This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/n0NR6OiiSRVLpNipRarNfvBQVBQ.roa File: n0NR6OiiSRVLpNipRarNfvBQVBQ.roa (raw, json) Hash identifier: x7+Hnm6izCIj5uo7DZZ8rAC8clBtC3HKKYVdoqJqJww= Subject key identifier: 9F:43:51:E8:E8:A2:49:15:4B:A4:D8:A9:45:AA:CD:7E:F0:50:54:14 Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10 Certificate serial: 019B7F84E3C2880B58FD4CD2F162F064E0FC Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/n0NR6OiiSRVLpNipRarNfvBQVBQ.roa Signing time: Fri 02 Jan 2026 16:22:54 +0000 ROA not before: Fri 02 Jan 2026 16:22:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 54252 IP address blocks: 88.209.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.mft rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 15:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:e3:c2:88:0b:58:fd:4c:d2:f1:62:f0:64:e0:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10 Validity Not Before: Jan 2 16:22:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9f4351e8e8a249154ba4d8a945aacd7ef0505414 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a0:ca:53:a8:88:1a:e9:40:9a:d0:ae:b2:3e: 7a:e8:7a:b4:1e:24:8c:79:8b:1f:3c:a4:93:ea:b7: 44:0e:99:9c:fb:98:68:db:e6:35:24:5d:29:33:a1: 76:37:a3:ec:d9:15:b9:64:0e:42:e4:bc:25:c7:f0: 16:a2:f4:69:d3:19:b0:68:d7:da:29:fd:8d:20:99: da:26:d9:35:bd:1a:18:28:02:f7:26:13:8c:b9:96: df:83:52:64:67:d6:6c:be:83:06:e1:34:04:f2:be: 06:37:43:3e:85:87:7f:06:f2:d7:61:ae:9a:50:bb: 71:9a:99:51:09:80:10:75:15:0b:75:37:fe:fa:9b: 7a:81:9e:d1:1e:2c:69:b7:a4:de:1b:84:6d:e1:f6: 6d:3b:21:b8:27:2e:8a:2b:44:f3:a3:ef:d6:5a:9b: 10:89:6e:06:f7:9b:ae:72:b9:8a:23:24:52:29:69: 1c:c5:f8:be:4a:3d:f4:79:86:be:5d:a9:44:89:dc: 2f:01:ac:2c:3a:c7:91:3b:d5:b2:31:77:b9:8f:a8: d7:9f:2e:2a:27:5d:1c:eb:cf:4a:4a:de:1a:85:60: f0:1d:29:11:0d:24:b0:84:e1:e1:32:9e:d9:9b:e7: 50:3d:62:3e:35:f7:b4:f4:c1:e1:88:01:e8:7e:59: 03:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:43:51:E8:E8:A2:49:15:4B:A4:D8:A9:45:AA:CD:7E:F0:50:54:14 X509v3 Authority Key Identifier: keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/n0NR6OiiSRVLpNipRarNfvBQVBQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 88.209.207.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:26:e0:47:c7:07:e2:9d:53:97:4a:e3:a3:45:6d:c4:17:3f: 32:ff:f0:5f:59:d1:f6:79:a0:d2:68:15:59:85:29:c7:4c:49: 5a:0a:bc:82:21:bd:cc:26:28:f1:61:09:0c:53:0f:25:5b:f8: 68:c9:d1:05:e5:da:9b:02:1e:0e:e8:47:c7:ce:7d:5f:6d:b9: 31:39:c7:96:5f:97:20:8e:61:d0:6e:03:4e:f4:3c:d1:70:bc: 7b:cd:6f:46:8b:ec:94:ee:6d:e6:89:9d:4d:0a:ce:5c:53:70: aa:3c:56:24:cd:24:0b:db:dc:19:a2:f7:58:ad:e7:67:e1:79: 5c:13:52:39:5a:02:e4:3b:18:b3:7d:1e:36:b8:f2:22:34:c4: ec:18:06:a3:64:ed:48:aa:c9:7f:21:de:85:62:86:77:4c:2f: 2e:4a:9e:8e:5f:4a:43:bc:2d:3c:eb:38:c8:68:57:9a:7d:41: 87:dc:42:2a:00:78:6a:71:72:75:2a:1f:4b:5a:3e:2d:e2:18: 71:bc:8c:8c:03:9f:aa:0e:9b:46:9e:0c:9f:fe:49:29:32:f4: 91:9c:82:40:c6:2d:dc:d9:ff:bf:d1:4b:75:7f:d2:52:f9:36: 7c:0c:3a:ec:c9:66:f3:d6:4b:39:45:fe:af:ba:34:29:31:04: ae:fd:78:6c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hOPCiAtY/UzS8WLwZOD8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkYWFhMGUwODIzNjAzNjBhY2RhMzQ3NjY0ZWI4MzE0ZWIx MWRhMTAwHhcNMjYwMTAyMTYyMjU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZjQzNTFlOGU4YTI0OTE1NGJhNGQ4YTk0NWFhY2Q3ZWYwNTA1NDE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxqDKU6iIGulAmtCusj566Hq0HiSM eYsfPKST6rdEDpmc+5ho2+Y1JF0pM6F2N6Ps2RW5ZA5C5Lwlx/AWovRp0xmwaNfa Kf2NIJnaJtk1vRoYKAL3JhOMuZbfg1JkZ9ZsvoMG4TQE8r4GN0M+hYd/BvLXYa6a ULtxmplRCYAQdRULdTf++pt6gZ7RHixpt6TeG4Rt4fZtOyG4Jy6KK0Tzo+/WWpsQ iW4G95uucrmKIyRSKWkcxfi+Sj30eYa+XalEidwvAawsOseRO9WyMXe5j6jXny4q J10c689KSt4ahWDwHSkRDSSwhOHhMp7Zm+dQPWI+Nfe09MHhiAHoflkDHwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJ9DUejookkVS6TYqUWqzX7wUFQUMB8GA1UdIwQY MBaAFM2qoOCCNgNgrNo0dmTrgxTrEdoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2Mt N2U0ZDZmNmY2ZTY2LzEvbjBOUjZPaWlTUlZMcE5pcFJhck5mdkJRVkJRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2MtN2U0ZDZmNmY2ZTY2 LzEvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWNHPMA0G CSqGSIb3DQEBCwUAA4IBAQCPJuBHxwfinVOXSuOjRW3EFz8y//BfWdH2eaDSaBVZ hSnHTElaCryCIb3MJijxYQkMUw8lW/hoydEF5dqbAh4O6EfHzn1fbbkxOceWX5cg jmHQbgNO9DzRcLx7zW9Gi+yU7m3miZ1NCs5cU3CqPFYkzSQL29wZovdYredn4Xlc E1I5WgLkOxizfR42uPIiNMTsGAajZO1Iqsl/Id6FYoZ3TC8uSp6OX0pDvC086zjI aFeafUGH3EIqAHhqcXJ1Kh9LWj4t4hhxvIyMA5+qDptGngyf/kkpMvSRnIJAxi3c 2f+/0Ut1f9JS+TZ8DDrsyWbz1ks5Rf6vujQpMQSu/Xhs -----END CERTIFICATE-----Generated at Mon Jan 19 19:59:29 2026 by rpki-client