This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/7d43bb-a1c6-4055-8c53-2fee8b6309cb/1/jvNVYqDPl5ZDvjEdTec8dYMFDrE.roa File: jvNVYqDPl5ZDvjEdTec8dYMFDrE.roa (raw, json) Hash identifier: mkdE3JMB7Inwkz7RT7yv7TB5SnROSJYA3Nk4bVsDvlw= Subject key identifier: 8E:F3:55:62:A0:CF:97:96:43:BE:31:1D:4D:E7:3C:75:83:05:0E:B1 Certificate issuer: /CN=4268a4cfb6b1b6447da93833321dd315061193d4 Certificate serial: 019B76EB0A6491B68E26F7721F5D7C696A01 Authority key identifier: 42:68:A4:CF:B6:B1:B6:44:7D:A9:38:33:32:1D:D3:15:06:11:93:D4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qmikz7axtkR9qTgzMh3TFQYRk9Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/7d43bb-a1c6-4055-8c53-2fee8b6309cb/1/jvNVYqDPl5ZDvjEdTec8dYMFDrE.roa Signing time: Thu 01 Jan 2026 00:17:53 +0000 ROA not before: Thu 01 Jan 2026 00:17:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41981 IP address blocks: 185.105.252.0/24 maxlen: 24 185.105.253.0/24 maxlen: 24 185.105.254.0/24 maxlen: 24 185.105.255.0/24 maxlen: 24 2a06:3a80::/40 maxlen: 40 2a06:3a80:200::/40 maxlen: 40 2a06:3a80:300::/40 maxlen: 40 2a06:3a80:400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/7d43bb-a1c6-4055-8c53-2fee8b6309cb/1/Qmikz7axtkR9qTgzMh3TFQYRk9Q.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/7d43bb-a1c6-4055-8c53-2fee8b6309cb/1/Qmikz7axtkR9qTgzMh3TFQYRk9Q.mft rsync://rpki.ripe.net/repository/DEFAULT/Qmikz7axtkR9qTgzMh3TFQYRk9Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:0a:64:91:b6:8e:26:f7:72:1f:5d:7c:69:6a:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4268a4cfb6b1b6447da93833321dd315061193d4 Validity Not Before: Jan 1 00:17:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8ef35562a0cf979643be311d4de73c7583050eb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:7a:ae:60:2a:0e:1e:bc:5c:11:d8:ae:00:de: 11:c5:68:eb:cf:51:02:d0:d1:90:34:8f:63:ca:55: 9f:17:2a:1b:0c:f8:76:56:87:16:77:23:52:36:2e: e0:76:77:de:ac:62:51:70:4a:c6:fe:98:f3:3e:f0: 16:45:10:22:54:73:5e:72:37:79:48:60:8a:ac:63: 03:bb:1d:8d:ec:45:1f:b3:64:75:43:63:8f:de:f5: 19:a0:a3:d5:71:f4:ec:c2:a6:ff:ab:0d:20:2d:08: 5c:19:1b:f2:a8:dd:9d:30:15:8b:d7:66:e0:f2:90: e0:57:54:64:56:79:82:91:a3:93:be:75:36:99:70: 14:ab:8f:ab:59:b5:8c:d5:07:f6:08:82:9d:ae:50: b7:7f:3f:6d:23:aa:c5:0d:27:87:2c:7b:7d:fd:65: d4:9c:9a:d4:18:48:51:1c:9c:e5:0d:d5:4f:50:33: 1a:a0:4e:fd:4c:44:26:60:65:f0:90:c7:b6:2e:be: c0:cd:13:62:25:8b:08:c3:8e:cc:72:97:58:ff:45: 47:03:fd:b7:db:ba:bd:4f:b2:25:76:5f:5d:15:5e: d9:2a:e4:ff:31:7e:32:8f:be:bc:8e:a5:f2:34:fa: 54:b9:08:80:6e:8e:73:a2:cf:05:e6:94:4a:d5:eb: 2c:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:F3:55:62:A0:CF:97:96:43:BE:31:1D:4D:E7:3C:75:83:05:0E:B1 X509v3 Authority Key Identifier: