This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/24c4f6-21ee-4b6b-a945-98f8ccd5db8d/1/jDnrlpzju9hJvaoQu4OXwOXPSyA.roa File: jDnrlpzju9hJvaoQu4OXwOXPSyA.roa (raw, json) Hash identifier: 5ssODwVsvynqY+E+xEJbdKWKWIk6XsrizpcJBHs3DN8= Subject key identifier: 8C:39:EB:96:9C:E3:BB:D8:49:BD:AA:10:BB:83:97:C0:E5:CF:4B:20 Certificate issuer: /CN=1527455ea7fce17cfd0431985258d13e06bfa735 Certificate serial: 019B76EB1C4F3FC28357CCE7AEFECE540FF0 Authority key identifier: 15:27:45:5E:A7:FC:E1:7C:FD:04:31:98:52:58:D1:3E:06:BF:A7:35 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FSdFXqf84Xz9BDGYUljRPga_pzU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/24c4f6-21ee-4b6b-a945-98f8ccd5db8d/1/jDnrlpzju9hJvaoQu4OXwOXPSyA.roa Signing time: Thu 01 Jan 2026 00:17:58 +0000 ROA not before: Thu 01 Jan 2026 00:17:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 185.95.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/24c4f6-21ee-4b6b-a945-98f8ccd5db8d/1/FSdFXqf84Xz9BDGYUljRPga_pzU.crl rsync://rpki.ripe.net/repository/DEFAULT/13/24c4f6-21ee-4b6b-a945-98f8ccd5db8d/1/FSdFXqf84Xz9BDGYUljRPga_pzU.mft rsync://rpki.ripe.net/repository/DEFAULT/FSdFXqf84Xz9BDGYUljRPga_pzU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:1c:4f:3f:c2:83:57:cc:e7:ae:fe:ce:54:0f:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1527455ea7fce17cfd0431985258d13e06bfa735 Validity Not Before: Jan 1 00:17:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8c39eb969ce3bbd849bdaa10bb8397c0e5cf4b20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:7b:58:03:46:2c:2e:e7:c7:91:5b:dd:71:6f: 08:0b:91:9e:5c:46:69:0c:85:ec:34:3d:58:2e:15: 4e:ce:92:80:ed:df:ae:28:60:ae:d9:f2:cf:b9:75: 51:04:54:42:12:5e:98:bf:9b:5c:e3:bb:cf:2d:03: e3:33:77:63:19:7b:31:50:d0:00:6a:d2:7b:66:35: 11:ec:c2:14:27:6a:e2:34:fe:69:d5:36:3c:f8:7a: 3e:a4:fa:e1:5c:aa:79:38:bb:e0:1e:38:f9:8d:3d: e5:91:a0:37:6a:6c:b8:78:e7:d5:3c:02:4d:ca:7d: 78:ee:8b:fa:61:4d:bd:58:fa:93:db:dc:19:a8:f5: fd:6b:1d:8f:c4:40:38:13:ac:14:cc:cd:39:a7:60: 6c:f6:5f:01:bb:50:b4:34:4f:df:6e:8f:c4:83:06: 14:85:2a:b1:5f:0a:f6:7f:e5:37:24:05:87:95:ee: 23:9c:1c:ea:56:b2:c4:33:bc:ac:b6:09:1b:af:b4: 23:db:e7:89:e5:cc:02:37:a5:e1:8c:ad:f6:ca:09: df:4b:7e:c1:45:fd:33:ae:4e:2e:9f:c7:14:c3:41: 36:e1:3a:29:db:6e:4b:b4:31:fb:00:a9:35:c1:16: e5:0c:93:f6:88:b2:56:48:f4:3b:9a:bc:5e:4e:9d: e1:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:39:EB:96:9C:E3:BB:D8:49:BD:AA:10:BB:83:97:C0:E5:CF:4B:20 X509v3 Authority Key Identifier: keyid:15:27:45:5E:A7:FC:E1:7C:FD:04:31:98:52:58:D1:3E:06:BF:A7:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FSdFXqf84Xz9BDGYUljRPga_pzU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/24c4f6-21ee-4b6b-a945-98f8ccd5db8d/1/jDnrlpzju9hJvaoQu4OXwOXPSyA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/24c4f6-21ee-4b6b-a945-98f8ccd5db8d/1/FSdFXqf84Xz9BDGYUljRPga_pzU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.95.174.