This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/8f0259-9bc8-4fdc-926d-1a80daffd796/1/NAKEsYWRghwxZ4iokvBSMnb-OkI.roa File: NAKEsYWRghwxZ4iokvBSMnb-OkI.roa (raw, json) Hash identifier: RPSajDNzBZ26HAPEv4AJSS0Jn24NtarM1IdT0nBivNQ= Subject key identifier: 34:02:84:B1:85:91:82:1C:31:67:88:A8:92:F0:52:32:76:FE:3A:42 Certificate issuer: /CN=661691ca9c58d0859b6b870230b0f581be66a58a Certificate serial: 019B76EB0BB16ECCFBC040367C64B2069047 Authority key identifier: 66:16:91:CA:9C:58:D0:85:9B:6B:87:02:30:B0:F5:81:BE:66:A5:8A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZhaRypxY0IWba4cCMLD1gb5mpYo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/8f0259-9bc8-4fdc-926d-1a80daffd796/1/NAKEsYWRghwxZ4iokvBSMnb-OkI.roa Signing time: Thu 01 Jan 2026 00:17:54 +0000 ROA not before: Thu 01 Jan 2026 00:17:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56504 IP address blocks: 193.91.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/8f0259-9bc8-4fdc-926d-1a80daffd796/1/ZhaRypxY0IWba4cCMLD1gb5mpYo.crl rsync://rpki.ripe.net/repository/DEFAULT/6a/8f0259-9bc8-4fdc-926d-1a80daffd796/1/ZhaRypxY0IWba4cCMLD1gb5mpYo.mft rsync://rpki.ripe.net/repository/DEFAULT/ZhaRypxY0IWba4cCMLD1gb5mpYo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:0b:b1:6e:cc:fb:c0:40:36:7c:64:b2:06:90:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=661691ca9c58d0859b6b870230b0f581be66a58a Validity Not Before: Jan 1 00:17:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=340284b18591821c316788a892f0523276fe3a42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:c9:87:fa:53:25:56:f3:74:1b:b5:3a:ce:6a: be:a5:90:3e:61:69:80:0f:4f:23:9a:e4:90:08:6e: d6:a5:a6:c4:41:d5:45:af:83:46:72:7f:b3:2a:87: 80:3d:12:e4:ba:fd:2b:04:d9:36:77:28:33:64:ea: f1:00:5f:02:c5:c0:d0:92:39:b2:5d:7b:fa:b0:74: ad:4e:31:82:bb:c4:b9:d2:0a:a9:e1:18:06:ca:16: 50:97:d1:df:3a:91:24:9d:9f:22:f8:54:92:b3:8f: de:31:a1:79:09:ce:21:c4:e6:b2:e7:d1:cb:95:8b: ff:64:93:aa:be:6e:cd:16:17:9d:86:5d:8a:bf:ed: aa:25:fb:87:05:f1:74:79:93:4f:cd:80:b9:50:ad: 61:d5:24:ea:a7:82:e4:f3:1a:b8:af:54:bc:f8:ef: 0b:96:01:c6:59:e8:f8:1f:9f:b1:36:b8:52:c0:bf: ec:02:37:bb:8f:f8:3b:5b:17:45:9a:c1:95:84:14: a2:ce:80:71:53:cc:a0:05:35:3f:4a:72:16:f5:18: 7e:d2:a3:f1:0f:54:33:91:95:b8:ba:01:8f:fb:34: 2c:ca:48:01:be:bc:90:8c:f3:06:28:5d:a4:8d:5e: e9:4e:5d:4d:0b:58:80:f1:7e:89:3e:46:e1:ca:a4: 03:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:02:84:B1:85:91:82:1C:31:67:88:A8:92:F0:52:32:76:FE:3A:42 X509v3 Authority Key Identifier: keyid:66:16:91:CA:9C:58:D0:85:9B:6B:87:02:30:B0:F5:81:BE:66:A5:8A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZhaRypxY0IWba4cCMLD1gb5mpYo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8f0259-9bc8-4fdc-926d-1a80daffd796/1/NAKEsYWRghwxZ4iokvBSMnb-OkI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8f0259-9bc8-4fdc-926d-1a80daffd796/1/ZhaRypxY0IWba4cCMLD1gb5mpYo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.91.11.0/24 