This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/JzgO33NeHafC6bpQSod-yRn2rRw.roa File: JzgO33NeHafC6bpQSod-yRn2rRw.roa (raw, json) Hash identifier: W0wIsDugXPrkXy+iEWoSZzLrgcqmei7AOrdq9TBXOvM= Subject key identifier: 27:38:0E:DF:73:5E:1D:A7:C2:E9:BA:50:4A:87:7E:C9:19:F6:AD:1C Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071 Certificate serial: 019B7E38287111DFDF8281008735FB0E43C2 Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/JzgO33NeHafC6bpQSod-yRn2rRw.roa Signing time: Fri 02 Jan 2026 10:19:28 +0000 ROA not before: Fri 02 Jan 2026 10:19:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56534 IP address blocks: 5.188.85.0/24 maxlen: 24 37.139.36.0/22 maxlen: 22 37.139.36.0/24 maxlen: 24 37.139.37.0/24 maxlen: 24 37.139.39.0/24 maxlen: 24 37.139.44.0/22 maxlen: 22 37.139.44.0/24 maxlen: 24 37.139.45.0/24 maxlen: 24 37.139.46.0/24 maxlen: 24 37.139.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.mft rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:28:71:11:df:df:82:81:00:87:35:fb:0e:43:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071 Validity Not Before: Jan 2 10:19:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=27380edf735e1da7c2e9ba504a877ec919f6ad1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:95:9f:8c:7b:73:4d:63:55:f4:92:cb:a2:11: 5b:d8:bc:a5:a6:05:d3:3a:c4:c5:80:6a:63:5f:1a: ca:10:39:a9:19:7b:97:cb:ed:16:bd:4c:b8:85:af: e2:36:83:16:42:b3:0c:34:51:64:3e:05:b6:98:0f: 54:1e:24:4b:f0:23:ae:cb:a4:75:7b:cc:11:7e:cf: 45:79:17:ed:17:5a:2b:a9:a0:d8:df:a4:cc:ee:37: 50:d6:90:b1:dc:7b:8c:45:37:8d:ac:db:c8:94:d8: cb:da:fe:89:16:11:68:8c:6c:83:93:dd:70:21:30: a6:8c:db:b8:a7:8a:cf:aa:48:f2:83:cf:58:e5:f0: 87:1d:91:35:1c:98:77:b0:b1:8a:0e:6b:44:d1:2d: a1:47:3b:75:bb:7e:9b:df:7c:95:d2:17:44:8e:40: 0d:8e:02:ff:40:c4:59:40:98:44:2b:d5:b0:fa:91: 4d:1f:b9:fa:cc:18:6b:54:cb:8c:4d:58:c5:39:4a: 22:9e:4b:c9:4d:3c:42:0d:8f:e3:c6:45:39:49:dc: 41:67:68:c2:0a:22:a9:be:17:44:c4:a3:07:10:d9: 3b:00:ff:29:f3:8f:79:77:23:73:8d:36:ff:3e:55: 32:6c:4c:6f:28:c2:12:52:a6:43:0b:00:87:3f:d3: 2b:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:38:0E:DF:73:5E:1D:A7:C2:E9:BA:50:4A:87:7E:C9:19:F6:AD:1C X509v3 Authority Key Identifier: keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/JzgO33NeHafC6bpQSod-yRn2rRw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.188.85.0/24 37.139.36.0/22 37.139.44.0/22 37.139.50.0/24 Signature Algorithm: sha256WithRSAEncryption c1:b5:26:4a:22:11:45:ee:17:33:21:52:10:16:c0:49:74:f2: 