This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/JRgE3d1rNe9vs44GRHF6SwRVXtE.roa File: JRgE3d1rNe9vs44GRHF6SwRVXtE.roa (raw, json) Hash identifier: Tw5mid4PGhap1bN/JiXsmMDZEWrQouLEemZWuia7EY4= Subject key identifier: 25:18:04:DD:DD:6B:35:EF:6F:B3:8E:06:44:71:7A:4B:04:55:5E:D1 Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f Certificate serial: 019B79ED279898AC2D38A7CAB46937EA5BFD Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/JRgE3d1rNe9vs44GRHF6SwRVXtE.roa Signing time: Thu 01 Jan 2026 14:19:03 +0000 ROA not before: Thu 01 Jan 2026 14:19:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207684 IP address blocks: 193.59.14.0/23 maxlen: 23 193.59.16.0/22 maxlen: 22 193.59.24.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.mft rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:27:98:98:ac:2d:38:a7:ca:b4:69:37:ea:5b:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f Validity Not Before: Jan 1 14:19:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=251804dddd6b35ef6fb38e0644717a4b04555ed1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:8d:0e:bd:21:9b:7d:0e:86:e6:1c:c7:d5:41: d1:35:9e:26:c1:7d:12:96:69:8b:17:50:5a:e8:1f: 85:bc:0c:3a:61:54:a9:b3:23:d0:a4:44:aa:cf:f6: 2a:96:56:9e:87:79:5a:11:b6:e0:73:14:2e:ed:15: 1c:0c:c3:60:52:8d:7b:b8:f7:c8:c9:bb:0e:f7:a2: 30:9c:19:5a:cd:41:c1:24:e9:72:1e:2d:8b:20:41: c0:67:8c:e3:05:02:35:3f:4b:69:ed:2f:f8:fa:5c: 49:1a:91:37:16:85:d7:0e:97:fe:8c:f2:2a:47:c7: 7c:86:b6:32:a8:c6:85:89:a4:25:b3:98:64:4f:48: a4:7a:37:c1:66:de:41:9a:51:86:0c:09:1f:97:ef: 58:bb:f2:9f:59:62:71:70:1c:3a:79:98:30:3f:fc: 79:49:3b:08:a1:0d:0c:4c:cb:13:a3:67:67:3a:16: 14:9b:69:53:93:33:81:8b:5f:8e:75:a0:c8:48:07: 1f:c2:d4:fe:cc:c2:38:d6:98:c5:fe:15:a9:90:ab: 5c:eb:8c:7b:e2:7a:3b:bd:7e:57:02:3e:7f:f6:49: 89:20:71:86:a6:67:e8:8a:1f:7c:95:85:65:79:05: e6:bb:72:2b:9e:f4:1e:a6:87:1e:8c:f8:4e:1a:6b: ad:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:18:04:DD:DD:6B:35:EF:6F:B3:8E:06:44:71:7A:4B:04:55:5E:D1 X509v3 Authority Key Identifier: keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/JRgE3d1rNe9vs44GRHF6SwRVXtE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.59.14.0-193.59.19.255 193.59.24.0/22 Signature Algorithm: sha256WithRSAEncryption 65:1b:86:a1:49:7e:8b:8c:d3:64:cb:7f:d8:75:e3:10:6b:7e: 10:04:53:c8:07:68:46:0d:c2:f9:db:4b:34:d8:b5:43:df:0f: 42:8c:3a:d6:16:3a:52:5a:12:25:6c:02:7f:cd:bd:ef:c5:c3: 