3TlDzMJ fVylV9DnQ8viSPYd37b8KlcN86FAT1CjrDv++NaNfd+gec0cwZAxmao50K/UcdZo 4m6C9O1QdS8YGrrAeh6vBrenCxsZqKaA6/qH9gfQrZ991dlpWleCuXcZaObgOkVi 04sSmgaMe1YGfY7fQdklBJLO3k68YCltfRkdZ3dqdY3sJVuyVWqIY2qqvWCUDATR YUd+z76ygfzqIOS9qxgTPEesds2flj1g+U6BAFHpK9j94gOvl6AODlBZ+wYzSMbU 1WlPoUoeH3a4YC28lh0j3UTbgQjKYzuF1+txOl0RYMrfhy5UaXoZTrEJOQIDAQAB o4ICIDCCAhwwHQYDVR0OBBYEFDYHtdnMd/q5naTswGDtWd8sKxtYMB8GA1UdIwQY MBaAFNIXtHLIQcHWhVCiTxk20pzGwo9qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGhlMGNzaEJ3ZGFGVUtKUEdUYlNuTWJDajJvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC8yOTBlNDQtYjQ3OS00NmNmLWFiNGIt YjM4ZTI2NzdiM2RjLzEvTmdlMTJjeDMtcm1kcE96QVlPMVozeXdyRzFnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC8yOTBlNDQtYjQ3OS00NmNmLWFiNGItYjM4ZTI2NzdiM2Rj LzEvMGhlMGNzaEJ3ZGFGVUtKUEdUYlNuTWJDajJvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTASBAIAATAMAwQAJesxAwQA l+wYMA8EAgACMAkDBwAqAw+AA1QwDQYJKoZIhvcNAQELBQADggEBAF6nUCVYLFU+ n+HZOUsbU989lxtjuOmiHz4k1IPpImSOTYObcjMLEDrhOHPAhZc+bf9yguzH2Qws Hs3npmlBSf3y+bckJ2Dkx1kggS9JDeCT9qY9dM+BIgxM/9r6MARWmmqeJzzLLwiP euiah/jrFmtFttNqURm85yuGq2R09zv9a2J+EQCfSB4IUFsh3KLJcc55+Vs88LFc VVC2LTGAKVOIOKssGunUQzI3Ym1W51VedsjlC7nVVTGyHu3YGfxYqsTeiazYgovq fDJ+s2dqUK4PhTEjii5SvUIzlQPUNtWTcV/tX1Yftv/0L+MU0ESYrPwBjTfighRn gfdLrN0nBjk= -----END CERTIFICATE-----Generated at Sun Jan 25 21:07:00 2026 by rpki-client