This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/f85b3d-624e-4b1a-ad33-10a206da7b6b/1/nkXiZoMMW3zafsjty-VJgGg0Xzc.roa File: nkXiZoMMW3zafsjty-VJgGg0Xzc.roa (raw, json) Hash identifier: F3sEH4KSkZNHFk1f1SP7LzRoEDV0ahVUx0fynXewv18= Subject key identifier: 9E:45:E2:66:83:0C:5B:7C:DA:7E:C8:ED:CB:E5:49:80:68:34:5F:37 Certificate issuer: /CN=79ee11d8c4297bec54bd305430ca4772dfac847a Certificate serial: 019B7AC77BBC887AF839C6E639C30BF063AB Authority key identifier: 79:EE:11:D8:C4:29:7B:EC:54:BD:30:54:30:CA:47:72:DF:AC:84:7A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ee4R2MQpe-xUvTBUMMpHct-shHo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/f85b3d-624e-4b1a-ad33-10a206da7b6b/1/nkXiZoMMW3zafsjty-VJgGg0Xzc.roa Signing time: Thu 01 Jan 2026 18:17:32 +0000 ROA not before: Thu 01 Jan 2026 18:17:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15576 IP address blocks: 185.62.104.0/22 maxlen: 24 2a13:7440::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/f85b3d-624e-4b1a-ad33-10a206da7b6b/1/ee4R2MQpe-xUvTBUMMpHct-shHo.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/f85b3d-624e-4b1a-ad33-10a206da7b6b/1/ee4R2MQpe-xUvTBUMMpHct-shHo.mft rsync://rpki.ripe.net/repository/DEFAULT/ee4R2MQpe-xUvTBUMMpHct-shHo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 12:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:7b:bc:88:7a:f8:39:c6:e6:39:c3:0b:f0:63:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=79ee11d8c4297bec54bd305430ca4772dfac847a Validity Not Before: Jan 1 18:17:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9e45e266830c5b7cda7ec8edcbe5498068345f37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f8:c9:8c:d9:61:84:b3:97:71:20:63:7c:69: 78:b2:0f:52:83:17:b9:cd:36:0e:55:79:5a:d2:73: e8:b6:1b:8f:25:ea:af:cc:1c:a0:61:08:6e:e7:9c: 2f:14:2f:75:9a:09:f8:26:dd:21:b9:b8:bb:c4:ac: bb:84:09:ed:cc:6e:06:8d:28:2a:5e:d2:25:92:37: 85:46:72:36:3b:e5:5b:6c:4d:31:da:9e:05:09:9e: 2b:70:e6:16:89:30:db:b6:d4:94:5f:ae:46:f9:78: 1d:b7:e4:52:63:19:5d:47:f5:d3:76:6b:d2:9d:4e: 70:c1:e0:2a:72:3e:37:42:97:2e:cc:fb:4d:6f:91: d3:72:34:83:7f:73:e8:53:86:72:57:5f:2c:24:7f: e0:9f:08:c8:ea:48:15:f8:12:28:22:ee:11:f3:c5: 90:2a:90:b5:20:da:bd:95:e7:01:9a:1f:b4:6d:6d: b4:ad:ae:0e:9f:29:ab:0b:01:1e:75:46:68:b4:c3: 6c:fc:b6:56:2b:59:c8:14:a4:08:44:f6:b7:26:48: 79:68:cb:a0:94:12:ae:26:b3:15:f3:02:8d:2d:73: eb:bf:ba:b6:fb:da:e3:39:49:39:98:67:65:0e:3e: 14:f8:88:c0:f6:bc:f6:b5:57:42:0c:ea:49:3d:89: e2:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:45:E2:66:83:0C:5B:7C:DA:7E:C8:ED:CB:E5:49:80:68:34:5F:37 X509v3 Authority Key Identifier: keyid:79:EE:11:D8:C4:29:7B:EC:54:BD:30:54:30:CA:47:72:DF:AC:84:7A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee4R2MQpe-xUvTBUMMpHct-shHo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f85b3d-624e-4b1a-ad33-10a206da7b6b/1/nkXiZoMMW3zafsjty-VJgGg0Xzc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f85b3d-624e-4b1a-ad33-10a206da7b6b/1/ee4R2MQpe-xUvTBUMMpHct-shHo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.62.104.0/22 IPv6: 2a13:7440::/29 Signature Algorithm: sha256WithRSAEncryption 6c:19:b5:97:5c:bd:c4:b9:94:bc:1e:e0:8d:f9:dd:31:7e:eb: a0:95:2b:5b:d8:fd:d8:01:6c:a1:fa:55:a3:e9:24:c0:41:89: b1:66:ee:d6:d3:af:af:fe:41:75:22:80:3a:eb:4b:87:bf:0f: 9a:c7:ee:b2:6a:84:02:aa:85:71:1a:57:f3:02:72:74:c7:87: 16:4b:34:e3:29:bd:a0:24:8a:53:b4:4c:4b:5f:6d:e9:44:62: fd:a9:8f:bf:8e:4c:5b:07:e6:12:5d:e2:e9:d0:14:3e:6e:c5: 61:ee:1d:74:d8:16:2d:86:61:98:09:f6:eb:6d:40:eb:78:9b: 13:78:33:69:f4:71:53:04:19:2c:a6:2e:35:af:f7:23:22:5d: b3:68:8c:8c:fc:3f:46:17:c9:ee:b4:28:a4:7c:eb:11:bd:44: a1:20:3f:d7:e0:db:02:2d:d1:70:c7:be:91:bf:0b:a4:be:95: ed:04:97:0d:ef:27:8d:14:8f:1e:82:8f:95:56:b0:43:80:81: 46:3b:c3:03:e4:83:2d:2d:31:cb:4e:b7:23:92:4b:22:ee:b0: a2:c8:40:9b:30:94:d1:1e:6c:51:8e:83:dc:4d:7d:bb:ff:1c: 3f:c4:73:78:49:80:ce:e3:0e:7c:47:ee:48:f2:57:35:3e:91: fb:e9:a5:63 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt6x3u8iHr4OcbmOcML8GOrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc5ZWUxMWQ4YzQyOTdiZWM1NGJkMzA1NDMwY2E0NzcyZGZh Yzg0N2EwHhcNMjYwMTAxMTgxNzMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZTQ1ZTI2NjgzMGM1YjdjZGE3ZWM4ZWRjYmU1NDk4MDY4MzQ1ZjM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyfjJjNlhhLOXcSBjfGl4sg9Sgxe5 zTYOVXla0nPothuPJeqvzBygYQhu55wvFC91mgn4Jt0hubi7xKy7hAntzG4GjSgq XtIlkjeFRnI2O+VbbE0x2p4FCZ4rcOYWiTDbttSUX65G+Xgdt+RSYxldR/XTdmvS nU5wweAqcj43QpcuzPtNb5HTcjSDf3PoU4ZyV18sJH/gnwjI6kgV+BIoIu4R88WQ KpC1INq9lecBmh+0bW20ra4OnymrCwEedUZotMNs/LZWK1nIFKQIRPa3Jkh5aMug lBKuJrMV8wKNLXPrv7q2+9rjOUk5mGdlDj4U+IjA9rz2tVdCDOpJPYnigQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFJ5F4maDDFt82n7I7cvlSYBoNF83MB8GA1UdIwQY MBaAFHnuEdjEKXvsVL0wVDDKR3LfrIR6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZWU0UjJNUXBlLXhVdlRCVU1NcEhjdC1zaEhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi9mODViM2QtNjI0ZS00YjFhLWFkMzMt MTBhMjA2ZGE3YjZiLzEvbmtYaVpvTU1XM3phZnNqdHktVkpnR2cwWHpjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi9mODViM2QtNjI0ZS00YjFhLWFkMzMtMTBhMjA2ZGE3YjZi LzEvZWU0UjJNUXBlLXhVdlRCVU1NcEhjdC1zaEhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuT5oMA0E AgACMAcDBQMqE3RAMA0GCSqGSIb3DQEBCwUAA4IBAQBsGbWXXL3EuZS8HuCN+d0x fuuglStb2P3YAWyh+lWj6STAQYmxZu7W06+v/kF1IoA660uHvw+ax+6yaoQCqoVx GlfzAnJ0x4cWSzTjKb2gJIpTtExLX23pRGL9qY+/jkxbB+YSXeLp0BQ+bsVh7h10 2BYthmGYCfbrbUDreJsTeDNp9HFTBBkspi41r/cjIl2zaIyM/D9GF8nutCikfOsR vUShID/X4NsCLdFwx76RvwukvpXtBJcN7yeNFI8ego+VVrBDgIFGO8MD5IMtLTHL Trcjkksi7rCiyECbMJTRHmxRjoPcTX27/xw/xHN4SYDO4w58R+5I8lc1PpH76aVj -----END CERTIFICATE-----Generated at Mon Jan 26 19:20:03 2026 by rpki-client