This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/a9024d-bbd8-4dee-a323-0050ea36c296/1/nBVxBxAQCTHY9HJGuq237vJY3qc.roa File: nBVxBxAQCTHY9HJGuq237vJY3qc.roa (raw, json) Hash identifier: iqaH2ChCnN7Gztf8VFce6sGPpBA84nfHjXBYzCJmC7A= Subject key identifier: 9C:15:71:07:10:10:09:31:D8:F4:72:46:BA:AD:B7:EE:F2:58:DE:A7 Certificate issuer: /CN=462767a7375f1ac546691aaf2a511fbb6277031d Certificate serial: 019B31B7265E6DEA5357E0D36DF274EF59E8 Authority key identifier: 46:27:67:A7:37:5F:1A:C5:46:69:1A:AF:2A:51:1F:BB:62:77:03:1D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RidnpzdfGsVGaRqvKlEfu2J3Ax0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/a9024d-bbd8-4dee-a323-0050ea36c296/1/nBVxBxAQCTHY9HJGuq237vJY3qc.roa Signing time: Thu 18 Dec 2025 13:47:25 +0000 ROA not before: Thu 18 Dec 2025 13:47:25 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 3327 IP address blocks: 185.178.204.0/22 maxlen: 22 212.65.85.0/24 maxlen: 24 212.65.86.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/a9024d-bbd8-4dee-a323-0050ea36c296/1/RidnpzdfGsVGaRqvKlEfu2J3Ax0.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/a9024d-bbd8-4dee-a323-0050ea36c296/1/RidnpzdfGsVGaRqvKlEfu2J3Ax0.mft rsync://rpki.ripe.net/repository/DEFAULT/RidnpzdfGsVGaRqvKlEfu2J3Ax0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:31:b7:26:5e:6d:ea:53:57:e0:d3:6d:f2:74:ef:59:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=462767a7375f1ac546691aaf2a511fbb6277031d Validity Not Before: Dec 18 13:47:25 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=9c15710710100931d8f47246baadb7eef258dea7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6c:37:e1:a6:36:c9:6c:33:ca:2d:c9:fe:4f: ba:34:0a:36:89:1e:2a:5a:2e:d1:a2:e5:22:62:27: 7b:c5:d1:de:bc:17:e8:20:7b:49:ea:81:0b:f5:40: 07:92:2b:1d:92:2d:8d:0d:5d:46:ea:88:95:d8:61: f8:26:f5:d8:fa:0e:56:ad:f4:31:d6:03:db:68:e6: 45:fb:42:f1:a6:f1:2c:75:70:17:d1:ea:90:4e:ec: 6d:0e:0a:db:57:7f:0b:da:f9:1f:b0:3e:2a:b2:17: 1a:7f:4c:f8:f6:df:9a:cd:43:2c:68:b2:ae:50:69: 6a:63:13:3d:98:74:82:d7:80:0b:bc:4f:7d:fd:b3: c9:69:a5:3c:95:e5:3f:d9:d7:45:13:9c:ff:f2:ac: 73:83:d9:9f:6b:31:4c:75:d1:1b:86:6e:25:70:30: a2:ee:24:5e:c6:f2:5f:1f:6b:c9:be:27:5d:2c:3a: df:4a:e5:8c:f9:2d:0c:8d:a7:e4:f1:c6:da:97:80: fb:03:59:e1:8b:10:b5:a1:91:63:80:89:af:b4:b1: 73:cc:47:2b:39:17:1b:45:42:41:80:91:a3:57:50: 4c:3b:1f:75:e2:35:39:6f:43:97:48:dd:03:4c:6c: 7f:b8:d8:c0:fd:2f:19:2b:31:08:4f:03:3c:71:7b: c0:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:15:71:07:10:10:09:31:D8:F4:72:46:BA:AD:B7:EE:F2:58:DE:A7 X509v3 Authority Key Identifier: keyid:46:27:67:A7:37:5F:1A:C5:46:69:1A:AF:2A:51:1F:BB:62:77:03:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RidnpzdfGsVGaRqvKlEfu2J3Ax0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/a9024d-bbd8-4dee-a323-0050ea36c296/1/nBVxBxAQCTHY9HJGuq237vJY3qc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/a9024d-bbd8-4dee-a323-0050ea36c296/1/RidnpzdfGsVGaRqvKlEfu2J3Ax0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.178.204.0/22 