This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/811e73-cf30-494d-acac-8420ae9e0622/1/nwtdhhsA3tvO15UW5ngy7VolYDA.roa File: nwtdhhsA3tvO15UW5ngy7VolYDA.roa (raw, json) Hash identifier: jJBsatbPceBiOY7mvKtU7D/vsxD74iAJJTBCJFC0Hqs= Subject key identifier: 9F:0B:5D:86:1B:00:DE:DB:CE:D7:95:16:E6:78:32:ED:5A:25:60:30 Certificate issuer: /CN=a8801be2363f211bd2f57818adeaf9c0dbe14bdb Certificate serial: 019B7E374D7D6D5F4CFCC2208AF7B708B54B Authority key identifier: A8:80:1B:E2:36:3F:21:1B:D2:F5:78:18:AD:EA:F9:C0:DB:E1:4B:DB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qIAb4jY_IRvS9XgYrer5wNvhS9s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/811e73-cf30-494d-acac-8420ae9e0622/1/nwtdhhsA3tvO15UW5ngy7VolYDA.roa Signing time: Fri 02 Jan 2026 10:18:32 +0000 ROA not before: Fri 02 Jan 2026 10:18:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 82.115.214.0/24 maxlen: 24 185.66.202.0/24 maxlen: 24 185.66.203.0/24 maxlen: 24 185.237.4.0/24 maxlen: 24 185.237.5.0/24 maxlen: 24 185.237.6.0/24 maxlen: 24 185.237.7.0/24 maxlen: 24 2a07:e3c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/811e73-cf30-494d-acac-8420ae9e0622/1/qIAb4jY_IRvS9XgYrer5wNvhS9s.crl rsync://rpki.ripe.net/repository/DEFAULT/71/811e73-cf30-494d-acac-8420ae9e0622/1/qIAb4jY_IRvS9XgYrer5wNvhS9s.mft rsync://rpki.ripe.net/repository/DEFAULT/qIAb4jY_IRvS9XgYrer5wNvhS9s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:4d:7d:6d:5f:4c:fc:c2:20:8a:f7:b7:08:b5:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a8801be2363f211bd2f57818adeaf9c0dbe14bdb Validity Not Before: Jan 2 10:18:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9f0b5d861b00dedbced79516e67832ed5a256030 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:4a:43:b0:4f:32:de:6f:d5:d9:a5:de:95:d4: 85:8e:82:bc:2c:8b:e5:31:3d:62:77:4b:56:d1:66: 9c:cc:b8:00:53:52:82:16:bf:a2:95:99:a2:22:56: 92:c7:7c:00:97:13:11:21:35:5f:4f:62:36:67:7d: 35:a2:aa:67:b9:b2:24:ff:d9:e7:14:4a:2c:41:28: 63:9b:48:53:01:21:af:51:d7:83:26:f1:c6:dd:64: ad:42:0a:47:44:9a:5a:18:db:77:74:3b:1c:d1:ed: 9a:b9:94:5f:5b:00:d2:48:ba:bc:d1:66:22:5f:cb: 06:97:85:5f:64:28:59:5b:88:47:f3:08:67:96:95: 20:fd:31:38:c1:7d:ae:52:81:fd:c2:af:72:81:3c: 97:fe:cd:d7:36:50:f3:fb:e5:08:f5:e7:5a:1b:04: 33:9e:d1:13:92:0d:80:99:f4:51:cd:f6:2a:b9:af: f4:8d:20:65:a5:f9:ae:22:82:28:e6:f2:b0:39:57: 67:80:5e:7d:33:6b:54:af:20:dd:6d:16:bb:59:5c: a8:26:09:20:ef:bb:d2:df:39:da:1c:bd:60:00:31: 59:ee:b3:17:45:af:1b:b2:b7:59:40:b0:c6:62:23: 26:4b:f4:b9:a2:7c:89:90:c1:81:eb:7e:8b:d0:4b: c3:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:0B:5D:86:1B:00:DE:DB:CE:D7:95:16:E6:78:32:ED:5A:25:60:30 X509v3 Authority Key Identifier: keyid:A8:80:1B:E2:36:3F:21:1B:D2:F5:78:18:AD:EA:F9:C0:DB:E1:4B:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qIAb4jY_IRvS9XgYrer5wNvhS9s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/811e73-cf30-494d-acac-8420ae9e0622/1/nwtdhhsA3tvO15UW5ngy7VolYDA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/71/811e73-cf30-494d-acac-8420ae9e0622/1/qIAb4jY_IRvS9XgYrer5wNvhS9s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.115.214.0/24 185.66.202.0/23 185.237.4.0/22 IPv6: 2a07:e3c0::/48 Signature Algorithm: sha256WithRSAEncryption 36:ba:55:e0:f3:77:c9:57:94:ca:ad:a1:40:4d:ed:33:da:5f: 6c:c9:76:e9:4a:36:1d:75:97:c6:73:10:e4:ad:53:4c:d8:48: c8:23:1b:1f:af:b4:d2:d2:87:60:7e:40:df:e6:ec:a3:00:0b: 9a:f1:bc:b5:d6:ba:ee:50:92:fc:47:75:f4:77:2f:b1:bf:55: 7b:55:6e:09:de:a5:19:ab:b8:3d:48:20:92:15:0a:cf:99:b6: a2:12:32:b8:07:fd:22:47:bb:9b:0a:e3:da:eb:6b:7c:a4:ab: 97:d6:20:c2:ff:15:11:60:d9:5c:1b:69:b9:98:5d:90:4a:9e: e3:7c:95:c7:d4:dc:82:ae:d9:80:38:0a:d5:89:55:05:a8:b8: f6:98:82:22:9a:3f:50:fe:3e:ec:d0:94:79:d4:58:8e:a2:0d: 7e:a7:12:a0:7f:6b:22:14:43:3e:43:53:5b:9f:a6:b8:6b:80: 41:65:75:24:d6:60:19:92:9b:c5:78:51:63:b8:0f:60:f6:a5: 51:2e:6d:55:24:34:5f:99:c0:00:1d:6a:1b:65:84:98:83:eb: 20:bd:d2:95:91:0e:29:17:fd:3e:ff:3e:fd:a1:61:7e:bd:dc: 8a:95:08:db:e8:93:76:24:e4:4b:5f:e7:98:9e:d7:a4:ba:f6: fc:c4:c8:da -----BEGIN CERTIFICATE----- MIIFGjCCBAKgAwIBAgISAZt+N019bV9M/MIgive3CLVLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4ODAxYmUyMzYzZjIxMWJkMmY1NzgxOGFkZWFmOWMwZGJl MTRiZGIwHhcNMjYwMTAyMTAxODMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZjBiNWQ4NjFiMDBkZWRiY2VkNzk1MTZlNjc4MzJlZDVhMjU2MDMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA70pDsE8y3m/V2aXeldSFjoK8LIvl MT1id0tW0WaczLgAU1KCFr+ilZmiIlaSx3wAlxMRITVfT2I2Z301oqpnubIk/9nn FEosQShjm0hTASGvUdeDJvHG3WStQgpHRJpaGNt3dDsc0e2auZRfWwDSSLq80WYi X8sGl4VfZChZW4hH8whnlpUg/TE4wX2uUoH9wq9ygTyX/s3XNlDz++UI9edaGwQz ntETkg2AmfRRzfYqua/0jSBlpfmuIoIo5vKwOVdngF59M2tUryDdbRa7WVyoJgkg 77vS3znaHL1gADFZ7rMXRa8bsrdZQLDGYiMmS/S5onyJkMGB636L0EvD/QIDAQAB o4ICJjCCAiIwHQYDVR0OBBYEFJ8LXYYbAN7bzteVFuZ4Mu1aJWAwMB8GA1UdIwQY MBaAFKiAG+I2PyEb0vV4GK3q+cDb4UvbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUlBYjRqWV9JUnZTOVhnWXJlcjV3TnZoUzlzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS84MTFlNzMtY2YzMC00OTRkLWFjYWMt ODQyMGFlOWUwNjIyLzEvbnd0ZGhoc0EzdHZPMTVVVzVuZ3k3Vm9sWURBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MS84MTFlNzMtY2YzMC00OTRkLWFjYWMtODQyMGFlOWUwNjIy LzEvcUlBYjRqWV9JUnZTOVhnWXJlcjV3TnZoUzlzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDwGCCsGAQUFBwEHAQH/BC0wKzAYBAIAATASAwQAUnPWAwQB uULKAwQCue0EMA8EAgACMAkDBwAqB+PAAAAwDQYJKoZIhvcNAQELBQADggEBADa6 VeDzd8lXlMqtoUBN7TPaX2zJdulKNh11l8ZzEOStU0zYSMgjGx+vtNLSh2B+QN/m 7KMAC5rxvLXWuu5QkvxHdfR3L7G/VXtVbgnepRmruD1IIJIVCs+ZtqISMrgH/SJH u5sK49rra3ykq5fWIML/FRFg2VwbabmYXZBKnuN8lcfU3IKu2YA4CtWJVQWouPaY giKaP1D+PuzQlHnUWI6iDX6nEqB/ayIUQz5DU1ufprhrgEFldSTWYBmSm8V4UWO4 D2D2pVEubVUkNF+ZwAAdahtlhJiD6yC90pWRDikX/T7/Pv2hYX693IqVCNvok3Yk 5Etf55ie16S69vzEyNo= -----END CERTIFICATE-----Generated at Wed Jan 7 23:48:08 2026 by rpki-client