This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/fc7c82-3159-4d54-a0a1-35171aedd313/1/nUmXXOPkWjccJgN8O22tzPhWVlA.roa File: nUmXXOPkWjccJgN8O22tzPhWVlA.roa (raw, json) Hash identifier: UqKB7riKgf3jbIKMj8rldXeyuF7eaO+XqFxWCXQioCw= Subject key identifier: 9D:49:97:5C:E3:E4:5A:37:1C:26:03:7C:3B:6D:AD:CC:F8:56:56:50 Certificate issuer: /CN=b64074aa8449830da9b20b3afb0682d3c032f9fe Certificate serial: 019B7DCAB267188E6C0D9AA632E296F7F8E6 Authority key identifier: B6:40:74:AA:84:49:83:0D:A9:B2:0B:3A:FB:06:82:D3:C0:32:F9:FE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tkB0qoRJgw2psgs6-waC08Ay-f4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/fc7c82-3159-4d54-a0a1-35171aedd313/1/nUmXXOPkWjccJgN8O22tzPhWVlA.roa Signing time: Fri 02 Jan 2026 08:19:54 +0000 ROA not before: Fri 02 Jan 2026 08:19:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43893 IP address blocks: 185.9.164.0/24 maxlen: 24 185.9.166.0/23 maxlen: 23 185.84.240.0/24 maxlen: 24 185.84.242.0/24 maxlen: 24 185.84.248.0/24 maxlen: 24 185.84.249.0/24 maxlen: 24 2001:67c:1000::/47 maxlen: 47 2001:67c:1000::/48 maxlen: 48 2001:67c:1001::/48 maxlen: 48 2a03:4bc0:1000::/48 maxlen: 48 2a03:4bc0:1001::/48 maxlen: 48 2a03:4bc0:2000::/48 maxlen: 48 2a03:4bc0:2100::/48 maxlen: 48 2a03:4bc0:2200::/48 maxlen: 48 2a03:4bc0:2900::/48 maxlen: 48 2a03:4bc0:3160::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/fc7c82-3159-4d54-a0a1-35171aedd313/1/tkB0qoRJgw2psgs6-waC08Ay-f4.crl rsync://rpki.ripe.net/repository/DEFAULT/62/fc7c82-3159-4d54-a0a1-35171aedd313/1/tkB0qoRJgw2psgs6-waC08Ay-f4.mft rsync://rpki.ripe.net/repository/DEFAULT/tkB0qoRJgw2psgs6-waC08Ay-f4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:b2:67:18:8e:6c:0d:9a:a6:32:e2:96:f7:f8:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b64074aa8449830da9b20b3afb0682d3c032f9fe Validity Not Before: Jan 2 08:19:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9d49975ce3e45a371c26037c3b6dadccf8565650 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:d1:17:74:1f:39:2c:65:ab:a2:a5:83:41:b1: e5:5d:9a:86:02:c1:0f:41:f3:34:78:74:69:f8:68: f6:75:ff:8a:6f:15:27:cf:8d:4a:83:7b:8c:32:00: 3f:af:3b:d2:92:02:9c:c6:ef:97:a2:23:b0:0d:60: f0:28:06:98:a6:13:6f:0d:71:9c:8d:71:a5:ca:c4: 04:25:49:dc:69:72:0e:f7:dc:fc:45:cd:0f:35:10: 6a:8f:29:6c:81:41:6c:15:6f:98:3a:29:04:9a:3a: 5f:d5:34:38:5a:6d:82:45:7c:0d:d5:24:a5:29:77: fc:86:a5:83:48:f3:78:4b:44:64:42:9c:a1:44:8f: 5c:54:2e:ef:0e:39:30:bf:d3:47:ac:a7:af:a6:0a: 21:f7:33:00:96:d7:e9:dd:a1:c2:61:fe:4f:34:ea: 7a:1f:8b:51:a5:03:f1:3f:3c:99:f0:38:08:3a:cf: 14:20:7f:63:2a:07:9d:0f:09:02:b6:62:b0:8a:98: ee:02:66:0e:9b:7a:98:26:15:16:24:27:0c:58:f1: d4:78:a2:1a:3b:e1:4f:55:af:31:97:f7:e8:43:75: 9e:20:d9:86:e4:73:50:cf:e5:a6:03:80:53:49:d9: 92:80:b9:5c:89:32:15:7b:d8:51:88:fb:89:6c:dc: ef:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:49:97:5C:E3:E4:5A:37:1C:26:03:7C:3B:6D:AD:CC:F8:56:56:50 X509v3 Authority Key Identifier: