This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/639be4-93e6-4183-ab6f-dfddb1364363/1/nue0zLCdoQpgxGStseN2fkjSnI4.roa File: nue0zLCdoQpgxGStseN2fkjSnI4.roa (raw, json) Hash identifier: VSsTvgcmCl/+CH4M98aAryux6Otm4nE6txZTSh2dlVw= Subject key identifier: 9E:E7:B4:CC:B0:9D:A1:0A:60:C4:64:AD:B1:E3:76:7E:48:D2:9C:8E Certificate issuer: /CN=bbd84bc44dbda5babfc4940bccc1635e153b24b6 Certificate serial: 019B77C70E8F608FEEB09BA6208802A6651C Authority key identifier: BB:D8:4B:C4:4D:BD:A5:BA:BF:C4:94:0B:CC:C1:63:5E:15:3B:24:B6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u9hLxE29pbq_xJQLzMFjXhU7JLY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/639be4-93e6-4183-ab6f-dfddb1364363/1/nue0zLCdoQpgxGStseN2fkjSnI4.roa Signing time: Thu 01 Jan 2026 04:18:12 +0000 ROA not before: Thu 01 Jan 2026 04:18:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42295 IP address blocks: 85.187.16.0/24 maxlen: 24 93.152.231.0/24 maxlen: 24 93.152.232.0/24 maxlen: 24 185.240.133.0/24 maxlen: 24 195.191.34.0/23 maxlen: 23 2001:67c:530::/48 maxlen: 48 2a0c:2180::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/639be4-93e6-4183-ab6f-dfddb1364363/1/u9hLxE29pbq_xJQLzMFjXhU7JLY.crl rsync://rpki.ripe.net/repository/DEFAULT/6a/639be4-93e6-4183-ab6f-dfddb1364363/1/u9hLxE29pbq_xJQLzMFjXhU7JLY.mft rsync://rpki.ripe.net/repository/DEFAULT/u9hLxE29pbq_xJQLzMFjXhU7JLY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:0e:8f:60:8f:ee:b0:9b:a6:20:88:02:a6:65:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bbd84bc44dbda5babfc4940bccc1635e153b24b6 Validity Not Before: Jan 1 04:18:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9ee7b4ccb09da10a60c464adb1e3767e48d29c8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:d7:aa:63:83:62:6a:0f:bc:3c:3b:92:6f:db: a4:8f:91:36:7f:a8:b3:8b:9d:58:df:94:c8:79:94: 02:fb:87:3c:11:4a:0f:62:bb:9a:17:a3:37:d4:01: f9:d5:a7:d3:fc:82:69:04:08:8e:60:30:89:83:ee: 1b:3a:e2:44:64:29:c5:52:04:d1:57:28:7b:43:3d: d4:9b:62:dc:19:3a:bf:f1:82:b7:63:dd:68:5d:d0: 7d:8e:63:0f:45:15:69:49:b1:92:99:ab:33:31:7a: b4:1a:e2:f4:de:5c:0c:f6:ec:55:fb:1a:b0:36:6f: 90:cb:ab:d9:f9:36:ff:c4:f3:cd:bf:d1:ea:21:33: d5:04:2e:08:83:5d:1d:f9:3f:87:16:dc:b5:2a:db: 89:b1:33:57:c0:c3:67:77:bb:0b:08:c3:3c:78:55: d1:2c:cd:e3:9a:e6:7f:bf:1e:13:6c:54:d2:fe:83: 10:d1:5c:c3:69:e8:f8:fc:6e:08:ec:63:e6:0e:e5: 29:be:27:03:00:3a:22:a4:bd:fb:05:4c:4e:29:45: b4:25:95:5a:ec:3c:a9:7f:4c:0e:4a:97:6e:ec:c6: cf:cc:5d:58:bf:d4:b5:46:ab:6e:87:9e:cf:de:ff: cb:7b:35:f2:95:ea:9f:20:c7:99:cb:ea:1f:b2:de: 29:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:E7:B4:CC:B0:9D:A1:0A:60:C4:64:AD:B1:E3:76:7E:48:D2:9C:8E X509v3 Authority Key Identifier: keyid:BB:D8:4B:C4:4D:BD:A5:BA:BF:C4:94:0B:CC:C1:63:5E:15:3B:24:B6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u9hLxE29pbq_xJQLzMFjXhU7JLY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/639be4-93e6-4183-ab6f-dfddb1364363/1/nue0zLCdoQpgxGStseN2fkjSnI4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/639be4-93e6-4183-ab6f-dfddb1364363/1/u9hLxE29pbq_xJQLzMFjXhU7JLY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.187.16.0/24 