This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/1dbd6b-35cc-4f09-b92e-198b6a61ce85/1/nqWceW59cc5C0IxxcTrydFGb1mM.roa File: nqWceW59cc5C0IxxcTrydFGb1mM.roa (raw, json) Hash identifier: Mg96y0myQny6t5nbNgLVhCKgERm7JW8N5FpEDhGxjoY= Subject key identifier: 9E:A5:9C:79:6E:7D:71:CE:42:D0:8C:71:71:3A:F2:74:51:9B:D6:63 Certificate issuer: /CN=651bad95276947c7be536af4c870a3721f0b7761 Certificate serial: 019B76EB75487F286DAC193EF3FC7892B850 Authority key identifier: 65:1B:AD:95:27:69:47:C7:BE:53:6A:F4:C8:70:A3:72:1F:0B:77:61 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZRutlSdpR8e-U2r0yHCjch8Ld2E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/1dbd6b-35cc-4f09-b92e-198b6a61ce85/1/nqWceW59cc5C0IxxcTrydFGb1mM.roa Signing time: Thu 01 Jan 2026 00:18:20 +0000 ROA not before: Thu 01 Jan 2026 00:18:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59795 IP address blocks: 213.184.84.0/24 maxlen: 24 213.184.85.0/24 maxlen: 24 213.184.86.0/24 maxlen: 24 2a09:3a00:3000::/40 maxlen: 48 2a09:3a00:3a00::/40 maxlen: 48 2a09:3a00:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/1dbd6b-35cc-4f09-b92e-198b6a61ce85/1/ZRutlSdpR8e-U2r0yHCjch8Ld2E.crl rsync://rpki.ripe.net/repository/DEFAULT/a4/1dbd6b-35cc-4f09-b92e-198b6a61ce85/1/ZRutlSdpR8e-U2r0yHCjch8Ld2E.mft rsync://rpki.ripe.net/repository/DEFAULT/ZRutlSdpR8e-U2r0yHCjch8Ld2E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:75:48:7f:28:6d:ac:19:3e:f3:fc:78:92:b8:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=651bad95276947c7be536af4c870a3721f0b7761 Validity Not Before: Jan 1 00:18:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9ea59c796e7d71ce42d08c71713af274519bd663 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:2e:0a:93:24:ec:94:ab:90:71:fc:a3:84:a2: 95:7b:fa:7a:c3:b9:e2:ea:f0:80:c0:ab:c1:3f:97: fc:21:1f:53:7e:80:21:c3:3e:1d:c5:ce:fa:ad:ce: d1:a6:96:10:7c:be:6a:28:63:43:7d:7a:a9:04:3d: 48:df:49:73:06:bc:d8:8e:74:96:aa:cd:46:a0:dc: 8c:b6:fd:3c:58:0d:bf:c9:95:03:9f:b3:64:9b:9c: 28:35:56:84:3e:76:db:be:43:42:7a:c4:d1:b0:9a: 5a:96:35:4e:1b:c5:bc:04:a2:6e:a6:73:91:a9:40: a5:7d:94:44:f2:2a:16:4a:6f:cb:dd:b1:87:bb:c6: 14:3b:df:a6:39:2d:41:77:9d:98:8f:cb:58:59:03: a6:68:bc:af:9a:72:34:a1:ac:73:47:98:8e:8a:5a: 65:80:4c:3f:13:9f:8e:6b:78:a7:71:92:40:b2:f8: 89:32:dc:08:0f:ea:4d:5f:6c:3b:62:e6:fc:42:5b: 1f:64:2a:fc:39:0e:d2:48:f4:be:fa:17:7b:59:e6: 3a:5e:f2:c6:87:2c:d1:3b:61:13:d3:28:57:79:d6: 33:2e:8f:53:63:0e:9e:e5:3e:1c:39:c0:79:56:41: 38:3e:a9:3a:12:66:10:d6:cc:6f:f8:2b:1f:0e:2c: 2c:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:A5:9C:79:6E:7D:71:CE:42:D0:8C:71:71:3A:F2:74:51:9B:D6:63 X509v3 Authority Key Identifier: keyid:65:1B:AD:95:27:69:47:C7:BE:53:6A:F4:C8:70:A3:72:1F:0B:77:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZRutlSdpR8e-U2r0yHCjch8Ld2E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1dbd6b-35cc-4f09-b92e-198b6a61ce85/1/nqWceW59cc5C0IxxcTrydFGb1mM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1dbd6b-35cc-4f09-b92e-198b6a61ce85/1/ZRutlSdpR8e-U2r0yHCjch8Ld2E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.184.84.0-213.184.86.255 