This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/578788-250f-47f2-bd3e-272ccc17dfea/1/Nqvx372xUmimo9ZdUTyVh5yr2QM.roa File: Nqvx372xUmimo9ZdUTyVh5yr2QM.roa (raw, json) Hash identifier: 9UD1Q1TZiTOZORrcHimyQBc+ib1NndvdcOScKV3bLr4= Subject key identifier: 36:AB:F1:DF:BD:B1:52:68:A6:A3:D6:5D:51:3C:95:87:9C:AB:D9:03 Certificate issuer: /CN=b710b9be1e2db37482e1f8f25b35fda5380d32c6 Certificate serial: 019B797EEF435109A57B06005A65185BC28A Authority key identifier: B7:10:B9:BE:1E:2D:B3:74:82:E1:F8:F2:5B:35:FD:A5:38:0D:32:C6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/txC5vh4ts3SC4fjyWzX9pTgNMsY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/578788-250f-47f2-bd3e-272ccc17dfea/1/Nqvx372xUmimo9ZdUTyVh5yr2QM.roa Signing time: Thu 01 Jan 2026 12:18:40 +0000 ROA not before: Thu 01 Jan 2026 12:18:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206516 IP address blocks: 185.184.96.0/22 maxlen: 24 185.184.96.0/23 maxlen: 24 185.184.98.0/23 maxlen: 24 2a0b:3080::/32 maxlen: 32 2a0b:3080:10::/44 maxlen: 44 2a0b:3080:8010::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/578788-250f-47f2-bd3e-272ccc17dfea/1/txC5vh4ts3SC4fjyWzX9pTgNMsY.crl rsync://rpki.ripe.net/repository/DEFAULT/db/578788-250f-47f2-bd3e-272ccc17dfea/1/txC5vh4ts3SC4fjyWzX9pTgNMsY.mft rsync://rpki.ripe.net/repository/DEFAULT/txC5vh4ts3SC4fjyWzX9pTgNMsY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 14 Jan 2026 01:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:ef:43:51:09:a5:7b:06:00:5a:65:18:5b:c2:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b710b9be1e2db37482e1f8f25b35fda5380d32c6 Validity Not Before: Jan 1 12:18:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=36abf1dfbdb15268a6a3d65d513c95879cabd903 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d4:2c:b4:8a:75:c6:97:41:8d:92:f4:e5:cd: 29:5f:8c:52:c5:32:cb:a8:20:31:b4:38:8e:94:74: ac:62:36:55:be:75:cf:00:5e:5f:89:04:b5:3b:9c: b5:3b:fa:ac:ae:58:84:65:6d:df:3a:e4:53:c1:2c: cc:56:4a:57:34:8e:71:78:a7:3d:e7:7b:86:b4:fa: bc:1c:fa:93:34:3a:69:37:4e:be:41:db:96:ef:96: 31:80:d2:f8:49:23:f7:61:c6:5e:2f:1e:07:fd:ad: d6:ca:95:41:48:6a:e8:c2:95:9a:be:5b:77:35:9a: 0f:37:a3:53:78:2f:2b:c6:20:a7:bc:7e:09:11:12: 95:06:ae:f5:07:74:00:47:12:d7:05:2e:b8:e0:f1: e7:a9:78:51:26:74:64:12:64:4d:8e:0c:33:de:ef: 38:2b:62:f5:de:62:81:73:eb:d0:30:86:ae:3c:37: e0:44:46:48:7b:0f:f0:28:8a:57:71:a2:2d:eb:eb: b0:d3:79:02:48:4c:cd:e5:e2:93:75:ec:26:53:50: 7d:7e:d3:b2:74:08:16:6e:c4:ba:6a:a9:1d:e0:d8: 61:a4:49:f3:32:93:7a:e4:f9:97:bb:79:49:10:2c: ec:47:af:9b:2d:3e:ed:ce:fc:54:aa:21:4a:ee:39: bd:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:AB:F1:DF:BD:B1:52:68:A6:A3:D6:5D:51:3C:95:87:9C:AB:D9:03 X509v3 Authority Key Identifier: