This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/Ns3wqnW5MkhzNfYLRhneE66Xt-Y.roa File: Ns3wqnW5MkhzNfYLRhneE66Xt-Y.roa (raw, json) Hash identifier: RAVJG9i5xY5vhyZoq0YeZbo3nMc7JfuZxq8CnkvhrrY= Subject key identifier: 36:CD:F0:AA:75:B9:32:48:73:35:F6:0B:46:19:DE:13:AE:97:B7:E6 Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8 Certificate serial: 019B7F816E4E8BC752E7CE7860E358520F07 Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/Ns3wqnW5MkhzNfYLRhneE66Xt-Y.roa Signing time: Fri 02 Jan 2026 16:19:07 +0000 ROA not before: Fri 02 Jan 2026 16:19:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 2856 IP address blocks: 170.246.64.0/22 maxlen: 24 185.102.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.mft rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 07:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:81:6e:4e:8b:c7:52:e7:ce:78:60:e3:58:52:0f:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8 Validity Not Before: Jan 2 16:19:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=36cdf0aa75b932487335f60b4619de13ae97b7e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:55:9a:40:db:8f:5f:25:e1:fc:ef:5e:03:57: 25:46:0a:d7:5f:e5:c1:4a:b7:e0:c6:a5:c7:fc:10: 15:aa:63:b9:ab:37:61:67:25:3c:a4:89:e5:6e:51: 56:64:1f:66:51:cc:40:bc:d4:a5:61:29:79:f0:c7: 81:b6:05:eb:2a:ad:da:68:c1:62:1d:7c:0f:dd:d1: df:fd:6c:7d:a8:98:9b:1c:30:54:ca:97:51:d7:c9: 53:af:d5:95:25:4c:a6:2b:ee:4a:4f:91:44:73:49: e4:71:f7:81:02:c0:22:6e:71:02:b8:c9:3a:09:1a: 6d:3f:1b:43:04:a4:52:ba:39:09:b0:3b:84:dd:a4: b4:00:84:1d:cd:ec:0e:9a:71:43:ad:8b:09:bc:21: a4:bb:2c:78:b4:ec:c2:3d:cf:26:72:3c:ef:14:58: be:a2:a2:89:a9:96:63:c7:b9:b1:ab:7c:dd:62:05: 37:60:92:18:24:e6:3e:22:15:8a:97:49:0d:4b:6b: 27:31:0d:08:29:5b:a8:b2:4d:cb:81:9d:df:d3:df: 38:75:3b:54:ac:96:d5:1c:3c:db:df:f7:e6:0c:55: 5b:25:7b:cd:3e:2b:5f:71:3a:cc:6f:ca:5b:57:1d: 0b:e9:0b:24:42:f9:19:83:1d:26:53:54:9a:7e:69: 6d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:CD:F0:AA:75:B9:32:48:73:35:F6:0B:46:19:DE:13:AE:97:B7:E6 X509v3 Authority Key Identifier: keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/Ns3wqnW5MkhzNfYLRhneE66Xt-Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.246.64.0/22 185.102.4.0/22 Signature Algorithm: sha256WithRSAEncryption 94:49:91:c2:3a:c6:9c:66:6f:36:3e:0f:2e:7b:80:a3:09:18: 8e:8e:54:99:ee:44:7b:54:7b:8b:b9:7f:ec:4a:23:47:bc:1a: d2:c5:07:53:44:e9:68:6c:c1:02:09:72:eb:57:74:80:a2:08: 8f:d5:cc:41:8a:2b:36:33:de:57:30:42:3e:8d:c8:fc:85:ef: 30:44:e4:84:8c:5c:b0:f3:70:ca:4d:22:b5:af:55:3b:89:2d: 23:25:9c:0d:f0:6f:cc:d8:a5:f7:ce:0e:bf:d0:7a:d5:4b:19: fc:bd:1a:5f:75:28:78:26:1e:ac:52:67:0d:57:f7:85:3e:3c: 42:5b:24:62:98:98:9c:8b:6e:cf:28:bc:e7:c1:76:0b:33:9c: a1:de:74:40:26:d2:01:d1:83:89:85:08:4a:59:b1:c3:41:08: d5:88:fb:bd:76:65:54:cd:c9:61:10:11:fb:aa:e1:b3:3b:df: f8:fe:c8:34:b9:2b:37:13:63:11:f9:32:05:3a:c6:37:4f:76: 95:d9:81:c0:5d:6b:52:0d:c9:f1:8d:2f:50:f6:27:59:4a:3f: b4:59:3c:3a:d9:7f:09:7a:b8:db:a0:a3:1c:d9:48:d2:c7:47: 88:53:8d:42:5d:07:e9:49:4d:22:ee:a1:f5:ba:08:26:97:54: 2e:e4:45:08 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/gW5Oi8dS5854YONYUg8HMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyNjYwNWI0ZDI3ZjEzOTY4ZTg3OTRlNmVmMDkxMjIzNzQ4 ODE3ZDgwHhcNMjYwMTAyMTYxOTA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNmNkZjBhYTc1YjkzMjQ4NzMzNWY2MGI0NjE5ZGUxM2FlOTdiN2U2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA11WaQNuPXyXh/O9eA1clRgrXX+XB SrfgxqXH/BAVqmO5qzdhZyU8pInlblFWZB9mUcxAvNSlYSl58MeBtgXrKq3aaMFi HXwP3dHf/Wx9qJibHDBUypdR18lTr9WVJUymK+5KT5FEc0nkcfeBAsAibnECuMk6 CRptPxtDBKRSujkJsDuE3aS0AIQdzewOmnFDrYsJvCGkuyx4tOzCPc8mcjzvFFi+ oqKJqZZjx7mxq3zdYgU3YJIYJOY+IhWKl0kNS2snMQ0IKVuosk3LgZ3f0984dTtU rJbVHDzb3/fmDFVbJXvNPitfcTrMb8pbVx0L6QskQvkZgx0mU1SafmltPQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFDbN8Kp1uTJIczX2C0YZ3hOul7fmMB8GA1UdIwQY MBaAFIJmBbTSfxOWjoeU5u8JEiN0iBfYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ21ZRnROSl9FNWFPaDVUbTd3a1NJM1NJRjlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny9mYmNjMzItMzNjOC00MWZmLTg5ZmEt MmQxOTE4YmExYzBlLzEvTnMzd3FuVzVNa2h6TmZZTFJobmVFNjZYdC1ZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny9mYmNjMzItMzNjOC00MWZmLTg5ZmEtMmQxOTE4YmExYzBl LzEvZ21ZRnROSl9FNWFPaDVUbTd3a1NJM1NJRjlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCqvZAAwQC uWYEMA0GCSqGSIb3DQEBCwUAA4IBAQCUSZHCOsacZm82Pg8ue4CjCRiOjlSZ7kR7 VHuLuX/sSiNHvBrSxQdTROlobMECCXLrV3SAogiP1cxBiis2M95XMEI+jcj8he8w ROSEjFyw83DKTSK1r1U7iS0jJZwN8G/M2KX3zg6/0HrVSxn8vRpfdSh4Jh6sUmcN V/eFPjxCWyRimJici27PKLznwXYLM5yh3nRAJtIB0YOJhQhKWbHDQQjViPu9dmVU zclhEBH7quGzO9/4/sg0uSs3E2MR+TIFOsY3T3aV2YHAXWtSDcnxjS9Q9idZSj+0 WTw62X8JerjboKMc2UjSx0eIU41CXQfpSU0i7qH1uggml1Qu5EUI -----END CERTIFICATE-----Generated at Thu Jan 8 17:33:28 2026 by rpki-client