This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/5c265e-4187-4a74-996e-ae8c5830cc20/1/j-ZyKNm5qJSX-2tMIRTjHHmV6S0.roa File: j-ZyKNm5qJSX-2tMIRTjHHmV6S0.roa (raw, json) Hash identifier: EtviVU5gFIFyi2gZ6S98pdS7AYV4lh9vjrKlnqMRix0= Subject key identifier: 8F:E6:72:28:D9:B9:A8:94:97:FB:6B:4C:21:14:E3:1C:79:95:E9:2D Certificate issuer: /CN=e67100679f07282cd48cb5107bf97af7af3889c9 Certificate serial: 019B061A5D856E518402070CA3120EFE7C1E Authority key identifier: E6:71:00:67:9F:07:28:2C:D4:8C:B5:10:7B:F9:7A:F7:AF:38:89:C9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5nEAZ58HKCzUjLUQe_l69684ick.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/5c265e-4187-4a74-996e-ae8c5830cc20/1/j-ZyKNm5qJSX-2tMIRTjHHmV6S0.roa Signing time: Wed 10 Dec 2025 02:32:29 +0000 ROA not before: Wed 10 Dec 2025 02:32:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 20976 IP address blocks: 217.14.128.0/20 maxlen: 20 217.14.131.0/24 maxlen: 24 217.14.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/5c265e-4187-4a74-996e-ae8c5830cc20/1/5nEAZ58HKCzUjLUQe_l69684ick.crl rsync://rpki.ripe.net/repository/DEFAULT/13/5c265e-4187-4a74-996e-ae8c5830cc20/1/5nEAZ58HKCzUjLUQe_l69684ick.mft rsync://rpki.ripe.net/repository/DEFAULT/5nEAZ58HKCzUjLUQe_l69684ick.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 11:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:06:1a:5d:85:6e:51:84:02:07:0c:a3:12:0e:fe:7c:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e67100679f07282cd48cb5107bf97af7af3889c9 Validity Not Before: Dec 10 02:32:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=8fe67228d9b9a89497fb6b4c2114e31c7995e92d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:5a:29:8a:c8:8b:8b:4c:c2:1b:bc:63:a9:99: e5:6c:49:25:a0:99:04:2c:8d:b5:d9:0a:70:ea:81: 77:d1:c3:f2:e4:1f:22:be:98:ba:6d:c4:5d:e8:2a: 8c:04:ad:d8:6d:32:d3:32:f2:fa:76:7b:7a:80:1b: 37:55:f8:db:f7:cf:35:f6:70:d0:04:c2:8d:60:5f: ac:28:70:8d:7f:61:67:fa:79:d7:fd:aa:0f:f2:b8: e5:69:80:20:5a:23:c4:7b:6a:b7:22:75:71:2c:ef: 2d:ad:f8:6f:69:8a:f7:2e:16:5b:e3:56:5a:b5:c9: 54:1f:1b:83:c5:9a:29:d8:b6:a8:bc:a9:97:55:42: 7f:6a:92:01:4d:99:87:fc:08:29:63:98:b3:a7:21: c5:bb:76:00:6e:c4:bd:a8:0c:c1:90:57:5b:04:40: 29:94:db:cd:a9:ed:e8:26:6e:bc:e4:42:9f:43:0f: 24:46:73:85:76:68:19:f9:02:23:aa:6b:5d:fd:9f: bb:a1:7f:5b:a8:8c:ec:ca:55:12:8a:3d:07:5e:48: 68:f6:3e:e9:b8:c8:e5:35:db:42:d7:a4:db:f6:b3: 47:64:c8:ab:3d:af:3d:61:f3:69:57:bb:cd:49:00: 55:b4:7b:c8:df:20:54:ef:9a:a4:76:ca:ec:66:94: 19:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:E6:72:28:D9:B9:A8:94:97:FB:6B:4C:21:14:E3:1C:79:95:E9:2D X509v3 Authority Key Identifier: keyid:E6:71:00:67:9F:07:28:2C:D4:8C:B5:10:7B:F9:7A:F7:AF:38:89:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5nEAZ58HKCzUjLUQe_l69684ick.