This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/45c689-afaa-4da3-a942-93194eb6108d/1/NdjagWCchyoUBDH_RRwhcy-qdpY.roa File: NdjagWCchyoUBDH_RRwhcy-qdpY.roa (raw, json) Hash identifier: rfUn6HMhfHmkmcQD7GkdDWgPYr7YZfPMYcAy3H0prJk= Subject key identifier: 35:D8:DA:81:60:9C:87:2A:14:04:31:FF:45:1C:21:73:2F:AA:76:96 Certificate issuer: /CN=6e6d7bcabfcc308d420053c482a0d59fb1282e30 Certificate serial: 019B7EA6A87E7501A82E4A63F46218FE524D Authority key identifier: 6E:6D:7B:CA:BF:CC:30:8D:42:00:53:C4:82:A0:D5:9F:B1:28:2E:30 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bm17yr_MMI1CAFPEgqDVn7EoLjA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/45c689-afaa-4da3-a942-93194eb6108d/1/NdjagWCchyoUBDH_RRwhcy-qdpY.roa Signing time: Fri 02 Jan 2026 12:20:09 +0000 ROA not before: Fri 02 Jan 2026 12:20:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201017 IP address blocks: 145.219.0.0/21 maxlen: 21 145.219.6.0/24 maxlen: 24 145.219.8.0/21 maxlen: 21 145.219.8.0/24 maxlen: 24 145.219.9.0/24 maxlen: 24 145.219.10.0/24 maxlen: 24 145.219.11.0/24 maxlen: 24 145.219.12.0/24 maxlen: 24 145.219.13.0/24 maxlen: 24 145.219.14.0/24 maxlen: 24 145.219.15.0/24 maxlen: 24 145.219.16.0/23 maxlen: 23 145.219.16.0/24 maxlen: 24 145.219.17.0/24 maxlen: 24 2a04:b0c0::/44 maxlen: 44 2a04:b0c0::/45 maxlen: 45 2a04:b0c0:8::/45 maxlen: 45 2a04:b0c0:31::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/45c689-afaa-4da3-a942-93194eb6108d/1/bm17yr_MMI1CAFPEgqDVn7EoLjA.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/45c689-afaa-4da3-a942-93194eb6108d/1/bm17yr_MMI1CAFPEgqDVn7EoLjA.mft rsync://rpki.ripe.net/repository/DEFAULT/bm17yr_MMI1CAFPEgqDVn7EoLjA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 06:01:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:a8:7e:75:01:a8:2e:4a:63:f4:62:18:fe:52:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6e6d7bcabfcc308d420053c482a0d59fb1282e30 Validity Not Before: Jan 2 12:20:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=35d8da81609c872a140431ff451c21732faa7696 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:53:65:dd:ec:a6:0c:da:5a:99:21:86:e5:68: db:8f:44:80:1d:46:75:9b:e7:20:26:64:71:b7:73: af:e8:79:90:f4:47:61:b4:46:7c:bd:14:67:94:1c: b8:4d:73:a0:9a:fd:cd:ea:05:e5:da:5a:37:31:0d: ff:dc:a2:7b:31:3a:f2:3a:d7:31:a5:02:5f:07:e5: a3:eb:06:4a:71:c3:c7:1a:bd:aa:66:aa:cc:76:b3: cb:6b:68:70:b5:78:57:52:a7:70:52:1a:5c:2b:d4: 32:87:ef:f8:5f:80:c8:d6:ff:12:00:bb:74:7b:ce: cb:03:7c:85:9f:28:e3:18:03:f5:4b:7f:73:a2:75: 48:13:80:15:35:20:bf:90:48:66:71:04:03:cf:c4: e0:eb:93:29:2d:60:9b:7f:75:a5:7e:15:99:9c:34: 43:d4:7e:9c:69:d5:78:ec:e6:ab:4e:93:77:c8:52: 1a:0c:69:41:05:f0:83:0f:60:02:36:7d:e6:8b:6d: 19:ad:a7:c8:34:e0:bf:fc:48:1e:64:74:4f:fc:22: 7b:f0:fa:95:a3:db:a1:e1:2c:a5:c1:1f:0f:89:22: 12:eb:4f:79:a2:37:19:90:86:16:04:a6:b5:43:01: 24:d5:f4:ee:a6:28:ae:1e:37:ec:cf:14:83:fd:8d: 17:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:D8:DA:81:60:9C:87:2A:14:04:31:FF:45:1C:21:73:2F:AA:76:96 X509v3 Authority Key Identifier: