This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/Nb39mwNEZbxg4TgrkhLbHeB2o-U.roa File: Nb39mwNEZbxg4TgrkhLbHeB2o-U.roa (raw, json) Hash identifier: BeiFqXFpAQnaZX8e6ivTaBopjCvbcRSWf3c0r/BtlQY= Subject key identifier: 35:BD:FD:9B:03:44:65:BC:60:E1:38:2B:92:12:DB:1D:E0:76:A3:E5 Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362 Certificate serial: 019B7C12F4E3EC2386F9BE2B7E4F5FC6B3C1 Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/Nb39mwNEZbxg4TgrkhLbHeB2o-U.roa Signing time: Fri 02 Jan 2026 00:19:35 +0000 ROA not before: Fri 02 Jan 2026 00:19:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209824 IP address blocks: 5.231.72.0/24 maxlen: 24 5.231.226.0/24 maxlen: 24 77.90.1.0/24 maxlen: 24 77.90.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.mft rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 14:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:f4:e3:ec:23:86:f9:be:2b:7e:4f:5f:c6:b3:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362 Validity Not Before: Jan 2 00:19:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=35bdfd9b034465bc60e1382b9212db1de076a3e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:7d:36:6a:99:74:3a:2e:7f:6a:2c:ef:ed:12: 48:9e:8f:c8:79:7e:6f:a5:b9:ca:94:1d:36:2b:0a: a0:d6:e1:13:ba:10:1e:33:9a:49:93:e4:6d:c8:28: c4:09:24:86:91:14:98:8e:a4:9c:24:f0:6a:5d:da: 5a:8f:d2:8b:64:2d:2e:85:fc:13:8d:4b:2b:88:c8: bf:37:df:46:0d:b5:78:38:e9:44:90:48:4c:1a:cf: 40:92:41:a5:d4:5e:e4:5c:e4:83:c7:d6:f3:df:d7: 3c:a5:a0:49:9d:80:47:56:97:1c:35:c2:15:66:60: 7d:90:c2:01:ad:cf:69:75:5a:93:ab:57:d5:df:e8: ad:a6:78:27:59:9a:08:2d:2e:4a:15:ad:bb:f7:d5: 7b:9d:c4:05:80:7d:31:07:4b:5a:07:34:03:ac:f9: 4b:49:23:74:9d:8e:67:fc:9d:3c:39:48:b5:19:82: b0:57:d2:85:02:dd:5a:3b:bc:c9:97:0b:ec:95:d3: c3:e4:66:21:c8:70:6f:30:b5:a3:3a:55:67:d0:2a: 9b:ea:06:72:ee:33:58:39:66:e5:95:c2:d9:ac:6d: c1:5f:0c:2c:e4:34:9b:5c:eb:b7:6d:c3:47:1b:70: 5e:83:00:63:b3:85:0f:90:1b:a4:c5:0b:3b:95:2d: 45:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:BD:FD:9B:03:44:65:BC:60:E1:38:2B:92:12:DB:1D:E0:76:A3:E5 X509v3 Authority Key Identifier: keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/Nb39mwNEZbxg4TgrkhLbHeB2o-U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.231.72.0/24 5.231.226.0/24 77.90.1.0/24 77.90.29.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:26:1f:f6:0a:7f:94:55:2a:f9:0b:bc:52:85:6f:33:b0:a3: 95:b5:e4:db:a5:35:e8:11:fd:92:2b:85:d8:53:09:e9:61:26: 7b:05:70:9d:31:fb:26:08:b9:ad:82:66:68:e1:4f:d3:7b:51: 93:9b:3e:47:4e:bc:3f:5b:fb:37:97:91:b5:60:6d:8f:38:3b: b1:18:cf:4c:6e:8f:85:fd:ba:d9:40:25:3d:8f:ea:14:94:9b: 0e:48:e0:35:22:64:80:37:2d:df:10:a5:02:9b:95:d3:c9:3b: 59:e4:3e:ff:21:20:6a:8d:e0:4b:e8:b2:39:92:49:27:8f:f4: 07:a1:f4:13:55:14:25:2e:2c:5d:5f:a7:1e:eb:19:d2:83:0b: 88:e7:d0:8b:91:3f:7c:70:ae:87:d1:ca:45:ca:f0:de:2f:0e: 2f:b9:d9:db:6c:28:4f:a3:69:65:90:e4:ce:59:6b:a6:46:ed: 84:e6:6c:fc:1b:b5:d7:e3:53:4b:02:7a:13:03:95:e7:28:ea: 3b:93:40:e8:36:0d:f3:2a:41:b7:b5:4a:85:68:a4:62:a0:11: ad:85:83:56:8b:9d:68:d9:58:46:49:f6:11:16:30:71:80:51: e2:52:93:0d:bc:d7:00:7b:0d:3f:6b:1c:7b:ba:66:1b:cd:00: d4:ab:ef:a3 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZt8EvTj7COG+b4rfk9fxrPBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5 YjIzNjIwHhcNMjYwMTAyMDAxOTM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNWJkZmQ5YjAzNDQ2NWJjNjBlMTM4MmI5MjEyZGIxZGUwNzZhM2U1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy302apl0Oi5/aizv7RJIno/IeX5v pbnKlB02Kwqg1uETuhAeM5pJk+RtyCjECSSGkRSYjqScJPBqXdpaj9KLZC0uhfwT jUsriMi/N99GDbV4OOlEkEhMGs9AkkGl1F7kXOSDx9bz39c8paBJnYBHVpccNcIV ZmB9kMIBrc9pdVqTq1fV3+itpngnWZoILS5KFa2799V7ncQFgH0xB0taBzQDrPlL SSN0nY5n/J08OUi1GYKwV9KFAt1aO7zJlwvsldPD5GYhyHBvMLWjOlVn0Cqb6gZy 7jNYOWbllcLZrG3BXwws5DSbXOu3bcNHG3BegwBjs4UPkBukxQs7lS1FAwIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFDW9/ZsDRGW8YOE4K5IS2x3gdqPlMB8GA1UdIwQY MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt ZTFiZDg4ZDNmZDA3LzEvTmIzOW13TkVaYnhnNFRncmtoTGJIZUIyby1VLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3 LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQABedIAwQA BefiAwQATVoBAwQATVodMA0GCSqGSIb3DQEBCwUAA4IBAQBdJh/2Cn+UVSr5C7xS hW8zsKOVteTbpTXoEf2SK4XYUwnpYSZ7BXCdMfsmCLmtgmZo4U/Te1GTmz5HTrw/ W/s3l5G1YG2PODuxGM9Mbo+F/brZQCU9j+oUlJsOSOA1ImSANy3fEKUCm5XTyTtZ 5D7/ISBqjeBL6LI5kkknj/QHofQTVRQlLixdX6ce6xnSgwuI59CLkT98cK6H0cpF yvDeLw4vudnbbChPo2llkOTOWWumRu2E5mz8G7XX41NLAnoTA5XnKOo7k0DoNg3z KkG3tUqFaKRioBGthYNWi51o2VhGSfYRFjBxgFHiUpMNvNcAew0/axx7umYbzQDU q++j -----END CERTIFICATE-----Generated at Mon Jan 19 19:56:38 2026 by rpki-client