This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/a63fd8-9b36-496d-b6e2-b20ebe595475/1/jmBPCb9DTm9fzSzAZ1_mQpVIr-k.roa File: jmBPCb9DTm9fzSzAZ1_mQpVIr-k.roa (raw, json) Hash identifier: FekyEXt0eMF+S2nBvz+51hHLK6v+L5cr1WGH2ZOcpgs= Subject key identifier: 8E:60:4F:09:BF:43:4E:6F:5F:CD:2C:C0:67:5F:E6:42:95:48:AF:E9 Certificate issuer: /CN=ad3b529c9dc9526f099bf16ac89dcc8adfe18240 Certificate serial: 019B7C12563B440BA705B579A3A145EA624E Authority key identifier: AD:3B:52:9C:9D:C9:52:6F:09:9B:F1:6A:C8:9D:CC:8A:DF:E1:82:40 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rTtSnJ3JUm8Jm_FqyJ3Mit_hgkA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/a63fd8-9b36-496d-b6e2-b20ebe595475/1/jmBPCb9DTm9fzSzAZ1_mQpVIr-k.roa Signing time: Fri 02 Jan 2026 00:18:55 +0000 ROA not before: Fri 02 Jan 2026 00:18:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43366 IP address blocks: 185.161.140.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/a63fd8-9b36-496d-b6e2-b20ebe595475/1/rTtSnJ3JUm8Jm_FqyJ3Mit_hgkA.crl rsync://rpki.ripe.net/repository/DEFAULT/00/a63fd8-9b36-496d-b6e2-b20ebe595475/1/rTtSnJ3JUm8Jm_FqyJ3Mit_hgkA.mft rsync://rpki.ripe.net/repository/DEFAULT/rTtSnJ3JUm8Jm_FqyJ3Mit_hgkA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 09:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:56:3b:44:0b:a7:05:b5:79:a3:a1:45:ea:62:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad3b529c9dc9526f099bf16ac89dcc8adfe18240 Validity Not Before: Jan 2 00:18:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8e604f09bf434e6f5fcd2cc0675fe6429548afe9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:9b:ba:69:aa:0a:48:14:01:51:e0:56:7c:b9: f6:ba:72:eb:56:d5:f2:fa:76:be:cf:85:c2:e8:b0: 78:40:b5:02:53:d6:1a:46:7f:e7:e9:f7:0d:d6:2c: 56:55:cb:b4:ed:a9:ec:28:e6:ae:6e:dc:bf:6a:bf: 4e:47:de:dd:5c:ac:8d:61:f3:0b:b6:a4:5d:d5:ea: 84:8f:53:a9:13:ed:6c:6d:49:65:1c:32:66:5c:7f: cc:94:98:b2:ce:52:7c:ae:77:ee:70:94:8f:e9:3b: 3e:07:4e:6c:2a:b9:7b:02:de:ed:c3:2e:d0:98:01: 81:58:7b:bb:e2:60:f0:a3:6b:e5:55:a5:57:01:06: 62:ec:1e:b3:d3:e4:38:f8:f9:8c:bf:22:ab:0c:da: 1c:58:1f:82:a7:9a:c9:d3:8c:bc:3d:df:2b:41:98: d4:03:a0:b7:61:14:32:a7:f0:71:89:6c:94:76:ec: f7:9e:c2:c2:76:ac:bb:b5:20:28:87:b5:7b:d9:bd: 02:68:44:9e:36:76:d9:06:15:90:29:49:73:3c:c3: 2a:49:c2:56:92:60:cc:06:da:24:e5:43:ee:05:d4: c9:80:17:77:aa:23:22:da:45:0a:bb:d9:48:fc:4e: a4:bd:7c:43:32:f4:5d:11:8e:ea:7e:3d:f4:2a:b4: be:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:60:4F:09:BF:43:4E:6F:5F:CD:2C:C0:67:5F:E6:42:95:48:AF:E9 X509v3 Authority Key Identifier: