This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/a0bf3e-3645-4e16-bca9-8adac17e90ae/1/NrWS44Z0TLbIgVSL2khEsTneBfw.roa File: NrWS44Z0TLbIgVSL2khEsTneBfw.roa (raw, json) Hash identifier: +KVv/OPI9bSqUzmAS4uZEropmaAWyIrlvsN4CuQgu3k= Subject key identifier: 36:B5:92:E3:86:74:4C:B6:C8:81:54:8B:DA:48:44:B1:39:DE:05:FC Certificate issuer: /CN=974661cb1c38e63bd78bd6b2b1d68686a5415bf5 Certificate serial: 019B85F7F1864976C319D20C191E15B26286 Authority key identifier: 97:46:61:CB:1C:38:E6:3B:D7:8B:D6:B2:B1:D6:86:86:A5:41:5B:F5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l0Zhyxw45jvXi9aysdaGhqVBW_U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/a0bf3e-3645-4e16-bca9-8adac17e90ae/1/NrWS44Z0TLbIgVSL2khEsTneBfw.roa Signing time: Sat 03 Jan 2026 22:26:17 +0000 ROA not before: Sat 03 Jan 2026 22:26:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 30823 IP address blocks: 45.11.16.0/22 maxlen: 22 45.11.19.0/24 maxlen: 24 45.138.172.0/22 maxlen: 22 45.138.172.0/24 maxlen: 24 45.138.173.0/24 maxlen: 24 45.138.174.0/24 maxlen: 24 45.138.175.0/24 maxlen: 24 45.147.228.0/22 maxlen: 22 45.153.240.0/22 maxlen: 22 91.200.100.0/22 maxlen: 22 152.89.244.0/22 maxlen: 22 152.89.247.0/24 maxlen: 24 160.20.144.0/24 maxlen: 24 160.20.146.0/24 maxlen: 24 160.20.147.0/24 maxlen: 24 2a09:38c0::/29 maxlen: 48 2a09:38c0:aaaa::/48 maxlen: 48 2a0c:6a40::/29 maxlen: 29 2a0c:6a41:f230::/48 maxlen: 48 2a0d:4cc0::/29 maxlen: 29 2a0e:5100::/29 maxlen: 29 2a0e:b540::/29 maxlen: 29 2a0e:b540:ff03::/48 maxlen: 48 2a10:9c00::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/a0bf3e-3645-4e16-bca9-8adac17e90ae/1/l0Zhyxw45jvXi9aysdaGhqVBW_U.crl rsync://rpki.ripe.net/repository/DEFAULT/24/a0bf3e-3645-4e16-bca9-8adac17e90ae/1/l0Zhyxw45jvXi9aysdaGhqVBW_U.mft rsync://rpki.ripe.net/repository/DEFAULT/l0Zhyxw45jvXi9aysdaGhqVBW_U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:02:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:85:f7:f1:86:49:76:c3:19:d2:0c:19:1e:15:b2:62:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=974661cb1c38e63bd78bd6b2b1d68686a5415bf5 Validity Not Before: Jan 3 22:26:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=36b592e386744cb6c881548bda4844b139de05fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:6f:da:63:b7:16:57:66:9b:07:2a:0a:c6:33: b6:d5:d8:6f:77:97:f9:5c:19:b8:c5:18:88:e8:47: c4:b4:bc:45:e8:7f:ce:e4:d6:0b:fd:1b:b3:5b:87: eb:9a:84:ac:86:1d:3e:68:18:9c:8e:46:01:79:68: c2:03:29:83:6c:3b:e0:88:51:ce:76:45:f2:d8:60: ef:c8:d9:66:cc:af:0c:d2:33:2a:69:1c:ad:5d:bc: 1b:e3:9c:dc:61:26:19:a8:5c:33:52:ef:be:3e:4c: dc:65:be:99:4d:b1:58:ea:8c:f1:bc:29:89:95:e3: d7:ab:40:8f:49:1e:98:57:71:8b:d1:7b:40:93:69: 60:2d:86:68:40:c9:a3:5a:7f:ff:03:2e:e2:f2:11: 35:b3:2e:89:f7:af:5c:15:df:d2:02:be:1a:d5:a2: e8:2b:f2:e4:4e:d7:af:c1:df:56:ff:1d:a8:9b:d8: b0:12:52:dc:51:4f:ee:30:65:42:57:a6:e6:d0:a9: f5:ff:1c:61:7c:cb:5b:e9:ec:31:7b:72:d7:cb:dc: 3d:37:61:f4:e9:10:15:fd:26:af:5e:6b:19:db:f8: cb:78:28:65:21:e3:e4:db:29:d3:eb:dc:23:23:fb: 8e:56:00:e4:d1:76:e3:44:15:51:e4:2a:9a:d1:60: cf:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:B5:92:E3:86:74:4C:B6:C8:81:54:8B:DA:48:44:B1:39:DE:05:FC X509v3 Authority Key Identifier: keyid:97:46:61:CB:1C:38:E6:3B:D7:8B:D6:B2:B1:D6:86:86:A5:41:5B:F5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l0Zhyxw45jvXi9aysdaGhqVBW_U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a0bf3e-3645-4e16-bca9-8adac17e90ae/1/NrWS44Z0TLbIgVSL2khEsTneBfw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a0bf3e-3645-4e16-bca9-8adac17e90ae/1/l0Zhyxw45jvXi9aysdaGhqVBW_U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.11.16.0/22 45.138.172.0/22 45.147.228.0/22 45.153.240.0/22 91.200.100.0/22 152.89.244.0/22 160.20.144.0/24 160.20.146.0/23 IPv6: 2a09:38c0::/29 2a0c:6a40::/29 2a0d:4cc0::/29 2a0e:5100::/29 2a0e:b540::/29 2a10:9c00::/29 Signature Algorithm: sha256WithRSAEncryption ab:ed:9f:78:c4:ea:3e:3e:ba:46:bf:3e:8c:79:c0:53:de:a3: b1:a0:13:69:9c:4e:27:0a:c3:b4:28:f7:0f:79:4b:4d:ed:ed: b6:52:38:92:ad:dc:05:94:44:d8:3a:5b:c8:c5:5c:3a:69:9f: 83:5f:84:b8:12:75:d8:dd:a0:32:e0:10:d5:2a:1f:57:a6:2a: 29:12:1c:41:ce:52:a6:48:80:fe:0a:d1:b0:99:14:80:48:ee: 52:f3:31:ba:31:2f:ce:07:09:5c:c7:0a:18:03:ec:df:4d:ea: c2:1e:4e:1a:d6:b4:f5:0d:0a:67:1d:2f:83:81:e5:b4:07:d7: 86:a0:cc:d8:03:3f:5b:31:e7:11:c0:cb:df:83:14:02:84:6c: 20:69:ad:1b:e5:c7:67:74:fe:d3:b1:dc:6e:ab:e2:6b:a4:50: 36:df:f3:b8:19:62:00:8d:2e:31:1c:ee:ed:7a:ff:78:a4:81: 9b:11:2e:c7:b7:d9:74:4b:e0:0c:08:4a:e9:54:c5:6d:80:ec: cf:3f:82:56:f4:51:f0:9b:95:4d:39:4d:a6:84:b1:51:07:dc: 61:26:b5:73:6b:a2:3d:a5:a6:2a:09:0e:d2:ef:c9:a5:28:4b: 98:36:da:75:de:9a:d6:9a:04:99:66:bd:6d:99:5e:00:26:2f: 18:74:3c:c8 -----BEGIN CERTIFICATE----- MIIFWTCCBEGgAwIBAgISAZuF9/GGSXbDGdIMGR4VsmKGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk3NDY2MWNiMWMzOGU2M2JkNzhiZDZiMmIxZDY4Njg2YTU0 MTViZjUwHhcNMjYwMTAzMjIyNjE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNmI1OTJlMzg2NzQ0Y2I2Yzg4MTU0OGJkYTQ4NDRiMTM5ZGUwNWZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnm/aY7cWV2abByoKxjO21dhvd5f5 XBm4xRiI6EfEtLxF6H/O5NYL/RuzW4frmoSshh0+aBicjkYBeWjCAymDbDvgiFHO dkXy2GDvyNlmzK8M0jMqaRytXbwb45zcYSYZqFwzUu++PkzcZb6ZTbFY6ozxvCmJ lePXq0CPSR6YV3GL0XtAk2lgLYZoQMmjWn//Ay7i8hE1sy6J969cFd/SAr4a1aLo K/LkTtevwd9W/x2om9iwElLcUU/uMGVCV6bm0Kn1/xxhfMtb6ewxe3LXy9w9N2H0 6RAV/SavXmsZ2/jLeChlIePk2ynT69wjI/uOVgDk0XbjRBVR5Cqa0WDPPQIDAQAB o4ICZTCCAmEwHQYDVR0OBBYEFDa1kuOGdEy2yIFUi9pIRLE53gX8MB8GA1UdIwQY MBaAFJdGYcscOOY714vWsrHWhoalQVv1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbDBaaHl4dzQ1anZYaTlheXNkYUdocVZCV19VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9hMGJmM2UtMzY0NS00ZTE2LWJjYTkt OGFkYWMxN2U5MGFlLzEvTnJXUzQ0WjBUTGJJZ1ZTTDJraEVzVG5lQmZ3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC9hMGJmM2UtMzY0NS00ZTE2LWJjYTktOGFkYWMxN2U5MGFl LzEvbDBaaHl4dzQ1anZYaTlheXNkYUdocVZCV19VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMHsGCCsGAQUFBwEHAQH/BGwwajA2BAIAATAwAwQCLQsQAwQC LYqsAwQCLZPkAwQCLZnwAwQCW8hkAwQCmFn0AwQAoBSQAwQBoBSSMDAEAgACMCoD BQMqCTjAAwUDKgxqQAMFAyoNTMADBQMqDlEAAwUDKg61QAMFAyoQnAAwDQYJKoZI hvcNAQELBQADggEBAKvtn3jE6j4+uka/Pox5wFPeo7GgE2mcTicKw7Qo9w95S03t 7bZSOJKt3AWURNg6W8jFXDppn4NfhLgSddjdoDLgENUqH1emKikSHEHOUqZIgP4K 0bCZFIBI7lLzMboxL84HCVzHChgD7N9N6sIeThrWtPUNCmcdL4OB5bQH14agzNgD P1sx5xHAy9+DFAKEbCBprRvlx2d0/tOx3G6r4mukUDbf87gZYgCNLjEc7u16/3ik gZsRLse32XRL4AwISulUxW2A7M8/glb0UfCblU05TaaEsVEH3GEmtXNroj2lpioJ DtLvyaUoS5g22nXemtaaBJlmvW2ZXgAmLxh0PMg= -----END CERTIFICATE-----Generated at Mon Jan 19 23:20:31 2026 by rpki-client