This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/1d7583-d10c-47db-aee1-58d664210669/1/nLrwE_Xuj7FEwaVr2PMMyDOjcsM.roa File: nLrwE_Xuj7FEwaVr2PMMyDOjcsM.roa (raw, json) Hash identifier: CdwJHzzCL/DT7oBvlE4BtdzceymGADOR4McXAN25EBU= Subject key identifier: 9C:BA:F0:13:F5:EE:8F:B1:44:C1:A5:6B:D8:F3:0C:C8:33:A3:72:C3 Certificate issuer: /CN=473779e6a77c7e58213198764ce2ac0e6bee6236 Certificate serial: 019B7EA75116DB1E47C538D663252F522C22 Authority key identifier: 47:37:79:E6:A7:7C:7E:58:21:31:98:76:4C:E2:AC:0E:6B:EE:62:36 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rzd55qd8flghMZh2TOKsDmvuYjY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/1d7583-d10c-47db-aee1-58d664210669/1/nLrwE_Xuj7FEwaVr2PMMyDOjcsM.roa Signing time: Fri 02 Jan 2026 12:20:53 +0000 ROA not before: Fri 02 Jan 2026 12:20:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42730 IP address blocks: 87.238.192.0/21 maxlen: 21 178.254.0.0/19 maxlen: 19 178.254.32.0/20 maxlen: 20 178.254.48.0/21 maxlen: 21 178.254.56.0/22 maxlen: 22 178.254.60.0/23 maxlen: 23 178.254.62.0/24 maxlen: 24 185.195.100.0/23 maxlen: 23 185.195.102.0/23 maxlen: 23 195.90.192.0/18 maxlen: 18 2a00:6800::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/1d7583-d10c-47db-aee1-58d664210669/1/Rzd55qd8flghMZh2TOKsDmvuYjY.crl rsync://rpki.ripe.net/repository/DEFAULT/be/1d7583-d10c-47db-aee1-58d664210669/1/Rzd55qd8flghMZh2TOKsDmvuYjY.mft rsync://rpki.ripe.net/repository/DEFAULT/Rzd55qd8flghMZh2TOKsDmvuYjY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:51:16:db:1e:47:c5:38:d6:63:25:2f:52:2c:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473779e6a77c7e58213198764ce2ac0e6bee6236 Validity Not Before: Jan 2 12:20:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9cbaf013f5ee8fb144c1a56bd8f30cc833a372c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:9c:56:21:40:4f:e3:f9:d1:f0:dc:48:51:68: 85:39:2b:8d:15:44:f1:82:5c:c3:de:96:f2:b6:49: 9f:1b:30:4e:1b:85:03:65:1f:4d:84:7f:80:f9:f4: 3d:ce:b1:e5:3c:8a:92:b8:86:f1:64:31:c9:fc:13: dc:3b:1d:3f:ff:d7:f4:8d:1e:bc:99:7c:67:b7:81: a4:f3:1e:13:d5:8c:a8:8a:88:19:9d:97:d7:1d:e5: 2a:2c:0d:f2:f1:4a:48:08:45:aa:d1:12:1e:c7:f7: 62:86:5f:e4:ef:7c:43:49:84:94:5c:38:39:0b:b3: ac:8a:ea:1f:83:02:7e:2d:90:dc:c6:c4:80:14:de: 7f:05:c6:60:f2:79:a6:ec:10:15:ed:82:85:06:40: 8a:ca:d5:f5:35:22:43:05:c6:f3:63:bc:66:d9:31: be:a8:9d:e6:f5:73:d0:df:f8:8c:35:06:35:f4:c9: f1:cb:5d:2a:af:4f:e1:40:c3:c3:8a:0a:06:59:05: 30:d0:79:9b:b0:63:05:17:ca:61:ce:80:ba:b0:b6: 19:5e:7c:83:82:9a:1d:fc:d2:2f:11:ca:32:56:d0: 83:bd:4b:d7:24:d4:b1:10:9a:3c:38:2b:f0:74:ac: aa:20:98:bb:21:ad:c5:35:56:c1:8b:6b:2d:2f:2a: 42:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:BA:F0:13:F5:EE:8F:B1:44:C1:A5:6B:D8:F3:0C:C8:33:A3:72:C3 X509v3 Authority Key Identifier: keyid:47:37:79:E6:A7:7C:7E:58:21:31:98:76:4C:E2:AC:0E:6B:EE:62:36 