This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/5edf7a-ab9a-45e7-a612-d169c088b412/1/0NKhDKM-5Ss2PkXpqTneoEemaz8.roa File: 0NKhDKM-5Ss2PkXpqTneoEemaz8.roa (raw, json) Hash identifier: Ast2f0yb+CsukurTEugrLSF0q9KXQ7PgzYdbYYQejg4= Subject key identifier: D0:D2:A1:0C:A3:3E:E5:2B:36:3E:45:E9:A9:39:DE:A0:47:A6:6B:3F Certificate issuer: /CN=11b69b59d19f2987e49f1852d60bb1777f80a301 Certificate serial: 019B76EAEAF8D2F7577DE1C3C146314234BA Authority key identifier: 11:B6:9B:59:D1:9F:29:87:E4:9F:18:52:D6:0B:B1:77:7F:80:A3:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EbabWdGfKYfknxhS1guxd3-AowE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/5edf7a-ab9a-45e7-a612-d169c088b412/1/0NKhDKM-5Ss2PkXpqTneoEemaz8.roa Signing time: Thu 01 Jan 2026 00:17:45 +0000 ROA not before: Thu 01 Jan 2026 00:17:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61976 IP address blocks: 79.141.64.0/20 maxlen: 24 79.141.64.0/24 maxlen: 24 79.141.65.0/24 maxlen: 24 79.141.66.0/24 maxlen: 24 92.242.62.0/23 maxlen: 23 92.255.62.0/23 maxlen: 24 185.42.164.0/22 maxlen: 24 185.193.90.0/23 maxlen: 24 2a00:ab00:6000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/5edf7a-ab9a-45e7-a612-d169c088b412/1/EbabWdGfKYfknxhS1guxd3-AowE.crl rsync://rpki.ripe.net/repository/DEFAULT/70/5edf7a-ab9a-45e7-a612-d169c088b412/1/EbabWdGfKYfknxhS1guxd3-AowE.mft rsync://rpki.ripe.net/repository/DEFAULT/EbabWdGfKYfknxhS1guxd3-AowE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:ea:f8:d2:f7:57:7d:e1:c3:c1:46:31:42:34:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11b69b59d19f2987e49f1852d60bb1777f80a301 Validity Not Before: Jan 1 00:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d0d2a10ca33ee52b363e45e9a939dea047a66b3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:8d:c8:12:86:ed:4e:a8:4d:57:6a:90:97:e1: 3e:a8:fc:9f:30:3e:c5:d5:6f:83:13:70:0e:ae:c4: d7:56:e8:d8:b5:a8:39:fa:53:45:95:ca:31:20:ca: 90:5c:21:c7:a1:3d:aa:22:72:50:c6:e0:2c:b0:0c: b4:00:2d:90:14:84:99:83:3a:33:b1:1e:93:84:52: 56:b9:d5:f6:cc:9a:65:4f:d2:9e:50:d5:dd:25:3f: 2a:01:98:c8:a9:c4:52:12:74:ab:a4:e7:12:e6:d0: 2f:be:1f:34:e8:ea:ca:e5:3f:9a:4f:ed:d1:18:68: 1e:e8:8a:eb:3b:81:e1:c6:39:6c:ce:ab:e6:d1:15: 63:aa:79:23:31:a5:2d:45:75:6c:18:59:cd:06:eb: 0d:4a:41:32:5d:8b:d6:52:a5:38:b6:8f:7e:6a:eb: 5c:48:bb:90:39:91:ba:f9:95:85:84:f3:e7:5e:54: 45:39:81:c7:3b:57:84:e8:b4:bc:ff:cb:60:67:50: 99:35:71:13:9f:a9:d4:8e:54:a0:86:fa:1e:c9:4c: 25:72:06:2b:74:ae:6f:28:2b:a2:a3:4a:89:1d:95: 19:2b:7d:70:bb:6d:df:62:44:96:c1:12:5c:e2:22: ee:cf:ef:d6:6a:64:67:77:31:8a:b1:84:b8:77:cb: a9:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:D2:A1:0C:A3:3E:E5:2B:36:3E:45:E9:A9:39:DE:A0:47:A6:6B:3F X509v3 Authority Key Identifier: keyid:11:B6:9B:59:D1:9F:29:87:E4:9F:18:52:D6:0B:B1:77:7F:80:A3:01 