This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/dc4420-4062-4778-9358-0af2e541646c/1/nzVsqgRihITV0rAfYCaXGFifXGQ.roa File: nzVsqgRihITV0rAfYCaXGFifXGQ.roa (raw, json) Hash identifier: 8JP5nQ7Ra35LooABXjLjF+v7Z2glNePMlz4FbudAXmc= Subject key identifier: 9F:35:6C:AA:04:62:84:84:D5:D2:B0:1F:60:26:97:18:58:9F:5C:64 Certificate issuer: /CN=72bbd2fa18319639e25ffbf4bdbfa008660158ae Certificate serial: 019B7D5BF1C0F1F6B063D2639B21B7EC18CA Authority key identifier: 72:BB:D2:FA:18:31:96:39:E2:5F:FB:F4:BD:BF:A0:08:66:01:58:AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/crvS-hgxljniX_v0vb-gCGYBWK4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/dc4420-4062-4778-9358-0af2e541646c/1/nzVsqgRihITV0rAfYCaXGFifXGQ.roa Signing time: Fri 02 Jan 2026 06:18:56 +0000 ROA not before: Fri 02 Jan 2026 06:18:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15830 IP address blocks: 185.17.248.0/24 maxlen: 24 213.159.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/dc4420-4062-4778-9358-0af2e541646c/1/crvS-hgxljniX_v0vb-gCGYBWK4.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/dc4420-4062-4778-9358-0af2e541646c/1/crvS-hgxljniX_v0vb-gCGYBWK4.mft rsync://rpki.ripe.net/repository/DEFAULT/crvS-hgxljniX_v0vb-gCGYBWK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 21:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:f1:c0:f1:f6:b0:63:d2:63:9b:21:b7:ec:18:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72bbd2fa18319639e25ffbf4bdbfa008660158ae Validity Not Before: Jan 2 06:18:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9f356caa04628484d5d2b01f60269718589f5c64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:28:b4:c1:d2:60:b9:89:23:f8:06:cb:a1:f7: d3:07:3c:d7:f4:f1:55:e8:55:33:3d:ad:b4:da:55: 64:1e:f8:53:e9:f0:b4:2e:71:52:dc:41:76:ce:c9: df:02:b0:9f:58:b4:dd:68:b4:94:bb:a1:af:0c:89: 63:22:da:4e:f1:89:ce:c9:7b:0c:bb:be:bd:b8:57: 1f:b2:8c:29:66:70:0e:c1:73:f5:5f:73:cc:48:0a: 61:82:77:28:84:1f:74:e6:e3:10:16:74:8b:0b:36: 1d:3d:63:8b:4d:51:64:85:c2:08:9a:4b:3c:ed:02: 36:89:af:19:e7:c3:bd:ea:f8:8c:d0:b8:7d:ac:ce: f5:0e:0d:6d:d6:3f:15:2f:0a:f1:d4:47:16:d4:c3: 13:01:86:9d:7e:d9:ad:fe:08:4e:5f:a5:3f:c4:f1: 18:c5:65:a4:30:ba:19:85:3b:67:ec:f2:ae:79:a6: ee:fd:db:f2:86:d7:c8:c3:ac:96:e8:ef:d4:a5:6d: 48:b5:fa:4a:93:1a:0a:64:b9:50:36:eb:aa:c3:60: 21:d6:c6:24:16:b2:03:d0:4b:d7:a1:1c:e9:50:e5: 61:d6:d4:4e:9c:ca:bb:d2:db:20:f8:40:cd:91:38: f2:d0:ec:78:9b:b6:2a:96:62:b6:45:ce:13:af:38: 41:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:35:6C:AA:04:62:84:84:D5:D2:B0:1F:60:26:97:18:58:9F:5C:64 X509v3 Authority Key Identifier: keyid:72:BB:D2:FA:18:31:96:39:E2:5F:FB:F4:BD:BF:A0:08:66:01:58:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/crvS-hgxljniX_v0vb-gCGYBWK4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/dc4420-4062-4778-9358-0af2e541646c/1/nzVsqgRihITV0rAfYCaXGFifXGQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/dc4420-4062-4778-9358-0af2e541646c/1/crvS-hgxljniX_v0vb-gCGYBWK4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.17.248.0/24 213.159.140.