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rzd55qd8flghMZh2TOKsDmvuYjY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1d7583-d10c-47db-aee1-58d664210669/1/nLrwE_Xuj7FEwaVr2PMMyDOjcsM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1d7583-d10c-47db-aee1-58d664210669/1/Rzd55qd8flghMZh2TOKsDmvuYjY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 87.238.192.0/21 178.254.0.0-178.254.62.255 185.195.100.0/22 195.90.192.0/18 IPv6: 2a00:6800::/32 Signature Algorithm: sha256WithRSAEncryption b4:11:70:2f:dc:39:fc:f6:13:71:d6:86:38:6c:a4:e6:53:b1: bd:63:fb:68:e4:97:3c:4a:22:9e:ac:87:44:bc:e7:10:85:16: f0:b9:01:2d:83:71:d6:73:29:c1:e2:f8:d8:17:8d:e0:9f:6d: 53:21:8c:8e:20:7a:72:59:b7:f1:ed:ae:b1:f2:b0:e6:eb:23: cd:22:fa:46:fd:2d:d0:1c:c2:c7:7c:4c:8a:3f:9a:b6:bd:d2: da:53:b5:b3:c8:9b:7d:bd:d7:fc:c7:8e:53:e2:a7:e2:62:3c: ec:7b:1a:c8:ab:79:d7:c8:e5:1d:af:fd:82:0f:00:ef:5d:79: 9d:14:0b:85:46:2f:e5:eb:7b:0f:32:a1:f3:e2:a8:40:a9:58: 83:19:d4:7b:68:46:aa:21:ba:eb:ac:21:53:fc:12:d7:dc:6e: a3:ea:76:73:07:c6:44:04:db:04:cd:d2:91:df:24:ca:e3:79: e7:70:70:79:e6:0c:6b:c2:19:4f:54:ab:ac:0a:19:10:1a:91: 73:1e:5f:6d:cd:d4:84:d3:53:1d:70:6c:4f:ed:6f:29:90:9e: 3e:31:40:be:c1:00:70:cf:7d:e5:40:4e:28:60:45:a4:77:05: f6:23:5a:76:1a:df:c6:cf:4c:19:31:af:35:5e:8b:73:7d:ee: ed:d2:00:db -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgISAZt+p1EW2x5HxTjWYyUvUiwiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ3Mzc3OWU2YTc3YzdlNTgyMTMxOTg3NjRjZTJhYzBlNmJl ZTYyMzYwHhcNMjYwMTAyMTIyMDUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5Y2JhZjAxM2Y1ZWU4ZmIxNDRjMWE1NmJkOGYzMGNjODMzYTM3MmMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlpxWIUBP4/nR8NxIUWiFOSuNFUTx glzD3pbytkmfGzBOG4UDZR9NhH+A+fQ9zrHlPIqSuIbxZDHJ/BPcOx0//9f0jR68 mXxnt4Gk8x4T1YyoiogZnZfXHeUqLA3y8UpICEWq0RIex/dihl/k73xDSYSUXDg5 C7OsiuofgwJ+LZDcxsSAFN5/BcZg8nmm7BAV7YKFBkCKytX1NSJDBcbzY7xm2TG+ qJ3m9XPQ3/iMNQY19Mnxy10qr0/hQMPDigoGWQUw0HmbsGMFF8phzoC6sLYZXnyD gpod/NIvEcoyVtCDvUvXJNSxEJo8OCvwdKyqIJi7Ia3FNVbBi2stLypCOQIDAQAB o4ICMTCCAi0wHQYDVR0OBBYEFJy68BP17o+xRMGla9jzDMgzo3LDMB8GA1UdIwQY MBaAFEc3eeanfH5YITGYdkzirA5r7mI2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUnpkNTVxZDhmbGdoTVpoMlRPS3NEbXZ1WWpZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8xZDc1ODMtZDEwYy00N2RiLWFlZTEt NThkNjY0MjEwNjY5LzEvbkxyd0VfWHVqN0ZFd2FWcjJQTU15RE9qY3NNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS8xZDc1ODMtZDEwYy00N2RiLWFlZTEtNThkNjY0MjEwNjY5 LzEvUnpkNTVxZDhmbGdoTVpoMlRPS3NEbXZ1WWpZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEcGCCsGAQUFBwEHAQH/BDgwNjAlBAIAATAfAwQDV+7AMAsD AwGy/gMEALL+PgMEArnDZAMEBsNawDANBAIAAjAHAwUAKgBoADANBgkqhkiG9w0B AQsFAAOCAQEAtBFwL9w5/PYTcdaGOGyk5lOxvWP7aOSXPEoinqyHRLznEIUW8LkB LYNx1nMpweL42BeN4J9tUyGMjiB6clm38e2usfKw5usjzSL6Rv0t0BzCx3xMij+a tr3S2lO1s8ibfb3X/MeOU+Kn4mI87HsayKt518jlHa/9gg8A7115nRQLhUYv5et7 DzKh8+KoQKlYgxnUe2hGqiG666whU/wS19xuo+p2cwfGRATbBM3Skd8kyuN553Bw eeYMa8IZT1SrrAoZEBqRcx5fbc3UhNNTHXBsT+1vKZCePjFAvsEAcM995UBOKGBF pHcF9iNadhrfxs9MGTGvNV6Lc33u7dIA2w== -----END CERTIFICATE-----Generated at Tue Feb 10 02:21:58 2026 by rpki-client