This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/NtCQkS0nRMyYmPXVVv3j4fbZU0o.roa File: NtCQkS0nRMyYmPXVVv3j4fbZU0o.roa (raw, json) Hash identifier: HVZ4FPE3bmYJqr8Im2V21nkeAhROy8j6hqO0e4TzZJo= Subject key identifier: 36:D0:90:91:2D:27:44:CC:98:98:F5:D5:56:FD:E3:E1:F6:D9:53:4A Certificate issuer: /CN=0c90c356e2864f43894857443555d8b5c0352819 Certificate serial: 019B7A5B0B92DC5C83CD68F83C3FDD9EC8F6 Authority key identifier: 0C:90:C3:56:E2:86:4F:43:89:48:57:44:35:55:D8:B5:C0:35:28:19 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DJDDVuKGT0OJSFdENVXYtcA1KBk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/NtCQkS0nRMyYmPXVVv3j4fbZU0o.roa Signing time: Thu 01 Jan 2026 16:19:05 +0000 ROA not before: Thu 01 Jan 2026 16:19:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197834 IP address blocks: 109.75.32.0/23 maxlen: 24 176.32.192.0/21 maxlen: 21 176.32.192.0/23 maxlen: 24 176.32.192.236/32 maxlen: 32 176.32.194.0/23 maxlen: 24 176.32.195.0/24 maxlen: 24 176.32.196.0/23 maxlen: 24 176.32.198.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/DJDDVuKGT0OJSFdENVXYtcA1KBk.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/DJDDVuKGT0OJSFdENVXYtcA1KBk.mft rsync://rpki.ripe.net/repository/DEFAULT/DJDDVuKGT0OJSFdENVXYtcA1KBk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:0b:92:dc:5c:83:cd:68:f8:3c:3f:dd:9e:c8:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0c90c356e2864f43894857443555d8b5c0352819 Validity Not Before: Jan 1 16:19:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=36d090912d2744cc9898f5d556fde3e1f6d9534a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ab:d7:94:93:c1:2f:64:b5:4d:55:3b:b5:19: 48:6d:ea:a9:f9:19:b2:be:7c:5b:86:35:12:c9:b7: 8c:6a:32:a5:1d:68:c8:38:0f:2b:8c:af:bd:bb:43: ed:4b:f7:e7:be:85:f2:2a:3a:7e:c5:f2:20:d1:92: fc:7a:b1:66:29:fc:16:ab:55:c6:01:5c:35:6e:37: 7a:cc:ea:22:9b:16:1d:17:8c:82:99:37:ea:c0:b0: 7c:63:d4:c9:59:d2:cd:66:01:39:90:2d:ce:d2:c3: d1:bb:9d:47:1f:13:20:4f:0b:9b:55:0f:2a:87:b6: aa:ac:ff:ef:51:e6:a1:0f:f2:0c:58:1c:4b:8a:3b: 2c:00:27:13:89:96:73:c1:66:1d:5a:4c:19:b4:7d: 6c:6b:74:43:9c:c7:3e:ce:7b:2c:34:f8:1f:91:64: fc:a4:3c:7e:4c:94:00:76:22:b0:e9:54:8a:59:08: 11:07:03:3e:6e:3f:d8:ee:a0:d4:6c:46:88:b9:32: ec:e7:75:d6:25:7c:05:0e:48:bc:f9:9c:e4:ca:0f: f1:02:e7:ac:45:56:d5:3e:60:0c:a1:65:58:0e:19: 2f:a8:d8:87:fc:01:9e:f1:98:83:d1:51:ee:f2:15: 77:a0:b1:c4:d9:28:d2:35:45:77:43:35:6d:d6:86: e7:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:D0:90:91:2D:27:44:CC:98:98:F5:D5:56:FD:E3:E1:F6:D9:53:4A X509v3 Authority Key Identifier: keyid:0C:90:C3:56:E2:86:4F:43:89:48:57:44:35:55:D8:B5:C0:35:28:19 