This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/35faed-c2d7-4cb9-97f5-df6f20dcb94b/1/vN-QNhPrTsEbYGTx8daKtvPjdzE.roa File: vN-QNhPrTsEbYGTx8daKtvPjdzE.roa (raw, json) Hash identifier: mT9H4mkT7WVAi+nSLyy8fxt12jq+PfPah/Hp91TG3TU= Subject key identifier: BC:DF:90:36:13:EB:4E:C1:1B:60:64:F1:F1:D6:8A:B6:F3:E3:77:31 Certificate issuer: /CN=37af48131ecd9dca3def2b2de788f15060627755 Certificate serial: 019B7EA70FB84B7E549F77988038AAD7A423 Authority key identifier: 37:AF:48:13:1E:CD:9D:CA:3D:EF:2B:2D:E7:88:F1:50:60:62:77:55 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N69IEx7Nnco97yst54jxUGBid1U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/35faed-c2d7-4cb9-97f5-df6f20dcb94b/1/vN-QNhPrTsEbYGTx8daKtvPjdzE.roa Signing time: Fri 02 Jan 2026 12:20:36 +0000 ROA not before: Fri 02 Jan 2026 12:20:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 0 IP address blocks: 185.227.208.0/22 maxlen: 22 2a00:7400::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/35faed-c2d7-4cb9-97f5-df6f20dcb94b/1/N69IEx7Nnco97yst54jxUGBid1U.crl rsync://rpki.ripe.net/repository/DEFAULT/4f/35faed-c2d7-4cb9-97f5-df6f20dcb94b/1/N69IEx7Nnco97yst54jxUGBid1U.mft rsync://rpki.ripe.net/repository/DEFAULT/N69IEx7Nnco97yst54jxUGBid1U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:0f:b8:4b:7e:54:9f:77:98:80:38:aa:d7:a4:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=37af48131ecd9dca3def2b2de788f15060627755 Validity Not Before: Jan 2 12:20:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bcdf903613eb4ec11b6064f1f1d68ab6f3e37731 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:cc:65:52:2b:1c:7a:7f:26:7d:c7:e1:1e:ec: 96:8f:3d:69:01:92:c6:b7:ad:bb:41:f1:42:b1:72: 58:3c:06:33:d4:cf:b2:e1:e9:33:0d:de:7e:dd:6a: b8:d1:0d:77:33:8e:25:3c:d6:fb:48:af:b1:f7:56: 72:50:a1:da:0d:09:f2:2b:61:e2:fb:06:d2:e8:07: cc:b2:04:dc:cb:26:d7:3d:e2:46:95:fd:c2:b3:a9: 30:d5:4d:5b:61:27:d9:a3:12:39:86:f2:58:80:9e: 48:7e:31:f8:93:b8:95:e1:42:76:25:24:81:b8:0c: 64:a6:74:71:46:b5:0f:95:93:d9:9e:6d:49:cf:90: 80:d1:da:8c:a5:d6:dc:d9:a1:07:25:34:8b:0f:95: 83:a5:ce:b1:ce:5c:cf:77:55:f2:e2:a8:b2:5f:0d: 03:6d:bb:b0:ac:dc:15:af:0e:54:93:b9:62:e0:e6: b3:b0:c1:a7:8b:61:80:01:5e:87:d3:4d:bd:8a:29: c4:36:bf:18:6d:fe:2d:73:14:26:d2:e3:4b:bf:5f: 6a:6d:00:6b:82:da:a7:f7:2e:9a:c4:40:32:d8:8d: a2:d1:eb:7a:de:5a:be:db:f5:f0:0d:30:8d:35:92: bc:69:ca:dc:26:5e:dd:8a:a6:58:21:a9:21:79:a8: 0d:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:DF:90:36:13:EB:4E:C1:1B:60:64:F1:F1:D6:8A:B6:F3:E3:77:31 X509v3 Authority Key Identifier: keyid:37:AF:48:13:1E:CD:9D:CA:3D:EF:2B:2D:E7:88:F1:50:60:62:77:55 