This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/NBGlz4BOwm_Rb4kwh-h4UA65oDk.roa File: NBGlz4BOwm_Rb4kwh-h4UA65oDk.roa (raw, json) Hash identifier: Ugv5nwQuiMqwOwqv6jAyXgwzxe6xlFAAFYW63xYA81c= Subject key identifier: 34:11:A5:CF:80:4E:C2:6F:D1:6F:89:30:87:E8:78:50:0E:B9:A0:39 Certificate issuer: /CN=06c746cd7d4df95a6d03ca9554a754760d5e4e06 Certificate serial: 019B797F0073160CA38481A1B1B9D9D41050 Authority key identifier: 06:C7:46:CD:7D:4D:F9:5A:6D:03:CA:95:54:A7:54:76:0D:5E:4E:06 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BsdGzX1N-VptA8qVVKdUdg1eTgY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/NBGlz4BOwm_Rb4kwh-h4UA65oDk.roa Signing time: Thu 01 Jan 2026 12:18:44 +0000 ROA not before: Thu 01 Jan 2026 12:18:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199544 IP address blocks: 91.239.255.0/24 maxlen: 24 185.14.240.0/24 maxlen: 24 185.14.241.0/24 maxlen: 24 185.14.243.0/24 maxlen: 24 2001:67c:3c::/48 maxlen: 48 2a03:7ec0:57f::/48 maxlen: 48 2a03:7ec0:2424::/48 maxlen: 48 2a03:7ec0:3000::/40 maxlen: 48 2a03:7ec0:3100::/40 maxlen: 48 2a03:7ec0:3100::/48 maxlen: 48 2a03:7ec0:3131::/48 maxlen: 48 2a03:7ec0:31ff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.crl rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft rsync://rpki.ripe.net/repository/DEFAULT/BsdGzX1N-VptA8qVVKdUdg1eTgY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:00:73:16:0c:a3:84:81:a1:b1:b9:d9:d4:10:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06c746cd7d4df95a6d03ca9554a754760d5e4e06 Validity Not Before: Jan 1 12:18:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3411a5cf804ec26fd16f893087e878500eb9a039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:dd:1d:68:8b:dd:48:b7:06:2c:60:4b:2d:63: 34:14:45:f0:1e:e5:d2:c5:68:85:b8:2b:46:10:19: 94:8b:54:08:2d:d5:68:d7:8f:17:0f:d7:88:e5:31: 04:66:b3:bf:40:bc:74:5d:eb:b5:94:4f:09:ee:0e: ea:a8:30:9e:3b:84:37:14:33:4e:8c:3d:3d:96:e3: 22:93:0d:58:ee:ff:10:e1:b8:fd:e3:af:d9:e1:58: ab:53:ff:1d:74:c2:17:3b:2e:be:e2:72:82:1b:3b: 6e:29:60:71:cd:88:19:b9:69:6c:e0:b7:d8:fa:e3: 36:60:73:34:d0:3f:ca:8e:1e:be:e7:a0:60:3c:7e: 8e:71:6a:6c:18:db:40:a8:cc:7b:5a:c5:7b:78:4f: a8:59:6f:64:96:da:25:85:25:62:4f:28:29:ac:7e: be:59:0f:e4:89:a1:f4:8b:ed:26:5d:73:80:b3:6d: 3d:39:ba:e6:00:50:69:3d:e3:b2:9d:0b:36:3c:c5: 4a:61:6a:a4:06:c4:76:ab:18:b6:ba:0f:7a:4f:6a: db:08:0a:6a:62:3c:5b:ba:4e:1e:42:57:52:29:68: 0a:7d:b5:99:89:1e:bd:39:ad:73:c5:f9:9b:d2:00: de:05:78:e6:4a:9a:e9:26:a8:2f:45:9e:a6:76:e8: 19:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:11:A5:CF:80:4E:C2:6F:D1:6F:89:30:87:E8:78:50:0E:B9:A0:39 X509v3 Authority Key Identifier: keyid:06:C7:46:CD:7D:4D:F9:5A:6D:03:CA:95:54:A7:54:76:0D:5E:4E:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BsdGzX1N-VptA8qVVKdUdg1eTgY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/NBGlz4BOwm_Rb4kwh-h4UA65oDk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.239.255.0/24 