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DJDDVuKGT0OJSFdENVXYtcA1KBk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/NtCQkS0nRMyYmPXVVv3j4fbZU0o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/DJDDVuKGT0OJSFdENVXYtcA1KBk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.75.32.0/23 176.32.192.0/21 Signature Algorithm: sha256WithRSAEncryption 64:2f:27:e9:a7:70:d1:3b:2e:4a:72:96:e4:53:23:57:f9:9a: 4b:b7:cc:c8:d9:23:ec:a5:27:72:53:08:52:1e:e2:f3:d0:12: ac:63:c0:f7:e4:1a:48:2d:b6:54:99:36:65:25:05:79:6a:26: fb:43:d2:3d:e5:e1:bf:db:fd:1e:c8:ad:15:f1:81:f4:f3:c9: a2:20:66:f7:2c:36:8e:8a:50:61:f3:80:f5:7b:17:ce:6e:3a: 26:f9:2d:32:af:4b:5b:50:d9:98:88:06:2a:0b:6d:f9:d9:fb: ca:3e:64:e0:7b:f7:cd:59:44:e8:cf:f2:7b:f1:99:e8:bf:3f: ad:b0:69:1d:58:a9:e5:a1:8c:53:49:58:ad:8a:29:18:a8:5b: 76:22:c6:f6:71:c3:ed:53:45:93:f7:95:f5:ef:5f:f4:4a:48: a8:8a:9c:30:aa:e3:df:87:1e:cd:89:b1:97:96:4f:dc:4e:c6: 00:23:38:07:3e:02:d9:5a:ba:40:30:72:39:d9:7d:ee:a1:63: c8:cd:29:54:bb:12:84:ea:bd:ee:d5:15:e5:ac:7f:28:28:2c: c0:79:ae:07:c9:f4:a7:62:56:d5:68:9c:4a:98:04:df:09:6c: ae:3d:29:06:ce:c3:d5:91:3a:ab:c1:40:7b:4b:f9:97:f0:85: cf:65:3e:4f -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6WwuS3FyDzWj4PD/dnsj2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjOTBjMzU2ZTI4NjRmNDM4OTQ4NTc0NDM1NTVkOGI1YzAz NTI4MTkwHhcNMjYwMTAxMTYxOTA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNmQwOTA5MTJkMjc0NGNjOTg5OGY1ZDU1NmZkZTNlMWY2ZDk1MzRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqavXlJPBL2S1TVU7tRlIbeqp+Rmy vnxbhjUSybeMajKlHWjIOA8rjK+9u0PtS/fnvoXyKjp+xfIg0ZL8erFmKfwWq1XG AVw1bjd6zOoimxYdF4yCmTfqwLB8Y9TJWdLNZgE5kC3O0sPRu51HHxMgTwubVQ8q h7aqrP/vUeahD/IMWBxLijssACcTiZZzwWYdWkwZtH1sa3RDnMc+znssNPgfkWT8 pDx+TJQAdiKw6VSKWQgRBwM+bj/Y7qDUbEaIuTLs53XWJXwFDki8+Zzkyg/xAues RVbVPmAMoWVYDhkvqNiH/AGe8ZiD0VHu8hV3oLHE2SjSNUV3QzVt1obn/QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFDbQkJEtJ0TMmJj11Vb94+H22VNKMB8GA1UdIwQY MBaAFAyQw1bihk9DiUhXRDVV2LXANSgZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvREpERFZ1S0dUME9KU0ZkRU5WWFl0Y0ExS0JrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9hYzVhNTYtMTYzYS00OTdhLTk1NDct ZTM3OTlhZGU5ZGZlLzEvTnRDUWtTMG5STXlZbVBYVlZ2M2o0ZmJaVTBvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9hYzVhNTYtMTYzYS00OTdhLTk1NDctZTM3OTlhZGU5ZGZl LzEvREpERFZ1S0dUME9KU0ZkRU5WWFl0Y0ExS0JrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBbUsgAwQD sCDAMA0GCSqGSIb3DQEBCwUAA4IBAQBkLyfpp3DROy5KcpbkUyNX+ZpLt8zI2SPs pSdyUwhSHuLz0BKsY8D35BpILbZUmTZlJQV5aib7Q9I95eG/2/0eyK0V8YH088mi IGb3LDaOilBh84D1exfObjom+S0yr0tbUNmYiAYqC2352fvKPmTge/fNWUToz/J7 8Znovz+tsGkdWKnloYxTSVitiikYqFt2Isb2ccPtU0WT95X171/0SkioipwwquPf hx7NibGXlk/cTsYAIzgHPgLZWrpAMHI52X3uoWPIzSlUuxKE6r3u1RXlrH8oKCzA ea4HyfSnYlbVaJxKmATfCWyuPSkGzsPVkTqrwUB7S/mX8IXPZT5P -----END CERTIFICATE-----Generated at Sun Jan 25 23:03:51 2026 by rpki-client