38:ea:9a:53:e6:ad:67:3f:4c:95:10:15:6f:ad:c8:2c:57:51: f4:17:00:81:e7:13:ab:65:48:05:26:cf:7d:e5:0a:9f:c9:07: 75:35:1e:ac:2e:b4:61:76:f6:ea:0d:11:38:f7:2b:48:ba:7e: 27:7c:cb:b7:11:a1:e8:70:03:9b:48:20:3d:b3:25:0f:0a:1c: 77:3d:9d:40:50:75:e8:e6:ea:e3:1f:c4:a8:0d:40:98:99:eb: 25:0d:b3:e7:98:7a:34:5e:ec:e7:5f:23:1c:4f:2a:62:65:8e: 7c:cc:0d:34:85:ec:ae:38:76:61:7d:06:cf:7c:12:b3:7b:76: ce:6a:ac:95:50:9b:18:09:9d:81:29:ee:00:cb:83:17:1d:e0: 49:8a:2c:db:e1:c6:d6:96:52:3b:18:1b:a1:1d:e6:fb:5a:51: 9a:c5:ce:74:f3:1e:a7:ac:a5:cf:d5:d2:a2:0e:ed:9a:19:cf: 9f:1e:8f:e7:75:8a:3a:12:b1:8b:ac:77:77:51:bc:b1:90:be: dc:d0:f6:b9:b7:d3:1e:d4:69:e2:e3:98:09:51:59:0c:2a:c9: 76:13:2d:da:42:c9:0a:33:fd:94:7e:24:56:9d:9a:8e:d1:3f: 32:ea:bc:d2 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZt+OChxEd/fgoEAhzX7DkPCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVhYWE4YTBhNWZkZmQ2OThlMTA0YmUzNmEyYWVlYzgxM2Fl Y2EwNzEwHhcNMjYwMTAyMTAxOTI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNzM4MGVkZjczNWUxZGE3YzJlOWJhNTA0YTg3N2VjOTE5ZjZhZDFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlZWfjHtzTWNV9JLLohFb2LylpgXT OsTFgGpjXxrKEDmpGXuXy+0WvUy4ha/iNoMWQrMMNFFkPgW2mA9UHiRL8COuy6R1 e8wRfs9FeRftF1orqaDY36TM7jdQ1pCx3HuMRTeNrNvIlNjL2v6JFhFojGyDk91w ITCmjNu4p4rPqkjyg89Y5fCHHZE1HJh3sLGKDmtE0S2hRzt1u36b33yV0hdEjkAN jgL/QMRZQJhEK9Ww+pFNH7n6zBhrVMuMTVjFOUoinkvJTTxCDY/jxkU5SdxBZ2jC CiKpvhdExKMHENk7AP8p8495dyNzjTb/PlUybExvKMISUqZDCwCHP9Mr6wIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFCc4Dt9zXh2nwum6UEqHfskZ9q0cMB8GA1UdIwQY MBaAFOqqigpf39aY4QS+NqKu7IE67KBxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNnFxS0NsX2YxcGpoQkw0Mm9xN3NnVHJzb0hFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy8yOTMyZGYtYTRiZC00YWY1LWE0ZDQt ODlkMDkyNDBjNDNiLzEvSnpnTzMzTmVIYWZDNmJwUVNvZC15Um4yclJ3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy8yOTMyZGYtYTRiZC00YWY1LWE0ZDQtODlkMDkyNDBjNDNi LzEvNnFxS0NsX2YxcGpoQkw0Mm9xN3NnVHJzb0hFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQABbxVAwQC JYskAwQCJYssAwQAJYsyMA0GCSqGSIb3DQEBCwUAA4IBAQDBtSZKIhFF7hczIVIQ FsBJdPI46ppT5q1nP0yVEBVvrcgsV1H0FwCB5xOrZUgFJs995QqfyQd1NR6sLrRh dvbqDRE49ytIun4nfMu3EaHocAObSCA9syUPChx3PZ1AUHXo5urjH8SoDUCYmesl DbPnmHo0XuznXyMcTypiZY58zA00heyuOHZhfQbPfBKze3bOaqyVUJsYCZ2BKe4A y4MXHeBJiizb4cbWllI7GBuhHeb7WlGaxc508x6nrKXP1dKiDu2aGc+fHo/ndYo6 ErGLrHd3UbyxkL7c0Pa5t9Me1Gni45gJUVkMKsl2Ey3aQskKM/2UfiRWnZqO0T8y 6rzS -----END CERTIFICATE-----Generated at Tue Jan 20 09:21:47 2026 by rpki-client