93.152.231.0-93.152.232.255 185.240.133.0/24 195.191.34.0/23 IPv6: 2001:67c:530::/48 2a0c:2180::/32 Signature Algorithm: sha256WithRSAEncryption 2f:4c:2d:22:aa:a7:4a:a9:12:c0:fd:3d:99:df:a3:d1:5c:ba: c2:51:25:db:f9:1f:ae:c0:6a:8d:ad:85:7b:1d:fe:33:95:cb: 80:ee:00:b5:49:62:53:42:a2:d1:8f:9e:ac:d5:10:d2:40:68: f1:90:a9:68:56:85:ec:e4:37:25:39:e8:b1:cb:c3:8f:53:37: 6b:0d:01:82:e6:f1:db:ce:48:26:3b:03:7d:ab:74:26:93:c7: 7d:0b:a5:46:74:6a:f4:1f:bb:a8:58:33:c3:55:ca:2d:20:90: bd:64:d8:46:77:7d:f3:dc:23:8e:74:9a:9f:07:96:7c:b7:28: 69:71:a6:e6:a9:42:95:89:ca:48:48:bd:49:6e:2f:06:0d:bc: 77:d0:b7:e6:ae:00:03:b5:61:84:5c:fb:35:d1:88:f9:02:c6: 6e:a3:d4:c9:20:2e:f9:8f:a6:92:79:6a:c3:53:c7:8d:07:52: b4:b3:0f:1d:4f:a3:29:a9:39:42:a3:5b:c5:96:e4:fc:f0:53: e9:58:09:79:05:25:59:fe:bf:59:ae:fe:85:e9:d8:b8:ed:e8: e2:59:d1:d4:45:eb:d7:d4:3f:1c:a5:18:b4:27:fe:9c:a3:d4: 02:73:8b:ce:e2:18:76:bf:75:60:41:2a:91:0c:fd:08:ae:2f: fb:d7:44:aa -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgISAZt3xw6PYI/usJumIIgCpmUcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiZDg0YmM0NGRiZGE1YmFiZmM0OTQwYmNjYzE2MzVlMTUz YjI0YjYwHhcNMjYwMTAxMDQxODEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZWU3YjRjY2IwOWRhMTBhNjBjNDY0YWRiMWUzNzY3ZTQ4ZDI5YzhlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3teqY4Niag+8PDuSb9ukj5E2f6iz i51Y35TIeZQC+4c8EUoPYruaF6M31AH51afT/IJpBAiOYDCJg+4bOuJEZCnFUgTR Vyh7Qz3Um2LcGTq/8YK3Y91oXdB9jmMPRRVpSbGSmaszMXq0GuL03lwM9uxV+xqw Nm+Qy6vZ+Tb/xPPNv9HqITPVBC4Ig10d+T+HFty1KtuJsTNXwMNnd7sLCMM8eFXR LM3jmuZ/vx4TbFTS/oMQ0VzDaej4/G4I7GPmDuUpvicDADoipL37BUxOKUW0JZVa 7Dypf0wOSpdu7MbPzF1Yv9S1Rqtuh57P3v/LezXyleqfIMeZy+ofst4puwIDAQAB o4ICOzCCAjcwHQYDVR0OBBYEFJ7ntMywnaEKYMRkrbHjdn5I0pyOMB8GA1UdIwQY MBaAFLvYS8RNvaW6v8SUC8zBY14VOyS2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdTloTHhFMjlwYnFfeEpRTHpNRmpYaFU3SkxZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS82MzliZTQtOTNlNi00MTgzLWFiNmYt ZGZkZGIxMzY0MzYzLzEvbnVlMHpMQ2RvUXBneEdTdHNlTjJma2pTbkk0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82YS82MzliZTQtOTNlNi00MTgzLWFiNmYtZGZkZGIxMzY0MzYz LzEvdTloTHhFMjlwYnFfeEpRTHpNRmpYaFU3SkxZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFEGCCsGAQUFBwEHAQH/BEIwQDAmBAIAATAgAwQAVbsQMAwD BABdmOcDBABdmOgDBAC58IUDBAHDvyIwFgQCAAIwEAMHACABBnwFMAMFACoMIYAw DQYJKoZIhvcNAQELBQADggEBAC9MLSKqp0qpEsD9PZnfo9FcusJRJdv5H67Aao2t hXsd/jOVy4DuALVJYlNCotGPnqzVENJAaPGQqWhWhezkNyU56LHLw49TN2sNAYLm 8dvOSCY7A32rdCaTx30LpUZ0avQfu6hYM8NVyi0gkL1k2EZ3ffPcI450mp8Hlny3 KGlxpuapQpWJykhIvUluLwYNvHfQt+auAAO1YYRc+zXRiPkCxm6j1MkgLvmPppJ5 asNTx40HUrSzDx1PoympOUKjW8WW5PzwU+lYCXkFJVn+v1mu/oXp2Ljt6OJZ0dRF 69fUPxylGLQn/pyj1AJzi87iGHa/dWBBKpEM/QiuL/vXRKo= -----END CERTIFICATE-----Generated at Sun Jan 25 20:46:46 2026 by rpki-client