IPv6: 2a09:3a00:3000::/40 2a09:3a00:3a00::/40 2a09:3a00:4000::/40 Signature Algorithm: sha256WithRSAEncryption 9d:91:c1:c5:66:19:2a:47:a2:5a:e9:54:0d:ac:e0:84:71:4f: 44:ac:62:1c:57:0f:2d:8c:14:dd:db:93:8c:33:a0:b8:43:e8: f6:04:69:2e:9b:cd:7f:cc:f7:c5:36:db:f4:00:d4:d2:d0:19: a4:83:8e:4a:fb:9a:00:78:f1:bc:2c:3c:bb:17:57:c1:b7:1c: 9d:47:6a:c4:f1:f7:76:2d:a6:76:91:ee:ae:02:b6:2d:8b:8c: 19:d2:9b:8e:ce:03:5e:20:70:6b:5e:fa:7c:c3:a6:e7:98:07: 58:eb:30:bf:a0:c0:fa:e7:7f:84:4e:26:8f:ee:11:53:f6:71: 10:52:62:d0:ef:54:d0:95:72:cd:84:03:d8:ad:4f:bf:56:cb: 32:3c:9b:06:a1:95:cc:cc:fc:9d:83:b2:9c:a4:d5:99:3c:7b: 68:c3:40:3b:43:82:39:35:fb:bb:a5:cc:9d:c8:10:6e:11:9d: 87:b2:5a:63:33:3a:8a:31:bf:1b:54:7a:3a:7c:2d:cf:ad:a0: e9:66:4a:fa:a5:89:d9:0a:16:1c:c6:d4:f6:e5:5a:dc:df:81: 18:69:03:9e:bb:7c:5a:7e:10:2f:c8:8a:e4:30:2c:04:72:e2: eb:ca:93:49:1d:9b:f6:21:ac:d0:ec:e2:7d:0a:bf:44:47:83: dc:16:ef:1e -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgISAZt263VIfyhtrBk+8/x4krhQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY1MWJhZDk1Mjc2OTQ3YzdiZTUzNmFmNGM4NzBhMzcyMWYw Yjc3NjEwHhcNMjYwMTAxMDAxODIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZWE1OWM3OTZlN2Q3MWNlNDJkMDhjNzE3MTNhZjI3NDUxOWJkNjYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAui4KkyTslKuQcfyjhKKVe/p6w7ni 6vCAwKvBP5f8IR9TfoAhwz4dxc76rc7RppYQfL5qKGNDfXqpBD1I30lzBrzYjnSW qs1GoNyMtv08WA2/yZUDn7Nkm5woNVaEPnbbvkNCesTRsJpaljVOG8W8BKJupnOR qUClfZRE8ioWSm/L3bGHu8YUO9+mOS1Bd52Yj8tYWQOmaLyvmnI0oaxzR5iOilpl gEw/E5+Oa3incZJAsviJMtwID+pNX2w7Yub8QlsfZCr8OQ7SSPS++hd7WeY6XvLG hyzRO2ET0yhXedYzLo9TYw6e5T4cOcB5VkE4Pqk6EmYQ1sxv+CsfDiws8QIDAQAB o4ICMTCCAi0wHQYDVR0OBBYEFJ6lnHlufXHOQtCMcXE68nRRm9ZjMB8GA1UdIwQY MBaAFGUbrZUnaUfHvlNq9Mhwo3IfC3dhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWlJ1dGxTZHBSOGUtVTJyMHlIQ2pjaDhMZDJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC8xZGJkNmItMzVjYy00ZjA5LWI5MmUt MTk4YjZhNjFjZTg1LzEvbnFXY2VXNTljYzVDMEl4eGNUcnlkRkdiMW1NLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNC8xZGJkNmItMzVjYy00ZjA5LWI5MmUtMTk4YjZhNjFjZTg1 LzEvWlJ1dGxTZHBSOGUtVTJyMHlIQ2pjaDhMZDJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEcGCCsGAQUFBwEHAQH/BDgwNjAUBAIAATAOMAwDBALVuFQD BADVuFYwHgQCAAIwGAMGACoJOgAwAwYAKgk6ADoDBgAqCToAQDANBgkqhkiG9w0B AQsFAAOCAQEAnZHBxWYZKkeiWulUDazghHFPRKxiHFcPLYwU3duTjDOguEPo9gRp LpvNf8z3xTbb9ADU0tAZpIOOSvuaAHjxvCw8uxdXwbccnUdqxPH3di2mdpHurgK2 LYuMGdKbjs4DXiBwa176fMOm55gHWOswv6DA+ud/hE4mj+4RU/ZxEFJi0O9U0JVy zYQD2K1Pv1bLMjybBqGVzMz8nYOynKTVmTx7aMNAO0OCOTX7u6XMncgQbhGdh7Ja YzM6ijG/G1R6Onwtz62g6WZK+qWJ2QoWHMbU9uVa3N+BGGkDnrt8Wn4QL8iK5DAs BHLi68qTSR2b9iGs0OzifQq/REeD3BbvHg== -----END CERTIFICATE-----Generated at Mon Jan 26 05:30:47 2026 by rpki-client