212.65.85.0-212.65.87.255 Signature Algorithm: sha256WithRSAEncryption 4d:69:36:2b:b9:65:86:5c:bf:66:75:cf:32:2e:e5:55:f7:bd: 9a:08:cc:79:af:53:60:ee:0b:cb:c0:6e:d8:f2:d0:62:ec:d4: d3:89:72:9f:15:03:b4:d4:9f:06:03:df:98:4c:59:e3:71:f1: a3:7e:1f:0c:02:61:09:69:53:4e:6a:33:a5:a6:08:bb:c7:76: 44:60:af:d5:b8:2a:3b:e4:86:75:ba:dd:34:de:fa:6e:71:70: 6a:b9:c2:5d:fc:3a:d0:ff:48:96:ed:24:cb:c8:a2:25:8e:c0: 27:61:15:1c:c0:80:c3:8b:33:0f:71:38:d7:d2:ab:54:16:17: d6:af:62:49:59:9f:08:1c:e0:4e:2b:eb:ff:85:4f:68:c6:99: 0b:ca:53:2b:73:30:fd:27:c0:91:17:7c:db:c8:f8:5b:7e:2f: 23:c3:df:b7:43:25:5b:8c:c0:e7:ab:30:16:e8:49:65:a5:d7: c1:27:a7:2a:21:f2:c2:7e:9a:c1:63:f7:97:21:0a:80:f7:b7: 3e:c4:3a:47:1b:de:8c:28:66:a8:c6:07:64:57:fc:11:06:c4: b9:de:72:da:53:db:59:30:41:ae:5f:8c:26:7d:93:6c:00:e4: e4:2f:43:11:61:55:32:b9:00:c0:1b:a3:8a:cf:7f:85:17:f6: 92:cb:f1:7e -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZsxtyZebepTV+DTbfJ071noMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ2Mjc2N2E3Mzc1ZjFhYzU0NjY5MWFhZjJhNTExZmJiNjI3 NzAzMWQwHhcNMjUxMjE4MTM0NzI1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YzE1NzEwNzEwMTAwOTMxZDhmNDcyNDZiYWFkYjdlZWYyNThkZWE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxWw34aY2yWwzyi3J/k+6NAo2iR4q Wi7RouUiYid7xdHevBfoIHtJ6oEL9UAHkisdki2NDV1G6oiV2GH4JvXY+g5WrfQx 1gPbaOZF+0LxpvEsdXAX0eqQTuxtDgrbV38L2vkfsD4qshcaf0z49t+azUMsaLKu UGlqYxM9mHSC14ALvE99/bPJaaU8leU/2ddFE5z/8qxzg9mfazFMddEbhm4lcDCi 7iRexvJfH2vJviddLDrfSuWM+S0Mjafk8cbal4D7A1nhixC1oZFjgImvtLFzzEcr ORcbRUJBgJGjV1BMOx914jU5b0OXSN0DTGx/uNjA/S8ZKzEITwM8cXvA0wIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFJwVcQcQEAkx2PRyRrqtt+7yWN6nMB8GA1UdIwQY MBaAFEYnZ6c3XxrFRmkarypRH7tidwMdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUmlkbnB6ZGZHc1ZHYVJxdktsRWZ1MkozQXgwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9hOTAyNGQtYmJkOC00ZGVlLWEzMjMt MDA1MGVhMzZjMjk2LzEvbkJWeEJ4QVFDVEhZOUhKR3VxMjM3dkpZM3FjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC9hOTAyNGQtYmJkOC00ZGVlLWEzMjMtMDA1MGVhMzZjMjk2 LzEvUmlkbnB6ZGZHc1ZHYVJxdktsRWZ1MkozQXgwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUAwQCubLMMAwD BADUQVUDBAPUQVAwDQYJKoZIhvcNAQELBQADggEBAE1pNiu5ZYZcv2Z1zzIu5VX3 vZoIzHmvU2DuC8vAbtjy0GLs1NOJcp8VA7TUnwYD35hMWeNx8aN+HwwCYQlpU05q M6WmCLvHdkRgr9W4KjvkhnW63TTe+m5xcGq5wl38OtD/SJbtJMvIoiWOwCdhFRzA gMOLMw9xONfSq1QWF9avYklZnwgc4E4r6/+FT2jGmQvKUytzMP0nwJEXfNvI+Ft+ LyPD37dDJVuMwOerMBboSWWl18Enpyoh8sJ+msFj95chCoD3tz7EOkcb3owoZqjG B2RX/BEGxLnectpT21kwQa5fjCZ9k2wA5OQvQxFhVTK5AMAbo4rPf4UX9pLL8X4= -----END CERTIFICATE-----Generated at Fri Dec 19 15:17:46 2025 by rpki-client