This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/685b53-6f11-41db-bead-43eaf7567caa/1/nWl_v68NCgg49c3RWsqYXIvXpuw.roa File: nWl_v68NCgg49c3RWsqYXIvXpuw.roa (raw, json) Hash identifier: qEnNFvCauVh49SnQHSeSx9LmtAWf/vJXC3VWpTV+6ZY= Subject key identifier: 9D:69:7F:BF:AF:0D:0A:08:38:F5:CD:D1:5A:CA:98:5C:8B:D7:A6:EC Certificate issuer: /CN=485f76274c805d25b115a3adba1d2ea154deead7 Certificate serial: 019AA316DABD765BE444D47FA072233578DA Authority key identifier: 48:5F:76:27:4C:80:5D:25:B1:15:A3:AD:BA:1D:2E:A1:54:DE:EA:D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SF92J0yAXSWxFaOtuh0uoVTe6tc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/685b53-6f11-41db-bead-43eaf7567caa/1/nWl_v68NCgg49c3RWsqYXIvXpuw.roa Signing time: Thu 20 Nov 2025 21:06:15 +0000 ROA not before: Thu 20 Nov 2025 21:06:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 39900 IP address blocks: 194.26.27.0/24 maxlen: 24 2a0b:88c0:48::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/685b53-6f11-41db-bead-43eaf7567caa/1/SF92J0yAXSWxFaOtuh0uoVTe6tc.crl rsync://rpki.ripe.net/repository/DEFAULT/30/685b53-6f11-41db-bead-43eaf7567caa/1/SF92J0yAXSWxFaOtuh0uoVTe6tc.mft rsync://rpki.ripe.net/repository/DEFAULT/SF92J0yAXSWxFaOtuh0uoVTe6tc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:a3:16:da:bd:76:5b:e4:44:d4:7f:a0:72:23:35:78:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=485f76274c805d25b115a3adba1d2ea154deead7 Validity Not Before: Nov 20 21:06:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=9d697fbfaf0d0a0838f5cdd15aca985c8bd7a6ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d8:ec:3f:3d:66:15:f9:14:ab:31:93:55:53: 02:41:18:76:ce:56:c9:4c:b1:a8:1b:4b:8d:66:ad: bd:0c:d8:46:40:42:b2:df:8a:40:aa:51:24:e7:0c: bd:22:6f:d6:2c:43:3e:d0:aa:d0:c9:30:1f:e9:76: 12:0f:1f:1e:4e:07:46:8f:75:31:ca:29:af:4b:55: 92:d0:3e:1f:33:37:f8:f1:70:23:43:e3:93:c5:c8: 6e:40:38:16:70:6f:b1:14:c8:a5:31:b4:62:be:8d: c0:94:75:9a:cb:19:f6:03:77:13:f5:02:53:e7:1e: 29:6a:aa:33:71:9d:96:07:c9:02:22:73:c1:bd:f1: 36:9a:3c:cf:f3:3e:6b:85:59:ed:06:22:ad:82:4a: aa:88:55:ae:4d:f0:6e:a8:4a:be:b5:e6:db:c6:a1: 8f:26:d2:36:2e:f4:51:69:b8:c6:7a:18:0f:85:08: 9f:f7:e0:e2:53:b3:ed:78:fd:47:fd:93:13:9f:70: 04:0a:d7:a5:97:57:fb:23:31:05:c5:aa:72:51:c3: 94:00:70:3a:ea:27:57:00:8b:1f:c0:d5:49:60:bf: 32:e4:26:31:70:34:d9:d0:e3:88:7f:fc:ae:ce:50: 35:2b:b4:16:14:ed:96:7b:27:b7:a3:1a:fc:ac:2c: 5d:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:69:7F:BF:AF:0D:0A:08:38:F5:CD:D1:5A:CA:98:5C:8B:D7:A6:EC X509v3 Authority Key Identifier: keyid:48:5F:76:27:4C:80:5D:25:B1:15:A3:AD:BA:1D:2E:A1:54:DE:EA:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SF92J0yAXSWxFaOtuh0uoVTe6tc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/685b53-6f11-41db-bead-43eaf7567caa/1/nWl_v68NCgg49c3RWsqYXIvXpuw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/685b53-6f11-41db-bead-43eaf7567caa/1/SF92J0yAXSWxFaOtuh0uoVTe6tc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.26.27.0/24 