This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/7577fd-3b45-404a-bfe0-5424dc63e2ac/1/nl2woE4tEUQD3CSF7qKSvews-N8.roa File: nl2woE4tEUQD3CSF7qKSvews-N8.roa (raw, json) Hash identifier: L5p+cCQTpEMxnRlqVhomZChKjWD7GqqQzUPRzvLGeYQ= Subject key identifier: 9E:5D:B0:A0:4E:2D:11:44:03:DC:24:85:EE:A2:92:BD:EC:2C:F8:DF Certificate issuer: /CN=eebf5b51999637c80bf93c8a903d16c3aec25341 Certificate serial: 019B79ED5EF9471359BCE526A8BFB07AE3A6 Authority key identifier: EE:BF:5B:51:99:96:37:C8:0B:F9:3C:8A:90:3D:16:C3:AE:C2:53:41 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7r9bUZmWN8gL-TyKkD0Ww67CU0E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/7577fd-3b45-404a-bfe0-5424dc63e2ac/1/nl2woE4tEUQD3CSF7qKSvews-N8.roa Signing time: Thu 01 Jan 2026 14:19:18 +0000 ROA not before: Thu 01 Jan 2026 14:19:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35490 IP address blocks: 91.236.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/7577fd-3b45-404a-bfe0-5424dc63e2ac/1/7r9bUZmWN8gL-TyKkD0Ww67CU0E.crl rsync://rpki.ripe.net/repository/DEFAULT/46/7577fd-3b45-404a-bfe0-5424dc63e2ac/1/7r9bUZmWN8gL-TyKkD0Ww67CU0E.mft rsync://rpki.ripe.net/repository/DEFAULT/7r9bUZmWN8gL-TyKkD0Ww67CU0E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:5e:f9:47:13:59:bc:e5:26:a8:bf:b0:7a:e3:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=eebf5b51999637c80bf93c8a903d16c3aec25341 Validity Not Before: Jan 1 14:19:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9e5db0a04e2d114403dc2485eea292bdec2cf8df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:bf:6e:54:dc:e9:78:e4:04:d5:fa:c6:48:a6: 45:74:42:34:5f:94:b2:4b:4f:68:92:97:be:a5:b7: fe:4f:81:25:8b:8a:ac:77:91:eb:45:50:db:6d:7e: 57:30:ea:ab:25:ea:1b:15:b0:0a:ba:9f:69:bb:fd: 1d:c6:cc:39:49:97:06:9a:00:e7:c7:3d:49:da:c1: 1a:6d:dc:ef:33:4d:f9:11:ba:2a:f8:a2:92:c7:1a: ff:e7:5d:d4:31:24:2e:8e:92:69:dd:62:9e:ce:2d: 0e:64:89:a8:4f:25:e2:54:8f:e4:ea:29:f1:ba:f0: 02:0b:b8:93:c9:51:6e:65:0e:c2:f5:ab:e3:ae:3a: b0:e6:1b:bf:e2:87:04:84:b4:26:bb:4a:6f:37:41: 06:22:ad:f5:a1:e9:b9:aa:da:68:84:ba:b8:f7:a8: 4d:ef:20:b2:00:80:10:b5:34:21:e7:fc:e5:6a:4e: 2b:dd:1d:bc:d2:79:69:a1:43:a2:4d:05:cf:87:3a: 53:47:3f:7d:a7:a0:4e:6b:6c:5a:2a:4d:8c:2b:33: 2b:d5:4e:38:7e:7f:38:3d:3b:46:bf:7b:63:87:29: 61:09:28:e3:fc:34:8b:72:70:c8:2f:36:64:1f:63: 63:5f:d6:37:31:94:ce:17:e2:c8:ee:a7:1e:56:dd: 97:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:5D:B0:A0:4E:2D:11:44:03:DC:24:85:EE:A2:92:BD:EC:2C:F8:DF X509v3 Authority Key Identifier: keyid:EE:BF:5B:51:99:96:37:C8:0B:F9:3C:8A:90:3D:16:C3:AE:C2:53:41 