This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/nJRfaoL4UCvcMZNRuFFjGr-WfOg.roa File: nJRfaoL4UCvcMZNRuFFjGr-WfOg.roa (raw, json) Hash identifier: ukj7FYWisHH1PKTStNenwhVAaEmgPVuMgo6wiz4bFI8= Subject key identifier: 9C:94:5F:6A:82:F8:50:2B:DC:31:93:51:B8:51:63:1A:BF:96:7C:E8 Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d Certificate serial: 019B7C12FE3583A9C3C42262CD8D0CDCBD6D Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/nJRfaoL4UCvcMZNRuFFjGr-WfOg.roa Signing time: Fri 02 Jan 2026 00:19:38 +0000 ROA not before: Fri 02 Jan 2026 00:19:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201870 IP address blocks: 195.65.24.0/24 maxlen: 24 195.65.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.mft rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:fe:35:83:a9:c3:c4:22:62:cd:8d:0c:dc:bd:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d Validity Not Before: Jan 2 00:19:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9c945f6a82f8502bdc319351b851631abf967ce8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:30:83:17:68:b7:2d:c1:ac:5f:f2:d0:8e:23: 97:0a:fb:db:82:26:78:4b:0f:c5:8b:53:1d:36:b3: 7e:1f:81:8d:e5:80:f0:99:e1:3b:85:ae:19:23:2c: b9:8e:ff:95:d9:e0:21:57:05:00:9f:c5:0c:1e:ae: a9:51:bc:c8:9d:7b:b2:c9:b8:45:2e:12:49:d1:61: fd:f6:0e:6d:83:92:38:c4:06:a7:75:7e:47:87:74: 56:11:0b:ed:6f:95:ea:0a:59:47:75:66:77:4b:64: 32:7b:71:4e:1f:8c:42:bb:99:26:cb:1d:45:af:f8: 48:15:7e:eb:b3:8a:55:11:c1:ca:a1:0c:10:22:d0: 88:e8:79:96:9c:d1:4a:d4:f8:56:f4:ae:8e:d1:6a: de:c3:ae:5a:17:3f:5f:41:e4:3f:a5:03:37:6e:0a: e2:93:ce:9a:3d:d7:b0:61:5f:d2:54:2f:18:57:a9: ca:df:df:9c:e0:f1:6d:3f:ce:ca:1d:48:4a:63:6d: f0:aa:00:b6:2e:d8:5e:ba:50:b5:fe:5f:70:89:ac: 68:ce:f9:e8:4b:a0:ba:db:5f:ed:b7:e9:3d:a6:a8: 0a:cc:9a:bd:1a:f2:56:b7:6a:1b:ea:13:0b:ec:f9: 5b:85:7c:6f:16:07:98:67:c6:ed:6e:11:bc:90:b4: 1e:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:94:5F:6A:82:F8:50:2B:DC:31:93:51:B8:51:63:1A:BF:96:7C:E8 X509v3 Authority Key Identifier: keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/nJRfaoL4UCvcMZNRuFFjGr-WfOg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.65.24.0/24 195.65.33.0/24 Signature Algorithm: sha256WithRSAEncryption b4:a9:ba:56:68:ac:bb:0a:59:f3:df:8e:5f:b9:a0:61:e2:8d: 1b:e7:97:c0:52:3e:ce:de:00:98:dc:de:2e:80:31:6f:17:fe: 6f:16:45:c1:e7:cd:02:25:87:96:f0:de:6a:cf:6c:6d:55:b6: 