This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/NEQkMGAJAfKugYCF_SBXZZt_zOA.roa File: NEQkMGAJAfKugYCF_SBXZZt_zOA.roa (raw, json) Hash identifier: 1zriG+EOUPPANFuX8FQR4exMMCMJ2lG+QMPasFhRCHE= Subject key identifier: 34:44:24:30:60:09:01:F2:AE:81:80:85:FD:20:57:65:9B:7F:CC:E0 Certificate issuer: /CN=88fe1905cd7af36e63ada6366c147b61d85c9f2b Certificate serial: 019B7CEDE6279693FC6E0C41136552939702 Authority key identifier: 88:FE:19:05:CD:7A:F3:6E:63:AD:A6:36:6C:14:7B:61:D8:5C:9F:2B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iP4ZBc16825jraY2bBR7Ydhcnys.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/NEQkMGAJAfKugYCF_SBXZZt_zOA.roa Signing time: Fri 02 Jan 2026 04:18:44 +0000 ROA not before: Fri 02 Jan 2026 04:18:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16509 IP address blocks: 185.99.236.0/24 maxlen: 24 185.99.237.0/24 maxlen: 24 185.99.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.mft rsync://rpki.ripe.net/repository/DEFAULT/iP4ZBc16825jraY2bBR7Ydhcnys.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:e6:27:96:93:fc:6e:0c:41:13:65:52:93:97:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88fe1905cd7af36e63ada6366c147b61d85c9f2b Validity Not Before: Jan 2 04:18:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=34442430600901f2ae818085fd2057659b7fcce0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:83:56:9c:62:58:2f:56:42:12:84:96:c6:ba: ba:ee:ac:34:2d:e0:6a:4f:a1:fa:a9:34:cc:3d:f5: 01:d7:93:fe:da:99:97:96:0f:a3:8d:72:37:f2:9b: fe:83:02:91:b4:94:ac:9e:36:75:2a:db:57:38:f1: a5:8b:68:21:ae:a9:e9:66:ef:1c:a0:d8:c4:6e:f8: e9:f6:c7:1c:79:6c:7e:ab:10:aa:1f:fc:39:38:82: 9d:bb:30:7f:29:6f:dc:6c:11:45:7f:90:eb:c1:51: 94:4c:2d:39:d9:53:38:e1:28:2b:cc:47:fe:ed:a1: d8:7d:40:ad:7a:f6:ae:ee:ab:b5:55:b5:1f:72:c6: b0:6f:a8:93:8e:53:12:f0:8d:fa:2a:1a:7d:a7:d2: e6:83:09:96:0d:59:5a:46:f8:53:1d:0f:f2:df:60: f5:8f:ad:e9:60:64:41:9a:1e:e4:f2:98:9e:87:11: d4:6b:a7:8e:5c:4d:c2:6d:c5:66:9c:35:91:33:7c: c2:0f:85:8c:24:e8:2e:c0:fc:e5:e4:de:da:5e:dc: 2d:1b:f6:ef:8c:70:fc:98:0a:fb:44:fd:db:a7:49: 2c:2a:86:96:65:44:e8:4b:b2:db:97:b8:09:c8:6f: 4e:c8:6e:50:6e:a6:ec:5d:81:65:cd:b4:79:81:15: b4:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:44:24:30:60:09:01:F2:AE:81:80:85:FD:20:57:65:9B:7F:CC:E0 X509v3 Authority Key Identifier: keyid:88:FE:19:05:CD:7A:F3:6E:63:AD:A6:36:6C:14:7B:61:D8:5C:9F:2B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iP4ZBc16825jraY2bBR7Ydhcnys.