This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/e5e379-656d-4622-a7bc-ea26e746a0ad/1/NxuqhMt3VzaBAaaFWGDiuWFgX_M.roa File: NxuqhMt3VzaBAaaFWGDiuWFgX_M.roa (raw, json) Hash identifier: F2a9W3aDlKDuDbu3k14edUZBWtASv604tOPuHCHuAUU= Subject key identifier: 37:1B:AA:84:CB:77:57:36:81:01:A6:85:58:60:E2:B9:61:60:5F:F3 Certificate issuer: /CN=0146b429f8c49611fcfea1efa1a51b9c0eddb6e7 Certificate serial: 019B7E387E6FA77638525EB308D437900D39 Authority key identifier: 01:46:B4:29:F8:C4:96:11:FC:FE:A1:EF:A1:A5:1B:9C:0E:DD:B6:E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AUa0KfjElhH8_qHvoaUbnA7dtuc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/e5e379-656d-4622-a7bc-ea26e746a0ad/1/NxuqhMt3VzaBAaaFWGDiuWFgX_M.roa Signing time: Fri 02 Jan 2026 10:19:50 +0000 ROA not before: Fri 02 Jan 2026 10:19:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50369 IP address blocks: 89.46.168.0/22 maxlen: 22 89.46.172.0/22 maxlen: 22 185.135.64.0/24 maxlen: 24 185.135.65.0/24 maxlen: 24 185.135.66.0/23 maxlen: 23 188.241.210.0/24 maxlen: 24 193.105.71.0/24 maxlen: 24 194.150.216.0/23 maxlen: 23 195.200.86.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/e5e379-656d-4622-a7bc-ea26e746a0ad/1/AUa0KfjElhH8_qHvoaUbnA7dtuc.crl rsync://rpki.ripe.net/repository/DEFAULT/14/e5e379-656d-4622-a7bc-ea26e746a0ad/1/AUa0KfjElhH8_qHvoaUbnA7dtuc.mft rsync://rpki.ripe.net/repository/DEFAULT/AUa0KfjElhH8_qHvoaUbnA7dtuc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:7e:6f:a7:76:38:52:5e:b3:08:d4:37:90:0d:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0146b429f8c49611fcfea1efa1a51b9c0eddb6e7 Validity Not Before: Jan 2 10:19:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=371baa84cb7757368101a6855860e2b961605ff3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f1:73:48:f1:a3:bc:e9:2b:c3:cd:3d:dc:a6: 4e:f5:63:a7:bc:9c:c7:58:04:a2:a5:80:d3:65:78: 91:ae:4f:3b:f4:c3:13:79:53:5d:27:b1:14:bf:84: 22:3e:02:4b:08:ec:fb:e7:92:4b:47:e1:1b:31:a1: ea:e2:36:a2:8b:30:8b:1b:da:84:53:0b:74:d8:09: 21:11:09:da:3f:f8:0d:68:d0:94:c1:13:f3:9a:bb: e8:8b:f0:1f:e1:33:68:4a:28:e4:fb:50:92:03:03: 3c:d7:b5:c8:57:cd:b8:5b:e7:8e:5b:d6:ff:06:1d: dd:88:e8:7d:ce:3b:74:8f:0e:b0:8e:28:39:a2:83: 4f:17:57:ec:ad:cf:f6:8a:2f:71:51:18:77:80:e2: 09:79:1c:17:a4:6d:9f:20:99:0c:b1:b6:1c:f1:da: 4d:65:13:fe:bd:40:36:de:40:c0:56:68:1c:ec:14: 07:1c:b5:d3:56:bf:8e:ac:ef:b7:8b:9c:65:05:91: e4:ab:bb:c6:cd:6f:27:f1:ca:c3:c2:4b:d7:4f:12: 73:f3:6b:c7:10:83:61:7b:89:4c:41:f3:79:5e:d8: 76:4e:a9:ea:81:28:d5:af:3a:42:19:5b:a9:26:4c: d1:1e:b9:68:d9:1f:c4:a5:e4:3a:39:b9:a7:06:9d: fe:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:1B:AA:84:CB:77:57:36:81:01:A6:85:58:60:E2:B9:61:60:5F:F3 X509v3 Authority Key Identifier: keyid:01:46:B4:29:F8:C4:96:11:FC:FE:A1:EF:A1:A5:1B:9C:0E:DD:B6:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AUa0KfjElhH8_qHvoaUbnA7dtuc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/e5e379-656d-4622-a7bc-ea26e746a0ad/1/NxuqhMt3VzaBAaaFWGDiuWFgX_M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/e5e379-656d-4622-a7bc-ea26e746a0ad/1/AUa0KfjElhH8_qHvoaUbnA7dtuc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.46.168.0/21 185.135.64.0/22 188.241.210.0/24 193.105.71.0/24 194.150.216.0/23 195.200.86.0/23 Signature Algorithm: sha256WithRSAEncryption 34:b1:63:2d:61:98:5b:48:75:91:24:5a:39:4e:c9:e4:98:04: 7e:67:bb:ff:01:64:c0:2e:c4:4c:90:c4:5f:55:5b:2e:f5:22: 51:97:65:ef:58:f8:e4:55:02:d0:e5:70:10:d7:0f:af:05:27: 62:d1:1f:b6:b5:0b:0f:92:98:fa:30:de:fd:c1:19:27:b9:7c: 1b:56:29:6d:0c:f8:31:98:b6:f7:67:e8:7f:08:05:f5:66:62: 4d:bc:10:8f:ac:8b:72:5a:e7:b6:15:c2:aa:6f:ce:f6:2e:1a: 7e:af:e1:99:30:9d:52:23:0e:73:09:12:44:a5:cf:61:69:9a: d2:3a:27:2c:d0:fd:c0:c1:93:53:6e:0c:e9:12:37:9b:5b:00: 62:b0:93:9a:c7:b6:f9:e0:ce:6f:c9:3d:1c:a1:62:46:03:c9: fb:48:3f:f3:58:f5:45:58:14:9e:8e:81:44:33:92:87:42:5c: d2:b8:f7:6f:8e:93:ba:83:d1:b4:0d:09:13:1c:8d:f0:5c:40: a7:2b:2f:b0:3c:7c:d7:ec:be:1b:7f:ff:ed:c7:cf:c4:c9:4b: cf:9a:ac:d7:e2:91:12:e1:7c:d2:e6:b3:ec:d6:d8:7c:a3:da: 70:40:81:25:f0:93:c4:2b:8b:bc:50:cd:63:c5:a2:da:53:a3: 7a:c4:3f:ab -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgISAZt+OH5vp3Y4Ul6zCNQ3kA05MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxNDZiNDI5ZjhjNDk2MTFmY2ZlYTFlZmExYTUxYjljMGVk ZGI2ZTcwHhcNMjYwMTAyMTAxOTUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNzFiYWE4NGNiNzc1NzM2ODEwMWE2ODU1ODYwZTJiOTYxNjA1ZmYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqPFzSPGjvOkrw8093KZO9WOnvJzH WASipYDTZXiRrk879MMTeVNdJ7EUv4QiPgJLCOz755JLR+EbMaHq4jaiizCLG9qE Uwt02AkhEQnaP/gNaNCUwRPzmrvoi/Af4TNoSijk+1CSAwM817XIV824W+eOW9b/ Bh3diOh9zjt0jw6wjig5ooNPF1fsrc/2ii9xURh3gOIJeRwXpG2fIJkMsbYc8dpN ZRP+vUA23kDAVmgc7BQHHLXTVr+OrO+3i5xlBZHkq7vGzW8n8crDwkvXTxJz82vH EINhe4lMQfN5Xth2TqnqgSjVrzpCGVupJkzRHrlo2R/EpeQ6ObmnBp3+gwIDAQAB o4ICJzCCAiMwHQYDVR0OBBYEFDcbqoTLd1c2gQGmhVhg4rlhYF/zMB8GA1UdIwQY MBaAFAFGtCn4xJYR/P6h76GlG5wO3bbnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQVVhMEtmakVsaEg4X3FIdm9hVWJuQTdkdHVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC9lNWUzNzktNjU2ZC00NjIyLWE3YmMt ZWEyNmU3NDZhMGFkLzEvTnh1cWhNdDNWemFCQWFhRldHRGl1V0ZnWF9NLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC9lNWUzNzktNjU2ZC00NjIyLWE3YmMtZWEyNmU3NDZhMGFk LzEvQVVhMEtmakVsaEg4X3FIdm9hVWJuQTdkdHVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQDWS6oAwQC uYdAAwQAvPHSAwQAwWlHAwQBwpbYAwQBw8hWMA0GCSqGSIb3DQEBCwUAA4IBAQA0 sWMtYZhbSHWRJFo5TsnkmAR+Z7v/AWTALsRMkMRfVVsu9SJRl2XvWPjkVQLQ5XAQ 1w+vBSdi0R+2tQsPkpj6MN79wRknuXwbViltDPgxmLb3Z+h/CAX1ZmJNvBCPrIty Wue2FcKqb872Lhp+r+GZMJ1SIw5zCRJEpc9haZrSOics0P3AwZNTbgzpEjebWwBi sJOax7b54M5vyT0coWJGA8n7SD/zWPVFWBSejoFEM5KHQlzSuPdvjpO6g9G0DQkT HI3wXECnKy+wPHzX7L4bf//tx8/EyUvPmqzX4pES4XzS5rPs1th8o9pwQIEl8JPE K4u8UM1jxaLaU6N6xD+r -----END CERTIFICATE-----Generated at Mon Jan 26 05:49:43 2026 by rpki-client