This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/cb0d91-8270-4550-8fac-0ce2038aaa7b/1/NUUQjDeFWzC4FPVGBmAx-z5bJ0E.roa File: NUUQjDeFWzC4FPVGBmAx-z5bJ0E.roa (raw, json) Hash identifier: wnbRGeNLfXYztX1J3cZAfrSN12bQBDpo4cnmGFyaLCs= Subject key identifier: 35:45:10:8C:37:85:5B:30:B8:14:F5:46:06:60:31:FB:3E:5B:27:41 Certificate issuer: /CN=63b82772af3d611b99b1ba6e3eb6cbfd16965363 Certificate serial: 019B7910D17D21DA3DE8DD7CB1F17D289392 Authority key identifier: 63:B8:27:72:AF:3D:61:1B:99:B1:BA:6E:3E:B6:CB:FD:16:96:53:63 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y7gncq89YRuZsbpuPrbL_RaWU2M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/cb0d91-8270-4550-8fac-0ce2038aaa7b/1/NUUQjDeFWzC4FPVGBmAx-z5bJ0E.roa Signing time: Thu 01 Jan 2026 10:18:23 +0000 ROA not before: Thu 01 Jan 2026 10:18:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209716 IP address blocks: 88.218.235.0/25 maxlen: 25 2a0c:ad80::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/cb0d91-8270-4550-8fac-0ce2038aaa7b/1/Y7gncq89YRuZsbpuPrbL_RaWU2M.crl rsync://rpki.ripe.net/repository/DEFAULT/46/cb0d91-8270-4550-8fac-0ce2038aaa7b/1/Y7gncq89YRuZsbpuPrbL_RaWU2M.mft rsync://rpki.ripe.net/repository/DEFAULT/Y7gncq89YRuZsbpuPrbL_RaWU2M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:d1:7d:21:da:3d:e8:dd:7c:b1:f1:7d:28:93:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63b82772af3d611b99b1ba6e3eb6cbfd16965363 Validity Not Before: Jan 1 10:18:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3545108c37855b30b814f546066031fb3e5b2741 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:d7:96:21:a2:27:df:b5:28:60:90:5b:b8:16: 88:44:6f:a2:74:6d:74:7c:8a:83:bd:be:66:5c:06: b9:bb:58:48:94:77:40:4d:b0:70:66:54:6d:e6:7c: 32:5a:85:5b:08:a0:1d:9d:f5:f4:e2:57:f9:fd:00: 58:9d:62:53:60:fb:c5:0d:74:e2:e5:44:da:d0:7f: 97:e0:52:41:89:83:d3:11:8c:21:a2:b8:f3:d5:a7: 6b:f2:46:16:82:d0:b2:28:96:5e:a2:cf:ea:d1:c6: 52:d9:68:0e:9d:e9:fd:6a:9c:8c:c5:b4:c0:22:01: 70:21:1f:c2:83:00:6c:4e:ad:e5:7e:cc:64:56:2a: 5e:a0:e4:2b:8f:95:86:4a:f0:76:d7:95:82:c6:dd: c3:bd:d6:0f:5b:07:7f:6a:d6:a8:2e:90:cd:f3:c6: f0:52:37:30:63:74:c3:10:99:aa:d5:c4:26:f1:02: cb:3b:e1:23:31:10:0b:0e:4c:df:1b:27:a7:62:f4: 09:77:81:15:43:e2:70:46:e9:96:27:68:1b:c9:22: f8:ce:eb:4b:1f:e3:b5:86:de:a6:9f:a3:cd:c3:26: ab:70:f2:15:c4:1b:ab:8a:f5:8f:25:d5:3d:38:5a: 90:b3:9d:bf:f1:76:e8:e6:89:3d:26:5d:da:6f:10: e9:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:45:10:8C:37:85:5B:30:B8:14:F5:46:06:60:31:FB:3E:5B:27:41 X509v3 Authority Key Identifier: keyid:63:B8:27:72:AF:3D:61:1B:99:B1:BA:6E:3E:B6:CB:FD:16:96:53:63 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y7gncq89YRuZsbpuPrbL_RaWU2M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/cb0d91-8270-4550-8fac-0ce2038aaa7b/1/NUUQjDeFWzC4FPVGBmAx-z5bJ0E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/46/cb0d91-8270-4550-8fac-0ce2038aaa7b/1/Y7gncq89YRuZsbpuPrbL_RaWU2M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 