This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/d5104c-f64a-44ca-a37b-6e1f2f6851cf/1/N0NwAtFb84h0xfganWJihzoCSpE.roa File: N0NwAtFb84h0xfganWJihzoCSpE.roa (raw, json) Hash identifier: /Ubv+K+n65IZQaZN4AFBb/50l8Puw9jgWyG9wc4RYFM= Subject key identifier: 37:43:70:02:D1:5B:F3:88:74:C5:F8:1A:9D:62:62:87:3A:02:4A:91 Certificate issuer: /CN=e5c340ee5b9daf1a6818f0df407fa5975886b10f Certificate serial: 019B7A5A65F55D080A0DFD507FBE0B784FCD Authority key identifier: E5:C3:40:EE:5B:9D:AF:1A:68:18:F0:DF:40:7F:A5:97:58:86:B1:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5cNA7ludrxpoGPDfQH-ll1iGsQ8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/d5104c-f64a-44ca-a37b-6e1f2f6851cf/1/N0NwAtFb84h0xfganWJihzoCSpE.roa Signing time: Thu 01 Jan 2026 16:18:23 +0000 ROA not before: Thu 01 Jan 2026 16:18:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12595 IP address blocks: 91.216.34.0/24 maxlen: 24 185.117.226.0/24 maxlen: 24 185.133.88.0/22 maxlen: 24 188.116.45.0/24 maxlen: 24 193.142.212.0/24 maxlen: 24 212.11.88.0/22 maxlen: 24 2a10:7180::/29 maxlen: 29 2a10:7180:101::/48 maxlen: 48 2a10:7180:102::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/d5104c-f64a-44ca-a37b-6e1f2f6851cf/1/5cNA7ludrxpoGPDfQH-ll1iGsQ8.crl rsync://rpki.ripe.net/repository/DEFAULT/18/d5104c-f64a-44ca-a37b-6e1f2f6851cf/1/5cNA7ludrxpoGPDfQH-ll1iGsQ8.mft rsync://rpki.ripe.net/repository/DEFAULT/5cNA7ludrxpoGPDfQH-ll1iGsQ8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:65:f5:5d:08:0a:0d:fd:50:7f:be:0b:78:4f:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e5c340ee5b9daf1a6818f0df407fa5975886b10f Validity Not Before: Jan 1 16:18:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=37437002d15bf38874c5f81a9d6262873a024a91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:cd:1f:69:e2:6f:a9:f6:08:c2:e7:ab:09:fa: e6:a9:64:63:03:1d:3f:cc:73:4d:88:0f:ea:30:0f: ba:47:eb:fc:57:d5:3c:c3:26:e8:55:75:02:00:26: 20:bf:6e:20:40:74:26:2f:a1:77:e2:bc:12:6f:cc: 71:35:f0:55:2a:e1:ea:ac:2a:15:90:28:93:01:06: 2d:55:af:d8:c2:85:67:bb:fd:91:c7:05:0c:53:78: e9:eb:8a:a2:fe:2a:3b:c5:f0:1d:91:d5:53:00:78: cb:5c:7c:24:5e:01:65:57:28:5c:fa:cf:b4:16:57: 70:36:15:e0:04:41:52:08:03:84:82:fe:64:1f:8c: 2d:40:1c:0c:5e:a5:f0:d9:64:91:ea:f7:65:d4:b1: cb:44:12:a1:d1:84:8b:e2:a6:cf:1c:7b:40:75:ed: 60:02:f4:4c:e2:49:13:c5:b3:e9:34:f5:19:09:7e: 57:6b:43:fd:9a:fa:05:fb:25:a4:9c:53:4d:3c:b7: 0f:f9:24:a8:08:f8:7f:dc:a4:00:d3:1e:f0:40:20: d6:7c:8b:80:12:60:1f:69:5d:28:c0:4b:22:21:0c: cf:da:0a:4c:89:41:5f:c2:1d:74:92:0f:d0:22:84: d2:3c:c4:ce:1b:3d:68:bc:95:a8:fc:f4:17:fc:a5: e1:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:43:70:02:D1:5B:F3:88:74:C5:F8:1A:9D:62:62:87:3A:02:4A:91 X509v3 Authority Key Identifier: