This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/3587eb-ebd4-40ab-a19b-22920565cda4/1/NBMICGxDjswxMBcIkL6TWpVgug4.roa File: NBMICGxDjswxMBcIkL6TWpVgug4.roa (raw, json) Hash identifier: SDiHoGR3hyxD5P9xq7VGB+HgvxZFXXwsXaz8vMU9je8= Subject key identifier: 34:13:08:08:6C:43:8E:CC:31:30:17:08:90:BE:93:5A:95:60:BA:0E Certificate issuer: /CN=d50cda48c35e54eb802575aaa408cce579927216 Certificate serial: 019B76EB56FF72FC17FD07EDDBF17EB23DB7 Authority key identifier: D5:0C:DA:48:C3:5E:54:EB:80:25:75:AA:A4:08:CC:E5:79:92:72:16 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QzaSMNeVOuAJXWqpAjM5XmSchY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/3587eb-ebd4-40ab-a19b-22920565cda4/1/NBMICGxDjswxMBcIkL6TWpVgug4.roa Signing time: Thu 01 Jan 2026 00:18:13 +0000 ROA not before: Thu 01 Jan 2026 00:18:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48932 IP address blocks: 217.12.224.0/24 maxlen: 24 217.12.225.0/24 maxlen: 24 217.12.226.0/24 maxlen: 24 217.12.227.0/24 maxlen: 24 217.12.232.0/23 maxlen: 23 217.12.232.0/24 maxlen: 24 217.12.233.0/24 maxlen: 24 217.12.234.0/23 maxlen: 23 217.12.234.0/24 maxlen: 24 217.12.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/3587eb-ebd4-40ab-a19b-22920565cda4/1/1QzaSMNeVOuAJXWqpAjM5XmSchY.crl rsync://rpki.ripe.net/repository/DEFAULT/6b/3587eb-ebd4-40ab-a19b-22920565cda4/1/1QzaSMNeVOuAJXWqpAjM5XmSchY.mft rsync://rpki.ripe.net/repository/DEFAULT/1QzaSMNeVOuAJXWqpAjM5XmSchY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:56:ff:72:fc:17:fd:07:ed:db:f1:7e:b2:3d:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d50cda48c35e54eb802575aaa408cce579927216 Validity Not Before: Jan 1 00:18:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=341308086c438ecc3130170890be935a9560ba0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:29:a2:04:4d:d7:f8:fe:5f:15:b0:19:be:46: ba:7f:41:bf:71:2b:03:d8:27:7c:58:83:ab:d4:99: 2f:51:51:c0:4e:f7:1d:9e:ac:91:53:04:b1:05:af: 60:f5:59:59:28:b6:63:85:fa:ec:f4:ca:02:84:4e: f9:a2:15:2b:58:c7:ad:9e:78:44:0d:ed:8d:23:05: 27:a8:c0:4e:cf:ff:3e:56:8c:bf:fa:f3:bf:0c:5b: cf:b1:46:31:c5:2a:91:22:5d:c6:dd:9c:bc:56:c9: 3f:5e:6a:95:2e:93:16:91:04:f2:98:39:87:61:19: 5d:ae:02:e9:47:4c:68:27:76:97:e9:5d:48:9b:d3: b4:69:7b:a2:fb:eb:2f:91:7c:23:03:90:0f:c3:ec: 7d:e5:00:4f:a5:00:a9:93:37:57:1e:6c:54:f6:52: fc:6d:2a:59:69:02:fa:7f:fa:85:94:6f:35:0f:3c: af:58:38:dd:72:13:14:45:9b:a0:34:df:7b:40:36: 6b:c1:20:ad:a2:b5:86:58:9e:f7:f4:0a:f2:17:4d: 41:ba:ff:d3:41:bf:89:6f:2a:f9:c1:d9:6b:1d:74: 01:6b:44:87:d8:65:2e:cd:4c:0c:a5:31:3b:8b:85: 65:ec:ee:5f:50:d5:fb:63:f2:ef:82:01:9d:f5:fa: f0:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:13:08:08:6C:43:8E:CC:31:30:17:08:90:BE:93:5A:95:60:BA:0E X509v3 Authority Key Identifier: keyid:D5:0C:DA:48:C3:5E:54:EB:80:25:75:AA:A4:08:CC:E5:79:92:72:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QzaSMNeVOuAJXWqpAjM5XmSchY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/3587eb-ebd4-40ab-a19b-22920565cda4/1/NBMICGxDjswxMBcIkL6TWpVgug4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/3587eb-ebd4-40ab-a19b-22920565cda4/1/1QzaSMNeVOuAJXWqpAjM5XmSchY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.12.224.0/22 217.12.232.0/22 Signature Algorithm: sha256WithRSAEncryption 0d:bc:fd:12:54:83:1c:ac:55:c9:d7:9a:4b:cb:7e:76:7f:c9: bb:c5:16:b9:c8:19:22:c7:4d:9e:5c:a1:2a:04:06:1a:49:83: e4:ae:36:84:df:3c:11:8b:88:88:4f:4c:55:ec:74:9d:75:b1: 7b:16:16:70:68:ea:9c:a5:67:13:17:78:8b:1c:c8:04:2f:35: 6f:46:42:94:e5:b4:85:25:e3:5e:f6:c3:75:69:c8:2a:91:26: 38:4f:21:a3:68:65:9f:76:99:87:c8:f5:84:2f:f4:28:23:64: c0:0b:ec:da:46:39:a7:74:b8:21:24:8d:83:c5:8b:58:f4:38: 37:6a:f5:16:99:2a:c7:72:cb:02:08:3c:b0:23:05:95:44:8f: 37:c6:9d:b5:ff:ef:e0:80:47:17:ba:6e:ca:70:ae:86:83:4c: 98:15:a9:30:7c:d1:19:8d:83:af:b3:b9:03:1b:7b:d6:7b:21: 58:e0:55:5f:bf:7f:5c:68:06:1d:01:2f:58:6b:0e:d8:17:57: 91:70:9c:4e:6d:55:7d:1c:54:74:23:e0:40:26:02:cf:f8:ef: 7f:d6:3d:4a:69:1a:94:85:50:48:08:2f:3f:a9:46:55:e2:84: 0d:10:b8:fa:74:ef:57:e6:bf:f7:c1:45:01:75:38:be:2f:b9: 99:7a:5c:90 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt261b/cvwX/Qft2/F+sj23MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ1MGNkYTQ4YzM1ZTU0ZWI4MDI1NzVhYWE0MDhjY2U1Nzk5 MjcyMTYwHhcNMjYwMTAxMDAxODEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNDEzMDgwODZjNDM4ZWNjMzEzMDE3MDg5MGJlOTM1YTk1NjBiYTBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsSmiBE3X+P5fFbAZvka6f0G/cSsD 2Cd8WIOr1JkvUVHATvcdnqyRUwSxBa9g9VlZKLZjhfrs9MoChE75ohUrWMetnnhE De2NIwUnqMBOz/8+Voy/+vO/DFvPsUYxxSqRIl3G3Zy8Vsk/XmqVLpMWkQTymDmH YRldrgLpR0xoJ3aX6V1Im9O0aXui++svkXwjA5APw+x95QBPpQCpkzdXHmxU9lL8 bSpZaQL6f/qFlG81DzyvWDjdchMURZugNN97QDZrwSCtorWGWJ739AryF01Buv/T Qb+Jbyr5wdlrHXQBa0SH2GUuzUwMpTE7i4Vl7O5fUNX7Y/LvggGd9frwQwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFDQTCAhsQ47MMTAXCJC+k1qVYLoOMB8GA1UdIwQY MBaAFNUM2kjDXlTrgCV1qqQIzOV5knIWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMVF6YVNNTmVWT3VBSlhXcXBBak01WG1TY2hZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi8zNTg3ZWItZWJkNC00MGFiLWExOWIt MjI5MjA1NjVjZGE0LzEvTkJNSUNHeERqc3d4TUJjSWtMNlRXcFZndWc0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yi8zNTg3ZWItZWJkNC00MGFiLWExOWItMjI5MjA1NjVjZGE0 LzEvMVF6YVNNTmVWT3VBSlhXcXBBak01WG1TY2hZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQC2QzgAwQC 2QzoMA0GCSqGSIb3DQEBCwUAA4IBAQANvP0SVIMcrFXJ15pLy352f8m7xRa5yBki x02eXKEqBAYaSYPkrjaE3zwRi4iIT0xV7HSddbF7FhZwaOqcpWcTF3iLHMgELzVv RkKU5bSFJeNe9sN1acgqkSY4TyGjaGWfdpmHyPWEL/QoI2TAC+zaRjmndLghJI2D xYtY9Dg3avUWmSrHcssCCDywIwWVRI83xp21/+/ggEcXum7KcK6Gg0yYFakwfNEZ jYOvs7kDG3vWeyFY4FVfv39caAYdAS9Yaw7YF1eRcJxObVV9HFR0I+BAJgLP+O9/ 1j1KaRqUhVBICC8/qUZV4oQNELj6dO9X5r/3wUUBdTi+L7mZelyQ -----END CERTIFICATE-----Generated at Sun Jan 25 21:27:31 2026 by rpki-client