This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/c62c7f-f462-4348-b068-f049c66ef811/1/nQwNTcvcN16kGMcF9EkVK9LTmpA.roa File: nQwNTcvcN16kGMcF9EkVK9LTmpA.roa (raw, json) Hash identifier: fbtF0vzhJretPqTSidwr3SzDufK3auj33qZoaGUrKJc= Subject key identifier: 9D:0C:0D:4D:CB:DC:37:5E:A4:18:C7:05:F4:49:15:2B:D2:D3:9A:90 Certificate issuer: /CN=ae682c4f0a2940eea872542a6215e354991deb4b Certificate serial: 019B7EA636BB895FB457C98D84480BFF66D1 Authority key identifier: AE:68:2C:4F:0A:29:40:EE:A8:72:54:2A:62:15:E3:54:99:1D:EB:4B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rmgsTwopQO6oclQqYhXjVJkd60s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/c62c7f-f462-4348-b068-f049c66ef811/1/nQwNTcvcN16kGMcF9EkVK9LTmpA.roa Signing time: Fri 02 Jan 2026 12:19:40 +0000 ROA not before: Fri 02 Jan 2026 12:19:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60156 IP address blocks: 185.47.76.0/22 maxlen: 22 2a04:ad40::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/c62c7f-f462-4348-b068-f049c66ef811/1/rmgsTwopQO6oclQqYhXjVJkd60s.crl rsync://rpki.ripe.net/repository/DEFAULT/3f/c62c7f-f462-4348-b068-f049c66ef811/1/rmgsTwopQO6oclQqYhXjVJkd60s.mft rsync://rpki.ripe.net/repository/DEFAULT/rmgsTwopQO6oclQqYhXjVJkd60s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:36:bb:89:5f:b4:57:c9:8d:84:48:0b:ff:66:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ae682c4f0a2940eea872542a6215e354991deb4b Validity Not Before: Jan 2 12:19:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9d0c0d4dcbdc375ea418c705f449152bd2d39a90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:67:cf:69:07:8f:e5:99:66:e7:5c:89:07:b7: 1a:18:34:74:91:07:73:65:df:73:af:f6:e1:3a:d7: d7:0f:be:ba:02:a0:44:fe:e2:ec:25:87:34:5e:9b: af:8d:03:ff:d8:ba:6a:d7:7a:ea:47:5f:d2:0c:c4: 3e:e1:48:15:d2:37:38:7a:65:06:41:8e:b1:66:79: dc:e1:35:37:f2:17:f3:99:28:36:fe:b3:f1:31:29: c2:cb:9a:be:39:16:77:d1:95:49:e9:a9:09:81:73: 3a:a4:2f:3c:e1:f1:f8:19:0f:29:c1:e1:db:63:6b: bb:04:73:3c:57:c8:db:ac:43:0e:c4:4e:a8:db:a6: fe:ae:e3:a9:cd:90:b4:78:18:0b:6a:21:fb:b5:2a: 81:03:4a:ec:a4:1f:f0:47:75:21:b8:04:96:cf:29: ae:19:0d:74:93:e7:df:7e:33:31:29:d0:bd:7c:77: 4e:23:82:f4:71:24:72:c1:1d:1b:3f:73:43:85:fa: 14:df:8d:e7:26:f9:19:b4:14:73:03:54:6d:37:68: e3:42:72:07:06:98:b6:e4:a3:8a:9b:8c:7f:de:61: 0d:bf:d5:23:63:6e:dc:55:b0:b9:0a:da:30:92:87: 45:f9:0d:c4:a5:e7:e5:bc:3b:ce:26:dc:25:c9:73: fb:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:0C:0D:4D:CB:DC:37:5E:A4:18:C7:05:F4:49:15:2B:D2:D3:9A:90 X509v3 Authority Key Identifier: keyid:AE:68:2C:4F:0A:29:40:EE:A8:72:54:2A:62:15:E3:54:99:1D:EB:4B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rmgsTwopQO6oclQqYhXjVJkd60s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/c62c7f-f462-4348-b068-f049c66ef811/1/nQwNTcvcN16kGMcF9EkVK9LTmpA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/c62c7f-f462-4348-b068-f049c66ef811/1/rmgsTwopQO6oclQqYhXjVJkd60s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.47.76.0/22 