keyid:E5:C3:40:EE:5B:9D:AF:1A:68:18:F0:DF:40:7F:A5:97:58:86:B1:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5cNA7ludrxpoGPDfQH-ll1iGsQ8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d5104c-f64a-44ca-a37b-6e1f2f6851cf/1/N0NwAtFb84h0xfganWJihzoCSpE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d5104c-f64a-44ca-a37b-6e1f2f6851cf/1/5cNA7ludrxpoGPDfQH-ll1iGsQ8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.216.34.0/24 185.117.226.0/24 185.133.88.0/22 188.116.45.0/24 193.142.212.0/24 212.11.88.0/22 IPv6: 2a10:7180::/29 Signature Algorithm: sha256WithRSAEncryption 58:43:b0:88:42:2c:e9:f4:99:09:b7:46:31:8d:54:88:02:9d: 02:91:58:5a:cc:7f:bc:5f:1c:b6:34:d2:45:7e:5a:b1:ac:23: 9e:79:e6:c4:9e:c9:5d:39:4d:85:6d:20:69:f7:f5:83:b0:87: dc:46:48:3c:a2:de:ea:0f:36:14:8c:35:db:a7:2f:bf:22:03: b7:d3:d8:92:ce:b7:74:8e:bf:38:95:52:7b:b0:06:dd:98:d4: 39:dc:73:18:ba:13:08:fd:09:58:74:39:7a:bb:d3:f9:b5:f3: ed:3d:fc:f0:54:58:8b:15:34:d0:61:7b:58:c5:ae:6f:d8:2c: 3b:e8:fc:88:7a:3d:0c:f9:61:9f:86:4f:d4:3c:f8:b9:c0:aa: 4e:7e:a6:6f:bb:9a:56:63:f2:5e:85:8b:2c:0c:61:4c:12:8c: b5:ce:f6:00:68:68:e3:ef:01:10:d8:1a:0d:84:6a:fd:5e:a1: a3:a8:3e:31:93:a6:66:5b:0f:7c:4c:e5:09:e5:38:85:60:17: 80:1c:84:85:69:74:6d:ca:2e:53:be:08:ae:90:ef:cf:2a:ce: a7:a7:24:f5:69:e1:a8:97:88:b4:2a:15:14:13:46:f9:8f:12: fc:7f:e5:58:b4:6c:06:54:e2:cb:db:9c:54:3e:ea:db:16:56: f0:1b:1c:bf -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgISAZt6WmX1XQgKDf1Qf74LeE/NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1YzM0MGVlNWI5ZGFmMWE2ODE4ZjBkZjQwN2ZhNTk3NTg4 NmIxMGYwHhcNMjYwMTAxMTYxODIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNzQzNzAwMmQxNWJmMzg4NzRjNWY4MWE5ZDYyNjI4NzNhMDI0YTkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwM0faeJvqfYIwuerCfrmqWRjAx0/ zHNNiA/qMA+6R+v8V9U8wyboVXUCACYgv24gQHQmL6F34rwSb8xxNfBVKuHqrCoV kCiTAQYtVa/YwoVnu/2RxwUMU3jp64qi/io7xfAdkdVTAHjLXHwkXgFlVyhc+s+0 FldwNhXgBEFSCAOEgv5kH4wtQBwMXqXw2WSR6vdl1LHLRBKh0YSL4qbPHHtAde1g AvRM4kkTxbPpNPUZCX5Xa0P9mvoF+yWknFNNPLcP+SSoCPh/3KQA0x7wQCDWfIuA EmAfaV0owEsiIQzP2gpMiUFfwh10kg/QIoTSPMTOGz1ovJWo/PQX/KXhqwIDAQAB o4ICNjCCAjIwHQYDVR0OBBYEFDdDcALRW/OIdMX4Gp1iYoc6AkqRMB8GA1UdIwQY MBaAFOXDQO5bna8aaBjw30B/pZdYhrEPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNWNOQTdsdWRyeHBvR1BEZlFILWxsMWlHc1E4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9kNTEwNGMtZjY0YS00NGNhLWEzN2It NmUxZjJmNjg1MWNmLzEvTjBOd0F0RmI4NGgweGZnYW5XSmloem9DU3BFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC9kNTEwNGMtZjY0YS00NGNhLWEzN2ItNmUxZjJmNjg1MWNm LzEvNWNOQTdsdWRyeHBvR1BEZlFILWxsMWlHc1E4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAqBAIAATAkAwQAW9giAwQA uXXiAwQCuYVYAwQAvHQtAwQAwY7UAwQC1AtYMA0EAgACMAcDBQMqEHGAMA0GCSqG SIb3DQEBCwUAA4IBAQBYQ7CIQizp9JkJt0YxjVSIAp0CkVhazH+8Xxy2NNJFflqx rCOeeebEnsldOU2FbSBp9/WDsIfcRkg8ot7qDzYUjDXbpy+/IgO309iSzrd0jr84 lVJ7sAbdmNQ53HMYuhMI/QlYdDl6u9P5tfPtPfzwVFiLFTTQYXtYxa5v2Cw76PyI ej0M+WGfhk/UPPi5wKpOfqZvu5pWY/JehYssDGFMEoy1zvYAaGjj7wEQ2BoNhGr9 XqGjqD4xk6ZmWw98TOUJ5TiFYBeAHISFaXRtyi5TvgiukO/PKs6npyT1aeGol4i0 KhUUE0b5jxL8f+VYtGwGVOLL25xUPurbFlbwGxy/ -----END CERTIFICATE-----Generated at Sun Jan 11 22:46:43 2026 by rpki-client