keyid:42:68:A4:CF:B6:B1:B6:44:7D:A9:38:33:32:1D:D3:15:06:11:93:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qmikz7axtkR9qTgzMh3TFQYRk9Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/7d43bb-a1c6-4055-8c53-2fee8b6309cb/1/jvNVYqDPl5ZDvjEdTec8dYMFDrE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/7d43bb-a1c6-4055-8c53-2fee8b6309cb/1/Qmikz7axtkR9qTgzMh3TFQYRk9Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.105.252.0/22 IPv6: 2a06:3a80::/40 2a06:3a80:200::-2a06:3a80:4ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 0f:3d:fd:b6:30:49:b9:94:4c:09:14:0e:00:a9:0f:da:19:1c: 9f:30:df:df:72:4b:92:11:cd:93:a2:1e:05:be:ea:42:74:32: a1:f8:db:5e:27:51:28:51:c3:73:9d:9e:02:da:d0:c9:6e:6c: 21:24:49:04:1f:28:73:89:c3:ce:f1:25:3a:99:cf:d4:98:bd: 30:37:4d:9d:8c:92:4c:dd:e6:e0:4d:25:1c:7e:1d:e1:1e:45: e4:ab:a5:77:68:11:5f:b5:ca:ec:bb:f2:31:b2:a9:36:37:d6: d9:ec:52:66:3f:f2:e4:25:db:8e:b4:f8:87:8c:c8:8e:10:b3: fe:b0:68:11:b8:97:e4:42:11:df:76:bc:98:e5:67:04:03:28: 3a:78:79:dc:1e:89:13:15:df:ed:fb:4a:fb:9d:18:e9:f3:a8: fe:67:95:2b:90:de:1f:a4:df:2a:d5:db:c4:bc:dd:62:af:0d: 78:86:c9:a9:fc:bd:6f:9e:24:a6:6c:c4:8e:57:81:ab:58:2c: 44:fd:36:99:3b:8f:04:2a:0a:39:4b:27:3a:8b:fb:a7:7f:33: d6:a1:09:00:ae:3c:eb:16:dc:e1:08:d3:24:f5:b3:7a:9b:7e: e3:a8:49:20:a5:e2:2b:d7:70:c4:c8:cb:2d:8a:66:22:67:a3: 0c:08:2c:1b -----BEGIN CERTIFICATE----- MIIFHzCCBAegAwIBAgISAZt26wpkkbaOJvdyH118aWoBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyNjhhNGNmYjZiMWI2NDQ3ZGE5MzgzMzMyMWRkMzE1MDYx MTkzZDQwHhcNMjYwMTAxMDAxNzUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZWYzNTU2MmEwY2Y5Nzk2NDNiZTMxMWQ0ZGU3M2M3NTgzMDUwZWIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8HquYCoOHrxcEdiuAN4RxWjrz1EC 0NGQNI9jylWfFyobDPh2VocWdyNSNi7gdnferGJRcErG/pjzPvAWRRAiVHNecjd5 SGCKrGMDux2N7EUfs2R1Q2OP3vUZoKPVcfTswqb/qw0gLQhcGRvyqN2dMBWL12bg 8pDgV1RkVnmCkaOTvnU2mXAUq4+rWbWM1Qf2CIKdrlC3fz9tI6rFDSeHLHt9/WXU nJrUGEhRHJzlDdVPUDMaoE79TEQmYGXwkMe2Lr7AzRNiJYsIw47McpdY/0VHA/23 27q9T7Ildl9dFV7ZKuT/MX4yj768jqXyNPpUuQiAbo5zos8F5pRK1esshwIDAQAB o4ICKzCCAicwHQYDVR0OBBYEFI7zVWKgz5eWQ74xHU3nPHWDBQ6xMB8GA1UdIwQY MBaAFEJopM+2sbZEfak4MzId0xUGEZPUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUW1pa3o3YXh0a1I5cVRnek1oM1RGUVlSazlRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS83ZDQzYmItYTFjNi00MDU1LThjNTMt MmZlZThiNjMwOWNiLzEvanZOVllxRFBsNVpEdmpFZFRlYzhkWU1GRHJFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS83ZDQzYmItYTFjNi00MDU1LThjNTMtMmZlZThiNjMwOWNi LzEvUW1pa3o3YXh0a1I5cVRnek1oM1RGUVlSazlRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEEGCCsGAQUFBwEHAQH/BDIwMDAMBAIAATAGAwQCuWn8MCAE AgACMBoDBgAqBjqAADAQAwYBKgY6gAIDBgAqBjqABDANBgkqhkiG9w0BAQsFAAOC AQEADz39tjBJuZRMCRQOAKkP2hkcnzDf33JLkhHNk6IeBb7qQnQyofjbXidRKFHD c52eAtrQyW5sISRJBB8oc4nDzvElOpnP1Ji9MDdNnYySTN3m4E0lHH4d4R5F5Kul d2gRX7XK7LvyMbKpNjfW2exSZj/y5CXbjrT4h4zIjhCz/rBoEbiX5EIR33a8mOVn BAMoOnh53B6JExXf7ftK+50Y6fOo/meVK5DeH6TfKtXbxLzdYq8NeIbJqfy9b54k pmzEjleBq1gsRP02mTuPBCoKOUsnOov7p38z1qEJAK486xbc4QjTJPWzept+46hJ IKXiK9dwxMjLLYpmImejDAgsGw== -----END CERTIFICATE-----Generated at Mon Jan 26 15:17:28 2026 by rpki-client