This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/45c689-afaa-4da3-a942-93194eb6108d/1/NF7flV9Z7UaOMGg6mJH46C1-Xq0.roa File: NF7flV9Z7UaOMGg6mJH46C1-Xq0.roa (raw, json) Hash identifier: fmiuFA8CeszA+aip616DB8dgdxALGZBhtxt21OyYIWM= Subject key identifier: 34:5E:DF:95:5F:59:ED:46:8E:30:68:3A:98:91:F8:E8:2D:7E:5E:AD Certificate issuer: /CN=6e6d7bcabfcc308d420053c482a0d59fb1282e30 Certificate serial: 019B7EA6A8207CC9D14F328849CF6E5C2C5D Authority key identifier: 6E:6D:7B:CA:BF:CC:30:8D:42:00:53:C4:82:A0:D5:9F:B1:28:2E:30 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bm17yr_MMI1CAFPEgqDVn7EoLjA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/45c689-afaa-4da3-a942-93194eb6108d/1/NF7flV9Z7UaOMGg6mJH46C1-Xq0.roa Signing time: Fri 02 Jan 2026 12:20:09 +0000 ROA not before: Fri 02 Jan 2026 12:20:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198949 IP address blocks: 145.219.8.0/24 maxlen: 24 145.219.9.0/24 maxlen: 24 145.219.10.0/24 maxlen: 24 145.219.11.0/24 maxlen: 24 145.219.12.0/24 maxlen: 24 145.219.13.0/24 maxlen: 24 145.219.14.0/24 maxlen: 24 145.219.15.0/24 maxlen: 24 145.219.16.0/24 maxlen: 24 145.219.17.0/24 maxlen: 24 2a04:b0c0::/45 maxlen: 45 2a04:b0c0:8::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/45c689-afaa-4da3-a942-93194eb6108d/1/bm17yr_MMI1CAFPEgqDVn7EoLjA.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/45c689-afaa-4da3-a942-93194eb6108d/1/bm17yr_MMI1CAFPEgqDVn7EoLjA.mft rsync://rpki.ripe.net/repository/DEFAULT/bm17yr_MMI1CAFPEgqDVn7EoLjA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:a8:20:7c:c9:d1:4f:32:88:49:cf:6e:5c:2c:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6e6d7bcabfcc308d420053c482a0d59fb1282e30 Validity Not Before: Jan 2 12:20:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=345edf955f59ed468e30683a9891f8e82d7e5ead Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:16:c2:39:d6:6a:b4:21:c2:f6:a1:53:20:f3: f6:b1:db:a6:2e:10:a8:d1:ad:79:76:42:cb:e8:46: 16:15:5d:6f:3b:e2:43:9b:0b:a9:8c:f8:b0:21:af: 59:f2:1f:5b:13:70:17:24:48:53:74:90:52:21:f0: d1:24:56:42:cb:ed:ef:56:64:65:41:03:1e:f4:63: 44:fe:e8:1c:d3:2a:0f:70:1d:e9:19:39:9e:41:14: 90:33:79:96:a7:5f:a4:ac:1b:ff:f6:ed:c9:79:84: 50:5a:3e:0d:7b:15:d2:89:b8:0a:cf:aa:7d:01:ba: 7b:37:68:50:93:97:84:64:4a:d7:bf:f3:72:65:c6: 6d:7e:09:30:59:a8:fc:4f:48:0c:0d:bc:ce:85:b9: 5c:0e:81:8a:a6:2f:97:45:2b:46:45:c6:66:42:d4: d4:e9:c4:40:9a:b6:c9:96:85:dc:79:26:5f:21:03: 0e:3a:85:3c:b9:c7:4f:19:c3:88:c5:ed:39:67:ca: 6f:10:5a:fb:81:25:0f:f5:22:ac:49:4e:f0:9d:a4: 1b:8e:5c:e1:ee:5b:41:8c:15:a4:ad:d2:12:a7:7e: ec:23:06:09:48:23:23:a1:f9:fa:32:ce:7b:60:b5: f9:0c:0d:94:b3:d9:ae:4d:6a:e4:a2:f8:b9:6d:97: c5:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:5E:DF:95:5F:59:ED:46:8E:30:68:3A:98:91:F8:E8:2D:7E:5E:AD X509v3 Authority Key Identifier: