This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/NbgY2WOcJQL5HM_TOCX1iU7i3jM.roa File: NbgY2WOcJQL5HM_TOCX1iU7i3jM.roa (raw, json) Hash identifier: HeRjjTbPOukeZTijkl0JJq0JI5dyIJat+MpVAEl6wik= Subject key identifier: 35:B8:18:D9:63:9C:25:02:F9:1C:CF:D3:38:25:F5:89:4E:E2:DE:33 Certificate issuer: /CN=0b556acb5f3b961b5cc24a2995f34ee91f79dc16 Certificate serial: 019BD8CDC2C5F007EA9ACC2BF35AD30A8ED3 Authority key identifier: 0B:55:6A:CB:5F:3B:96:1B:5C:C2:4A:29:95:F3:4E:E9:1F:79:DC:16 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C1Vqy187lhtcwkoplfNO6R953BY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/NbgY2WOcJQL5HM_TOCX1iU7i3jM.roa Signing time: Tue 20 Jan 2026 00:28:41 +0000 ROA not before: Tue 20 Jan 2026 00:28:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12632 IP address blocks: 82.79.114.0/23 maxlen: 23 82.137.8.0/22 maxlen: 22 82.137.12.0/22 maxlen: 22 86.123.114.0/24 maxlen: 24 188.208.136.0/22 maxlen: 24 188.208.136.0/23 maxlen: 23 188.208.138.0/23 maxlen: 23 188.241.252.0/22 maxlen: 24 188.241.252.0/23 maxlen: 23 188.241.254.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/C1Vqy187lhtcwkoplfNO6R953BY.crl rsync://rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/C1Vqy187lhtcwkoplfNO6R953BY.mft rsync://rpki.ripe.net/repository/DEFAULT/C1Vqy187lhtcwkoplfNO6R953BY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:d8:cd:c2:c5:f0:07:ea:9a:cc:2b:f3:5a:d3:0a:8e:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0b556acb5f3b961b5cc24a2995f34ee91f79dc16 Validity Not Before: Jan 20 00:28:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=35b818d9639c2502f91ccfd33825f5894ee2de33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:4c:ff:1c:96:6d:2f:5e:a5:c9:3d:04:d0:34: a7:4c:83:b9:55:6f:c7:57:29:8a:3e:e5:d4:de:6b: d2:fe:59:16:00:0b:59:65:4e:70:61:6c:87:98:7d: ed:72:9d:fb:c1:88:0b:cf:55:7c:85:46:17:de:28: 07:8f:ed:3f:d3:31:41:02:15:37:e9:c9:10:d1:5e: 4a:1c:83:cc:b3:f9:12:10:56:a4:73:ed:58:f4:26: 19:09:36:f7:7d:99:8f:03:4e:8d:57:44:9c:9e:3f: a6:4a:01:e2:d1:72:29:e5:ae:5e:fb:4e:f8:72:41: a3:8d:16:1d:c3:57:8b:13:6d:5e:06:cc:d1:f8:0a: c2:c1:71:24:6f:25:6d:a5:8c:0a:5c:d1:3d:a8:69: 36:ff:e8:a6:4b:71:be:40:cc:20:58:97:df:06:0c: 20:26:9d:dc:6f:59:e9:ea:ce:cc:71:3d:e6:0c:3b: 17:d8:84:33:14:f3:c2:09:06:0b:b0:e1:40:32:34: a1:4d:fc:1b:03:ce:8e:ca:a4:ab:50:bd:2f:dd:f4: 7a:a3:80:ab:4a:07:6d:85:28:57:25:0a:39:86:9d: e9:d4:bb:c2:84:1e:a3:e3:23:71:0a:63:6d:32:5e: 1b:6b:34:f3:7e:cd:e7:39:6b:94:c2:73:49:ae:47: 38:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:B8:18:D9:63:9C:25:02:F9:1C:CF:D3:38:25:F5:89:4E:E2:DE:33 X509v3 Authority Key Identifier: keyid:0B:55:6A:CB:5F:3B:96:1B:5C:C2:4A:29:95:F3:4E:E9:1F:79:DC:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C1Vqy187lhtcwkoplfNO6R953BY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/NbgY2WOcJQL5HM_TOCX1iU7i3jM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/C1Vqy187lhtcwkoplfNO6R953BY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.79.114.0/23 