IPv6: 2a0b:88c0:48::/48 Signature Algorithm: sha256WithRSAEncryption 12:c3:27:bd:1b:8c:4f:d6:8c:86:6c:92:5e:6b:b1:b0:db:73: 54:43:23:75:ef:7e:83:9c:4a:55:58:72:c7:6a:04:32:e3:43: bd:e5:4a:a1:5b:42:db:8f:84:e6:d2:e7:50:ee:63:3d:b7:98: 59:e9:00:41:d8:c7:a6:77:1f:b4:05:c9:94:e8:b1:47:8e:9a: 92:3d:fa:ce:bc:88:74:87:6a:cc:61:29:a0:a6:75:f4:f7:d6: db:6b:bb:13:86:b5:f9:df:e4:94:57:1f:2d:c6:dd:82:37:ca: fd:27:c0:2d:0d:b2:7e:ee:0e:07:64:54:4f:00:f7:71:4c:34: 53:09:3c:1f:3b:b8:8a:1f:0b:69:18:27:f9:e4:c6:65:32:d9: 66:60:fa:80:d2:1f:cb:a0:a9:96:2f:d3:3a:09:5c:70:65:d4: 35:bc:67:d2:4b:c3:50:27:6e:4c:9e:9c:b5:ea:9d:d4:34:bc: c2:23:8d:15:54:fa:ba:cd:91:f8:4b:6d:c7:39:22:e1:36:90: 2f:e9:0c:ce:f5:4c:c2:49:a3:a6:31:d2:ba:b3:d5:14:9c:11: bd:55:b6:8a:73:84:dc:da:d7:bf:3e:28:e8:7c:40:de:46:3e: c6:ff:25:fe:b1:f6:ce:25:a9:eb:bf:5d:62:ee:41:41:42:a7: 68:9f:75:7f -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZqjFtq9dlvkRNR/oHIjNXjaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ4NWY3NjI3NGM4MDVkMjViMTE1YTNhZGJhMWQyZWExNTRk ZWVhZDcwHhcNMjUxMTIwMjEwNjE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZDY5N2ZiZmFmMGQwYTA4MzhmNWNkZDE1YWNhOTg1YzhiZDdhNmVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArNjsPz1mFfkUqzGTVVMCQRh2zlbJ TLGoG0uNZq29DNhGQEKy34pAqlEk5wy9Im/WLEM+0KrQyTAf6XYSDx8eTgdGj3Ux yimvS1WS0D4fMzf48XAjQ+OTxchuQDgWcG+xFMilMbRivo3AlHWayxn2A3cT9QJT 5x4paqozcZ2WB8kCInPBvfE2mjzP8z5rhVntBiKtgkqqiFWuTfBuqEq+tebbxqGP JtI2LvRRabjGehgPhQif9+DiU7PteP1H/ZMTn3AECtell1f7IzEFxapyUcOUAHA6 6idXAIsfwNVJYL8y5CYxcDTZ0OOIf/yuzlA1K7QWFO2Weye3oxr8rCxd0wIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFJ1pf7+vDQoIOPXN0VrKmFyL16bsMB8GA1UdIwQY MBaAFEhfdidMgF0lsRWjrbodLqFU3urXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU0Y5MkoweUFYU1d4RmFPdHVoMHVvVlRlNnRjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC82ODViNTMtNmYxMS00MWRiLWJlYWQt NDNlYWY3NTY3Y2FhLzEvbldsX3Y2OE5DZ2c0OWMzUldzcVlYSXZYcHV3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC82ODViNTMtNmYxMS00MWRiLWJlYWQtNDNlYWY3NTY3Y2Fh LzEvU0Y5MkoweUFYU1d4RmFPdHVoMHVvVlRlNnRjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwhobMA8E AgACMAkDBwAqC4jAAEgwDQYJKoZIhvcNAQELBQADggEBABLDJ70bjE/WjIZskl5r sbDbc1RDI3XvfoOcSlVYcsdqBDLjQ73lSqFbQtuPhObS51DuYz23mFnpAEHYx6Z3 H7QFyZTosUeOmpI9+s68iHSHasxhKaCmdfT31ttruxOGtfnf5JRXHy3G3YI3yv0n wC0Nsn7uDgdkVE8A93FMNFMJPB87uIofC2kYJ/nkxmUy2WZg+oDSH8ugqZYv0zoJ XHBl1DW8Z9JLw1AnbkyenLXqndQ0vMIjjRVU+rrNkfhLbcc5IuE2kC/pDM71TMJJ o6Yx0rqz1RScEb1VtopzhNza178+KOh8QN5GPsb/Jf6x9s4lqeu/XWLuQUFCp2if dX8= -----END CERTIFICATE-----Generated at Sat Dec 6 23:19:45 2025 by rpki-client