This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/15b16a-f76b-41a4-88bc-91cf616d2c52/1/Np_Aj_nRkhMZ7_NKJQ1GEacRUpA.roa File: Np_Aj_nRkhMZ7_NKJQ1GEacRUpA.roa (raw, json) Hash identifier: ejeWv0bVkbD4tbjs10obMgkJkumcVMFWXk26yJzaKVM= Subject key identifier: 36:9F:C0:8F:F9:D1:92:13:19:EF:F3:4A:25:0D:46:11:A7:11:52:90 Certificate issuer: /CN=4044fd1980ba01788a353a26fef8954ed7c11f96 Certificate serial: 019B7E378C67D138131B83974F55B7B6F726 Authority key identifier: 40:44:FD:19:80:BA:01:78:8A:35:3A:26:FE:F8:95:4E:D7:C1:1F:96 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QET9GYC6AXiKNTom_viVTtfBH5Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/15b16a-f76b-41a4-88bc-91cf616d2c52/1/Np_Aj_nRkhMZ7_NKJQ1GEacRUpA.roa Signing time: Fri 02 Jan 2026 10:18:48 +0000 ROA not before: Fri 02 Jan 2026 10:18:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 62365 IP address blocks: 80.249.116.0/22 maxlen: 22 139.28.0.0/22 maxlen: 22 141.98.144.0/22 maxlen: 22 155.133.200.0/21 maxlen: 21 155.133.208.0/20 maxlen: 20 185.38.48.0/22 maxlen: 22 185.202.180.0/22 maxlen: 22 185.206.240.0/22 maxlen: 22 2a00:fda0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/15b16a-f76b-41a4-88bc-91cf616d2c52/1/QET9GYC6AXiKNTom_viVTtfBH5Y.crl rsync://rpki.ripe.net/repository/DEFAULT/67/15b16a-f76b-41a4-88bc-91cf616d2c52/1/QET9GYC6AXiKNTom_viVTtfBH5Y.mft rsync://rpki.ripe.net/repository/DEFAULT/QET9GYC6AXiKNTom_viVTtfBH5Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:8c:67:d1:38:13:1b:83:97:4f:55:b7:b6:f7:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4044fd1980ba01788a353a26fef8954ed7c11f96 Validity Not Before: Jan 2 10:18:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=369fc08ff9d1921319eff34a250d4611a7115290 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b2:17:97:5d:51:c3:6a:cf:85:f5:48:40:10: b3:a3:9b:cf:24:5a:2c:34:21:fc:af:ac:28:16:da: 54:98:4b:a1:23:56:e0:53:2e:3d:f7:f9:4b:35:a4: 9d:d4:8b:88:61:06:05:6f:9a:ed:76:99:65:64:01: 51:52:2e:25:5a:82:55:15:ee:c0:9f:46:32:74:c8: 06:8f:09:87:82:b5:ab:56:d8:5f:36:11:09:02:3d: 62:1b:03:59:9d:32:1b:9b:0a:71:df:d8:4b:a7:f9: 5b:b6:79:2e:89:16:04:6a:28:7c:ed:9d:ad:4d:ab: b2:af:3b:2d:4e:64:43:86:87:d4:7c:5f:d8:82:d3: f0:e3:4b:d9:89:70:ef:30:56:05:d8:7d:77:a2:5a: 69:a9:39:27:ae:a7:d8:22:84:5d:8b:5c:b6:73:4a: ef:91:8a:f2:d3:2e:74:5f:ae:ce:60:7c:f8:70:35: 4c:41:84:94:77:65:6a:48:44:b1:fc:79:66:91:e8: 35:b9:6f:7c:21:22:a9:72:76:76:f6:9f:a1:be:a7: 71:bc:68:b4:a9:02:3f:d3:3a:95:06:2b:91:20:74: 54:2c:49:72:21:9b:92:3e:2a:18:0b:3b:89:86:9f: 7b:bd:7c:51:94:fe:da:73:e6:6e:2a:6a:ef:b5:12: 24:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:9F:C0:8F:F9:D1:92:13:19:EF:F3:4A:25:0D:46:11:A7:11:52:90 X509v3 Authority Key Identifier: keyid:40:44:FD:19:80:BA:01:78:8A:35:3A:26:FE:F8:95:4E:D7:C1:1F:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QET9GYC6AXiKNTom_viVTtfBH5Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/15b16a-f76b-41a4-88bc-91cf616d2c52/1/Np_Aj_nRkhMZ7_NKJQ1GEacRUpA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/15b16a-f76b-41a4-88bc-91cf616d2c52/1/QET9GYC6AXiKNTom_viVTtfBH5Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.249.116.0/22 