keyid:6E:6D:7B:CA:BF:CC:30:8D:42:00:53:C4:82:A0:D5:9F:B1:28:2E:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bm17yr_MMI1CAFPEgqDVn7EoLjA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/45c689-afaa-4da3-a942-93194eb6108d/1/NdjagWCchyoUBDH_RRwhcy-qdpY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/45c689-afaa-4da3-a942-93194eb6108d/1/bm17yr_MMI1CAFPEgqDVn7EoLjA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 145.219.0.0-145.219.17.255 IPv6: 2a04:b0c0::/44 2a04:b0c0:31::/48 Signature Algorithm: sha256WithRSAEncryption 43:c5:34:35:e5:91:60:98:65:34:5d:ce:0a:66:5d:77:39:09: 2a:31:d3:27:d9:db:3a:f9:f6:ee:c8:ca:64:f1:c6:9b:6f:a5: 50:26:69:8d:b3:7f:94:2f:82:35:98:4a:c7:8f:d9:31:9c:17: 74:ca:29:59:2f:74:06:88:53:71:78:c6:22:4d:10:18:c1:90: 02:82:b8:39:e7:2a:3c:2b:f4:79:37:09:d1:62:c2:6a:75:e9: 77:01:88:98:f5:08:c7:1d:76:8b:b3:63:96:04:f8:40:dc:80: 5d:ce:21:54:55:1b:19:60:32:bd:2f:07:12:ee:51:1e:b3:05: bd:34:3b:51:ad:ca:21:28:25:f8:2b:80:95:91:61:26:2a:1b: cf:12:2e:c0:6f:00:bf:49:04:55:6d:cd:71:f5:8c:d3:09:33: a7:d8:32:17:2b:16:e5:1d:a9:56:4d:70:35:dc:33:dd:86:5c: b8:c3:41:9e:a8:0c:b5:34:e9:fa:d2:f4:b6:52:e3:7d:60:cc: 1c:cf:57:dd:23:d2:36:87:ef:02:58:74:f9:e1:b9:bd:c7:fe: 0c:a8:a5:05:15:c1:54:d4:8d:c9:04:b3:ef:cc:e6:a7:5c:43: a9:7a:91:60:da:6e:61:05:42:78:2a:5d:c4:0e:bf:f9:21:25: 25:3a:2b:bc -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgISAZt+pqh+dQGoLkpj9GIY/lJNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZlNmQ3YmNhYmZjYzMwOGQ0MjAwNTNjNDgyYTBkNTlmYjEy ODJlMzAwHhcNMjYwMTAyMTIyMDA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNWQ4ZGE4MTYwOWM4NzJhMTQwNDMxZmY0NTFjMjE3MzJmYWE3Njk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjVNl3eymDNpamSGG5Wjbj0SAHUZ1 m+cgJmRxt3Ov6HmQ9EdhtEZ8vRRnlBy4TXOgmv3N6gXl2lo3MQ3/3KJ7MTryOtcx pQJfB+Wj6wZKccPHGr2qZqrMdrPLa2hwtXhXUqdwUhpcK9Qyh+/4X4DI1v8SALt0 e87LA3yFnyjjGAP1S39zonVIE4AVNSC/kEhmcQQDz8Tg65MpLWCbf3WlfhWZnDRD 1H6cadV47OarTpN3yFIaDGlBBfCDD2ACNn3mi20ZrafINOC//EgeZHRP/CJ78PqV o9uh4SylwR8PiSIS6095ojcZkIYWBKa1QwEk1fTupiiuHjfszxSD/Y0XlQIDAQAB o4ICKjCCAiYwHQYDVR0OBBYEFDXY2oFgnIcqFAQx/0UcIXMvqnaWMB8GA1UdIwQY MBaAFG5te8q/zDCNQgBTxIKg1Z+xKC4wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYm0xN3lyX01NSTFDQUZQRWdxRFZuN0VvTGpBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy80NWM2ODktYWZhYS00ZGEzLWE5NDIt OTMxOTRlYjYxMDhkLzEvTmRqYWdXQ2NoeW9VQkRIX1JSd2hjeS1xZHBZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy80NWM2ODktYWZhYS00ZGEzLWE5NDItOTMxOTRlYjYxMDhk LzEvYm0xN3lyX01NSTFDQUZQRWdxRFZuN0VvTGpBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzATBAIAATANMAsDAwCR2wME AZHbEDAYBAIAAjASAwcEKgSwwAAAAwcAKgSwwAAxMA0GCSqGSIb3DQEBCwUAA4IB AQBDxTQ15ZFgmGU0Xc4KZl13OQkqMdMn2ds6+fbuyMpk8cabb6VQJmmNs3+UL4I1 mErHj9kxnBd0yilZL3QGiFNxeMYiTRAYwZACgrg55yo8K/R5NwnRYsJqdel3AYiY 9QjHHXaLs2OWBPhA3IBdziFUVRsZYDK9LwcS7lEeswW9NDtRrcohKCX4K4CVkWEm KhvPEi7AbwC/SQRVbc1x9YzTCTOn2DIXKxblHalWTXA13DPdhly4w0GeqAy1NOn6 0vS2UuN9YMwcz1fdI9I2h+8CWHT54bm9x/4MqKUFFcFU1I3JBLPvzOanXEOpepFg 2m5hBUJ4Kl3EDr/5ISUlOiu8 -----END CERTIFICATE-----Generated at Fri Jan 9 16:31:06 2026 by rpki-client