88.218.235.0/25 IPv6: 2a0c:ad80::/29 Signature Algorithm: sha256WithRSAEncryption 27:00:53:79:d7:eb:29:c6:9a:1d:a5:74:5b:b5:ba:a1:b0:fd: 9d:64:d9:02:85:3d:f5:c9:e4:76:ec:ae:fd:a1:63:fb:41:c7: b6:dc:83:4a:d8:99:9c:3a:ba:af:8c:8f:77:c0:de:1e:07:c5: 11:0e:ab:30:21:6f:70:5b:70:fc:2c:10:c2:08:31:fc:11:ea: 27:4e:6a:86:1b:1e:c4:5e:22:29:58:53:fd:80:38:4d:53:9d: be:5e:78:9a:98:2d:d7:00:cc:7f:ae:da:54:ea:92:1e:56:63: 83:4d:be:9a:74:10:3f:4a:64:99:6a:85:46:84:c3:65:7f:22: ae:91:cc:92:2e:33:e8:52:86:c4:f5:55:2b:d7:06:51:94:94: 18:e5:1e:99:93:bf:69:c8:d9:e9:1b:5f:e4:d4:d3:7a:88:65: 6e:38:71:0e:87:1d:e4:8c:85:3e:74:99:6e:6e:a1:80:6e:9d: c9:2d:30:c0:3c:9f:79:d4:07:2e:d3:6e:9a:e8:b4:ec:ec:d3: ac:70:9b:27:ed:12:e6:23:4b:c8:bc:a2:41:4b:42:e0:96:f0: 21:c0:ae:1e:9e:a8:91:2b:ef:95:a9:38:c2:a2:a5:c5:af:47: ae:a7:3c:50:09:63:17:8d:ac:ae:b7:f4:38:55:d7:27:02:90: af:24:1d:53 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISAZt5ENF9Ido96N18sfF9KJOSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzYjgyNzcyYWYzZDYxMWI5OWIxYmE2ZTNlYjZjYmZkMTY5 NjUzNjMwHhcNMjYwMTAxMTAxODIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNTQ1MTA4YzM3ODU1YjMwYjgxNGY1NDYwNjYwMzFmYjNlNWIyNzQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkNeWIaIn37UoYJBbuBaIRG+idG10 fIqDvb5mXAa5u1hIlHdATbBwZlRt5nwyWoVbCKAdnfX04lf5/QBYnWJTYPvFDXTi 5UTa0H+X4FJBiYPTEYwhorjz1adr8kYWgtCyKJZeos/q0cZS2WgOnen9apyMxbTA IgFwIR/CgwBsTq3lfsxkVipeoOQrj5WGSvB215WCxt3DvdYPWwd/ataoLpDN88bw UjcwY3TDEJmq1cQm8QLLO+EjMRALDkzfGyenYvQJd4EVQ+JwRumWJ2gbySL4zutL H+O1ht6mn6PNwyarcPIVxBurivWPJdU9OFqQs52/8Xbo5ok9Jl3abxDp8wIDAQAB o4ICGTCCAhUwHQYDVR0OBBYEFDVFEIw3hVswuBT1RgZgMfs+WydBMB8GA1UdIwQY MBaAFGO4J3KvPWEbmbG6bj62y/0WllNjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWTdnbmNxODlZUnVac2JwdVByYkxfUmFXVTJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni9jYjBkOTEtODI3MC00NTUwLThmYWMt MGNlMjAzOGFhYTdiLzEvTlVVUWpEZUZXekM0RlBWR0JtQXgtejViSjBFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ni9jYjBkOTEtODI3MC00NTUwLThmYWMtMGNlMjAzOGFhYTdi LzEvWTdnbmNxODlZUnVac2JwdVByYkxfUmFXVTJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC8GCCsGAQUFBwEHAQH/BCAwHjANBAIAATAHAwUHWNrrADAN BAIAAjAHAwUDKgytgDANBgkqhkiG9w0BAQsFAAOCAQEAJwBTedfrKcaaHaV0W7W6 obD9nWTZAoU99cnkduyu/aFj+0HHttyDStiZnDq6r4yPd8DeHgfFEQ6rMCFvcFtw /CwQwggx/BHqJ05qhhsexF4iKVhT/YA4TVOdvl54mpgt1wDMf67aVOqSHlZjg02+ mnQQP0pkmWqFRoTDZX8irpHMki4z6FKGxPVVK9cGUZSUGOUemZO/acjZ6Rtf5NTT eohlbjhxDocd5IyFPnSZbm6hgG6dyS0wwDyfedQHLtNumui07OzTrHCbJ+0S5iNL yLyiQUtC4JbwIcCuHp6okSvvlak4wqKlxa9Hrqc8UAljF42srrf0OFXXJwKQryQd Uw== -----END CERTIFICATE-----Generated at Sun Jan 25 22:47:48 2026 by rpki-client