This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/nHDzEWljU7MsVz78dLg5QpTrFFg.roa File: nHDzEWljU7MsVz78dLg5QpTrFFg.roa (raw, json) Hash identifier: xbqDoLAsVsrweaY+Yx0dFP2C1Mp47CbJGV+7MwZaYi0= Subject key identifier: 9C:70:F3:11:69:63:53:B3:2C:57:3E:FC:74:B8:39:42:94:EB:14:58 Certificate issuer: /CN=92479cae284765d628044119009880d28a7560b1 Certificate serial: 019B7B368C335693E4CAB36C780CD63BB0CC Authority key identifier: 92:47:9C:AE:28:47:65:D6:28:04:41:19:00:98:80:D2:8A:75:60:B1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kkecrihHZdYoBEEZAJiA0op1YLE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/nHDzEWljU7MsVz78dLg5QpTrFFg.roa Signing time: Thu 01 Jan 2026 20:18:50 +0000 ROA not before: Thu 01 Jan 2026 20:18:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208929 IP address blocks: 45.15.88.0/22 maxlen: 22 2a0e:2380::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.crl rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft rsync://rpki.ripe.net/repository/DEFAULT/kkecrihHZdYoBEEZAJiA0op1YLE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:8c:33:56:93:e4:ca:b3:6c:78:0c:d6:3b:b0:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92479cae284765d628044119009880d28a7560b1 Validity Not Before: Jan 1 20:18:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9c70f311696353b32c573efc74b8394294eb1458 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a5:1e:c4:aa:c8:d7:3d:4a:97:89:9a:3b:13: 48:b7:bf:d2:36:71:c9:b3:9c:7a:26:6e:7d:1b:95: b5:47:a6:26:99:93:69:3b:04:7f:cb:96:a6:ce:03: 60:1d:6d:75:50:f3:57:6b:1f:8b:32:5f:e3:7c:1a: 3e:95:d2:27:06:8c:ee:61:50:ee:98:41:ee:a7:41: 74:50:e2:b1:06:00:b0:ac:c6:24:cb:cb:80:3a:9b: 4c:53:4e:8c:7e:38:52:d7:a2:5b:47:2e:db:08:0c: 74:65:00:6d:56:9a:c0:48:cc:7d:c4:26:fd:95:10: 92:25:37:14:4a:e1:5c:ea:14:90:c6:9e:53:52:ec: 58:9e:6b:67:8f:15:0f:73:85:8e:31:0e:0d:7d:4d: 11:dc:d5:e2:4e:62:7e:ff:d4:b2:c8:0a:8a:b1:51: d4:38:73:1b:9b:43:fb:19:ed:a0:03:55:43:f9:bb: f2:6b:54:76:a8:b9:ee:a9:79:9c:c3:55:af:0a:3f: 80:15:58:29:33:37:6f:3e:65:d2:a1:e2:28:c1:c3: 92:4f:58:50:57:0e:93:ac:f9:b2:da:47:1c:44:83: 52:07:31:ff:a2:4b:26:77:6b:d0:44:81:d9:80:a4: 5a:31:94:ce:a3:c4:b8:9b:d1:7f:22:5a:d7:9d:18: 48:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:70:F3:11:69:63:53:B3:2C:57:3E:FC:74:B8:39:42:94:EB:14:58 X509v3 Authority Key Identifier: keyid:92:47:9C:AE:28:47:65:D6:28:04:41:19:00:98:80:D2:8A:75:60:B1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kkecrihHZdYoBEEZAJiA0op1YLE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/nHDzEWljU7MsVz78dLg5QpTrFFg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.15.88.0/22 