This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b648fb-f50b-4cc2-a2b1-2f68216b7424/1/Sjohw2kq71FHa4gPxaUKTKd6HR0.roa File: Sjohw2kq71FHa4gPxaUKTKd6HR0.roa (raw, json) Hash identifier: Ij9LgFLc0en2koC2Go8CCw321xI1XXKyMHvV0ylYHL8= Subject key identifier: 4A:3A:21:C3:69:2A:EF:51:47:6B:88:0F:C5:A5:0A:4C:A7:7A:1D:1D Certificate issuer: /CN=32010f70276e418d58f08c56a79a82b99aca1763 Certificate serial: 019B79103879F22AF873072B3C947BF4F705 Authority key identifier: 32:01:0F:70:27:6E:41:8D:58:F0:8C:56:A7:9A:82:B9:9A:CA:17:63 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MgEPcCduQY1Y8IxWp5qCuZrKF2M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b648fb-f50b-4cc2-a2b1-2f68216b7424/1/Sjohw2kq71FHa4gPxaUKTKd6HR0.roa Signing time: Thu 01 Jan 2026 10:17:44 +0000 ROA not before: Thu 01 Jan 2026 10:17:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 45.88.248.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/b648fb-f50b-4cc2-a2b1-2f68216b7424/1/MgEPcCduQY1Y8IxWp5qCuZrKF2M.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/b648fb-f50b-4cc2-a2b1-2f68216b7424/1/MgEPcCduQY1Y8IxWp5qCuZrKF2M.mft rsync://rpki.ripe.net/repository/DEFAULT/MgEPcCduQY1Y8IxWp5qCuZrKF2M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:38:79:f2:2a:f8:73:07:2b:3c:94:7b:f4:f7:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32010f70276e418d58f08c56a79a82b99aca1763 Validity Not Before: Jan 1 10:17:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4a3a21c3692aef51476b880fc5a50a4ca77a1d1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a6:02:eb:ba:13:ac:09:24:43:6c:e9:e8:c2: 70:89:4b:d8:44:09:0b:a3:71:60:4b:1e:1c:32:b6: 85:53:c4:04:89:47:8d:11:3d:5f:7d:07:79:86:2f: 0e:f4:b2:60:b0:a1:55:f6:68:c2:91:9a:09:8d:fc: 8c:e8:fd:bb:eb:59:1a:a8:59:34:4e:7f:08:f5:e6: 39:97:a1:b0:43:e6:2e:e1:3e:83:54:4d:dd:e1:8f: 32:59:54:fe:c9:b6:db:c1:bd:7f:de:01:e9:0c:dc: 16:2b:bf:b3:36:66:ad:14:47:a2:74:41:15:e7:21: 51:67:db:cd:60:2c:de:2c:e7:b0:d7:c5:33:c3:2a: fd:d3:07:39:49:fc:20:53:63:b9:39:9f:86:63:2e: 2e:07:89:81:15:75:59:3b:95:89:7b:0b:aa:14:79: 69:fb:38:c3:97:eb:c2:b0:5e:88:87:b7:7c:bd:39: a0:fd:62:ea:12:07:86:14:a9:e0:a8:a5:f1:28:fe: 5e:bc:c6:b1:6d:c6:f9:dd:6f:b6:45:4f:49:e2:b5: 42:07:ba:2f:2e:d7:a3:06:07:26:9e:20:46:72:62: 27:47:a5:1d:3a:30:26:9f:2c:eb:32:48:d7:05:1f: aa:36:88:62:f9:48:64:a8:86:66:92:43:95:b7:a7: d5:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:3A:21:C3:69:2A:EF:51:47:6B:88:0F:C5:A5:0A:4C:A7:7A:1D:1D X509v3 Authority Key Identifier: keyid:32:01:0F:70:27:6E:41:8D:58:F0:8C:56:A7:9A:82:B9:9A:CA:17:63 