This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/nlbQ8isMaPtWYLAM459QNvYW79U.roa File: nlbQ8isMaPtWYLAM459QNvYW79U.roa (raw, json) Hash identifier: mKMgAvz4E9Ijp0870elCPm/KKDotOY8nOsT1RN7feSs= Subject key identifier: 9E:56:D0:F2:2B:0C:68:FB:56:60:B0:0C:E3:9F:50:36:F6:16:EF:D5 Certificate issuer: /CN=1b2c219f3c297b775880c3b651a2003f9be6de5e Certificate serial: 019B7F1468F1ECAF300F2DCA8BDAA6D0AB3B Authority key identifier: 1B:2C:21:9F:3C:29:7B:77:58:80:C3:B6:51:A2:00:3F:9B:E6:DE:5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gywhnzwpe3dYgMO2UaIAP5vm3l4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/nlbQ8isMaPtWYLAM459QNvYW79U.roa Signing time: Fri 02 Jan 2026 14:20:02 +0000 ROA not before: Fri 02 Jan 2026 14:20:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213999 IP address blocks: 77.221.150.0/24 maxlen: 24 109.120.128.0/24 maxlen: 24 109.120.129.0/24 maxlen: 24 109.120.130.0/24 maxlen: 24 109.120.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/Gywhnzwpe3dYgMO2UaIAP5vm3l4.crl rsync://rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/Gywhnzwpe3dYgMO2UaIAP5vm3l4.mft rsync://rpki.ripe.net/repository/DEFAULT/Gywhnzwpe3dYgMO2UaIAP5vm3l4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 05:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:68:f1:ec:af:30:0f:2d:ca:8b:da:a6:d0:ab:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b2c219f3c297b775880c3b651a2003f9be6de5e Validity Not Before: Jan 2 14:20:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9e56d0f22b0c68fb5660b00ce39f5036f616efd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f4:81:75:44:a9:27:bb:61:08:95:1e:ef:a0: 99:1a:eb:fb:5c:d2:dd:ff:2b:92:19:e9:75:4c:25: 93:d8:55:11:6d:ef:29:6e:a1:e8:25:1c:62:39:81: 2a:9a:b1:26:e5:d3:a2:d7:d7:3f:39:74:31:3e:64: 92:bd:39:f6:fa:9c:26:83:8d:5f:d4:1f:ec:b8:a4: 6c:8e:58:5e:59:79:4d:d5:8e:bc:00:2d:90:9f:e4: 39:ed:e8:80:f8:95:b6:4a:cb:17:76:db:ba:8e:56: 45:8e:59:3d:31:01:fc:c7:a4:d6:f8:51:2e:a2:ba: d8:99:2f:11:d7:56:7b:c6:43:9e:da:f1:92:82:03: d2:4c:3a:01:20:99:47:0f:1c:5b:87:b9:e6:b6:af: 97:3c:99:7b:15:05:5c:a1:bd:3b:f5:f4:1d:f3:8a: 21:f2:36:cf:24:3d:20:44:fb:ac:c9:69:c2:52:cb: 14:e9:96:bd:58:b4:71:45:1f:86:72:22:ef:87:02: ba:35:ba:70:17:43:b0:a7:88:7d:de:c3:4e:77:d9: 1e:b7:67:e9:86:21:90:fa:19:12:53:c0:41:d4:6b: e7:6d:f7:bf:62:45:e4:61:ac:ec:dd:14:29:5a:eb: 1c:00:de:72:2f:5f:6b:6d:ee:f2:28:72:b3:15:b7: 08:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:56:D0:F2:2B:0C:68:FB:56:60:B0:0C:E3:9F:50:36:F6:16:EF:D5 X509v3 Authority Key Identifier: keyid:1B:2C:21:9F:3C:29:7B:77:58:80:C3:B6:51:A2:00:3F:9B:E6:DE:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gywhnzwpe3dYgMO2UaIAP5vm3l4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/nlbQ8isMaPtWYLAM459QNvYW79U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/Gywhnzwpe3dYgMO2UaIAP5vm3l4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.221.150.0/24 