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EbabWdGfKYfknxhS1guxd3-AowE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/5edf7a-ab9a-45e7-a612-d169c088b412/1/0NKhDKM-5Ss2PkXpqTneoEemaz8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/70/5edf7a-ab9a-45e7-a612-d169c088b412/1/EbabWdGfKYfknxhS1guxd3-AowE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.141.64.0/20 92.242.62.0/23 92.255.62.0/23 185.42.164.0/22 185.193.90.0/23 IPv6: 2a00:ab00:6000::/36 Signature Algorithm: sha256WithRSAEncryption 96:1a:78:96:f0:c8:1c:ac:36:87:33:1d:53:98:21:63:77:ed: 77:b4:9c:cc:5f:6f:10:5c:60:b9:6c:4b:11:86:29:a6:22:40: ef:d9:e7:db:01:3e:5a:d5:42:a7:22:20:56:69:f3:fa:b6:46: 94:01:03:a1:e8:f1:ef:2b:35:2d:b7:08:ef:c9:28:df:ac:c3: 48:27:ef:9c:ce:de:99:ab:9b:61:71:eb:65:57:36:b9:02:1a: d9:c2:d4:16:24:04:38:57:50:26:bb:16:d4:6b:dc:1b:de:94: c2:10:47:c6:97:70:00:d4:ed:36:65:f4:11:1b:be:5b:aa:9d: aa:c3:c3:8e:45:53:53:8d:37:8c:7f:e2:bc:b9:b0:65:fc:ed: d3:ac:0e:45:6c:9d:5c:fd:9d:bf:d2:80:5f:d1:94:d3:d7:d0: dc:ef:9a:8c:20:8c:0e:e8:e2:ff:2c:da:6f:4c:e0:aa:71:84: 57:f9:b8:b2:4f:5a:f5:c4:1f:23:72:b7:ad:85:03:25:95:73: c4:47:e4:3b:48:fe:da:b0:fc:85:21:67:7e:35:7f:97:d6:c9: 4b:a1:ca:f1:0e:79:d3:ae:5c:18:d2:01:d6:ad:4f:29:f0:13: 03:fd:47:f8:3c:38:e8:d2:e9:4f:07:49:7f:dd:e4:fd:0b:24: 75:b2:b8:0c -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgISAZt26ur40vdXfeHDwUYxQjS6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExYjY5YjU5ZDE5ZjI5ODdlNDlmMTg1MmQ2MGJiMTc3N2Y4 MGEzMDEwHhcNMjYwMTAxMDAxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMGQyYTEwY2EzM2VlNTJiMzYzZTQ1ZTlhOTM5ZGVhMDQ3YTY2YjNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs43IEobtTqhNV2qQl+E+qPyfMD7F 1W+DE3AOrsTXVujYtag5+lNFlcoxIMqQXCHHoT2qInJQxuAssAy0AC2QFISZgzoz sR6ThFJWudX2zJplT9KeUNXdJT8qAZjIqcRSEnSrpOcS5tAvvh806OrK5T+aT+3R GGge6IrrO4Hhxjlszqvm0RVjqnkjMaUtRXVsGFnNBusNSkEyXYvWUqU4to9+autc SLuQOZG6+ZWFhPPnXlRFOYHHO1eE6LS8/8tgZ1CZNXETn6nUjlSghvoeyUwlcgYr dK5vKCuio0qJHZUZK31wu23fYkSWwRJc4iLuz+/WamRndzGKsYS4d8upxQIDAQAB o4ICMTCCAi0wHQYDVR0OBBYEFNDSoQyjPuUrNj5F6ak53qBHpms/MB8GA1UdIwQY MBaAFBG2m1nRnymH5J8YUtYLsXd/gKMBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRWJhYldkR2ZLWWZrbnhoUzFndXhkMy1Bb3dFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC81ZWRmN2EtYWI5YS00NWU3LWE2MTIt ZDE2OWMwODhiNDEyLzEvME5LaERLTS01U3MyUGtYcHFUbmVvRWVtYXo4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MC81ZWRmN2EtYWI5YS00NWU3LWE2MTItZDE2OWMwODhiNDEy LzEvRWJhYldkR2ZLWWZrbnhoUzFndXhkMy1Bb3dFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEcGCCsGAQUFBwEHAQH/BDgwNjAkBAIAATAeAwQET41AAwQB XPI+AwQBXP8+AwQCuSqkAwQBucFaMA4EAgACMAgDBgQqAKsAYDANBgkqhkiG9w0B AQsFAAOCAQEAlhp4lvDIHKw2hzMdU5ghY3ftd7SczF9vEFxguWxLEYYppiJA79nn 2wE+WtVCpyIgVmnz+rZGlAEDoejx7ys1LbcI78ko36zDSCfvnM7emaubYXHrZVc2 uQIa2cLUFiQEOFdQJrsW1GvcG96UwhBHxpdwANTtNmX0ERu+W6qdqsPDjkVTU403 jH/ivLmwZfzt06wORWydXP2dv9KAX9GU09fQ3O+ajCCMDuji/yzab0zgqnGEV/m4 sk9a9cQfI3K3rYUDJZVzxEfkO0j+2rD8hSFnfjV/l9bJS6HK8Q55065cGNIB1q1P KfATA/1H+Dw46NLpTwdJf93k/QskdbK4DA== -----END CERTIFICATE-----Generated at Mon Jan 26 07:57:35 2026 by rpki-client