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N69IEx7Nnco97yst54jxUGBid1U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/35faed-c2d7-4cb9-97f5-df6f20dcb94b/1/vN-QNhPrTsEbYGTx8daKtvPjdzE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/35faed-c2d7-4cb9-97f5-df6f20dcb94b/1/N69IEx7Nnco97yst54jxUGBid1U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.227.208.0/22 IPv6: 2a00:7400::/32 Signature Algorithm: sha256WithRSAEncryption 38:f6:e0:42:ff:91:e3:92:86:18:15:43:aa:c1:e1:1d:4a:1e: ab:5b:1f:e0:50:88:16:d6:c9:46:5d:44:02:48:4c:0a:98:3d: 1a:11:95:60:87:b8:59:92:a5:fc:ac:d1:3b:6d:f1:15:62:6b: 71:f1:42:78:1b:26:89:f5:2e:e2:26:dd:9e:a1:4a:78:9b:93: da:5d:b2:22:d1:f4:f0:8c:fe:8d:f5:ad:20:d9:77:d9:92:b5: 53:90:ab:2d:25:7a:6c:f8:87:3e:8a:1a:81:32:17:57:9e:ef: b9:ff:d4:bd:e6:e9:bb:e2:fd:37:ef:df:0e:40:0e:5d:98:a3: 24:7f:1e:2f:13:c7:57:b0:bb:4c:2b:b5:3e:b4:82:29:dc:13: e4:a9:b0:9b:8e:55:0c:c9:17:d5:69:08:91:56:66:40:b7:22: 1d:5e:13:bc:6d:32:b2:5d:c2:24:48:24:e9:8f:19:f7:44:23: 04:08:07:42:64:18:9e:86:f9:f6:36:de:f4:3e:cd:6c:5a:e1: 05:23:2a:a7:aa:3b:39:41:00:34:30:57:16:53:4f:97:43:9b: b0:02:a1:a8:60:c2:07:e9:95:d0:b5:2d:f5:49:59:9f:f9:ad: 07:37:cd:ce:ee:9e:d8:85:85:ae:99:55:6c:d6:31:4a:58:69: 48:b8:cd:40 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt+pw+4S35Un3eYgDiq16QjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM3YWY0ODEzMWVjZDlkY2EzZGVmMmIyZGU3ODhmMTUwNjA2 Mjc3NTUwHhcNMjYwMTAyMTIyMDM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiY2RmOTAzNjEzZWI0ZWMxMWI2MDY0ZjFmMWQ2OGFiNmYzZTM3NzMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo8xlUiscen8mfcfhHuyWjz1pAZLG t627QfFCsXJYPAYz1M+y4ekzDd5+3Wq40Q13M44lPNb7SK+x91ZyUKHaDQnyK2Hi +wbS6AfMsgTcyybXPeJGlf3Cs6kw1U1bYSfZoxI5hvJYgJ5IfjH4k7iV4UJ2JSSB uAxkpnRxRrUPlZPZnm1Jz5CA0dqMpdbc2aEHJTSLD5WDpc6xzlzPd1Xy4qiyXw0D bbuwrNwVrw5Uk7li4OazsMGni2GAAV6H0029iinENr8Ybf4tcxQm0uNLv19qbQBr gtqn9y6axEAy2I2i0et63lq+2/XwDTCNNZK8acrcJl7diqZYIakheagNoQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFLzfkDYT607BG2Bk8fHWirbz43cxMB8GA1UdIwQY MBaAFDevSBMezZ3KPe8rLeeI8VBgYndVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTjY5SUV4N05uY285N3lzdDU0anhVR0JpZDFVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi8zNWZhZWQtYzJkNy00Y2I5LTk3ZjUt ZGY2ZjIwZGNiOTRiLzEvdk4tUU5oUHJUc0ViWUdUeDhkYUt0dlBqZHpFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Zi8zNWZhZWQtYzJkNy00Y2I5LTk3ZjUtZGY2ZjIwZGNiOTRi LzEvTjY5SUV4N05uY285N3lzdDU0anhVR0JpZDFVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuePQMA0E AgACMAcDBQAqAHQAMA0GCSqGSIb3DQEBCwUAA4IBAQA49uBC/5HjkoYYFUOqweEd Sh6rWx/gUIgW1slGXUQCSEwKmD0aEZVgh7hZkqX8rNE7bfEVYmtx8UJ4GyaJ9S7i Jt2eoUp4m5PaXbIi0fTwjP6N9a0g2XfZkrVTkKstJXps+Ic+ihqBMhdXnu+5/9S9 5um74v03798OQA5dmKMkfx4vE8dXsLtMK7U+tIIp3BPkqbCbjlUMyRfVaQiRVmZA tyIdXhO8bTKyXcIkSCTpjxn3RCMECAdCZBiehvn2Nt70Ps1sWuEFIyqnqjs5QQA0 MFcWU0+XQ5uwAqGoYMIH6ZXQtS31SVmf+a0HN83O7p7YhYWumVVs1jFKWGlIuM1A -----END CERTIFICATE-----Generated at Wed Jan 7 23:47:38 2026 by rpki-client