keyid:B6:40:74:AA:84:49:83:0D:A9:B2:0B:3A:FB:06:82:D3:C0:32:F9:FE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tkB0qoRJgw2psgs6-waC08Ay-f4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/fc7c82-3159-4d54-a0a1-35171aedd313/1/nUmXXOPkWjccJgN8O22tzPhWVlA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/62/fc7c82-3159-4d54-a0a1-35171aedd313/1/tkB0qoRJgw2psgs6-waC08Ay-f4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.9.164.0/24 185.9.166.0/23 185.84.240.0/24 185.84.242.0/24 185.84.248.0/23 IPv6: 2001:67c:1000::/47 2a03:4bc0:1000::/47 2a03:4bc0:2000::/48 2a03:4bc0:2100::/48 2a03:4bc0:2200::/48 2a03:4bc0:2900::/48 2a03:4bc0:3160::/48 Signature Algorithm: sha256WithRSAEncryption 5a:88:0c:c9:1a:f3:7c:d0:87:c3:82:88:b2:cb:ca:d0:bd:73: 32:fd:22:3a:ca:3a:a5:48:d7:c0:37:44:68:c2:0e:d0:66:e4: df:49:23:47:65:7b:72:74:00:16:8c:8f:75:9e:88:a5:dc:aa: d6:54:e5:85:c7:76:8a:31:fb:89:75:74:fa:ad:03:f9:fc:24: 92:c1:7b:27:96:94:74:b4:b8:fd:0b:fa:09:f2:eb:28:fe:47: 53:97:bd:87:04:2f:25:66:cf:4e:5b:7b:66:90:dd:d8:5d:8d: 7b:f0:6d:41:76:dc:ea:83:20:6c:d5:ef:53:3e:c1:34:5e:5d: a6:24:da:ae:81:fc:c3:e5:4f:b5:0c:7f:0b:23:e2:64:96:a3: ab:88:d8:5d:f5:74:9e:33:f6:df:9e:09:10:fb:39:5c:d9:d1: 86:14:a5:4e:ef:05:25:c4:13:aa:be:05:0b:18:e9:90:04:f8: ff:49:72:90:65:fc:86:e5:72:62:74:18:54:a1:27:cc:21:55: 51:07:40:87:c5:82:cb:f8:bd:8e:19:46:68:a0:96:db:4b:e4: 60:35:94:5b:47:36:a2:c6:30:0a:a9:cc:8c:58:be:02:8e:03: a2:f4:c4:c0:4c:6f:d7:a4:23:9c:39:1c:dc:f3:1d:5b:65:de: 7a:9b:ed:43 -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgISAZt9yrJnGI5sDZqmMuKW9/jmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2NDA3NGFhODQ0OTgzMGRhOWIyMGIzYWZiMDY4MmQzYzAz MmY5ZmUwHhcNMjYwMTAyMDgxOTU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZDQ5OTc1Y2UzZTQ1YTM3MWMyNjAzN2MzYjZkYWRjY2Y4NTY1NjUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlNEXdB85LGWroqWDQbHlXZqGAsEP QfM0eHRp+Gj2df+KbxUnz41Kg3uMMgA/rzvSkgKcxu+XoiOwDWDwKAaYphNvDXGc jXGlysQEJUncaXIO99z8Rc0PNRBqjylsgUFsFW+YOikEmjpf1TQ4Wm2CRXwN1SSl KXf8hqWDSPN4S0RkQpyhRI9cVC7vDjkwv9NHrKevpgoh9zMAltfp3aHCYf5PNOp6 H4tRpQPxPzyZ8DgIOs8UIH9jKgedDwkCtmKwipjuAmYOm3qYJhUWJCcMWPHUeKIa O+FPVa8xl/foQ3WeINmG5HNQz+WmA4BTSdmSgLlciTIVe9hRiPuJbNzvuwIDAQAB o4ICaDCCAmQwHQYDVR0OBBYEFJ1Jl1zj5Fo3HCYDfDttrcz4VlZQMB8GA1UdIwQY MBaAFLZAdKqESYMNqbILOvsGgtPAMvn+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdGtCMHFvUkpndzJwc2dzNi13YUMwOEF5LWY0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi9mYzdjODItMzE1OS00ZDU0LWEwYTEt MzUxNzFhZWRkMzEzLzEvblVtWFhPUGtXamNjSmdOOE8yMnR6UGhXVmxBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Mi9mYzdjODItMzE1OS00ZDU0LWEwYTEtMzUxNzFhZWRkMzEz LzEvdGtCMHFvUkpndzJwc2dzNi13YUMwOEF5LWY0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMH4GCCsGAQUFBwEHAQH/BG8wbTAkBAIAATAeAwQAuQmkAwQB uQmmAwQAuVTwAwQAuVTyAwQBuVT4MEUEAgACMD8DBwEgAQZ8EAADBwEqA0vAEAAD BwAqA0vAIAADBwAqA0vAIQADBwAqA0vAIgADBwAqA0vAKQADBwAqA0vAMWAwDQYJ KoZIhvcNAQELBQADggEBAFqIDMka83zQh8OCiLLLytC9czL9IjrKOqVI18A3RGjC DtBm5N9JI0dle3J0ABaMj3WeiKXcqtZU5YXHdoox+4l1dPqtA/n8JJLBeyeWlHS0 uP0L+gny6yj+R1OXvYcELyVmz05be2aQ3dhdjXvwbUF23OqDIGzV71M+wTReXaYk 2q6B/MPlT7UMfwsj4mSWo6uI2F31dJ4z9t+eCRD7OVzZ0YYUpU7vBSXEE6q+BQsY 6ZAE+P9JcpBl/IblcmJ0GFShJ8whVVEHQIfFgsv4vY4ZRmiglttL5GA1lFtHNqLG MAqpzIxYvgKOA6L0xMBMb9ekI5w5HNzzHVtl3nqb7UM= -----END CERTIFICATE-----Generated at Mon Jan 26 04:40:59 2026 by rpki-client