This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/nbL3W9rua5RoYoYaynypFHyWDSM.roa File: nbL3W9rua5RoYoYaynypFHyWDSM.roa (raw, json) Hash identifier: F3y7DhX8ebJ1b0VQjuxOqqxqkiRPrh1Y2os5quF54OE= Subject key identifier: 9D:B2:F7:5B:DA:EE:6B:94:68:62:86:1A:CA:7C:A9:14:7C:96:0D:23 Certificate issuer: /CN=db2ec22a66b5b24986395feed7fb5b90e28c9be4 Certificate serial: 019BFAADDFB928CABF961A3E8CF278A7AE14 Authority key identifier: DB:2E:C2:2A:66:B5:B2:49:86:39:5F:EE:D7:FB:5B:90:E2:8C:9B:E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2y7CKma1skmGOV_u1_tbkOKMm-Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/nbL3W9rua5RoYoYaynypFHyWDSM.roa Signing time: Mon 26 Jan 2026 14:20:57 +0000 ROA not before: Mon 26 Jan 2026 14:20:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203196 IP address blocks: 195.226.216.0/24 maxlen: 24 2a12:5dc0::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.mft rsync://rpki.ripe.net/repository/DEFAULT/2y7CKma1skmGOV_u1_tbkOKMm-Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 06:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fa:ad:df:b9:28:ca:bf:96:1a:3e:8c:f2:78:a7:ae:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=db2ec22a66b5b24986395feed7fb5b90e28c9be4 Validity Not Before: Jan 26 14:20:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9db2f75bdaee6b946862861aca7ca9147c960d23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:db:4c:58:95:d4:02:78:08:53:1f:61:04:20: 99:5c:29:ea:93:31:12:de:4c:0d:ce:3e:45:2a:78: a4:71:47:65:f8:fe:1a:e6:24:da:c6:51:22:64:9a: 3c:b6:1e:4e:38:47:24:a5:7f:ed:e4:48:f9:fd:ea: 49:55:57:51:70:2e:c8:83:27:9e:82:03:9a:5b:2b: 11:c8:f6:60:4e:62:0d:88:81:e3:a8:b9:7a:4b:11: 0e:2a:9d:9a:28:4d:88:6a:11:b9:66:92:69:cf:41: 42:2d:15:bb:c1:86:d3:71:49:05:a2:0c:ff:66:43: de:37:e3:79:b0:e3:7e:c5:9f:06:f7:83:c5:e4:1f: c1:14:62:62:5f:c7:b3:d6:3e:a9:c4:17:6c:67:8a: e6:80:f3:ec:74:ea:ea:4b:de:a0:1c:2a:0d:54:01: 2c:cd:28:bf:97:70:a3:41:66:30:33:88:e4:9c:e6: 3d:2b:46:70:7f:aa:87:43:3e:58:39:04:b1:e3:36: 62:aa:aa:b5:72:e2:92:37:03:ce:80:09:12:8a:6b: 2c:f1:dd:91:f8:04:42:5d:7e:f7:b6:a9:06:0c:f5: c9:22:90:b5:38:08:70:85:47:5e:97:ed:03:76:48: b2:9d:cd:05:77:69:1c:7b:a1:3e:19:d0:00:37:ed: 44:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:B2:F7:5B:DA:EE:6B:94:68:62:86:1A:CA:7C:A9:14:7C:96:0D:23 X509v3 Authority Key Identifier: keyid:DB:2E:C2:2A:66:B5:B2:49:86:39:5F:EE:D7:FB:5B:90:E2:8C:9B:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2y7CKma1skmGOV_u1_tbkOKMm-Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/nbL3W9rua5RoYoYaynypFHyWDSM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.226.216.0/24 