109.120.128.0/22 Signature Algorithm: sha256WithRSAEncryption 70:ae:17:97:89:d9:16:2a:a7:ff:cc:24:02:8b:2c:83:3a:65: 6a:7a:4e:87:43:f0:30:08:ae:eb:1c:5c:2f:8b:f8:8d:e2:70: c1:a0:e7:5e:d1:34:b9:68:be:7a:af:a9:6f:84:66:fe:86:76: cb:14:f1:b9:61:97:33:4a:dc:9b:db:ed:52:db:53:e7:54:23: 58:94:6f:c2:52:1d:23:50:b2:5d:12:9c:6f:eb:8e:19:22:4a: 0b:d3:b1:ef:46:7e:bb:49:2d:a7:72:ad:f3:10:da:ed:10:09: e1:9b:6f:fa:09:44:26:b1:19:ad:e7:a6:18:24:f5:d3:4d:5f: a8:42:5b:8c:ac:dc:9a:49:c4:38:83:ce:f1:2c:58:be:83:27: ce:61:04:6b:1b:1d:ed:a0:4f:68:ad:8a:bb:28:ee:0a:88:d0: bc:b2:01:06:12:9c:8f:e6:4d:48:9c:be:23:9e:64:98:b1:24: 24:86:36:55:85:11:e5:06:c4:ae:5e:87:9b:68:42:16:6a:a0: b1:dc:8f:0a:ae:1c:29:26:5d:6b:fd:0e:f8:48:bf:9e:ad:88: a8:2e:74:14:6c:35:58:07:bd:4d:48:f5:c3:d8:0c:8b:16:ac: 55:56:8d:f4:fa:3d:de:7d:fd:77:75:2b:c0:4f:ff:f9:1b:23: 47:ef:d9:fa -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/FGjx7K8wDy3Ki9qm0Ks7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiMmMyMTlmM2MyOTdiNzc1ODgwYzNiNjUxYTIwMDNmOWJl NmRlNWUwHhcNMjYwMTAyMTQyMDAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZTU2ZDBmMjJiMGM2OGZiNTY2MGIwMGNlMzlmNTAzNmY2MTZlZmQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy/SBdUSpJ7thCJUe76CZGuv7XNLd /yuSGel1TCWT2FURbe8pbqHoJRxiOYEqmrEm5dOi19c/OXQxPmSSvTn2+pwmg41f 1B/suKRsjlheWXlN1Y68AC2Qn+Q57eiA+JW2SssXdtu6jlZFjlk9MQH8x6TW+FEu orrYmS8R11Z7xkOe2vGSggPSTDoBIJlHDxxbh7nmtq+XPJl7FQVcob079fQd84oh 8jbPJD0gRPusyWnCUssU6Za9WLRxRR+GciLvhwK6NbpwF0Owp4h93sNOd9ket2fp hiGQ+hkSU8BB1Gvnbfe/YkXkYazs3RQpWuscAN5yL19rbe7yKHKzFbcIWwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFJ5W0PIrDGj7VmCwDOOfUDb2Fu/VMB8GA1UdIwQY MBaAFBssIZ88KXt3WIDDtlGiAD+b5t5eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR3l3aG56d3BlM2RZZ01PMlVhSUFQNXZtM2w0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi9iMTFhNDAtNDhlOS00ZTA2LWJmMTEt OTJjODFmMjJlNzEyLzEvbmxiUThpc01hUHRXWUxBTTQ1OVFOdllXNzlVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Zi9iMTFhNDAtNDhlOS00ZTA2LWJmMTEtOTJjODFmMjJlNzEy LzEvR3l3aG56d3BlM2RZZ01PMlVhSUFQNXZtM2w0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQATd2WAwQC bXiAMA0GCSqGSIb3DQEBCwUAA4IBAQBwrheXidkWKqf/zCQCiyyDOmVqek6HQ/Aw CK7rHFwvi/iN4nDBoOde0TS5aL56r6lvhGb+hnbLFPG5YZczStyb2+1S21PnVCNY lG/CUh0jULJdEpxv644ZIkoL07HvRn67SS2ncq3zENrtEAnhm2/6CUQmsRmt56YY JPXTTV+oQluMrNyaScQ4g87xLFi+gyfOYQRrGx3toE9orYq7KO4KiNC8sgEGEpyP 5k1InL4jnmSYsSQkhjZVhRHlBsSuXoebaEIWaqCx3I8KrhwpJl1r/Q74SL+erYio LnQUbDVYB71NSPXD2AyLFqxVVo30+j3eff13dSvAT//5GyNH79n6 -----END CERTIFICATE-----Generated at Sun Jan 25 11:40:31 2026 by rpki-client