IPv6: 2a0e:2380::/32 Signature Algorithm: sha256WithRSAEncryption 69:65:da:33:a1:d4:14:b7:df:d8:c6:c5:16:e4:eb:1d:5f:7e: 2b:8c:74:34:c8:f1:e5:39:ca:e5:ac:fe:7e:ed:97:f0:7d:f7: 7f:ca:09:b0:e5:09:5a:a6:7d:37:45:be:b1:01:69:25:3a:37: 5f:f2:e8:17:16:92:73:61:1c:47:1f:ae:27:2c:c2:06:91:b1: 87:5e:a0:4b:d6:ee:4a:0b:a6:76:8a:de:d4:dd:f8:16:91:4b: 37:a1:7e:99:20:06:e3:67:e5:56:ae:d1:b8:22:85:6c:79:79: 4e:92:3d:b3:bb:d7:46:94:ac:76:f1:b2:e1:3b:54:92:01:7e: c3:fa:9e:31:89:a7:b6:46:30:39:9b:19:ee:f3:68:37:9f:f2: eb:9f:c1:27:3b:94:cc:cd:35:54:90:3b:a2:8f:5c:c9:a1:fb: c3:be:f6:24:2d:68:26:b0:f3:cf:ae:b1:be:44:6d:4a:f0:fe: e9:8f:77:f8:24:08:fc:0f:95:95:71:40:91:65:b3:71:61:21: 87:8b:57:ac:ba:2a:2c:4a:8b:a5:ff:8c:40:40:d9:aa:db:b1: 1b:ec:13:67:0d:e8:b3:ec:5c:ee:e9:f0:fd:db:2b:f4:90:aa: bc:ac:29:25:5c:eb:a3:93:3f:a0:db:24:62:ac:7e:db:e1:ba: 7a:a0:38:ef -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt7NowzVpPkyrNseAzWO7DMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyNDc5Y2FlMjg0NzY1ZDYyODA0NDExOTAwOTg4MGQyOGE3 NTYwYjEwHhcNMjYwMTAxMjAxODUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YzcwZjMxMTY5NjM1M2IzMmM1NzNlZmM3NGI4Mzk0Mjk0ZWIxNDU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAraUexKrI1z1Kl4maOxNIt7/SNnHJ s5x6Jm59G5W1R6YmmZNpOwR/y5amzgNgHW11UPNXax+LMl/jfBo+ldInBozuYVDu mEHup0F0UOKxBgCwrMYky8uAOptMU06MfjhS16JbRy7bCAx0ZQBtVprASMx9xCb9 lRCSJTcUSuFc6hSQxp5TUuxYnmtnjxUPc4WOMQ4NfU0R3NXiTmJ+/9SyyAqKsVHU OHMbm0P7Ge2gA1VD+bvya1R2qLnuqXmcw1WvCj+AFVgpMzdvPmXSoeIowcOST1hQ Vw6TrPmy2kccRINSBzH/oksmd2vQRIHZgKRaMZTOo8S4m9F/IlrXnRhIXQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFJxw8xFpY1OzLFc+/HS4OUKU6xRYMB8GA1UdIwQY MBaAFJJHnK4oR2XWKARBGQCYgNKKdWCxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2tlY3JpaEhaZFlvQkVFWkFKaUEwb3AxWUxFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8wNTgyMjAtNTk2ZS00ODBhLWEwNTgt MDI0Njg2OGFhMGVkLzEvbkhEekVXbGpVN01zVno3OGRMZzVRcFRyRkZnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy8wNTgyMjAtNTk2ZS00ODBhLWEwNTgtMDI0Njg2OGFhMGVk LzEva2tlY3JpaEhaZFlvQkVFWkFKaUEwb3AxWUxFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCLQ9YMA0E AgACMAcDBQAqDiOAMA0GCSqGSIb3DQEBCwUAA4IBAQBpZdozodQUt9/YxsUW5Osd X34rjHQ0yPHlOcrlrP5+7Zfwffd/ygmw5Qlapn03Rb6xAWklOjdf8ugXFpJzYRxH H64nLMIGkbGHXqBL1u5KC6Z2it7U3fgWkUs3oX6ZIAbjZ+VWrtG4IoVseXlOkj2z u9dGlKx28bLhO1SSAX7D+p4xiae2RjA5mxnu82g3n/Lrn8EnO5TMzTVUkDuij1zJ ofvDvvYkLWgmsPPPrrG+RG1K8P7pj3f4JAj8D5WVcUCRZbNxYSGHi1esuiosSoul /4xAQNmq27Eb7BNnDeiz7Fzu6fD92yv0kKq8rCklXOujkz+g2yRirH7b4bp6oDjv -----END CERTIFICATE-----Generated at Mon Feb 9 22:36:22 2026 by rpki-client