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/5c265e-4187-4a74-996e-ae8c5830cc20/1/j-ZyKNm5qJSX-2tMIRTjHHmV6S0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/5c265e-4187-4a74-996e-ae8c5830cc20/1/5nEAZ58HKCzUjLUQe_l69684ick.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.14.128.0/20 Signature Algorithm: sha256WithRSAEncryption 1a:09:39:ca:fc:af:9d:d3:3e:87:1d:b8:7c:79:b6:75:6d:80: 62:6a:58:7b:9d:c9:f0:8b:ee:51:48:a7:bb:09:79:7f:b7:2a: eb:c7:cd:69:25:a8:4e:b6:fe:ed:2c:03:de:67:c8:d2:8c:db: 1c:91:2e:6a:b6:9f:0d:dd:39:3b:e2:13:98:12:bc:7c:c3:47: 40:ce:a9:a7:a0:1e:47:9e:9a:88:88:8f:68:29:5a:7f:4c:3a: c4:80:94:db:00:23:65:54:8e:95:2f:83:99:f5:75:41:cd:47: b6:73:20:01:14:60:75:e7:22:92:e8:fc:dc:b5:66:48:32:27: a6:8d:83:0a:59:8f:62:bf:ca:17:73:33:1f:14:8b:07:14:6e: b9:f7:b7:5a:f5:ee:e3:33:9d:f9:49:8d:e8:60:04:72:67:f1: a9:e2:b2:ec:89:24:77:67:2b:31:1e:bb:e0:65:29:40:6b:b1: be:8d:1a:3b:7e:4a:72:a5:b1:66:2a:74:6b:af:4f:4e:dc:9b: fb:1d:29:1d:46:32:93:5e:36:9f:f6:fc:e4:80:5a:ee:41:e8: 8f:6f:8d:6b:1e:b0:7d:e5:6c:fb:1b:7a:4e:de:0e:40:cb:10: a2:0c:18:73:2e:f1:2c:e9:86:b1:f6:fe:34:5a:33:2a:8b:5a: a7:30:fc:74 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZsGGl2FblGEAgcMoxIO/nweMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU2NzEwMDY3OWYwNzI4MmNkNDhjYjUxMDdiZjk3YWY3YWYz ODg5YzkwHhcNMjUxMjEwMDIzMjI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZmU2NzIyOGQ5YjlhODk0OTdmYjZiNGMyMTE0ZTMxYzc5OTVlOTJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoFopisiLi0zCG7xjqZnlbEkloJkE LI212Qpw6oF30cPy5B8ivpi6bcRd6CqMBK3YbTLTMvL6dnt6gBs3Vfjb98819nDQ BMKNYF+sKHCNf2Fn+nnX/aoP8rjlaYAgWiPEe2q3InVxLO8trfhvaYr3LhZb41Za tclUHxuDxZop2LaovKmXVUJ/apIBTZmH/AgpY5izpyHFu3YAbsS9qAzBkFdbBEAp lNvNqe3oJm685EKfQw8kRnOFdmgZ+QIjqmtd/Z+7oX9bqIzsylUSij0HXkho9j7p uMjlNdtC16Tb9rNHZMirPa89YfNpV7vNSQBVtHvI3yBU75qkdsrsZpQZ+wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFI/mcijZuaiUl/trTCEU4xx5lektMB8GA1UdIwQY MBaAFOZxAGefBygs1Iy1EHv5evevOInJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNW5FQVo1OEhLQ3pVakxVUWVfbDY5Njg0aWNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy81YzI2NWUtNDE4Ny00YTc0LTk5NmUt YWU4YzU4MzBjYzIwLzEvai1aeUtObTVxSlNYLTJ0TUlSVGpISG1WNlMwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy81YzI2NWUtNDE4Ny00YTc0LTk5NmUtYWU4YzU4MzBjYzIw LzEvNW5FQVo1OEhLQ3pVakxVUWVfbDY5Njg0aWNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE2Q6AMA0G CSqGSIb3DQEBCwUAA4IBAQAaCTnK/K+d0z6HHbh8ebZ1bYBialh7ncnwi+5RSKe7 CXl/tyrrx81pJahOtv7tLAPeZ8jSjNsckS5qtp8N3Tk74hOYErx8w0dAzqmnoB5H npqIiI9oKVp/TDrEgJTbACNlVI6VL4OZ9XVBzUe2cyABFGB15yKS6PzctWZIMiem jYMKWY9iv8oXczMfFIsHFG6597da9e7jM535SY3oYARyZ/Gp4rLsiSR3ZysxHrvg ZSlAa7G+jRo7fkpypbFmKnRrr09O3Jv7HSkdRjKTXjaf9vzkgFruQeiPb41rHrB9 5Wz7G3pO3g5AyxCiDBhzLvEs6Yax9v40WjMqi1qnMPx0 -----END CERTIFICATE-----Generated at Fri Dec 26 17:36:54 2025 by rpki-client