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:ba:88:70:d9:d5:9b:1b:06:cb:9b:47:55:6b:bf:c3:75:4b: ce:99:71:cf:a6:6e:55:2f:ce:09:28:17:23:37:8c:d6:74:8c: b0:84:7f:5e:f2:50:f0:e3:b8:2d:9d:11:af:6d:e5:da:6c:59: 65:34:04:54:da:20:00:dc:96:2c:e6:6a:6e:f6:8b:e9:f4:92: 9e:a0:aa:7b:45:30:6b:60:5b:c9:d7:f4:8f:49:0f:91:6c:37: c4:f6:77:07:99:0a:38:79:4b:f1:1b:94:d8:dd:4d:3d:ac:28: 03:ba:54:a7:d8:a9:32:42:67:d2:c3:84:42:5b:8e:cb:11:40: 22:85:8e:a4:e1:6c:83:0a:8d:75:9c:0a:1f:a3:6e:09:55:96: c3:87:34:89:29:52:45:0c:5e:d0:8b:c0:2a:d6:57:aa:72:75: 60:f1:b3:f2:77:83:ab:b7:37:62:f1:10:5c:83:ea:c5:56:3e: ea:07:88:70:8a:0b:6c:f8:6f:b7:a0:f7:01:be:3e:85:85:6f: 3d:95:77:96:25:51:3d:98:7d:b7:c6:68:a5:5a:1d:a9:75:c0: 4a:c1:4c:2f:2a:e3:e7:99:fa:03:02:2c:07:c9:81:1c:1f:91: 16:3b:48:63:ae:da:71:94:87:7a:ab:07:27:51:55:e3:02:a1: 9e:3e:9a:6a -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt9W/HA8fawY9JjmyG37BjKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyYmJkMmZhMTgzMTk2MzllMjVmZmJmNGJkYmZhMDA4NjYw MTU4YWUwHhcNMjYwMTAyMDYxODU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZjM1NmNhYTA0NjI4NDg0ZDVkMmIwMWY2MDI2OTcxODU4OWY1YzY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2yi0wdJguYkj+AbLoffTBzzX9PFV 6FUzPa202lVkHvhT6fC0LnFS3EF2zsnfArCfWLTdaLSUu6GvDIljItpO8YnOyXsM u769uFcfsowpZnAOwXP1X3PMSAphgncohB905uMQFnSLCzYdPWOLTVFkhcIImks8 7QI2ia8Z58O96viM0Lh9rM71Dg1t1j8VLwrx1EcW1MMTAYadftmt/ghOX6U/xPEY xWWkMLoZhTtn7PKueabu/dvyhtfIw6yW6O/UpW1ItfpKkxoKZLlQNuuqw2Ah1sYk FrID0EvXoRzpUOVh1tROnMq70tsg+EDNkTjy0Ox4m7YqlmK2Rc4TrzhBEwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFJ81bKoEYoSE1dKwH2AmlxhYn1xkMB8GA1UdIwQY MBaAFHK70voYMZY54l/79L2/oAhmAViuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY3J2Uy1oZ3hsam5pWF92MHZiLWdDR1lCV0s0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi9kYzQ0MjAtNDA2Mi00Nzc4LTkzNTgt MGFmMmU1NDE2NDZjLzEvbnpWc3FnUmloSVRWMHJBZllDYVhHRmlmWEdRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi9kYzQ0MjAtNDA2Mi00Nzc4LTkzNTgtMGFmMmU1NDE2NDZj LzEvY3J2Uy1oZ3hsam5pWF92MHZiLWdDR1lCV0s0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuRH4AwQA 1Z+MMA0GCSqGSIb3DQEBCwUAA4IBAQBtuohw2dWbGwbLm0dVa7/DdUvOmXHPpm5V L84JKBcjN4zWdIywhH9e8lDw47gtnRGvbeXabFllNARU2iAA3JYs5mpu9ovp9JKe oKp7RTBrYFvJ1/SPSQ+RbDfE9ncHmQo4eUvxG5TY3U09rCgDulSn2KkyQmfSw4RC W47LEUAihY6k4WyDCo11nAofo24JVZbDhzSJKVJFDF7Qi8Aq1leqcnVg8bPyd4Or tzdi8RBcg+rFVj7qB4hwigts+G+3oPcBvj6FhW89lXeWJVE9mH23xmilWh2pdcBK wUwvKuPnmfoDAiwHyYEcH5EWO0hjrtpxlId6qwcnUVXjAqGePppq -----END CERTIFICATE-----Generated at Sat Jan 3 04:53:48 2026 by rpki-client