This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/rnlQK5dhYROPwVOz0gIHy2hThyA.roa File: rnlQK5dhYROPwVOz0gIHy2hThyA.roa (raw, json) Hash identifier: ePpSMaFTViP+SRbpfZ7RDlUyIWzyjKKxE4TEHxPptd8= Subject key identifier: AE:79:50:2B:97:61:61:13:8F:C1:53:B3:D2:02:07:CB:68:53:87:20 Certificate issuer: /CN=374e2729b17369890a1512f643cd08e4ba2ff414 Certificate serial: 019B76EB09D2B889AC7137C4ACE4F148D77B Authority key identifier: 37:4E:27:29:B1:73:69:89:0A:15:12:F6:43:CD:08:E4:BA:2F:F4:14 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N04nKbFzaYkKFRL2Q80I5Lov9BQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/rnlQK5dhYROPwVOz0gIHy2hThyA.roa Signing time: Thu 01 Jan 2026 00:17:53 +0000 ROA not before: Thu 01 Jan 2026 00:17:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209372 IP address blocks: 185.239.136.0/22 maxlen: 24 185.240.92.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/N04nKbFzaYkKFRL2Q80I5Lov9BQ.crl rsync://rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/N04nKbFzaYkKFRL2Q80I5Lov9BQ.mft rsync://rpki.ripe.net/repository/DEFAULT/N04nKbFzaYkKFRL2Q80I5Lov9BQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 05:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:09:d2:b8:89:ac:71:37:c4:ac:e4:f1:48:d7:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=374e2729b17369890a1512f643cd08e4ba2ff414 Validity Not Before: Jan 1 00:17:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ae79502b976161138fc153b3d20207cb68538720 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:1d:1b:26:33:55:7e:7b:a3:57:bf:9a:17:e6: 06:c9:0d:55:73:47:4a:ef:d5:f2:dd:52:4d:cc:b8: 1c:99:a2:7d:52:9e:25:4f:d8:ea:86:2c:6f:d6:82: 27:91:44:3d:49:52:a4:0e:7c:68:0d:eb:50:99:7e: d8:c2:58:ae:b6:0a:80:cb:d4:49:df:3d:92:39:68: 7b:d8:86:d0:42:82:77:32:6a:9d:35:5e:88:d1:41: 00:a8:36:9d:d7:39:05:4d:9a:d8:ff:b6:6b:3d:0c: 29:18:63:5f:c3:4f:75:2a:98:b7:5d:ba:c8:0b:12: 98:bb:12:cf:68:18:1b:83:46:11:1c:8f:99:ed:51: 23:72:f4:e4:bd:b4:e8:8a:d3:38:13:c2:18:98:79: 74:04:3d:28:30:10:a3:be:6a:25:6f:8c:0d:4f:8f: 30:7e:25:11:7a:48:d7:63:ae:66:47:1b:0e:78:a9: 5b:38:2e:e1:28:ac:6f:7b:59:0e:da:5e:16:91:5a: 85:54:fd:d2:ab:61:0e:fd:ad:bf:58:69:0f:2d:eb: ce:91:0e:44:3e:0e:9e:02:93:2c:21:7d:c1:47:0b: 8f:36:77:06:f8:9a:0a:f8:7e:08:4a:5c:8f:c9:36: b7:5e:48:e3:2c:ef:cf:91:5e:02:83:d5:0f:ae:57: eb:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:79:50:2B:97:61:61:13:8F:C1:53:B3:D2:02:07:CB:68:53:87:20 X509v3 Authority Key Identifier: keyid:37:4E:27:29:B1:73:69:89:0A:15:12:F6:43:CD:08:E4:BA:2F:F4:14 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N04nKbFzaYkKFRL2Q80I5Lov9BQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/rnlQK5dhYROPwVOz0gIHy2hThyA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/N04nKbFzaYkKFRL2Q80I5Lov9BQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.239.136.0/22 