IPv6: 2a04:ad40::/29 Signature Algorithm: sha256WithRSAEncryption 4e:3c:09:c0:35:25:86:5b:81:43:e3:79:8e:5f:4c:d1:7f:80: 75:8d:3f:82:fd:34:5a:b5:5c:fa:d1:9b:7d:6d:07:f9:ed:77: df:87:e8:4b:08:4f:3f:ac:49:6e:da:e5:00:eb:b3:02:b9:c8: f0:25:91:a0:00:af:1b:81:e0:ed:e3:8e:8c:24:cd:00:6d:ec: 9f:67:fa:ed:57:b2:b5:2e:5b:db:60:a8:64:86:f4:1c:1c:41: 7b:38:e9:87:0f:83:68:37:1a:6b:7a:98:85:45:5b:e9:f4:de: fb:a6:43:0a:bd:f6:a9:b9:90:9c:ac:89:95:3d:36:97:60:77: ee:2e:a4:09:f4:d2:80:66:3f:1b:ec:6d:69:05:80:89:e1:55: 44:78:15:7e:c2:59:92:82:5b:5a:c8:b4:21:ad:55:ac:59:96: b5:b7:c6:1c:11:d4:58:4b:3d:55:63:08:d0:17:21:0a:bf:45: c4:1f:c6:18:6b:af:6d:0c:6a:5e:da:ee:67:30:4f:1e:2e:a0: ad:51:79:dc:31:46:49:62:61:15:0a:88:98:67:3f:c8:fe:f0: b9:84:d0:a4:b3:bb:0f:fd:fa:48:42:14:6c:c2:49:15:0d:5f: 51:db:2b:66:46:fd:51:0f:99:db:68:da:bb:3e:90:f5:73:07: 61:96:d3:9e -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt+pja7iV+0V8mNhEgL/2bRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlNjgyYzRmMGEyOTQwZWVhODcyNTQyYTYyMTVlMzU0OTkx ZGViNGIwHhcNMjYwMTAyMTIxOTQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZDBjMGQ0ZGNiZGMzNzVlYTQxOGM3MDVmNDQ5MTUyYmQyZDM5YTkwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlGfPaQeP5Zlm51yJB7caGDR0kQdz Zd9zr/bhOtfXD766AqBE/uLsJYc0XpuvjQP/2Lpq13rqR1/SDMQ+4UgV0jc4emUG QY6xZnnc4TU38hfzmSg2/rPxMSnCy5q+ORZ30ZVJ6akJgXM6pC884fH4GQ8pweHb Y2u7BHM8V8jbrEMOxE6o26b+ruOpzZC0eBgLaiH7tSqBA0rspB/wR3UhuASWzymu GQ10k+fffjMxKdC9fHdOI4L0cSRywR0bP3NDhfoU343nJvkZtBRzA1RtN2jjQnIH Bpi25KOKm4x/3mENv9UjY27cVbC5CtowkodF+Q3EpeflvDvOJtwlyXP7JQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFJ0MDU3L3DdepBjHBfRJFSvS05qQMB8GA1UdIwQY MBaAFK5oLE8KKUDuqHJUKmIV41SZHetLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcm1nc1R3b3BRTzZvY2xRcVloWGpWSmtkNjBzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi9jNjJjN2YtZjQ2Mi00MzQ4LWIwNjgt ZjA0OWM2NmVmODExLzEvblF3TlRjdmNOMTZrR01jRjlFa1ZLOUxUbXBBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZi9jNjJjN2YtZjQ2Mi00MzQ4LWIwNjgtZjA0OWM2NmVmODEx LzEvcm1nc1R3b3BRTzZvY2xRcVloWGpWSmtkNjBzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuS9MMA0E AgACMAcDBQMqBK1AMA0GCSqGSIb3DQEBCwUAA4IBAQBOPAnANSWGW4FD43mOX0zR f4B1jT+C/TRatVz60Zt9bQf57Xffh+hLCE8/rElu2uUA67MCucjwJZGgAK8bgeDt 446MJM0AbeyfZ/rtV7K1LlvbYKhkhvQcHEF7OOmHD4NoNxprepiFRVvp9N77pkMK vfapuZCcrImVPTaXYHfuLqQJ9NKAZj8b7G1pBYCJ4VVEeBV+wlmSgltayLQhrVWs WZa1t8YcEdRYSz1VYwjQFyEKv0XEH8YYa69tDGpe2u5nME8eLqCtUXncMUZJYmEV CoiYZz/I/vC5hNCks7sP/fpIQhRswkkVDV9R2ytmRv1RD5nbaNq7PpD1cwdhltOe -----END CERTIFICATE-----Generated at Mon Feb 9 21:26:50 2026 by rpki-client