IPv6: 2a12:5dc0::/29 Signature Algorithm: sha256WithRSAEncryption 49:b6:c1:c5:ac:31:e3:23:4a:79:15:d2:9f:a6:cd:6b:71:92: 83:6a:ce:c3:9b:1a:a7:d8:10:20:e1:c1:12:51:e2:32:5d:5e: 48:9f:c9:28:89:31:04:97:53:41:97:3a:6d:d2:b3:99:41:79: 36:ac:dc:fd:14:f1:d1:21:b2:0b:3e:cd:3c:0d:96:89:91:f6: 5e:42:df:2d:6d:25:35:10:0d:e1:4d:67:dd:2a:dd:ea:5e:74: 14:bc:43:bd:f9:f8:84:fb:76:81:12:f6:9f:da:e3:c8:5b:1d: 48:03:ac:94:fe:ad:d6:a3:fd:66:65:44:14:15:d2:2d:d0:49: dd:d1:be:31:1f:13:be:db:65:aa:91:ab:9f:8b:01:42:40:9c: 19:f8:dd:83:1a:71:25:c9:28:cf:9a:f1:3c:a3:6d:a8:51:74: cc:1c:af:9d:43:ee:c9:13:46:06:92:47:45:ef:14:31:64:48: 8e:20:03:0b:0c:6f:10:c1:4a:59:b8:4d:e2:6d:b2:76:2c:66: a2:37:24:29:c2:7a:01:af:38:7b:83:13:15:cc:82:cb:c0:da: 1d:85:ae:12:70:91:d0:70:e9:6b:65:68:54:6f:5a:ce:26:20: e0:d1:45:c7:5c:bc:e9:22:3c:a2:16:4e:f8:7a:53:46:2a:b6: ac:24:3c:46 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZv6rd+5KMq/lho+jPJ4p64UMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiMmVjMjJhNjZiNWIyNDk4NjM5NWZlZWQ3ZmI1YjkwZTI4 YzliZTQwHhcNMjYwMTI2MTQyMDU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZGIyZjc1YmRhZWU2Yjk0Njg2Mjg2MWFjYTdjYTkxNDdjOTYwZDIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7dtMWJXUAngIUx9hBCCZXCnqkzES 3kwNzj5FKnikcUdl+P4a5iTaxlEiZJo8th5OOEckpX/t5Ej5/epJVVdRcC7Igyee ggOaWysRyPZgTmINiIHjqLl6SxEOKp2aKE2IahG5ZpJpz0FCLRW7wYbTcUkFogz/ ZkPeN+N5sON+xZ8G94PF5B/BFGJiX8ez1j6pxBdsZ4rmgPPsdOrqS96gHCoNVAEs zSi/l3CjQWYwM4jknOY9K0Zwf6qHQz5YOQSx4zZiqqq1cuKSNwPOgAkSimss8d2R +ARCXX73tqkGDPXJIpC1OAhwhUdel+0Ddkiync0Fd2kce6E+GdAAN+1E8wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFJ2y91va7muUaGKGGsp8qRR8lg0jMB8GA1UdIwQY MBaAFNsuwipmtbJJhjlf7tf7W5DijJvkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnk3Q0ttYTFza21HT1ZfdTFfdGJrT0tNbS1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8yZmJjYmYtMzU4ZS00OTI4LTlhODQt Y2U3OGQ0YzA2NDJmLzEvbmJMM1c5cnVhNVJvWW9ZYXlueXBGSHlXRFNNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy8yZmJjYmYtMzU4ZS00OTI4LTlhODQtY2U3OGQ0YzA2NDJm LzEvMnk3Q0ttYTFza21HT1ZfdTFfdGJrT0tNbS1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAw+LYMA0E AgACMAcDBQMqEl3AMA0GCSqGSIb3DQEBCwUAA4IBAQBJtsHFrDHjI0p5FdKfps1r cZKDas7Dmxqn2BAg4cESUeIyXV5In8koiTEEl1NBlzpt0rOZQXk2rNz9FPHRIbIL Ps08DZaJkfZeQt8tbSU1EA3hTWfdKt3qXnQUvEO9+fiE+3aBEvaf2uPIWx1IA6yU /q3Wo/1mZUQUFdIt0End0b4xHxO+22WqkaufiwFCQJwZ+N2DGnElySjPmvE8o22o UXTMHK+dQ+7JE0YGkkdF7xQxZEiOIAMLDG8QwUpZuE3ibbJ2LGaiNyQpwnoBrzh7 gxMVzILLwNodha4ScJHQcOlrZWhUb1rOJiDg0UXHXLzpIjyiFk74elNGKrasJDxG -----END CERTIFICATE-----Generated at Mon Feb 2 09:39:27 2026 by rpki-client