keyid:B7:10:B9:BE:1E:2D:B3:74:82:E1:F8:F2:5B:35:FD:A5:38:0D:32:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/txC5vh4ts3SC4fjyWzX9pTgNMsY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/578788-250f-47f2-bd3e-272ccc17dfea/1/Nqvx372xUmimo9ZdUTyVh5yr2QM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/578788-250f-47f2-bd3e-272ccc17dfea/1/txC5vh4ts3SC4fjyWzX9pTgNMsY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.184.96.0/22 IPv6: 2a0b:3080::/32 Signature Algorithm: sha256WithRSAEncryption e8:2e:59:f7:28:a3:29:37:0b:66:1a:06:99:b1:3e:0d:91:25: e8:2f:18:1a:7c:b1:cd:0f:85:3e:5b:be:56:4c:84:9c:a7:b8: ad:8a:7f:c2:34:0c:92:63:c8:1f:9c:88:37:84:72:7e:b6:98: c2:a1:9d:e3:32:c3:07:4e:9b:db:42:7c:3e:9f:d6:55:3b:dc: 92:a3:0a:1f:16:94:3f:03:06:bd:bf:71:f7:5a:e2:7e:55:7e: a7:4e:c1:27:b5:2b:14:c8:f1:d1:dc:a8:06:d0:ba:d7:c5:77: 44:8f:74:1f:32:34:f2:13:fa:31:93:92:2c:01:f8:d6:2e:1b: 8d:11:29:60:99:0d:d1:b3:1c:41:73:c3:9e:70:d7:f4:d2:ce: a2:ae:b1:cc:3c:be:dd:ce:6c:ed:3a:c1:d3:e6:25:dc:1a:c3: bf:c9:c8:16:f2:4b:79:11:5e:cb:1d:9c:08:06:bc:73:fc:9b: 5f:ec:b7:fa:5c:7b:3a:94:48:75:e4:8c:86:4f:72:db:1f:f2: 95:8c:92:98:02:73:6b:84:32:c4:40:d1:de:05:5b:6c:f7:08: 22:7f:28:c6:6d:49:54:68:6a:0c:dd:91:e0:8e:a3:41:69:e6: 3c:9c:e1:ef:c2:08:b0:c9:6c:e8:3b:c8:14:e3:81:d2:40:b9: 04:5f:7c:f2 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5fu9DUQmlewYAWmUYW8KKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3MTBiOWJlMWUyZGIzNzQ4MmUxZjhmMjViMzVmZGE1Mzgw ZDMyYzYwHhcNMjYwMTAxMTIxODQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNmFiZjFkZmJkYjE1MjY4YTZhM2Q2NWQ1MTNjOTU4NzljYWJkOTAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzNQstIp1xpdBjZL05c0pX4xSxTLL qCAxtDiOlHSsYjZVvnXPAF5fiQS1O5y1O/qsrliEZW3fOuRTwSzMVkpXNI5xeKc9 53uGtPq8HPqTNDppN06+QduW75YxgNL4SSP3YcZeLx4H/a3WypVBSGrowpWavlt3 NZoPN6NTeC8rxiCnvH4JERKVBq71B3QARxLXBS644PHnqXhRJnRkEmRNjgwz3u84 K2L13mKBc+vQMIauPDfgREZIew/wKIpXcaIt6+uw03kCSEzN5eKTdewmU1B9ftOy dAgWbsS6aqkd4NhhpEnzMpN65PmXu3lJECzsR6+bLT7tzvxUqiFK7jm9HwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFDar8d+9sVJopqPWXVE8lYecq9kDMB8GA1UdIwQY MBaAFLcQub4eLbN0guH48ls1/aU4DTLGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdHhDNXZoNHRzM1NDNGZqeVd6WDlwVGdOTXNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi81Nzg3ODgtMjUwZi00N2YyLWJkM2Ut MjcyY2NjMTdkZmVhLzEvTnF2eDM3MnhVbWltbzlaZFVUeVZoNXlyMlFNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi81Nzg3ODgtMjUwZi00N2YyLWJkM2UtMjcyY2NjMTdkZmVh LzEvdHhDNXZoNHRzM1NDNGZqeVd6WDlwVGdOTXNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCubhgMA0E AgACMAcDBQAqCzCAMA0GCSqGSIb3DQEBCwUAA4IBAQDoLln3KKMpNwtmGgaZsT4N kSXoLxgafLHND4U+W75WTIScp7itin/CNAySY8gfnIg3hHJ+tpjCoZ3jMsMHTpvb Qnw+n9ZVO9ySowofFpQ/Awa9v3H3WuJ+VX6nTsEntSsUyPHR3KgG0LrXxXdEj3Qf MjTyE/oxk5IsAfjWLhuNESlgmQ3RsxxBc8OecNf00s6irrHMPL7dzmztOsHT5iXc GsO/ycgW8kt5EV7LHZwIBrxz/Jtf7Lf6XHs6lEh15IyGT3LbH/KVjJKYAnNrhDLE QNHeBVts9wgifyjGbUlUaGoM3ZHgjqNBaeY8nOHvwgiwyWzoO8gU44HSQLkEX3zy -----END CERTIFICATE-----Generated at Tue Jan 13 06:19:44 2026 by rpki-client