185.240.92.0/22 Signature Algorithm: sha256WithRSAEncryption 17:b9:2d:35:60:fb:74:c0:32:02:85:da:ff:7b:5a:cd:13:e3: a4:39:aa:b3:33:aa:ce:5c:1f:4c:f4:a9:06:b4:9d:26:41:19: 43:bb:d8:97:b0:f0:ec:ab:65:5b:e1:a9:fb:07:74:21:97:77: c8:1a:f8:ab:ba:e7:2f:a5:30:1c:ce:4c:31:f4:47:8b:cc:a6: 29:32:57:39:d5:d7:be:94:48:67:9d:50:b8:e0:da:d3:89:af: 16:80:d4:70:47:65:b1:61:0a:2a:36:01:87:6e:ed:0e:b4:f1: 17:97:7b:7e:11:2c:93:1e:2b:bb:00:9b:62:49:f8:c5:ad:a5: 46:6c:7a:a3:70:18:3f:f3:21:ab:32:ea:d9:f4:ca:b4:3d:6d: a5:a4:f3:88:67:09:ea:6b:03:ad:25:81:ef:91:df:8c:c3:9e: d8:2f:84:11:87:6d:b1:d8:e8:21:44:50:0a:2e:5d:5c:a5:62: b2:0f:87:6f:5b:cd:08:b0:f3:c3:7f:c2:97:74:cc:5e:71:77: f5:c4:01:f3:8c:0a:a8:5d:cc:90:24:f4:c6:ef:cb:8d:9e:30: e9:e4:57:17:66:80:dd:38:7e:5d:e0:d8:1c:2b:b1:3b:f7:47: 1d:31:bb:e5:45:ce:cf:53:e5:89:37:50:69:ab:89:55:c3:a6: c1:7a:4e:0b -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt26wnSuImscTfErOTxSNd7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM3NGUyNzI5YjE3MzY5ODkwYTE1MTJmNjQzY2QwOGU0YmEy ZmY0MTQwHhcNMjYwMTAxMDAxNzUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZTc5NTAyYjk3NjE2MTEzOGZjMTUzYjNkMjAyMDdjYjY4NTM4NzIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnB0bJjNVfnujV7+aF+YGyQ1Vc0dK 79Xy3VJNzLgcmaJ9Up4lT9jqhixv1oInkUQ9SVKkDnxoDetQmX7YwliutgqAy9RJ 3z2SOWh72IbQQoJ3MmqdNV6I0UEAqDad1zkFTZrY/7ZrPQwpGGNfw091Kpi3XbrI CxKYuxLPaBgbg0YRHI+Z7VEjcvTkvbToitM4E8IYmHl0BD0oMBCjvmolb4wNT48w fiURekjXY65mRxsOeKlbOC7hKKxve1kO2l4WkVqFVP3Sq2EO/a2/WGkPLevOkQ5E Pg6eApMsIX3BRwuPNncG+JoK+H4ISlyPyTa3XkjjLO/PkV4Cg9UPrlfr4QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFK55UCuXYWETj8FTs9ICB8toU4cgMB8GA1UdIwQY MBaAFDdOJymxc2mJChUS9kPNCOS6L/QUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTjA0bktiRnphWWtLRlJMMlE4MEk1TG92OUJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC85NTIyMzAtYzI2Mi00MWNjLWI5NTYt Y2ZjNDZhNzZlYzc4LzEvcm5sUUs1ZGhZUk9Qd1ZPejBnSUh5MmhUaHlBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC85NTIyMzAtYzI2Mi00MWNjLWI5NTYtY2ZjNDZhNzZlYzc4 LzEvTjA0bktiRnphWWtLRlJMMlE4MEk1TG92OUJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCue+IAwQC ufBcMA0GCSqGSIb3DQEBCwUAA4IBAQAXuS01YPt0wDIChdr/e1rNE+OkOaqzM6rO XB9M9KkGtJ0mQRlDu9iXsPDsq2Vb4an7B3Qhl3fIGviruucvpTAczkwx9EeLzKYp Mlc51de+lEhnnVC44NrTia8WgNRwR2WxYQoqNgGHbu0OtPEXl3t+ESyTHiu7AJti SfjFraVGbHqjcBg/8yGrMurZ9Mq0PW2lpPOIZwnqawOtJYHvkd+Mw57YL4QRh22x 2OghRFAKLl1cpWKyD4dvW80IsPPDf8KXdMxecXf1xAHzjAqoXcyQJPTG78uNnjDp 5FcXZoDdOH5d4NgcK7E790cdMbvlRc7PU+WJN1Bpq4lVw6bBek4L -----END CERTIFICATE-----Generated at Sun Jan 25 13:33:59 2026 by rpki-client