185.14.240.0/23 185.14.243.0/24 IPv6: 2001:67c:3c::/48 2a03:7ec0:57f::/48 2a03:7ec0:2424::/48 2a03:7ec0:3000::/39 Signature Algorithm: sha256WithRSAEncryption 9e:05:78:e2:b6:35:22:d3:f8:3c:c1:60:63:72:10:30:d1:08: 8d:6e:fd:2e:c6:e2:67:97:0c:8a:27:aa:e3:4d:3d:4c:74:e0: 8d:55:83:8d:13:1b:b5:e0:05:f7:95:7c:94:c7:be:64:f1:82: d4:d9:46:c0:fe:f3:32:27:bb:68:46:52:18:95:78:7e:59:ed: f6:0e:eb:80:f8:7a:3a:73:a3:d9:07:bd:31:45:6b:66:d7:33: 99:5a:1a:62:fb:95:41:1e:bb:77:30:7f:8a:a1:2f:e7:f6:4b: 1f:74:48:68:e7:7e:cc:6a:8d:c8:3f:cf:53:09:9f:39:18:b3: 5e:94:9f:8a:ab:d4:d1:f7:9e:8d:bb:ce:c1:98:e2:b0:e5:71: bc:be:f0:1b:7b:e3:8c:70:9c:62:9f:0d:d6:e3:96:a6:6b:8e: e6:ee:cf:03:13:51:b4:a1:ce:db:21:33:a8:43:48:2e:ff:71: 54:6b:7d:92:4f:fc:7a:84:c3:db:01:db:21:c4:64:fa:ea:9e: ae:a9:77:3e:d6:93:44:a6:6d:c5:cf:b3:f1:bf:b0:88:0d:1d: ea:05:53:04:ad:c2:30:f3:22:51:18:1c:a3:1b:b2:90:0f:5a: 42:f4:3d:93:36:5a:49:26:f7:13:29:54:59:7e:56:57:58:19: a6:50:98:6a -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgISAZt5fwBzFgyjhIGhsbnZ1BBQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2Yzc0NmNkN2Q0ZGY5NWE2ZDAzY2E5NTU0YTc1NDc2MGQ1 ZTRlMDYwHhcNMjYwMTAxMTIxODQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNDExYTVjZjgwNGVjMjZmZDE2Zjg5MzA4N2U4Nzg1MDBlYjlhMDM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnN0daIvdSLcGLGBLLWM0FEXwHuXS xWiFuCtGEBmUi1QILdVo148XD9eI5TEEZrO/QLx0Xeu1lE8J7g7qqDCeO4Q3FDNO jD09luMikw1Y7v8Q4bj946/Z4VirU/8ddMIXOy6+4nKCGztuKWBxzYgZuWls4LfY +uM2YHM00D/Kjh6+56BgPH6OcWpsGNtAqMx7WsV7eE+oWW9kltolhSViTygprH6+ WQ/kiaH0i+0mXXOAs209ObrmAFBpPeOynQs2PMVKYWqkBsR2qxi2ug96T2rbCApq Yjxbuk4eQldSKWgKfbWZiR69Oa1zxfmb0gDeBXjmSprpJqgvRZ6mdugZEQIDAQAB o4ICQDCCAjwwHQYDVR0OBBYEFDQRpc+ATsJv0W+JMIfoeFAOuaA5MB8GA1UdIwQY MBaAFAbHRs19TflabQPKlVSnVHYNXk4GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQnNkR3pYMU4tVnB0QThxVlZLZFVkZzFlVGdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi85NTJjZDctMzI5Ny00ZWFmLTg1NGYt YjBhZmQ0NWRjZDc4LzEvTkJHbHo0Qk93bV9SYjRrd2gtaDRVQTY1b0RrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi85NTJjZDctMzI5Ny00ZWFmLTg1NGYtYjBhZmQ0NWRjZDc4 LzEvQnNkR3pYMU4tVnB0QThxVlZLZFVkZzFlVGdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFYGCCsGAQUFBwEHAQH/BEcwRTAYBAIAATASAwQAW+//AwQB uQ7wAwQAuQ7zMCkEAgACMCMDBwAgAQZ8ADwDBwAqA37ABX8DBwAqA37AJCQDBgEq A37AMDANBgkqhkiG9w0BAQsFAAOCAQEAngV44rY1ItP4PMFgY3IQMNEIjW79Lsbi Z5cMiieq4009THTgjVWDjRMbteAF95V8lMe+ZPGC1NlGwP7zMie7aEZSGJV4flnt 9g7rgPh6OnOj2Qe9MUVrZtczmVoaYvuVQR67dzB/iqEv5/ZLH3RIaOd+zGqNyD/P UwmfORizXpSfiqvU0feejbvOwZjisOVxvL7wG3vjjHCcYp8N1uOWpmuO5u7PAxNR tKHO2yEzqENILv9xVGt9kk/8eoTD2wHbIcRk+uqerql3PtaTRKZtxc+z8b+wiA0d 6gVTBK3CMPMiURgcoxuykA9aQvQ9kzZaSSb3EylUWX5WV1gZplCYag== -----END CERTIFICATE-----Generated at Tue Feb 10 01:29:54 2026 by rpki-client