87:70:6d:74:b6:6f:00:e9:35:1b:a6:06:45:d4:83:86:08:a9: 1b:ea:83:cf:93:7f:2d:df:60:9e:09:bc:bf:1d:a0:17:95:f7: aa:4f:4a:27:ef:a9:cb:c5:d5:82:9b:96:bb:83:ef:2d:2b:47: 3c:ed:64:b4:7b:29:92:6f:d6:b0:31:81:7e:ad:5c:fb:40:79: 96:4e:3a:f1:34:04:73:8b:5b:8a:eb:a3:34:82:f5:c5:5a:85: ce:ee:ce:38:7e:5f:58:bc:63:51:34:87:14:04:ba:4b:89:40: f0:08:74:60:05:60:7b:0f:6f:d6:bf:05:fe:4f:a8:bc:cb:92: 7a:72:ca:e4:7b:f7:bd:0e:91:18:a6:e2:70:52:4f:b2:51:cd: a6:b5:bd:c8:f5:ea:f8:d0:38:46:38:49:75:a2:68:94:bf:9c: 8d:7e:e6:eb:fd:75:55:37:f2:3b:e0:04:17:8d:0b:40:20:d0: 83:57:7d:31:99:c5:c5:9a:4e:4c:ad:94:a0:8b:8e:b5:f4:c2: e6:49:13:75 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8Ev41g6nDxCJizY0M3L1tMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI2NjNmM2RiMTUyZTA1NWFjMTQ1YmRiYjQyOWUwMTg2NTQy MDRjOGQwHhcNMjYwMTAyMDAxOTM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5Yzk0NWY2YTgyZjg1MDJiZGMzMTkzNTFiODUxNjMxYWJmOTY3Y2U4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5jCDF2i3LcGsX/LQjiOXCvvbgiZ4 Sw/Fi1MdNrN+H4GN5YDwmeE7ha4ZIyy5jv+V2eAhVwUAn8UMHq6pUbzInXuyybhF LhJJ0WH99g5tg5I4xAandX5Hh3RWEQvtb5XqCllHdWZ3S2Qye3FOH4xCu5kmyx1F r/hIFX7rs4pVEcHKoQwQItCI6HmWnNFK1PhW9K6O0Wrew65aFz9fQeQ/pQM3bgri k86aPdewYV/SVC8YV6nK39+c4PFtP87KHUhKY23wqgC2LtheulC1/l9wiaxozvno S6C621/tt+k9pqgKzJq9GvJWt2ob6hML7PlbhXxvFgeYZ8btbhG8kLQeZwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFJyUX2qC+FAr3DGTUbhRYxq/lnzoMB8GA1UdIwQY MBaAFCZj89sVLgVawUW9u0KeAYZUIEyNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSm1QejJ4VXVCVnJCUmIyN1FwNEJobFFnVEkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9jOGM2ZjYtNTk1Yy00NWIxLWE3NmUt YmQxOTI2NzZjOWJiLzEvbkpSZmFvTDRVQ3ZjTVpOUnVGRmpHci1XZk9nLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS9jOGM2ZjYtNTk1Yy00NWIxLWE3NmUtYmQxOTI2NzZjOWJi LzEvSm1QejJ4VXVCVnJCUmIyN1FwNEJobFFnVEkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAw0EYAwQA w0EhMA0GCSqGSIb3DQEBCwUAA4IBAQC0qbpWaKy7Clnz345fuaBh4o0b55fAUj7O 3gCY3N4ugDFvF/5vFkXB580CJYeW8N5qz2xtVbaHcG10tm8A6TUbpgZF1IOGCKkb 6oPPk38t32CeCby/HaAXlfeqT0on76nLxdWCm5a7g+8tK0c87WS0eymSb9awMYF+ rVz7QHmWTjrxNARzi1uK66M0gvXFWoXO7s44fl9YvGNRNIcUBLpLiUDwCHRgBWB7 D2/WvwX+T6i8y5J6csrke/e9DpEYpuJwUk+yUc2mtb3I9er40DhGOEl1omiUv5yN fubr/XVVN/I74AQXjQtAINCDV30xmcXFmk5MrZSgi4619MLmSRN1 -----END CERTIFICATE-----Generated at Mon Jan 26 17:45:43 2026 by rpki-client