Signature Algorithm: sha256WithRSAEncryption 12:a1:d3:bc:e2:db:f3:a8:c0:07:5a:ad:d5:a8:da:32:51:c1: 67:cc:08:93:b8:14:14:42:22:c2:27:d2:ee:25:6c:be:59:89: d1:52:55:2c:79:27:f0:39:48:b8:3e:fb:5f:55:08:1b:f8:0a: ab:f7:9d:e1:1b:d7:8a:41:b6:dc:da:ba:95:57:b0:7d:c9:2e: 93:0c:74:19:50:6f:48:b2:35:6a:cb:e2:38:bf:a8:fb:1d:56: 69:05:ed:f6:18:43:a4:c9:58:8a:46:03:99:9d:0d:52:8b:e2: 00:e6:84:f8:d9:1c:94:26:86:07:8e:5d:1e:5b:ec:87:2d:f3: e2:ea:42:55:cf:39:cf:92:28:d1:e0:2d:7d:ae:cc:71:05:ed: 15:fc:72:ee:55:28:48:6c:a8:28:73:23:a5:1d:14:8b:4f:f6: 70:58:c4:72:37:55:fc:76:a5:56:fa:33:81:76:0b:58:7e:37: 36:b2:44:8a:6d:1a:60:5e:83:4e:a0:61:bf:3a:19:e6:bb:f5: 37:10:37:c7:0a:6e:9d:12:7b:50:1b:3e:c2:eb:9e:b3:bf:0e: a4:f3:cc:9a:61:97:c2:83:ae:41:57:0b:b0:8b:6d:40:b2:9d: 8c:73:a9:2c:fb:43:50:6c:37:b7:fb:32:03:e4:24:09:73:cc: 99:d5:be:b3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt26wuxbsz7wEA2fGSyBpBHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2MTY5MWNhOWM1OGQwODU5YjZiODcwMjMwYjBmNTgxYmU2 NmE1OGEwHhcNMjYwMTAxMDAxNzU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNDAyODRiMTg1OTE4MjFjMzE2Nzg4YTg5MmYwNTIzMjc2ZmUzYTQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmsmH+lMlVvN0G7U6zmq+pZA+YWmA D08jmuSQCG7WpabEQdVFr4NGcn+zKoeAPRLkuv0rBNk2dygzZOrxAF8CxcDQkjmy XXv6sHStTjGCu8S50gqp4RgGyhZQl9HfOpEknZ8i+FSSs4/eMaF5Cc4hxOay59HL lYv/ZJOqvm7NFhedhl2Kv+2qJfuHBfF0eZNPzYC5UK1h1STqp4Lk8xq4r1S8+O8L lgHGWej4H5+xNrhSwL/sAje7j/g7WxdFmsGVhBSizoBxU8ygBTU/SnIW9Rh+0qPx D1QzkZW4ugGP+zQsykgBvryQjPMGKF2kjV7pTl1NC1iA8X6JPkbhyqQDwQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDQChLGFkYIcMWeIqJLwUjJ2/jpCMB8GA1UdIwQY MBaAFGYWkcqcWNCFm2uHAjCw9YG+ZqWKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWmhhUnlweFkwSVdiYTRjQ01MRDFnYjVtcFlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS84ZjAyNTktOWJjOC00ZmRjLTkyNmQt MWE4MGRhZmZkNzk2LzEvTkFLRXNZV1JnaHd4WjRpb2t2QlNNbmItT2tJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82YS84ZjAyNTktOWJjOC00ZmRjLTkyNmQtMWE4MGRhZmZkNzk2 LzEvWmhhUnlweFkwSVdiYTRjQ01MRDFnYjVtcFlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwVsLMA0G CSqGSIb3DQEBCwUAA4IBAQASodO84tvzqMAHWq3VqNoyUcFnzAiTuBQUQiLCJ9Lu JWy+WYnRUlUseSfwOUi4PvtfVQgb+Aqr953hG9eKQbbc2rqVV7B9yS6TDHQZUG9I sjVqy+I4v6j7HVZpBe32GEOkyViKRgOZnQ1Si+IA5oT42RyUJoYHjl0eW+yHLfPi 6kJVzznPkijR4C19rsxxBe0V/HLuVShIbKgocyOlHRSLT/ZwWMRyN1X8dqVW+jOB dgtYfjc2skSKbRpgXoNOoGG/Ohnmu/U3EDfHCm6dEntQGz7C656zvw6k88yaYZfC g65BVwuwi21Asp2Mc6ks+0NQbDe3+zID5CQJc8yZ1b6z -----END CERTIFICATE-----Generated at Sun Jan 25 22:15:01 2026 by rpki-client