This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/020d47-2cc0-436b-b9f9-b73bfccb4e08/1/NRr2xnrc8q3h4uFkXN71z-KKA3E.roa File: NRr2xnrc8q3h4uFkXN71z-KKA3E.roa (raw, json) Hash identifier: P9SGhc4Yfp9gNj6Hs6UJwSGYWBkDoeITgWd2bUYfBvw= Subject key identifier: 35:1A:F6:C6:7A:DC:F2:AD:E1:E2:E1:64:5C:DE:F5:CF:E2:8A:03:71 Certificate issuer: /CN=37dee6acbc782b8c7696a40b28e80339619d0f1b Certificate serial: 019B7CECBAF56A040508130F22FEE7556BCF Authority key identifier: 37:DE:E6:AC:BC:78:2B:8C:76:96:A4:0B:28:E8:03:39:61:9D:0F:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N97mrLx4K4x2lqQLKOgDOWGdDxs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/020d47-2cc0-436b-b9f9-b73bfccb4e08/1/NRr2xnrc8q3h4uFkXN71z-KKA3E.roa Signing time: Fri 02 Jan 2026 04:17:27 +0000 ROA not before: Fri 02 Jan 2026 04:17:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49173 IP address blocks: 37.26.252.0/22 maxlen: 24 185.6.32.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/020d47-2cc0-436b-b9f9-b73bfccb4e08/1/N97mrLx4K4x2lqQLKOgDOWGdDxs.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/020d47-2cc0-436b-b9f9-b73bfccb4e08/1/N97mrLx4K4x2lqQLKOgDOWGdDxs.mft rsync://rpki.ripe.net/repository/DEFAULT/N97mrLx4K4x2lqQLKOgDOWGdDxs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ec:ba:f5:6a:04:05:08:13:0f:22:fe:e7:55:6b:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=37dee6acbc782b8c7696a40b28e80339619d0f1b Validity Not Before: Jan 2 04:17:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=351af6c67adcf2ade1e2e1645cdef5cfe28a0371 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e4:b1:f6:31:69:7a:c3:5f:c9:5a:1c:10:0a: ec:d7:18:d4:60:ae:ae:8c:7b:c1:d6:49:bf:c6:5a: 0f:91:28:53:0a:63:80:08:57:28:f1:0b:c2:bd:d1: dd:01:c8:d1:c2:9d:c3:a3:ac:10:8d:3a:fa:4c:80: 0e:4f:1c:27:e7:6f:53:e3:ef:a3:14:e8:58:93:82: 83:8a:26:f5:5d:ad:43:4a:2c:98:44:d2:8f:bf:5b: e8:24:50:a1:da:24:7d:22:91:fb:82:83:a2:ec:c9: ce:b6:9b:db:fa:a3:40:24:25:3d:32:bd:f4:11:58: 8a:2b:63:e7:2f:38:09:6c:b2:ef:2c:cd:cb:87:2e: 30:26:2f:b3:98:fa:02:0b:31:a0:7a:07:e3:6a:8e: 1d:b9:58:b9:06:c5:d1:a4:fc:dd:84:33:b1:12:4a: c5:a5:12:7b:42:a5:ed:f8:0c:e5:1f:32:18:5f:f5: 39:3f:ca:07:fe:4d:1f:cb:02:ec:a0:31:6c:d1:f3: d4:7b:6b:bc:74:31:30:52:04:cb:e5:9a:25:08:e8: f0:8f:cf:f8:17:75:55:4d:27:df:89:9a:4c:91:7a: 33:be:26:56:1b:31:44:7e:de:62:8d:e6:f6:1e:b4: 6f:c4:e2:ed:90:23:f0:3a:f6:7a:bb:79:dd:79:5a: 85:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:1A:F6:C6:7A:DC:F2:AD:E1:E2:E1:64:5C:DE:F5:CF:E2:8A:03:71 X509v3 Authority Key Identifier: keyid:37:DE:E6:AC:BC:78:2B:8C:76:96:A4:0B:28:E8:03:39:61:9D:0F:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N97mrLx4K4x2lqQLKOgDOWGdDxs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/020d47-2cc0-436b-b9f9-b73bfccb4e08/1/NRr2xnrc8q3h4uFkXN71z-KKA3E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/020d47-2cc0-436b-b9f9-b73bfccb4e08/1/N97mrLx4K4x2lqQLKOgDOWGdDxs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.26.252.0/22 