This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/NC_wTHrxRKuvStTnYqyhVm29H3s.roa File: NC_wTHrxRKuvStTnYqyhVm29H3s.roa (raw, json) Hash identifier: E1tQdPoUovwNAUuXSRWsu4jAYmas9ZBA01LWgJLMo3s= Subject key identifier: 34:2F:F0:4C:7A:F1:44:AB:AF:4A:D4:E7:62:AC:A1:56:6D:BD:1F:7B Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Certificate serial: 019B7C1383F069212C50BD008C82F4527BD1 Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/NC_wTHrxRKuvStTnYqyhVm29H3s.roa Signing time: Fri 02 Jan 2026 00:20:12 +0000 ROA not before: Fri 02 Jan 2026 00:20:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200908 IP address blocks: 45.137.162.0/23 maxlen: 24 185.224.36.0/22 maxlen: 24 185.254.156.0/24 maxlen: 24 185.254.158.0/24 maxlen: 24 194.41.118.0/24 maxlen: 24 195.28.178.0/23 maxlen: 24 195.28.178.0/24 maxlen: 24 195.28.179.0/24 maxlen: 24 195.34.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.mft rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 19:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:83:f0:69:21:2c:50:bd:00:8c:82:f4:52:7b:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Validity Not Before: Jan 2 00:20:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=342ff04c7af144abaf4ad4e762aca1566dbd1f7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:6c:34:60:65:6b:58:62:6a:92:22:02:ef:8c: 14:fd:f0:22:1b:ba:57:bf:45:2a:b7:16:61:19:00: a3:2b:a0:54:fc:eb:4c:dd:a2:92:7a:4b:c0:28:bd: 04:4f:94:4c:f6:19:1a:51:42:96:a5:1a:0a:88:e8: 70:fc:e4:28:cb:1a:3f:a4:48:a5:0f:87:7f:80:61: 74:28:f6:cc:a3:dc:d6:06:3d:4d:3f:ce:5e:cf:0c: de:e8:b2:60:48:ca:1b:e9:63:54:80:0d:13:73:f2: e5:a4:4a:c1:59:f1:e7:fc:79:30:10:53:a9:11:c7: b3:ac:36:6f:60:08:4c:43:92:fb:e4:11:17:0e:41: 0f:56:41:65:69:73:31:25:03:a0:aa:c6:5c:77:aa: 8d:58:e3:e0:44:9d:69:83:06:28:31:7a:cc:2a:ff: 11:2a:b7:bd:c3:48:36:dd:f0:4e:8b:1e:6b:4b:f7: 34:3a:29:ff:13:54:0d:91:10:d4:6b:26:b5:03:33: 5e:57:71:c1:11:b7:54:df:a2:a5:b5:52:c6:1a:59: fe:3d:3c:1c:2b:4b:1c:2a:19:f4:61:5b:1d:f6:d4: 29:b2:7d:94:1c:69:37:98:f5:75:6d:9f:bd:88:2c: 92:5b:db:40:82:74:be:70:b5:ac:6a:41:50:86:35: c6:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:2F:F0:4C:7A:F1:44:AB:AF:4A:D4:E7:62:AC:A1:56:6D:BD:1F:7B X509v3 Authority Key Identifier: keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/NC_wTHrxRKuvStTnYqyhVm29H3s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.137.162.0/23 185.224.36.0/22 185.254.156.0/24 185.254.158.0/24 194.41.118.0/24 195.28.178.0/23 195.34.66.0/24 Signature Algorithm: sha256WithRSAEncryption a5:29:82:5a:d2:76:31:d8:39:56:6c:dd:ec:e5:55:2c:3c:9a: b0:3d:33:23:94:2c:de:39:54:3e:fb:6d:6b:89:0f:90:63:77: 6d:1d:f4:15:a5:8d:33:0a:30:5b:12:30:98:b0:c6:75:e1:78: c9:7e:93:7a:8f:6b:83:04:c5:a6:06:3f:6e:2a:85:b7:3b:5f: 70:1d:54:1f:ec:aa:d8:9b:69:5d:5d:09:1d:8b:3b:05:f9:34: fc:0a:e2:13:24:e9:19:18:9c:41:7c:d0:0f:76:c4:63:fd:d9: 0e:2b:8e:46:bb:ae:bd:91:41:eb:49:e1:be:63:73:50:72:70: 03:a3:00:c4:f7:f1:24:5c:54:2d:16:7d:58:94:a4:c9:1d:c9: b2:e6:bc:85:77:d4:d8:b4:37:6a:70:f2:61:a9:91:c9:07:be: 67:43:27:e9:22:ad:0e:f7:ca:2f:12:f6:42:62:bd:31:d9:10: 18:9b:9a:52:b0:21:ad:61:ba:2f:2e:d5:e6:12:6b:1d:66:31: ea:62:25:7b:cb:3b:28:44:2f:1b:f0:7b:53:ef:d8:0d:ee:35: 32:f4:a2:91:5f:aa:39:47:f4:8c:1f:f4:21:75:37:de:63:34: 9b:8a:dc:92:2b:7e:a9:ad:05:66:22:64:46:82:0e:71:f0:2d: c8:7f:bc:9f -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt8E4PwaSEsUL0AjIL0UnvRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx MTRjYWYwHhcNMjYwMTAyMDAyMDEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNDJmZjA0YzdhZjE0NGFiYWY0YWQ0ZTc2MmFjYTE1NjZkYmQxZjdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjWw0YGVrWGJqkiIC74wU/fAiG7pX v0UqtxZhGQCjK6BU/OtM3aKSekvAKL0ET5RM9hkaUUKWpRoKiOhw/OQoyxo/pEil D4d/gGF0KPbMo9zWBj1NP85ezwze6LJgSMob6WNUgA0Tc/LlpErBWfHn/HkwEFOp EcezrDZvYAhMQ5L75BEXDkEPVkFlaXMxJQOgqsZcd6qNWOPgRJ1pgwYoMXrMKv8R Kre9w0g23fBOix5rS/c0Oin/E1QNkRDUaya1AzNeV3HBEbdU36KltVLGGln+PTwc K0scKhn0YVsd9tQpsn2UHGk3mPV1bZ+9iCySW9tAgnS+cLWsakFQhjXG4QIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFDQv8Ex68USrr0rU52KsoVZtvR97MB8GA1UdIwQY MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt YjQzNDJiYTkxYWJjLzEvTkNfd1RIcnhSS3V2U3RUbllxeWhWbTI5SDNzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQBLYmiAwQC ueAkAwQAuf6cAwQAuf6eAwQAwil2AwQBwxyyAwQAwyJCMA0GCSqGSIb3DQEBCwUA A4IBAQClKYJa0nYx2DlWbN3s5VUsPJqwPTMjlCzeOVQ++21riQ+QY3dtHfQVpY0z CjBbEjCYsMZ14XjJfpN6j2uDBMWmBj9uKoW3O19wHVQf7KrYm2ldXQkdizsF+TT8 CuITJOkZGJxBfNAPdsRj/dkOK45Gu669kUHrSeG+Y3NQcnADowDE9/EkXFQtFn1Y lKTJHcmy5ryFd9TYtDdqcPJhqZHJB75nQyfpIq0O98ovEvZCYr0x2RAYm5pSsCGt YbovLtXmEmsdZjHqYiV7yzsoRC8b8HtT79gN7jUy9KKRX6o5R/SMH/QhdTfeYzSb itySK36prQVmImRGgg5x8C3If7yf -----END CERTIFICATE-----Generated at Fri Jan 2 23:48:21 2026 by rpki-client