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MgEPcCduQY1Y8IxWp5qCuZrKF2M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b648fb-f50b-4cc2-a2b1-2f68216b7424/1/Sjohw2kq71FHa4gPxaUKTKd6HR0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b648fb-f50b-4cc2-a2b1-2f68216b7424/1/MgEPcCduQY1Y8IxWp5qCuZrKF2M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.88.248.0/22 Signature Algorithm: sha256WithRSAEncryption 85:6e:20:c3:d1:a1:70:bd:cb:37:fd:d1:64:10:cd:fc:dc:b0: ac:0e:fa:f6:f7:5d:46:3e:c1:4d:07:2c:8a:04:f9:d0:9c:92: c4:b4:d1:c2:a4:db:df:d2:fd:17:6d:9c:57:a8:2c:eb:75:c5: fb:68:82:8a:76:71:1e:b9:ae:b0:4a:4d:cf:43:54:b4:8a:34: af:3c:f1:94:70:f0:65:84:91:62:8a:d4:87:96:2e:d7:72:ce: 51:31:80:85:c6:f0:13:55:4a:9b:aa:89:4f:46:8a:61:17:76: 7c:75:bf:ae:93:d1:73:84:92:16:99:0e:fb:50:26:c5:1a:6a: d4:4f:0f:83:c9:5f:31:59:42:49:90:b4:3f:78:5f:a2:93:9d: 02:ac:4d:31:43:01:2f:e8:29:c3:93:ee:e6:b8:6e:68:a5:5b: 56:aa:f7:be:3f:57:2d:02:c1:5a:1b:cc:c7:0e:60:24:fe:8d: a3:dc:ea:70:aa:4a:35:77:4c:09:14:35:0b:fa:7f:74:94:0d: 72:a6:12:6e:d9:7a:35:cf:ad:5f:31:a3:ec:f5:aa:97:28:ba: 40:ca:d5:d2:26:e1:91:5c:f7:d7:9f:be:b2:91:0a:e8:64:96: 2e:6f:7b:eb:58:21:6d:94:12:f5:a6:c1:31:9d:83:18:ec:e6: 57:37:ce:9a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EDh58ir4cwcrPJR79PcFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyMDEwZjcwMjc2ZTQxOGQ1OGYwOGM1NmE3OWE4MmI5OWFj YTE3NjMwHhcNMjYwMTAxMTAxNzQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YTNhMjFjMzY5MmFlZjUxNDc2Yjg4MGZjNWE1MGE0Y2E3N2ExZDFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzaYC67oTrAkkQ2zp6MJwiUvYRAkL o3FgSx4cMraFU8QEiUeNET1ffQd5hi8O9LJgsKFV9mjCkZoJjfyM6P2761kaqFk0 Tn8I9eY5l6GwQ+Yu4T6DVE3d4Y8yWVT+ybbbwb1/3gHpDNwWK7+zNmatFEeidEEV 5yFRZ9vNYCzeLOew18Uzwyr90wc5SfwgU2O5OZ+GYy4uB4mBFXVZO5WJewuqFHlp +zjDl+vCsF6Ih7d8vTmg/WLqEgeGFKngqKXxKP5evMaxbcb53W+2RU9J4rVCB7ov LtejBgcmniBGcmInR6UdOjAmnyzrMkjXBR+qNohi+UhkqIZmkkOVt6fVrwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEo6IcNpKu9RR2uID8WlCkyneh0dMB8GA1UdIwQY MBaAFDIBD3AnbkGNWPCMVqeagrmayhdjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWdFUGNDZHVRWTFZOEl4V3A1cUN1WnJLRjJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS9iNjQ4ZmItZjUwYi00Y2MyLWEyYjEt MmY2ODIxNmI3NDI0LzEvU2pvaHcya3E3MUZIYTRnUHhhVUtUS2Q2SFIwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS9iNjQ4ZmItZjUwYi00Y2MyLWEyYjEtMmY2ODIxNmI3NDI0 LzEvTWdFUGNDZHVRWTFZOEl4V3A1cUN1WnJLRjJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLVj4MA0G CSqGSIb3DQEBCwUAA4IBAQCFbiDD0aFwvcs3/dFkEM383LCsDvr2911GPsFNByyK BPnQnJLEtNHCpNvf0v0XbZxXqCzrdcX7aIKKdnEeua6wSk3PQ1S0ijSvPPGUcPBl hJFiitSHli7Xcs5RMYCFxvATVUqbqolPRophF3Z8db+uk9FzhJIWmQ77UCbFGmrU Tw+DyV8xWUJJkLQ/eF+ik50CrE0xQwEv6CnDk+7muG5opVtWqve+P1ctAsFaG8zH DmAk/o2j3Opwqko1d0wJFDUL+n90lA1yphJu2Xo1z61fMaPs9aqXKLpAytXSJuGR XPfXn76ykQroZJYub3vrWCFtlBL1psExnYMY7OZXN86a -----END CERTIFICATE-----Generated at Wed Jan 7 23:48:07 2026 by rpki-client