keyid:AD:3B:52:9C:9D:C9:52:6F:09:9B:F1:6A:C8:9D:CC:8A:DF:E1:82:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rTtSnJ3JUm8Jm_FqyJ3Mit_hgkA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/a63fd8-9b36-496d-b6e2-b20ebe595475/1/jmBPCb9DTm9fzSzAZ1_mQpVIr-k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/a63fd8-9b36-496d-b6e2-b20ebe595475/1/rTtSnJ3JUm8Jm_FqyJ3Mit_hgkA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.161.140.0/22 Signature Algorithm: sha256WithRSAEncryption 56:cb:89:da:38:55:46:87:50:42:12:d2:06:55:cd:8c:50:e4: b7:7e:98:eb:eb:a2:5c:b8:a7:0b:4f:d6:46:fa:c6:3a:9c:d7: 41:86:30:ed:74:e0:45:33:02:10:cd:97:af:59:72:a4:ae:92: fe:ee:9b:b3:34:dd:a2:f3:9a:f2:8f:39:ff:d4:fe:2e:ac:05: ed:14:7f:45:d8:f4:ce:94:ca:c1:dc:95:71:88:9d:b6:1d:89: e0:cc:dc:ab:80:56:a0:f6:63:6b:63:2b:95:68:e2:db:d8:33: 87:c6:a9:15:45:22:59:17:3d:3a:60:6f:45:ff:40:7a:0a:e2: 0a:00:77:37:65:68:42:9c:55:c8:da:01:d5:a7:69:df:ae:4a: 6e:83:70:48:0b:be:54:8c:58:9d:d9:c4:30:de:4e:6a:54:5f: d4:1c:d1:db:5c:9c:a8:13:3a:41:f8:15:ca:f4:48:cc:aa:93: ee:43:17:ad:43:01:33:78:b5:f8:13:5c:00:4e:57:14:81:1e: 22:85:75:e7:60:10:60:de:02:08:ab:48:80:b0:45:39:63:a0: 17:6b:25:fd:d7:99:bf:e7:8e:a7:10:e5:6e:da:37:e1:c2:2f: 15:97:1e:02:76:fc:96:83:e6:b6:c1:f4:ce:a5:01:54:8a:bd: 1d:80:d5:a0 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8ElY7RAunBbV5o6FF6mJOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkM2I1MjljOWRjOTUyNmYwOTliZjE2YWM4OWRjYzhhZGZl MTgyNDAwHhcNMjYwMTAyMDAxODU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZTYwNGYwOWJmNDM0ZTZmNWZjZDJjYzA2NzVmZTY0Mjk1NDhhZmU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArJu6aaoKSBQBUeBWfLn2unLrVtXy +na+z4XC6LB4QLUCU9YaRn/n6fcN1ixWVcu07ansKOaubty/ar9OR97dXKyNYfML tqRd1eqEj1OpE+1sbUllHDJmXH/MlJiyzlJ8rnfucJSP6Ts+B05sKrl7At7twy7Q mAGBWHu74mDwo2vlVaVXAQZi7B6z0+Q4+PmMvyKrDNocWB+Cp5rJ04y8Pd8rQZjU A6C3YRQyp/BxiWyUduz3nsLCdqy7tSAoh7V72b0CaESeNnbZBhWQKUlzPMMqScJW kmDMBtok5UPuBdTJgBd3qiMi2kUKu9lI/E6kvXxDMvRdEY7qfj30KrS+XwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFI5gTwm/Q05vX80swGdf5kKVSK/pMB8GA1UdIwQY MBaAFK07UpydyVJvCZvxasidzIrf4YJAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvclR0U25KM0pVbThKbV9GcXlKM01pdF9oZ2tBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9hNjNmZDgtOWIzNi00OTZkLWI2ZTIt YjIwZWJlNTk1NDc1LzEvam1CUENiOURUbTlmelN6QVoxX21RcFZJci1rLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC9hNjNmZDgtOWIzNi00OTZkLWI2ZTItYjIwZWJlNTk1NDc1 LzEvclR0U25KM0pVbThKbV9GcXlKM01pdF9oZ2tBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuaGMMA0G CSqGSIb3DQEBCwUAA4IBAQBWy4naOFVGh1BCEtIGVc2MUOS3fpjr66JcuKcLT9ZG +sY6nNdBhjDtdOBFMwIQzZevWXKkrpL+7puzNN2i85ryjzn/1P4urAXtFH9F2PTO lMrB3JVxiJ22HYngzNyrgFag9mNrYyuVaOLb2DOHxqkVRSJZFz06YG9F/0B6CuIK AHc3ZWhCnFXI2gHVp2nfrkpug3BIC75UjFid2cQw3k5qVF/UHNHbXJyoEzpB+BXK 9EjMqpPuQxetQwEzeLX4E1wATlcUgR4ihXXnYBBg3gIIq0iAsEU5Y6AXayX915m/ 546nEOVu2jfhwi8Vlx4CdvyWg+a2wfTOpQFUir0dgNWg -----END CERTIFICATE-----Generated at Mon Jan 26 19:35:01 2026 by rpki-client