139.28.0.0/22 141.98.144.0/22 155.133.200.0-155.133.223.255 185.38.48.0/22 185.202.180.0/22 185.206.240.0/22 IPv6: 2a00:fda0::/32 Signature Algorithm: sha256WithRSAEncryption 33:09:8f:a8:9e:4e:df:2c:dd:f7:5f:80:e6:e4:c3:10:06:fc: 7d:d0:45:3d:ff:7b:a7:d8:f5:3f:ca:1a:e4:e4:88:22:95:bb: 84:cb:4f:03:ed:fb:a0:77:88:6f:53:7f:06:7c:eb:60:3e:93: ae:fd:40:8b:a7:d7:bf:49:0b:c1:57:8f:f5:63:c0:bd:7b:89: b1:69:e0:55:1e:11:c7:df:4e:75:20:a8:e0:83:aa:a0:39:b0: ac:d3:29:a8:5d:6a:59:c3:de:72:b9:e6:5c:8e:17:d8:a9:0b: ab:a4:c4:fc:8d:15:05:37:68:7c:59:79:e8:d4:2d:81:df:93: 13:f2:23:c7:6a:0d:0b:ff:ce:34:c5:50:e1:ab:2e:c2:17:af: f1:21:d2:ab:d3:21:c5:17:38:13:9d:2d:d1:d4:9d:50:44:71: 94:c2:43:1e:01:55:7b:de:bf:67:a7:46:7d:89:b3:92:99:29: 21:c8:be:45:e2:33:66:ed:78:8e:7d:00:c7:95:75:70:77:5d: 36:e5:cb:35:5e:f0:33:83:93:dd:2f:f4:86:61:11:45:cd:fa: ed:8d:e3:22:eb:fc:02:09:07:dd:1e:9b:8b:ee:55:33:ab:6b: d3:b3:dd:cc:19:7b:65:30:71:6a:97:c1:bb:8d:7e:39:8a:a2: 08:05:40:21 -----BEGIN CERTIFICATE----- MIIFODCCBCCgAwIBAgISAZt+N4xn0TgTG4OXT1W3tvcmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwNDRmZDE5ODBiYTAxNzg4YTM1M2EyNmZlZjg5NTRlZDdj MTFmOTYwHhcNMjYwMTAyMTAxODQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNjlmYzA4ZmY5ZDE5MjEzMTllZmYzNGEyNTBkNDYxMWE3MTE1MjkwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtbIXl11Rw2rPhfVIQBCzo5vPJFos NCH8r6woFtpUmEuhI1bgUy499/lLNaSd1IuIYQYFb5rtdpllZAFRUi4lWoJVFe7A n0YydMgGjwmHgrWrVthfNhEJAj1iGwNZnTIbmwpx39hLp/lbtnkuiRYEaih87Z2t TauyrzstTmRDhofUfF/YgtPw40vZiXDvMFYF2H13olppqTknrqfYIoRdi1y2c0rv kYry0y50X67OYHz4cDVMQYSUd2VqSESx/Hlmkeg1uW98ISKpcnZ29p+hvqdxvGi0 qQI/0zqVBiuRIHRULElyIZuSPioYCzuJhp97vXxRlP7ac+ZuKmrvtRIkdQIDAQAB o4ICRDCCAkAwHQYDVR0OBBYEFDafwI/50ZITGe/zSiUNRhGnEVKQMB8GA1UdIwQY MBaAFEBE/RmAugF4ijU6Jv74lU7XwR+WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUVUOUdZQzZBWGlLTlRvbV92aVZUdGZCSDVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny8xNWIxNmEtZjc2Yi00MWE0LTg4YmMt OTFjZjYxNmQyYzUyLzEvTnBfQWpfblJraE1aN19OS0pRMUdFYWNSVXBBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny8xNWIxNmEtZjc2Yi00MWE0LTg4YmMtOTFjZjYxNmQyYzUy LzEvUUVUOUdZQzZBWGlLTlRvbV92aVZUdGZCSDVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFoGCCsGAQUFBwEHAQH/BEswSTA4BAIAATAyAwQCUPl0AwQC ixwAAwQCjWKQMAwDBAObhcgDBAWbhcADBAK5JjADBAK5yrQDBAK5zvAwDQQCAAIw BwMFACoA/aAwDQYJKoZIhvcNAQELBQADggEBADMJj6ieTt8s3fdfgObkwxAG/H3Q RT3/e6fY9T/KGuTkiCKVu4TLTwPt+6B3iG9TfwZ862A+k679QIun179JC8FXj/Vj wL17ibFp4FUeEcffTnUgqOCDqqA5sKzTKahdalnD3nK55lyOF9ipC6ukxPyNFQU3 aHxZeejULYHfkxPyI8dqDQv/zjTFUOGrLsIXr/Eh0qvTIcUXOBOdLdHUnVBEcZTC Qx4BVXvev2enRn2Js5KZKSHIvkXiM2bteI59AMeVdXB3XTblyzVe8DODk90v9IZh EUXN+u2N4yLr/AIJB90em4vuVTOra9Oz3cwZe2UwcWqXwbuNfjmKoggFQCE= -----END CERTIFICATE-----Generated at Mon Feb 9 22:29:50 2026 by rpki-client