This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/eed853-3b36-45ed-9533-b17c2affa30b/1/NouNULJL-7ncK7hFZABxn3dgX70.roa File: NouNULJL-7ncK7hFZABxn3dgX70.roa (raw, json) Hash identifier: FNAw0p0hzFMLdRcqIw/EWrSDQ2SejuoSDS9nnFY1OZw= Subject key identifier: 36:8B:8D:50:B2:4B:FB:B9:DC:2B:B8:45:64:00:71:9F:77:60:5F:BD Certificate issuer: /CN=ba0f864ba0fa204de93ac5aa84f728b6220c6f7c Certificate serial: 019B79110D60480B10D4147508E73F900DEA Authority key identifier: BA:0F:86:4B:A0:FA:20:4D:E9:3A:C5:AA:84:F7:28:B6:22:0C:6F:7C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ug-GS6D6IE3pOsWqhPcotiIMb3w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/eed853-3b36-45ed-9533-b17c2affa30b/1/NouNULJL-7ncK7hFZABxn3dgX70.roa Signing time: Thu 01 Jan 2026 10:18:39 +0000 ROA not before: Thu 01 Jan 2026 10:18:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201962 IP address blocks: 45.153.176.0/22 maxlen: 22 91.205.12.0/22 maxlen: 24 185.58.28.0/22 maxlen: 22 2a04:df80::/29 maxlen: 32 2a04:df80::/32 maxlen: 32 2a04:df81::/32 maxlen: 32 2a04:df82::/32 maxlen: 32 2a04:df83::/32 maxlen: 32 2a04:df84::/32 maxlen: 32 2a04:df85::/32 maxlen: 32 2a04:df86::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/eed853-3b36-45ed-9533-b17c2affa30b/1/ug-GS6D6IE3pOsWqhPcotiIMb3w.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/eed853-3b36-45ed-9533-b17c2affa30b/1/ug-GS6D6IE3pOsWqhPcotiIMb3w.mft rsync://rpki.ripe.net/repository/DEFAULT/ug-GS6D6IE3pOsWqhPcotiIMb3w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:0d:60:48:0b:10:d4:14:75:08:e7:3f:90:0d:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba0f864ba0fa204de93ac5aa84f728b6220c6f7c Validity Not Before: Jan 1 10:18:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=368b8d50b24bfbb9dc2bb8456400719f77605fbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:4c:0d:0d:11:eb:2c:37:b6:90:a4:1a:81:19: 87:88:57:a0:2d:97:96:8b:14:c6:ee:a0:e3:88:a5: 50:06:15:a3:dc:f9:16:23:4d:e7:57:49:46:6e:cb: 2f:44:e8:4e:27:a9:b3:cb:a8:b0:3e:45:29:79:16: 12:39:d6:96:a2:40:e6:85:a1:da:41:4a:c5:8c:fe: 08:ac:ce:5a:bc:86:44:ee:70:4d:1b:d5:3f:2f:26: b6:d4:8a:52:90:c6:da:d3:c3:fb:b6:49:3a:a0:61: 83:89:59:14:52:0b:7f:51:6a:c7:de:ac:0c:1d:63: e9:92:08:7f:b0:46:c2:0b:08:72:67:97:a0:c9:c6: 30:8c:cb:f8:ac:eb:8c:c8:76:c3:c1:44:50:38:f9: 52:75:32:1f:8f:6d:cc:d5:7a:64:b8:89:5e:e6:69: a7:49:f1:66:d5:8c:e0:26:e9:66:ad:5d:cb:a1:07: 7e:a8:42:81:d6:15:53:84:c3:f4:b5:37:50:b5:f4: 81:98:20:ae:ac:4a:62:f9:40:bc:4c:34:78:76:01: b8:84:73:7e:9e:b7:9b:71:90:ed:0c:6c:b7:86:41: ea:2c:e5:f8:b3:b0:5b:1e:c5:d1:63:91:71:81:ee: 09:cc:2e:29:fe:22:9d:76:c7:aa:65:c1:5b:4f:9e: c8:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:8B:8D:50:B2:4B:FB:B9:DC:2B:B8:45:64:00:71:9F:77:60:5F:BD X509v3 Authority Key Identifier: keyid:BA:0F:86:4B:A0:FA:20:4D:E9:3A:C5:AA:84:F7:28:B6:22:0C:6F:7C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ug-GS6D6IE3pOsWqhPcotiIMb3w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/eed853-3b36-45ed-9533-b17c2affa30b/1/NouNULJL-7ncK7hFZABxn3dgX70.