185.6.32.0/22 Signature Algorithm: sha256WithRSAEncryption 2f:58:33:cc:06:f0:3b:1c:30:30:0c:a4:9c:f4:13:de:c8:9d: 35:9c:ec:3a:d4:99:46:03:ec:03:31:2c:a4:81:b8:b1:8c:44: d1:56:74:d6:8c:d0:8d:90:81:a5:97:6e:9b:94:c5:b4:60:ac: 9a:62:88:2a:05:c3:98:e1:94:1c:f9:f4:8b:21:e4:bf:01:96: 29:03:b8:81:00:54:41:89:d3:e0:ab:de:9d:21:b7:2f:c2:38: bd:23:a4:39:48:e0:66:c9:d9:15:46:72:9c:55:99:0a:84:fa: 74:92:1c:e3:c6:60:63:d5:dc:5a:9f:03:89:53:9e:ea:47:6c: 29:42:5f:9e:ea:47:55:6f:b8:1f:5f:0d:3e:66:16:12:51:fe: 34:a8:25:15:f1:fa:17:f8:5a:9c:52:76:28:3b:1a:80:42:93: f5:e7:e2:35:7c:c0:68:6d:db:95:ae:8e:31:79:52:13:4b:30: bc:b8:66:4e:74:b4:8d:ca:1c:30:76:71:cc:b1:fb:43:9c:43: 1b:5a:1e:3a:29:d0:1c:10:9c:f2:6f:b5:a2:2d:f3:4a:bb:0b: 6c:bc:d9:d8:3e:df:56:25:b4:1a:f8:62:ff:3b:e5:2e:f3:19: 01:1d:5d:61:2a:03:c3:93:57:28:67:a9:32:82:0a:0c:5e:ab: 0c:c2:d5:23 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt87Lr1agQFCBMPIv7nVWvPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM3ZGVlNmFjYmM3ODJiOGM3Njk2YTQwYjI4ZTgwMzM5NjE5 ZDBmMWIwHhcNMjYwMTAyMDQxNzI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNTFhZjZjNjdhZGNmMmFkZTFlMmUxNjQ1Y2RlZjVjZmUyOGEwMzcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAteSx9jFpesNfyVocEArs1xjUYK6u jHvB1km/xloPkShTCmOACFco8QvCvdHdAcjRwp3Do6wQjTr6TIAOTxwn529T4++j FOhYk4KDiib1Xa1DSiyYRNKPv1voJFCh2iR9IpH7goOi7MnOtpvb+qNAJCU9Mr30 EViKK2PnLzgJbLLvLM3Lhy4wJi+zmPoCCzGgegfjao4duVi5BsXRpPzdhDOxEkrF pRJ7QqXt+AzlHzIYX/U5P8oH/k0fywLsoDFs0fPUe2u8dDEwUgTL5ZolCOjwj8/4 F3VVTSffiZpMkXozviZWGzFEft5ijeb2HrRvxOLtkCPwOvZ6u3ndeVqFOwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFDUa9sZ63PKt4eLhZFze9c/iigNxMB8GA1UdIwQY MBaAFDfe5qy8eCuMdpakCyjoAzlhnQ8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTjk3bXJMeDRLNHgybHFRTEtPZ0RPV0dkRHhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8wMjBkNDctMmNjMC00MzZiLWI5Zjkt YjczYmZjY2I0ZTA4LzEvTlJyMnhucmM4cTNoNHVGa1hONzF6LUtLQTNFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8wMjBkNDctMmNjMC00MzZiLWI5ZjktYjczYmZjY2I0ZTA4 LzEvTjk3bXJMeDRLNHgybHFRTEtPZ0RPV0dkRHhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCJRr8AwQC uQYgMA0GCSqGSIb3DQEBCwUAA4IBAQAvWDPMBvA7HDAwDKSc9BPeyJ01nOw61JlG A+wDMSykgbixjETRVnTWjNCNkIGll26blMW0YKyaYogqBcOY4ZQc+fSLIeS/AZYp A7iBAFRBidPgq96dIbcvwji9I6Q5SOBmydkVRnKcVZkKhPp0khzjxmBj1dxanwOJ U57qR2wpQl+e6kdVb7gfXw0+ZhYSUf40qCUV8foX+FqcUnYoOxqAQpP15+I1fMBo bduVro4xeVITSzC8uGZOdLSNyhwwdnHMsftDnEMbWh46KdAcEJzyb7WiLfNKuwts vNnYPt9WJbQa+GL/O+Uu8xkBHV1hKgPDk1coZ6kyggoMXqsMwtUj -----END CERTIFICATE-----Generated at Mon Feb 9 22:37:06 2026 by rpki-client