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:8f:42:70:79:c9:85:34:3a:17:84:54:4e:a6:82:2b:c5:96: fb:63:55:60:e3:97:b7:e2:37:60:27:35:eb:49:c6:40:77:a4: 8e:f5:c0:6f:62:af:14:ae:59:e0:23:cc:03:fe:4d:20:4c:9b: 80:45:83:ad:44:e5:57:66:e3:ce:d3:3c:96:aa:c8:06:3c:b3: 83:14:97:89:98:01:b7:98:ff:eb:77:aa:c2:f1:6c:11:b4:70: ae:0e:ad:1c:47:5f:15:8e:db:f2:c2:1b:b6:c4:b0:01:77:ac: 49:5c:6c:51:e9:98:ee:11:94:ba:d1:a3:cc:2d:21:8b:1d:47: 1f:40:21:ee:33:f1:4b:2b:ec:2f:88:b9:1a:1d:69:c7:62:12: 13:39:42:5c:6e:88:79:a1:f4:a1:1b:f9:ee:2d:11:86:31:37: eb:2b:62:e1:7a:a5:9b:64:61:21:09:b9:c2:ee:81:7f:4e:25: 95:28:9c:13:44:3d:bf:75:be:32:c0:25:80:c7:6e:9e:d6:7e: 02:95:5d:e5:3c:fa:01:c1:a8:bc:b0:8a:6b:b1:5e:60:0a:9e: cd:9b:93:56:ec:3a:bd:b2:8e:85:d6:16:c7:83:ed:af:47:b0: 2c:14:d7:8f:a8:b9:0c:a0:55:36:87:8d:66:e9:de:9f:8e:70: 5d:da:52:a4 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt26xxPP8KDV8znrv7OVA/wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE1Mjc0NTVlYTdmY2UxN2NmZDA0MzE5ODUyNThkMTNlMDZi ZmE3MzUwHhcNMjYwMTAxMDAxNzU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YzM5ZWI5NjljZTNiYmQ4NDliZGFhMTBiYjgzOTdjMGU1Y2Y0YjIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr3tYA0YsLufHkVvdcW8IC5GeXEZp DIXsND1YLhVOzpKA7d+uKGCu2fLPuXVRBFRCEl6Yv5tc47vPLQPjM3djGXsxUNAA atJ7ZjUR7MIUJ2riNP5p1TY8+Ho+pPrhXKp5OLvgHjj5jT3lkaA3amy4eOfVPAJN yn147ov6YU29WPqT29wZqPX9ax2PxEA4E6wUzM05p2Bs9l8Bu1C0NE/fbo/EgwYU hSqxXwr2f+U3JAWHle4jnBzqVrLEM7ystgkbr7Qj2+eJ5cwCN6XhjK32ygnfS37B Rf0zrk4un8cUw0E24Top225LtDH7AKk1wRblDJP2iLJWSPQ7mrxeTp3hzQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIw565ac47vYSb2qELuDl8Dlz0sgMB8GA1UdIwQY MBaAFBUnRV6n/OF8/QQxmFJY0T4Gv6c1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRlNkRlhxZjg0WHo5QkRHWVVsalJQZ2FfcHpVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy8yNGM0ZjYtMjFlZS00YjZiLWE5NDUt OThmOGNjZDVkYjhkLzEvakRucmxwemp1OWhKdmFvUXU0T1h3T1hQU3lBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy8yNGM0ZjYtMjFlZS00YjZiLWE5NDUtOThmOGNjZDVkYjhk LzEvRlNkRlhxZjg0WHo5QkRHWVVsalJQZ2FfcHpVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuV+uMA0G CSqGSIb3DQEBCwUAA4IBAQAbj0JwecmFNDoXhFROpoIrxZb7Y1Vg45e34jdgJzXr ScZAd6SO9cBvYq8UrlngI8wD/k0gTJuARYOtROVXZuPO0zyWqsgGPLODFJeJmAG3 mP/rd6rC8WwRtHCuDq0cR18Vjtvywhu2xLABd6xJXGxR6ZjuEZS60aPMLSGLHUcf QCHuM/FLK+wviLkaHWnHYhITOUJcboh5ofShG/nuLRGGMTfrK2LheqWbZGEhCbnC 7oF/TiWVKJwTRD2/db4ywCWAx26e1n4ClV3lPPoBwai8sIprsV5gCp7Nm5NW7Dq9 so6F1hbHg+2vR7AsFNePqLkMoFU2h41m6d6fjnBd2lKk -----END CERTIFICATE-----Generated at Wed Jan 7 23:51:45 2026 by rpki-client