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/eed853-3b36-45ed-9533-b17c2affa30b/1/ug-GS6D6IE3pOsWqhPcotiIMb3w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.153.176.0/22 91.205.12.0/22 185.58.28.0/22 IPv6: 2a04:df80::/29 Signature Algorithm: sha256WithRSAEncryption 2e:f8:3c:e6:b8:5d:c4:b8:6a:d5:b6:23:aa:ce:b8:64:80:39: 2c:7c:10:6b:a4:41:97:43:a4:35:19:43:5c:2b:68:bb:41:6a: 41:c4:13:67:93:cd:29:d9:6a:be:39:59:b3:cf:77:ea:b4:cb: 08:54:e6:26:f1:21:90:ab:1f:47:2f:17:6e:0a:3a:32:73:db: b2:f5:5b:3f:e2:cc:c3:01:bc:66:36:84:2e:e9:24:e1:83:51: f8:bc:23:ae:6f:3b:3c:2d:7b:92:a2:1e:d6:52:d9:56:54:75: e7:b2:ef:13:bb:e5:d8:08:7c:a7:f8:bf:f5:2f:d4:d4:dd:4d: ee:dd:88:2d:f6:8d:e8:b0:40:43:df:20:bf:75:fa:21:ff:ae: 65:2b:13:54:94:33:c3:5b:75:4d:0b:bb:e0:c5:a5:61:af:1d: 3d:9f:c2:93:98:03:20:16:ef:73:1d:5a:3d:25:89:7b:a2:e3: 1c:f3:35:b7:53:bb:8e:6e:0f:c6:d7:65:c5:a2:e9:bf:ca:9f: b1:77:a8:0e:9f:87:78:8e:fc:09:ad:31:46:ef:88:55:d3:40: 74:cf:c0:8c:98:5e:b8:0e:76:2b:37:16:68:cb:b6:35:9e:8b: 26:dd:78:ed:ce:9d:00:be:7c:eb:7c:df:2d:fc:69:34:f1:7d: 6e:12:3e:35 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISAZt5EQ1gSAsQ1BR1COc/kA3qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhMGY4NjRiYTBmYTIwNGRlOTNhYzVhYTg0ZjcyOGI2MjIw YzZmN2MwHhcNMjYwMTAxMTAxODM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNjhiOGQ1MGIyNGJmYmI5ZGMyYmI4NDU2NDAwNzE5Zjc3NjA1ZmJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnkwNDRHrLDe2kKQagRmHiFegLZeW ixTG7qDjiKVQBhWj3PkWI03nV0lGbssvROhOJ6mzy6iwPkUpeRYSOdaWokDmhaHa QUrFjP4IrM5avIZE7nBNG9U/Lya21IpSkMba08P7tkk6oGGDiVkUUgt/UWrH3qwM HWPpkgh/sEbCCwhyZ5egycYwjMv4rOuMyHbDwURQOPlSdTIfj23M1XpkuIle5mmn SfFm1YzgJulmrV3LoQd+qEKB1hVThMP0tTdQtfSBmCCurEpi+UC8TDR4dgG4hHN+ nrebcZDtDGy3hkHqLOX4s7BbHsXRY5Fxge4JzC4p/iKddseqZcFbT57IIQIDAQAB o4ICJDCCAiAwHQYDVR0OBBYEFDaLjVCyS/u53Cu4RWQAcZ93YF+9MB8GA1UdIwQY MBaAFLoPhkug+iBN6TrFqoT3KLYiDG98MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWctR1M2RDZJRTNwT3NXcWhQY290aUlNYjN3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS9lZWQ4NTMtM2IzNi00NWVkLTk1MzMt YjE3YzJhZmZhMzBiLzEvTm91TlVMSkwtN25jSzdoRlpBQnhuM2RnWDcwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS9lZWQ4NTMtM2IzNi00NWVkLTk1MzMtYjE3YzJhZmZhMzBi LzEvdWctR1M2RDZJRTNwT3NXcWhQY290aUlNYjN3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQCLZmwAwQC W80MAwQCuTocMA0EAgACMAcDBQMqBN+AMA0GCSqGSIb3DQEBCwUAA4IBAQAu+Dzm uF3EuGrVtiOqzrhkgDksfBBrpEGXQ6Q1GUNcK2i7QWpBxBNnk80p2Wq+OVmzz3fq tMsIVOYm8SGQqx9HLxduCjoyc9uy9Vs/4szDAbxmNoQu6SThg1H4vCOubzs8LXuS oh7WUtlWVHXnsu8Tu+XYCHyn+L/1L9TU3U3u3Ygt9o3osEBD3yC/dfoh/65lKxNU lDPDW3VNC7vgxaVhrx09n8KTmAMgFu9zHVo9JYl7ouMc8zW3U7uObg/G12XFoum/ yp+xd6gOn4d4jvwJrTFG74hV00B0z8CMmF64DnYrNxZoy7Y1nosm3Xjtzp0Avnzr fN8t/Gk08X1uEj41 -----END CERTIFICATE-----Generated at Tue Feb 10 01:44:15 2026 by rpki-client