This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/4b6cc9-09d3-4678-b0a7-950c180596d0/1/Nx1ZmF0LLUBVNb7pg5SUQFqkEEo.roa File: Nx1ZmF0LLUBVNb7pg5SUQFqkEEo.roa (raw, json) Hash identifier: 7h8Dusgv5GisCOAGKVB6gWNCmRgBLzLbZbpY03tENm0= Subject key identifier: 37:1D:59:98:5D:0B:2D:40:55:35:BE:E9:83:94:94:40:5A:A4:10:4A Certificate issuer: /CN=ab882cd6d196ae1f96872acae78321be7a92b8eb Certificate serial: 019B7D5D07384FB9050ED9308F56539043B2 Authority key identifier: AB:88:2C:D6:D1:96:AE:1F:96:87:2A:CA:E7:83:21:BE:7A:92:B8:EB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q4gs1tGWrh-WhyrK54MhvnqSuOs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/4b6cc9-09d3-4678-b0a7-950c180596d0/1/Nx1ZmF0LLUBVNb7pg5SUQFqkEEo.roa Signing time: Fri 02 Jan 2026 06:20:07 +0000 ROA not before: Fri 02 Jan 2026 06:20:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12406 IP address blocks: 194.158.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/4b6cc9-09d3-4678-b0a7-950c180596d0/1/q4gs1tGWrh-WhyrK54MhvnqSuOs.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/4b6cc9-09d3-4678-b0a7-950c180596d0/1/q4gs1tGWrh-WhyrK54MhvnqSuOs.mft rsync://rpki.ripe.net/repository/DEFAULT/q4gs1tGWrh-WhyrK54MhvnqSuOs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:07:38:4f:b9:05:0e:d9:30:8f:56:53:90:43:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab882cd6d196ae1f96872acae78321be7a92b8eb Validity Not Before: Jan 2 06:20:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=371d59985d0b2d405535bee9839494405aa4104a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:24:71:8e:85:c9:27:94:c1:b5:1e:46:27:90: 10:2b:0e:31:87:ba:93:7b:b3:74:08:57:1f:f2:97: 80:83:cc:c1:b9:f5:1f:74:31:b1:87:61:b5:77:02: f9:34:83:ff:03:6f:6f:7f:cc:f6:79:76:68:e7:5e: bc:c6:cd:06:55:ce:b2:35:ff:8f:fa:32:d1:36:84: 19:ac:7f:2e:b1:16:b2:be:c8:a1:b9:75:38:ae:46: 85:fd:82:cd:2c:31:14:75:c7:c9:17:61:f6:22:41: bf:a8:e4:72:d0:58:8e:e2:c4:c6:b5:93:ab:12:3c: cb:46:c5:42:c9:5a:e3:40:f0:02:73:72:98:67:e0: 08:53:04:5a:11:e1:cd:9d:df:b7:8b:9c:71:0d:8f: 43:e3:df:4e:cd:47:c2:a5:99:43:96:f6:2a:ff:22: ad:72:b8:ca:d7:d3:d5:7c:ff:b3:77:0e:75:2f:93: ba:a7:3a:d8:de:3f:f3:6f:1f:ee:7d:ee:df:c9:34: 7e:04:e2:31:d7:b8:9c:38:90:95:1f:44:a7:12:d9: 08:69:ed:79:ec:92:c2:19:a5:3e:ab:f8:9f:5f:56: 50:17:e9:76:e5:9b:09:25:82:4e:2b:b1:63:d8:10: 37:7e:b7:a8:3f:cf:71:c8:f9:f8:d4:d5:0a:64:c2: 80:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:1D:59:98:5D:0B:2D:40:55:35:BE:E9:83:94:94:40:5A:A4:10:4A X509v3 Authority Key Identifier: keyid:AB:88:2C:D6:D1:96:AE:1F:96:87:2A:CA:E7:83:21:BE:7A:92:B8:EB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q4gs1tGWrh-WhyrK54MhvnqSuOs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4b6cc9-09d3-4678-b0a7-950c180596d0/1/Nx1ZmF0LLUBVNb7pg5SUQFqkEEo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4b6cc9-09d3-4678-b0a7-950c180596d0/1/q4gs1tGWrh-WhyrK54MhvnqSuOs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.158.192.0/19 