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/NEQkMGAJAfKugYCF_SBXZZt_zOA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.99.236.0-185.99.238.255 Signature Algorithm: sha256WithRSAEncryption a2:fa:71:7b:f3:e3:91:9c:77:0a:ad:60:d0:2d:d9:39:c5:f7: ce:7a:27:29:df:3a:eb:c3:74:44:34:3c:3d:fa:c2:33:6c:94: b9:83:dd:0d:1d:7f:11:4c:2c:f5:8a:e9:38:be:6b:a3:fe:97: 54:f2:c6:64:78:2c:59:72:62:ba:95:d2:65:23:73:c2:34:f4: ee:df:a3:b1:b1:52:a2:db:ad:cf:40:b7:94:bb:1e:fc:54:e0: b3:9e:28:ba:1b:03:9f:a5:b1:06:d3:b3:85:08:c6:10:66:89: 2d:68:89:1b:25:0a:59:1e:54:c2:c4:8a:7d:1c:be:1d:bc:67: ca:1c:a7:69:f3:af:ef:a1:b7:a0:79:bd:f2:dd:3d:6f:d9:61: fc:d4:64:54:98:2d:08:21:4b:75:14:81:08:7a:7e:f7:22:34: a0:eb:69:26:e3:0d:c2:ba:90:45:b2:f8:dd:c7:3a:c3:59:6e: fe:d4:0f:7b:73:ec:89:5f:2e:0c:4f:ec:36:f7:7c:87:8c:de: 1d:0d:18:58:24:53:a0:f9:53:ff:4e:4e:61:76:83:2e:04:a9: 50:09:3d:f2:c5:9b:fa:80:5f:78:de:57:81:de:03:47:43:8e: a2:a3:c4:14:0a:65:75:38:c2:e8:65:01:d2:4c:cd:2b:3c:dc: 4f:e7:f2:87 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt87eYnlpP8bgxBE2VSk5cCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4ZmUxOTA1Y2Q3YWYzNmU2M2FkYTYzNjZjMTQ3YjYxZDg1 YzlmMmIwHhcNMjYwMTAyMDQxODQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNDQ0MjQzMDYwMDkwMWYyYWU4MTgwODVmZDIwNTc2NTliN2ZjY2UwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwoNWnGJYL1ZCEoSWxrq67qw0LeBq T6H6qTTMPfUB15P+2pmXlg+jjXI38pv+gwKRtJSsnjZ1KttXOPGli2ghrqnpZu8c oNjEbvjp9scceWx+qxCqH/w5OIKduzB/KW/cbBFFf5DrwVGUTC052VM44SgrzEf+ 7aHYfUCtevau7qu1VbUfcsawb6iTjlMS8I36Khp9p9LmgwmWDVlaRvhTHQ/y32D1 j63pYGRBmh7k8piehxHUa6eOXE3CbcVmnDWRM3zCD4WMJOguwPzl5N7aXtwtG/bv jHD8mAr7RP3bp0ksKoaWZUToS7Lbl7gJyG9OyG5QbqbsXYFlzbR5gRW0BwIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFDREJDBgCQHyroGAhf0gV2Wbf8zgMB8GA1UdIwQY MBaAFIj+GQXNevNuY62mNmwUe2HYXJ8rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVA0WkJjMTY4MjVqcmFZMmJCUjdZZGhjbnlzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy8zMTk1MmEtNjA4Yy00NjhlLWEwMGUt ZDYzM2FhNzBkZDY2LzEvTkVRa01HQUpBZkt1Z1lDRl9TQlhaWnRfek9BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy8zMTk1MmEtNjA4Yy00NjhlLWEwMGUtZDYzM2FhNzBkZDY2 LzEvaVA0WkJjMTY4MjVqcmFZMmJCUjdZZGhjbnlzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAK5Y+wD BAC5Y+4wDQYJKoZIhvcNAQELBQADggEBAKL6cXvz45GcdwqtYNAt2TnF9856Jynf OuvDdEQ0PD36wjNslLmD3Q0dfxFMLPWK6Ti+a6P+l1TyxmR4LFlyYrqV0mUjc8I0 9O7fo7GxUqLbrc9At5S7HvxU4LOeKLobA5+lsQbTs4UIxhBmiS1oiRslClkeVMLE in0cvh28Z8ocp2nzr++ht6B5vfLdPW/ZYfzUZFSYLQghS3UUgQh6fvciNKDraSbj DcK6kEWy+N3HOsNZbv7UD3tz7IlfLgxP7Db3fIeM3h0NGFgkU6D5U/9OTmF2gy4E qVAJPfLFm/qAX3jeV4HeA0dDjqKjxBQKZXU4wuhlAdJMzSs83E/n8oc= -----END CERTIFICATE-----Generated at Fri Jan 2 09:27:08 2026 by rpki-client