82.137.8.0/21 86.123.114.0/24 188.208.136.0/22 188.241.252.0/22 Signature Algorithm: sha256WithRSAEncryption 38:5b:46:bc:9a:0c:4f:1e:14:70:49:2e:0e:5f:9b:c5:0d:a7: 31:64:b7:59:d5:c3:f0:80:3e:07:c1:f6:03:c9:da:24:fe:4c: 61:b6:2c:70:59:0e:f2:3d:0e:f1:a5:3e:f6:f0:6d:9a:13:d8: 0d:08:9c:4e:d9:c1:8d:18:66:d4:26:b0:01:65:41:54:cb:4f: b2:0a:bf:29:06:8f:9d:16:a3:fe:35:ce:83:2d:9b:89:43:f3: 67:80:0a:0b:32:f0:57:1b:3b:a1:4d:16:78:e3:5b:41:de:88: f3:1d:f8:a2:c7:37:29:04:d0:d4:91:ae:a0:4a:eb:ee:eb:d9: 6f:4b:93:11:6a:ef:44:08:b0:f3:2b:17:e7:14:9f:08:4e:61: 10:d5:2c:1a:0a:42:c9:82:57:44:31:cc:b6:a8:0b:d4:5a:5a: c9:9f:7c:24:d9:e3:a4:ff:9f:b5:2f:ea:d0:f6:56:d2:49:51: 14:71:09:0c:64:84:f5:3d:79:a7:8e:f5:f7:26:21:d4:83:2e: b6:d1:59:77:fb:4c:00:69:79:99:fe:69:e0:56:f8:74:eb:fb: b0:af:54:52:97:db:59:67:57:fd:1b:33:59:b0:d2:8c:4f:78: 9d:40:68:98:5d:57:c6:6b:7a:6e:c9:cb:42:4d:b9:4f:fd:42: be:8e:44:8d -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZvYzcLF8Afqmswr81rTCo7TMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBiNTU2YWNiNWYzYjk2MWI1Y2MyNGEyOTk1ZjM0ZWU5MWY3 OWRjMTYwHhcNMjYwMTIwMDAyODQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNWI4MThkOTYzOWMyNTAyZjkxY2NmZDMzODI1ZjU4OTRlZTJkZTMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsEz/HJZtL16lyT0E0DSnTIO5VW/H VymKPuXU3mvS/lkWAAtZZU5wYWyHmH3tcp37wYgLz1V8hUYX3igHj+0/0zFBAhU3 6ckQ0V5KHIPMs/kSEFakc+1Y9CYZCTb3fZmPA06NV0Scnj+mSgHi0XIp5a5e+074 ckGjjRYdw1eLE21eBszR+ArCwXEkbyVtpYwKXNE9qGk2/+imS3G+QMwgWJffBgwg Jp3cb1np6s7McT3mDDsX2IQzFPPCCQYLsOFAMjShTfwbA86OyqSrUL0v3fR6o4Cr SgdthShXJQo5hp3p1LvChB6j4yNxCmNtMl4bazTzfs3nOWuUwnNJrkc4cQIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFDW4GNljnCUC+RzP0zgl9YlO4t4zMB8GA1UdIwQY MBaAFAtVastfO5YbXMJKKZXzTukfedwWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQzFWcXkxODdsaHRjd2tvcGxmTk82Ujk1M0JZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS84MjlmZGYtYmE2My00YzIzLTkxZDEt ZDJiYmYzN2RhYmI0LzEvTmJnWTJXT2NKUUw1SE1fVE9DWDFpVTdpM2pNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZS84MjlmZGYtYmE2My00YzIzLTkxZDEtZDJiYmYzN2RhYmI0 LzEvQzFWcXkxODdsaHRjd2tvcGxmTk82Ujk1M0JZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQBUk9yAwQD UokIAwQAVntyAwQCvNCIAwQCvPH8MA0GCSqGSIb3DQEBCwUAA4IBAQA4W0a8mgxP HhRwSS4OX5vFDacxZLdZ1cPwgD4HwfYDydok/kxhtixwWQ7yPQ7xpT728G2aE9gN CJxO2cGNGGbUJrABZUFUy0+yCr8pBo+dFqP+Nc6DLZuJQ/NngAoLMvBXGzuhTRZ4 41tB3ojzHfiixzcpBNDUka6gSuvu69lvS5MRau9ECLDzKxfnFJ8ITmEQ1SwaCkLJ gldEMcy2qAvUWlrJn3wk2eOk/5+1L+rQ9lbSSVEUcQkMZIT1PXmnjvX3JiHUgy62 0Vl3+0wAaXmZ/mngVvh06/uwr1RSl9tZZ1f9GzNZsNKMT3idQGiYXVfGa3puyctC TblP/UK+jkSN -----END CERTIFICATE-----Generated at Mon Jan 26 03:56:43 2026 by rpki-client