7e:1c:fd:fa:aa:85:ce:4d:97:b1:4d:9d:a8:d3:17:68:dd:be: 66:4c:ef:53:ee:4a:fa:dc:7e:63:07:fc:cb:77:00:93:31:cf: 98:e7:e9:bb:61:41:1e:41:fc:5c:ae:bc:83:4d:49:14:68:a0: 35:ac:83:2d:76:98:cf:9d:5e:23:ca:01:86:d8:45:ab:cc:a5: 03:d9:bd:a9:c1:cf:3b:fd:4f:7a:ca:db:bb:5e:05:91:30:8d: e6:cb:c0:24:79:44:34:a2:59:8f:7d:fc:87:c0:4a:8f:a6:a4: 07:30:fe:40:c9:9a:c5:d6:72:c1:b0:07:3f:76:1a:48:ff:f4: a4:e2:c5:c1:96:0f:c0:44:0e:d0:84:4a:58:ab:c2:51:c6:85: c3:48:04:bc:55:a9:9a:3e:c4:f0:b9:44:98:e2:b8:2d:0b:7f: 70:a5:18:59:70:5a:f0:82:76:f5:9d:94:8c:77:04:17:78:3b: 22:d8:f2:f6:99:0d:14:84:72:a1:d0:14:02:2b:c9:e4:32:de: ee:4b:72:e7 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZt57SeYmKwtOKfKtGk36lv9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwYzQwOTYxM2ZlYTBhMmI0NDJjZTExMmU5Y2JkYjQ4NWUw MTE4OGYwHhcNMjYwMTAxMTQxOTAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNTE4MDRkZGRkNmIzNWVmNmZiMzhlMDY0NDcxN2E0YjA0NTU1ZWQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2o0OvSGbfQ6G5hzH1UHRNZ4mwX0S lmmLF1Ba6B+FvAw6YVSpsyPQpESqz/Yqllaeh3laEbbgcxQu7RUcDMNgUo17uPfI ybsO96IwnBlazUHBJOlyHi2LIEHAZ4zjBQI1P0tp7S/4+lxJGpE3FoXXDpf+jPIq R8d8hrYyqMaFiaQls5hkT0ikejfBZt5BmlGGDAkfl+9Yu/KfWWJxcBw6eZgwP/x5 STsIoQ0MTMsTo2dnOhYUm2lTkzOBi1+OdaDISAcfwtT+zMI41pjF/hWpkKtc64x7 4no7vX5XAj5/9kmJIHGGpmfoih98lYVleQXmu3IrnvQepocejPhOGmutrwIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFCUYBN3dazXvb7OOBkRxeksEVV7RMB8GA1UdIwQY MBaAFDDECWE/6gorRCzhEunL20heARiPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTU1RSllUX3FDaXRFTE9FUzZjdmJTRjRCR0k4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9iNzhmYjUtYWZjYS00ZGI3LTg4ODYt YzA2NzFiZjRjZjNlLzEvSlJnRTNkMXJOZTl2czQ0R1JIRjZTd1JWWHRFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS9iNzhmYjUtYWZjYS00ZGI3LTg4ODYtYzA2NzFiZjRjZjNl LzEvTU1RSllUX3FDaXRFTE9FUzZjdmJTRjRCR0k4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBAHBOw4D BALBOxADBALBOxgwDQYJKoZIhvcNAQELBQADggEBAGUbhqFJfouM02TLf9h14xBr fhAEU8gHaEYNwvnbSzTYtUPfD0KMOtYWOlJaEiVsAn/Nve/Fw34c/fqqhc5Nl7FN najTF2jdvmZM71PuSvrcfmMH/Mt3AJMxz5jn6bthQR5B/FyuvINNSRRooDWsgy12 mM+dXiPKAYbYRavMpQPZvanBzzv9T3rK27teBZEwjebLwCR5RDSiWY99/IfASo+m pAcw/kDJmsXWcsGwBz92Gkj/9KTixcGWD8BEDtCESlirwlHGhcNIBLxVqZo+xPC5 RJjiuC0Lf3ClGFlwWvCCdvWdlIx3BBd4OyLY8vaZDRSEcqHQFAIryeQy3u5Lcuc= -----END CERTIFICATE-----Generated at Mon Jan 26 23:22:37 2026 by rpki-client