This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/rNgtQUU4FJS-NXtCfEBbYLqqB6M.roa File: rNgtQUU4FJS-NXtCfEBbYLqqB6M.roa (raw, json) Hash identifier: ozXyhtk04CzUsLXHL06VjZAPshGxIe2AD7PuP1KbWqc= Subject key identifier: AC:D8:2D:41:45:38:14:94:BE:35:7B:42:7C:40:5B:60:BA:AA:07:A3 Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa Certificate serial: 019B7D5B13C01EEF33EEFAEFBFFBB37FE3DC Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/rNgtQUU4FJS-NXtCfEBbYLqqB6M.roa Signing time: Fri 02 Jan 2026 06:17:59 +0000 ROA not before: Fri 02 Jan 2026 06:17:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59989 IP address blocks: 94.72.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.mft rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:13:c0:1e:ef:33:ee:fa:ef:bf:fb:b3:7f:e3:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa Validity Not Before: Jan 2 06:17:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=acd82d4145381494be357b427c405b60baaa07a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:2c:22:d5:ac:15:61:6c:f2:a8:e8:2b:10:84: 31:32:2a:6d:c0:fc:85:15:d6:30:28:4e:7f:df:2f: 6c:c9:c2:bc:f8:54:3d:bb:63:a3:21:fc:84:fe:c7: 4b:2c:94:2c:04:68:92:db:25:14:5a:af:63:4f:4b: 57:2d:46:7d:d5:8e:36:a4:d4:ae:42:72:71:64:44: 85:34:e2:a2:df:e2:df:91:0e:90:60:5b:21:f6:43: 43:ad:41:80:36:6e:14:c0:c2:ad:66:37:d9:59:cc: 9a:0e:d2:89:93:5f:81:86:4e:98:9d:32:0e:78:08: 32:06:be:69:be:f1:47:01:92:c2:46:21:01:24:1e: 69:2e:57:86:80:4d:00:2e:cf:a6:17:1c:75:41:c7: d6:d9:58:d3:51:d4:2b:ab:d0:60:59:d7:54:2a:e8: 2c:55:59:e7:d8:ec:e4:1a:e8:47:43:6a:66:c8:a8: 86:9e:cf:39:7a:c4:00:f8:af:96:9e:53:37:6b:5b: 0c:29:76:0a:97:27:d5:38:f5:cb:81:be:83:82:10: 18:af:dc:79:35:e7:fb:1c:bc:89:94:c8:8b:e3:06: c1:4b:53:4c:7a:65:47:e6:39:09:ef:1c:ba:42:f9: 40:f8:4a:96:0b:f5:f9:4d:ca:7d:e1:6b:26:24:91: c6:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:D8:2D:41:45:38:14:94:BE:35:7B:42:7C:40:5B:60:BA:AA:07:A3 X509v3 Authority Key Identifier: keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/rNgtQUU4FJS-NXtCfEBbYLqqB6M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.72.152.0/22 Signature Algorithm: sha256WithRSAEncryption 82:45:c5:19:de:3e:68:fa:ed:22:f9:b1:6b:d6:65:cf:fc:bd: 17:d8:21:81:c1:20:8c:20:07:17:d0:ef:2c:3a:f5:05:9c:2b: 1e:f1:27:f6:5f:93:7a:65:c5:c5:d3:37:2f:c3:64:a6:4b:fc: 26:5b:6c:a3:05:1a:75:6d:69:ba:90:bf:6b:53:77:fa:4d:bb: 20:26:09:62:56:f1:dd:bf:cf:8a:d3:83:30:15:ba:ea:77:de: 2d:c1:69:29:39:a5:d6:93:20:0b:53:22:b7:91:01:32:10:0b: ff:df:b3:f6:4a:7e:c5:c7:3d:8f:c4:6e:e3:0b:46:7f:e5:14: 7b:f5:44:4b:c0:c1:27:9f:6d:48:d4:87:c7:c4:92:b2:43:12: 2b:f7:14:b0:81:92:d4:3b:02:36:01:10:83:69:fe:cf:8f:56: b6:fe:d7:10:ea:35:12:c3:86:58:5e:ee:c2:3a:e6:c7:33:39: 3a:f7:e9:f7:a3:8e:5a:25:54:fb:54:4f:24:1d:fe:77:ba:22: b0:87:f5:ce:52:81:1d:c8:03:29:1d:16:9c:36:03:9e:7e:c9: 6d:38:c1:e6:be:b1:ab:cd:44:bf:76:55:c1:3b:7d:30:d0:01: 22:b2:48:77:0f:c2:42:9c:46:b0:34:71:b5:2e:43:bc:23:5c: e0:f2:c4:87 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9WxPAHu8z7vrvv/uzf+PcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMzNWVhYzY0ZWE0ODAyZTY4MjQ2ODZmN2MwZDIwMWYyYzg1 Y2IyYWEwHhcNMjYwMTAyMDYxNzU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhY2Q4MmQ0MTQ1MzgxNDk0YmUzNTdiNDI3YzQwNWI2MGJhYWEwN2EzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3iwi1awVYWzyqOgrEIQxMiptwPyF FdYwKE5/3y9sycK8+FQ9u2OjIfyE/sdLLJQsBGiS2yUUWq9jT0tXLUZ91Y42pNSu QnJxZESFNOKi3+LfkQ6QYFsh9kNDrUGANm4UwMKtZjfZWcyaDtKJk1+Bhk6YnTIO eAgyBr5pvvFHAZLCRiEBJB5pLleGgE0ALs+mFxx1QcfW2VjTUdQrq9BgWddUKugs VVnn2OzkGuhHQ2pmyKiGns85esQA+K+WnlM3a1sMKXYKlyfVOPXLgb6DghAYr9x5 Nef7HLyJlMiL4wbBS1NMemVH5jkJ7xy6QvlA+EqWC/X5Tcp94WsmJJHG1QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKzYLUFFOBSUvjV7QnxAW2C6qgejMB8GA1UdIwQY MBaAFMNerGTqSALmgkaG98DSAfLIXLKqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdzE2c1pPcElBdWFDUm9iM3dOSUI4c2hjc3FvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9jY2RkOGItNzcyMC00ZGUwLThjNDMt ZGFjYjVmMzU2ZWEzLzEvck5ndFFVVTRGSlMtTlh0Q2ZFQmJZTHFxQjZNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy9jY2RkOGItNzcyMC00ZGUwLThjNDMtZGFjYjVmMzU2ZWEz LzEvdzE2c1pPcElBdWFDUm9iM3dOSUI4c2hjc3FvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCXkiYMA0G CSqGSIb3DQEBCwUAA4IBAQCCRcUZ3j5o+u0i+bFr1mXP/L0X2CGBwSCMIAcX0O8s OvUFnCse8Sf2X5N6ZcXF0zcvw2SmS/wmW2yjBRp1bWm6kL9rU3f6TbsgJgliVvHd v8+K04MwFbrqd94twWkpOaXWkyALUyK3kQEyEAv/37P2Sn7Fxz2PxG7jC0Z/5RR7 9URLwMEnn21I1IfHxJKyQxIr9xSwgZLUOwI2ARCDaf7Pj1a2/tcQ6jUSw4ZYXu7C OubHMzk69+n3o45aJVT7VE8kHf53uiKwh/XOUoEdyAMpHRacNgOefsltOMHmvrGr zUS/dlXBO30w0AEiskh3D8JCnEawNHG1LkO8I1zg8sSH -----END CERTIFICATE-----Generated at Fri Jan 23 18:47:51 2026 by rpki-client