Signature Algorithm: sha256WithRSAEncryption 60:55:2a:be:bd:07:a3:79:f3:ba:48:d8:32:72:9d:31:af:a2: 45:6a:dc:4d:9b:0c:d5:97:3b:39:a6:ad:38:09:58:74:5d:32: dd:44:d1:e8:1a:fc:74:3a:f6:cf:ed:41:d9:4e:1d:20:8e:45: dd:ef:07:83:eb:68:00:1c:e9:0f:28:1d:a5:13:a4:8c:f1:51: 3a:d0:4d:24:a5:19:cc:ce:00:3e:62:7d:a2:d0:50:9b:8b:a8: e9:00:44:c8:fe:a8:cb:2c:6b:15:ac:e8:ce:b1:b6:14:61:ce: ae:73:a1:b1:78:67:9b:eb:8e:e1:2c:32:a1:cf:66:ac:d0:d6: e3:9e:c7:8a:65:ed:ae:9a:be:14:78:b4:b9:f6:46:95:53:ae: db:c4:f2:ff:e6:b5:b9:90:61:d3:fb:86:ce:4d:73:02:56:56: 0e:23:4e:6b:98:26:e5:24:06:c2:19:83:df:a3:2f:0b:74:3f: c3:17:e1:90:8f:eb:34:87:ee:76:1e:ea:98:ff:37:70:d7:4b: 43:98:29:96:ac:b6:2b:81:e3:bd:76:2d:b8:01:c9:72:c3:20: 07:71:0b:cb:9c:54:7b:2e:a2:98:67:e3:e9:80:ba:83:ce:cb: 14:2d:68:15:b5:c3:6e:59:3f:15:61:a5:07:9c:99:a4:37:44: 8f:e4:b7:5b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XQc4T7kFDtkwj1ZTkEOyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiODgyY2Q2ZDE5NmFlMWY5Njg3MmFjYWU3ODMyMWJlN2E5 MmI4ZWIwHhcNMjYwMTAyMDYyMDA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNzFkNTk5ODVkMGIyZDQwNTUzNWJlZTk4Mzk0OTQ0MDVhYTQxMDRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsiRxjoXJJ5TBtR5GJ5AQKw4xh7qT e7N0CFcf8peAg8zBufUfdDGxh2G1dwL5NIP/A29vf8z2eXZo5168xs0GVc6yNf+P +jLRNoQZrH8usRayvsihuXU4rkaF/YLNLDEUdcfJF2H2IkG/qORy0FiO4sTGtZOr EjzLRsVCyVrjQPACc3KYZ+AIUwRaEeHNnd+3i5xxDY9D499OzUfCpZlDlvYq/yKt crjK19PVfP+zdw51L5O6pzrY3j/zbx/ufe7fyTR+BOIx17icOJCVH0SnEtkIae15 7JLCGaU+q/ifX1ZQF+l25ZsJJYJOK7Fj2BA3freoP89xyPn41NUKZMKABwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDcdWZhdCy1AVTW+6YOUlEBapBBKMB8GA1UdIwQY MBaAFKuILNbRlq4flocqyueDIb56krjrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcTRnczF0R1dyaC1XaHlySzU0TWh2bnFTdU9zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS80YjZjYzktMDlkMy00Njc4LWIwYTct OTUwYzE4MDU5NmQwLzEvTngxWm1GMExMVUJWTmI3cGc1U1VRRnFrRUVvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS80YjZjYzktMDlkMy00Njc4LWIwYTctOTUwYzE4MDU5NmQw LzEvcTRnczF0R1dyaC1XaHlySzU0TWh2bnFTdU9zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFwp7AMA0G CSqGSIb3DQEBCwUAA4IBAQBgVSq+vQejefO6SNgycp0xr6JFatxNmwzVlzs5pq04 CVh0XTLdRNHoGvx0OvbP7UHZTh0gjkXd7weD62gAHOkPKB2lE6SM8VE60E0kpRnM zgA+Yn2i0FCbi6jpAETI/qjLLGsVrOjOsbYUYc6uc6GxeGeb647hLDKhz2as0Nbj nseKZe2umr4UeLS59kaVU67bxPL/5rW5kGHT+4bOTXMCVlYOI05rmCblJAbCGYPf oy8LdD/DF+GQj+s0h+52HuqY/zdw10tDmCmWrLYrgeO9di24AclywyAHcQvLnFR7 LqKYZ+PpgLqDzssULWgVtcNuWT8VYaUHnJmkN0SP5Ldb -----END CERTIFICATE-----Generated at Mon Jan 26 08:58:48 2026 by rpki-client