keyid:6E:6D:7B:CA:BF:CC:30:8D:42:00:53:C4:82:A0:D5:9F:B1:28:2E:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bm17yr_MMI1CAFPEgqDVn7EoLjA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/45c689-afaa-4da3-a942-93194eb6108d/1/NF7flV9Z7UaOMGg6mJH46C1-Xq0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/45c689-afaa-4da3-a942-93194eb6108d/1/bm17yr_MMI1CAFPEgqDVn7EoLjA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 145.219.8.0-145.219.17.255 IPv6: 2a04:b0c0::/44 Signature Algorithm: sha256WithRSAEncryption 92:82:b3:c6:5e:06:e7:9c:84:a2:2f:ab:75:1d:d6:38:85:a7: fc:d8:64:56:bd:52:1e:7b:9c:cd:b7:7f:9f:2b:a2:48:74:21: fd:bd:c0:6e:b8:96:57:7e:36:96:b7:fb:b0:25:31:da:4b:9d: a0:3e:d9:6f:a2:94:ed:97:f1:12:b3:dc:91:cf:71:6b:8c:1c: 40:9d:a4:a5:09:87:9f:55:37:87:91:69:21:78:5f:aa:6b:b6: 49:64:17:78:13:ba:c8:dc:9b:04:32:d2:24:ac:ad:8a:7a:01: 6e:46:49:74:6a:62:7b:76:f8:b7:9e:73:46:89:2c:50:f5:45: 0a:40:2b:89:66:b3:a8:d2:a8:20:b0:41:d8:ee:5e:42:a6:7c: 9b:4c:dc:87:e3:54:bc:9b:69:bf:34:4a:e4:2f:ec:df:1d:88: 46:1a:60:00:86:30:06:28:46:fc:d6:6a:7a:4f:27:a0:36:6e: 3e:a1:45:d3:49:5b:ed:3a:bb:3d:e6:b2:28:96:e2:81:6d:00: 51:13:e1:2a:c5:56:7a:12:ff:1d:0f:c3:08:3f:30:04:ff:91: 08:6e:97:99:25:e9:e7:e8:5e:ce:5f:33:9d:5b:ca:aa:f9:2f: 1c:f0:d1:89:79:b5:00:6f:52:55:e5:c4:6d:25:2d:1c:55:4d: 4a:9d:71:50 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZt+pqggfMnRTzKISc9uXCxdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZlNmQ3YmNhYmZjYzMwOGQ0MjAwNTNjNDgyYTBkNTlmYjEy ODJlMzAwHhcNMjYwMTAyMTIyMDA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNDVlZGY5NTVmNTllZDQ2OGUzMDY4M2E5ODkxZjhlODJkN2U1ZWFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvRbCOdZqtCHC9qFTIPP2sdumLhCo 0a15dkLL6EYWFV1vO+JDmwupjPiwIa9Z8h9bE3AXJEhTdJBSIfDRJFZCy+3vVmRl QQMe9GNE/ugc0yoPcB3pGTmeQRSQM3mWp1+krBv/9u3JeYRQWj4NexXSibgKz6p9 Abp7N2hQk5eEZErXv/NyZcZtfgkwWaj8T0gMDbzOhblcDoGKpi+XRStGRcZmQtTU 6cRAmrbJloXceSZfIQMOOoU8ucdPGcOIxe05Z8pvEFr7gSUP9SKsSU7wnaQbjlzh 7ltBjBWkrdISp37sIwYJSCMjofn6Ms57YLX5DA2Us9muTWrkovi5bZfFkwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDRe35VfWe1GjjBoOpiR+Ogtfl6tMB8GA1UdIwQY MBaAFG5te8q/zDCNQgBTxIKg1Z+xKC4wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYm0xN3lyX01NSTFDQUZQRWdxRFZuN0VvTGpBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy80NWM2ODktYWZhYS00ZGEzLWE5NDIt OTMxOTRlYjYxMDhkLzEvTkY3ZmxWOVo3VWFPTUdnNm1KSDQ2QzEtWHEwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy80NWM2ODktYWZhYS00ZGEzLWE5NDItOTMxOTRlYjYxMDhk LzEvYm0xN3lyX01NSTFDQUZQRWdxRFZuN0VvTGpBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDgGCCsGAQUFBwEHAQH/BCkwJzAUBAIAATAOMAwDBAOR2wgD BAGR2xAwDwQCAAIwCQMHBCoEsMAAADANBgkqhkiG9w0BAQsFAAOCAQEAkoKzxl4G 55yEoi+rdR3WOIWn/NhkVr1SHnuczbd/nyuiSHQh/b3AbriWV342lrf7sCUx2kud oD7Zb6KU7ZfxErPckc9xa4wcQJ2kpQmHn1U3h5FpIXhfqmu2SWQXeBO6yNybBDLS JKytinoBbkZJdGpie3b4t55zRoksUPVFCkAriWazqNKoILBB2O5eQqZ8m0zch+NU vJtpvzRK5C/s3x2IRhpgAIYwBihG/NZqek8noDZuPqFF00lb7Tq7PeayKJbigW0A URPhKsVWehL/HQ/DCD8wBP+RCG6XmSXp5+hezl8znVvKqvkvHPDRiXm1AG9SVeXE bSUtHFVNSp1xUA== -----END CERTIFICATE-----Generated at Wed Jan 7 22:29:41 2026 by rpki-client