This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/93c9d8-5183-407b-82d0-8ee5fa4331be/1/NsdXDCnzr4590L84uVHj6A-rQWE.roa File: NsdXDCnzr4590L84uVHj6A-rQWE.roa (raw, json) Hash identifier: ExcB5KegSlmidjQw2opqqX9GUSJEOoKsReLnZIeYpgk= Subject key identifier: 36:C7:57:0C:29:F3:AF:8E:7D:D0:BF:38:B9:51:E3:E8:0F:AB:41:61 Certificate issuer: /CN=102bc98d33270952534130afb4de696d8c340215 Certificate serial: 019B7F8563111E7DF5AB107C180EC3C3EED8 Authority key identifier: 10:2B:C9:8D:33:27:09:52:53:41:30:AF:B4:DE:69:6D:8C:34:02:15 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ECvJjTMnCVJTQTCvtN5pbYw0AhU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/93c9d8-5183-407b-82d0-8ee5fa4331be/1/NsdXDCnzr4590L84uVHj6A-rQWE.roa Signing time: Fri 02 Jan 2026 16:23:26 +0000 ROA not before: Fri 02 Jan 2026 16:23:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49126 IP address blocks: 185.95.164.0/24 maxlen: 24 185.95.165.0/24 maxlen: 24 185.95.166.0/24 maxlen: 24 185.95.167.0/24 maxlen: 24 185.153.220.0/24 maxlen: 24 185.153.221.0/24 maxlen: 24 185.153.222.0/24 maxlen: 24 185.153.223.0/24 maxlen: 24 185.216.112.0/24 maxlen: 24 185.216.113.0/24 maxlen: 24 185.216.114.0/24 maxlen: 24 185.216.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/93c9d8-5183-407b-82d0-8ee5fa4331be/1/ECvJjTMnCVJTQTCvtN5pbYw0AhU.crl rsync://rpki.ripe.net/repository/DEFAULT/89/93c9d8-5183-407b-82d0-8ee5fa4331be/1/ECvJjTMnCVJTQTCvtN5pbYw0AhU.mft rsync://rpki.ripe.net/repository/DEFAULT/ECvJjTMnCVJTQTCvtN5pbYw0AhU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:63:11:1e:7d:f5:ab:10:7c:18:0e:c3:c3:ee:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=102bc98d33270952534130afb4de696d8c340215 Validity Not Before: Jan 2 16:23:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=36c7570c29f3af8e7dd0bf38b951e3e80fab4161 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b0:64:a5:b0:24:f9:c2:e2:12:6f:68:66:01: 11:d0:9e:ab:8a:b4:45:3a:f7:6f:6a:70:47:08:d4: 2c:01:89:44:4b:a0:34:da:bc:bb:d4:9e:7e:ea:fc: 52:7f:13:f0:3d:c1:31:77:08:f7:35:e9:b3:9b:7c: d1:d0:4d:c1:95:83:c7:b4:43:54:06:33:d8:a0:33: a5:d6:72:61:90:6d:ba:98:ea:3b:ae:dd:29:3e:f7: 4f:86:62:61:b1:d3:f7:9b:39:c3:c7:18:1e:8e:1f: 2c:06:c0:3a:c6:57:88:1a:c3:64:61:d0:76:9b:50: 6a:d5:67:da:3b:37:7b:f9:ad:ed:7e:a8:53:f1:22: 86:66:45:3f:af:6f:eb:d0:a7:03:d1:94:06:79:fb: c3:51:a8:61:6e:ac:e9:aa:d9:0d:d3:35:44:90:ad: 65:0d:6e:c6:05:d9:b9:22:81:2b:4f:98:f3:41:60: c5:e0:9d:b5:7c:9e:d9:c8:61:6f:dd:f8:7c:f6:e1: 24:b5:b6:a3:c3:ec:61:54:80:a9:f8:1d:00:39:2f: eb:53:d5:19:2c:61:3d:ff:98:08:75:21:a7:dc:10: 4f:f6:84:0b:fd:ac:ef:f6:44:6a:71:b2:db:d5:3a: a1:02:2a:96:4f:9a:a5:9b:22:eb:53:0b:7f:f6:ed: 73:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:C7:57:0C:29:F3:AF:8E:7D:D0:BF:38:B9:51:E3:E8:0F:AB:41:61 X509v3 Authority Key Identifier: keyid:10:2B:C9:8D:33:27:09:52:53:41:30:AF:B4:DE:69:6D:8C:34:02:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ECvJjTMnCVJTQTCvtN5pbYw0AhU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/93c9d8-5183-407b-82d0-8ee5fa4331be/1/NsdXDCnzr4590L84uVHj6A-rQWE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/89/93c9d8-5183-407b-82d0-8ee5fa4331be/1/ECvJjTMnCVJTQTCvtN5pbYw0AhU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.95.164.0/22 185.153.220.0/22 185.216.112.0/22 Signature Algorithm: sha256WithRSAEncryption 4e:2d:64:f0:96:ce:7f:c4:1a:67:c5:9a:3d:72:1d:69:8f:8e: a9:b0:54:55:4b:1e:36:bd:50:ef:11:41:10:36:e9:9a:c1:61: db:da:6f:a4:c9:38:9f:d3:f7:39:09:b8:de:cb:b9:46:f0:c7: b4:0f:b8:22:22:bf:cd:ad:9d:9c:33:59:eb:4c:61:65:4c:67: a3:ac:99:9f:24:ed:57:86:b3:13:94:dc:5e:b5:5e:40:be:e6: ae:a0:03:24:89:63:e0:43:c3:ba:af:e7:6e:c9:dc:49:89:bf: f6:6d:81:52:26:fa:ed:40:81:52:f1:d3:c5:7a:a3:7e:87:21: d2:93:3f:22:e3:5a:7f:a0:a9:dc:95:a5:be:03:1d:1d:61:c3: e1:2a:46:68:84:75:e4:24:3d:39:52:3a:3a:b1:75:84:d7:e4: e6:b0:c9:1b:85:e9:41:4c:0a:7e:c2:2b:86:32:3b:84:56:96: b9:02:50:55:0b:b4:5b:6e:ec:a7:12:76:35:d5:0a:13:a0:b5: bd:d1:a1:5f:8b:0e:41:1a:d5:94:f6:cd:98:46:9a:18:53:a0: e6:12:b5:21:8b:c5:8f:7b:4b:99:c9:ca:0b:22:ff:bb:cb:8f: 0e:97:6e:49:39:e4:50:1a:2b:b6:bf:9a:17:3c:2d:fb:23:7b: f1:a6:e5:30 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt/hWMRHn31qxB8GA7Dw+7YMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEwMmJjOThkMzMyNzA5NTI1MzQxMzBhZmI0ZGU2OTZkOGMz NDAyMTUwHhcNMjYwMTAyMTYyMzI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNmM3NTcwYzI5ZjNhZjhlN2RkMGJmMzhiOTUxZTNlODBmYWI0MTYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArbBkpbAk+cLiEm9oZgER0J6rirRF OvdvanBHCNQsAYlES6A02ry71J5+6vxSfxPwPcExdwj3Nemzm3zR0E3BlYPHtENU BjPYoDOl1nJhkG26mOo7rt0pPvdPhmJhsdP3mznDxxgejh8sBsA6xleIGsNkYdB2 m1Bq1WfaOzd7+a3tfqhT8SKGZkU/r2/r0KcD0ZQGefvDUahhbqzpqtkN0zVEkK1l DW7GBdm5IoErT5jzQWDF4J21fJ7ZyGFv3fh89uEktbajw+xhVICp+B0AOS/rU9UZ LGE9/5gIdSGn3BBP9oQL/azv9kRqcbLb1TqhAiqWT5qlmyLrUwt/9u1zKQIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFDbHVwwp86+OfdC/OLlR4+gPq0FhMB8GA1UdIwQY MBaAFBAryY0zJwlSU0Ewr7TeaW2MNAIVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRUN2SmpUTW5DVkpUUVRDdnRONXBiWXcwQWhVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS85M2M5ZDgtNTE4My00MDdiLTgyZDAt OGVlNWZhNDMzMWJlLzEvTnNkWERDbnpyNDU5MEw4NHVWSGo2QS1yUVdFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OS85M2M5ZDgtNTE4My00MDdiLTgyZDAtOGVlNWZhNDMzMWJl LzEvRUN2SmpUTW5DVkpUUVRDdnRONXBiWXcwQWhVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCuV+kAwQC uZncAwQCudhwMA0GCSqGSIb3DQEBCwUAA4IBAQBOLWTwls5/xBpnxZo9ch1pj46p sFRVSx42vVDvEUEQNumawWHb2m+kyTif0/c5Cbjey7lG8Me0D7giIr/NrZ2cM1nr TGFlTGejrJmfJO1XhrMTlNxetV5AvuauoAMkiWPgQ8O6r+duydxJib/2bYFSJvrt QIFS8dPFeqN+hyHSkz8i41p/oKnclaW+Ax0dYcPhKkZohHXkJD05Ujo6sXWE1+Tm sMkbhelBTAp+wiuGMjuEVpa5AlBVC7RbbuynEnY11QoToLW90aFfiw5BGtWU9s2Y RpoYU6DmErUhi8WPe0uZycoLIv+7y48Ol25JOeRQGiu2v5oXPC37I3vxpuUw -----END CERTIFICATE-----Generated at Mon Feb 9 22:17:14 2026 by rpki-client