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7r9bUZmWN8gL-TyKkD0Ww67CU0E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/7577fd-3b45-404a-bfe0-5424dc63e2ac/1/nl2woE4tEUQD3CSF7qKSvews-N8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/46/7577fd-3b45-404a-bfe0-5424dc63e2ac/1/7r9bUZmWN8gL-TyKkD0Ww67CU0E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.236.223.0/24 Signature Algorithm: sha256WithRSAEncryption 55:04:57:28:19:a3:5b:28:90:00:e4:9a:be:e0:34:e0:15:0c: 07:eb:6c:39:36:32:52:71:9a:fa:0a:02:a2:fa:8a:bb:ac:c8: 37:8f:ef:92:71:8a:bf:10:3a:dd:6d:0b:ce:21:d3:f5:da:60: 14:55:26:fe:67:10:49:83:fc:34:97:2a:63:c5:62:60:48:b7: b0:4d:e9:b9:69:21:89:8a:2f:43:96:94:01:c8:af:21:98:1b: 92:20:78:9b:3c:54:cc:db:c5:12:f1:79:46:67:c3:75:7e:fe: ac:7b:c6:25:1f:f6:af:2f:d4:d7:42:00:23:44:65:d2:0a:5b: 0d:43:93:ba:fd:40:09:43:83:1a:a7:7a:53:36:d0:08:d5:37: 30:ec:1f:84:32:83:db:38:71:ef:7f:c6:d4:00:ab:bd:17:7a: 3c:24:1d:3e:a8:ca:7f:0b:26:df:4e:a7:a2:15:77:7a:c7:01: 6c:85:62:54:ba:bd:40:b0:03:25:f9:9e:1d:9c:aa:04:f8:0e: fa:c2:12:83:67:2a:61:b7:2c:d7:94:79:4a:38:62:2c:3d:13: 2b:d5:2b:27:0d:40:c1:7d:ff:55:cd:cd:af:79:fe:f7:4b:6c: 80:f6:66:25:d6:c1:af:cb:fa:80:d5:76:5c:db:eb:f7:4d:b4: b7:43:5e:12 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57V75RxNZvOUmqL+weuOmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVlYmY1YjUxOTk5NjM3YzgwYmY5M2M4YTkwM2QxNmMzYWVj MjUzNDEwHhcNMjYwMTAxMTQxOTE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZTVkYjBhMDRlMmQxMTQ0MDNkYzI0ODVlZWEyOTJiZGVjMmNmOGRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtr9uVNzpeOQE1frGSKZFdEI0X5Sy S09okpe+pbf+T4Eli4qsd5HrRVDbbX5XMOqrJeobFbAKup9pu/0dxsw5SZcGmgDn xz1J2sEabdzvM035Eboq+KKSxxr/513UMSQujpJp3WKezi0OZImoTyXiVI/k6inx uvACC7iTyVFuZQ7C9avjrjqw5hu/4ocEhLQmu0pvN0EGIq31oem5qtpohLq496hN 7yCyAIAQtTQh5/zlak4r3R280nlpoUOiTQXPhzpTRz99p6BOa2xaKk2MKzMr1U44 fn84PTtGv3tjhylhCSjj/DSLcnDILzZkH2NjX9Y3MZTOF+LI7qceVt2XAwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJ5dsKBOLRFEA9wkhe6ikr3sLPjfMB8GA1UdIwQY MBaAFO6/W1GZljfIC/k8ipA9FsOuwlNBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN3I5YlVabVdOOGdMLVR5S2tEMFd3NjdDVTBFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni83NTc3ZmQtM2I0NS00MDRhLWJmZTAt NTQyNGRjNjNlMmFjLzEvbmwyd29FNHRFVVFEM0NTRjdxS1N2ZXdzLU44LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ni83NTc3ZmQtM2I0NS00MDRhLWJmZTAtNTQyNGRjNjNlMmFj LzEvN3I5YlVabVdOOGdMLVR5S2tEMFd3NjdDVTBFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+zfMA0G CSqGSIb3DQEBCwUAA4IBAQBVBFcoGaNbKJAA5Jq+4DTgFQwH62w5NjJScZr6CgKi +oq7rMg3j++ScYq/EDrdbQvOIdP12mAUVSb+ZxBJg/w0lypjxWJgSLewTem5aSGJ ii9DlpQByK8hmBuSIHibPFTM28US8XlGZ8N1fv6se8YlH/avL9TXQgAjRGXSClsN Q5O6/UAJQ4Map3pTNtAI1Tcw7B+EMoPbOHHvf8bUAKu9F3o8JB0+qMp/CybfTqei FXd6xwFshWJUur1AsAMl+Z4dnKoE+A76whKDZyphtyzXlHlKOGIsPRMr1SsnDUDB ff9Vzc2vef73S2yA9mYl1sGvy/qA1XZc2+v3TbS3Q14S -----END CERTIFICATE-----Generated at Mon Feb 9 20:45:46 2026 by rpki-client