This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/JuoiXl-zRXAF496Ph0s49z2FfBI.roa File: JuoiXl-zRXAF496Ph0s49z2FfBI.roa (raw, json) Hash identifier: ezVuZmW881esuXICCa62I3vICBg9QHmRlBTzKyNpAFU= Subject key identifier: 26:EA:22:5E:5F:B3:45:70:05:E3:DE:8F:87:4B:38:F7:3D:85:7C:12 Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5 Certificate serial: 019B7EA763ABF618BDBC1239C4CCC6358A84 Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/JuoiXl-zRXAF496Ph0s49z2FfBI.roa Signing time: Fri 02 Jan 2026 12:20:57 +0000 ROA not before: Fri 02 Jan 2026 12:20:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213200 IP address blocks: 185.244.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.mft rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 04 Jan 2026 15:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:63:ab:f6:18:bd:bc:12:39:c4:cc:c6:35:8a:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5 Validity Not Before: Jan 2 12:20:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=26ea225e5fb3457005e3de8f874b38f73d857c12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:5c:00:be:6c:14:6e:b4:cf:ee:fa:27:7f:de: f8:dd:af:4b:bb:c9:49:53:8f:25:52:b7:f1:7b:5a: c0:f4:00:f3:8f:15:d6:8d:54:3d:0d:80:d7:df:c7: 57:1e:a7:39:65:88:ff:f4:c9:64:76:ce:f6:26:b7: de:f4:dc:f4:aa:7d:1c:34:c8:1a:3f:cc:f5:67:bb: cd:a3:dc:96:b0:8e:21:19:3b:90:73:0a:5d:be:74: 1a:30:6a:94:5a:b5:1c:9f:3d:5a:f7:6b:68:46:f3: 3f:67:0e:6d:4e:2e:d4:2d:e5:0b:1c:9d:c8:9b:86: a9:2f:e8:fc:cf:3c:44:94:dd:29:1c:7e:cd:b7:d4: 1e:6d:15:54:b5:2d:64:be:0c:d5:80:b3:dc:0f:90: d8:0a:bd:9e:2d:e5:4c:ed:35:37:41:34:0f:34:3f: 91:4b:45:61:0e:40:b8:66:8b:88:04:4e:eb:9d:63: cd:30:39:77:a0:b0:4a:b7:14:ab:9d:56:cc:e9:0c: 23:68:40:b8:36:de:48:96:0a:0f:37:86:d8:b4:89: bc:0e:8e:22:cf:27:c7:df:c0:3a:8f:48:33:d9:2a: 9d:cf:e8:3a:02:8e:f4:39:c3:67:b6:9d:ff:eb:f5: a4:a0:2d:e6:f0:76:c7:36:67:24:e9:13:44:e2:6e: 5a:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:EA:22:5E:5F:B3:45:70:05:E3:DE:8F:87:4B:38:F7:3D:85:7C:12 X509v3 Authority Key Identifier: keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/JuoiXl-zRXAF496Ph0s49z2FfBI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.244.104.0/24 Signature Algorithm: sha256WithRSAEncryption 78:18:66:67:72:4f:17:27:45:81:25:78:d2:17:e6:65:36:51: 39:8b:60:00:d3:72:37:1f:0e:4d:31:8f:97:fc:69:58:11:c7: 66:b0:20:fd:e7:04:de:77:88:f4:26:9d:88:90:8d:21:c4:e4: e2:1e:c3:10:f7:7c:70:00:be:b5:b3:13:e0:e5:41:45:f7:e9: 53:61:74:6d:74:00:b0:d2:5d:ec:e8:f4:1b:8a:7c:29:27:e1: 1e:00:c1:2a:18:1c:a7:ca:d5:63:0e:11:f0:8a:7a:49:27:de: b6:49:e3:ab:11:a7:00:f0:f4:cd:61:64:f4:75:b7:89:e5:02: 84:2c:f2:2f:d2:77:10:74:7f:6c:04:cf:10:24:a2:3d:52:74: 95:f1:f1:aa:db:98:61:98:44:d2:05:6d:dc:03:19:67:60:f7: 0c:49:09:d8:bd:2c:03:c9:2c:d2:e5:30:94:1f:f2:2d:b8:e3: d4:d9:56:89:90:f7:32:34:01:c2:1e:f7:42:f7:3e:68:4b:27: cc:c7:5f:8b:cc:b3:ec:82:cf:ef:df:8a:74:cf:8d:64:b4:ba: eb:da:02:be:7e:e0:25:09:03:c1:73:84:74:bd:65:81:65:7e: fc:d9:c8:6b:78:c5:50:e6:98:37:41:b5:3a:3f:ff:12:dd:2d: ac:3c:21:ef -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+p2Or9hi9vBI5xMzGNYqEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmMTQxMTJkMDVlOWQ4NzYxNDlkMjc3OGQ0OGVkYWFhMzI0 ZGIwYTUwHhcNMjYwMTAyMTIyMDU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNmVhMjI1ZTVmYjM0NTcwMDVlM2RlOGY4NzRiMzhmNzNkODU3YzEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAslwAvmwUbrTP7vonf9743a9Lu8lJ U48lUrfxe1rA9ADzjxXWjVQ9DYDX38dXHqc5ZYj/9Mlkds72Jrfe9Nz0qn0cNMga P8z1Z7vNo9yWsI4hGTuQcwpdvnQaMGqUWrUcnz1a92toRvM/Zw5tTi7ULeULHJ3I m4apL+j8zzxElN0pHH7Nt9QebRVUtS1kvgzVgLPcD5DYCr2eLeVM7TU3QTQPND+R S0VhDkC4ZouIBE7rnWPNMDl3oLBKtxSrnVbM6QwjaEC4Nt5IlgoPN4bYtIm8Do4i zyfH38A6j0gz2Sqdz+g6Ao70OcNntp3/6/WkoC3m8HbHNmck6RNE4m5arQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCbqIl5fs0VwBePej4dLOPc9hXwSMB8GA1UdIwQY MBaAFE8UES0F6dh2FJ0neNSO2qoyTbClMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHhRUkxRWHAySFlVblNkNDFJN2FxakpOc0tVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS8zY2FhNTEtN2EyMS00OTlkLWE1NDUt YmFmYmRmYzgxMzJhLzEvSnVvaVhsLXpSWEFGNDk2UGgwczQ5ejJGZkJJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZS8zY2FhNTEtN2EyMS00OTlkLWE1NDUtYmFmYmRmYzgxMzJh LzEvVHhRUkxRWHAySFlVblNkNDFJN2FxakpOc0tVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufRoMA0G CSqGSIb3DQEBCwUAA4IBAQB4GGZnck8XJ0WBJXjSF+ZlNlE5i2AA03I3Hw5NMY+X /GlYEcdmsCD95wTed4j0Jp2IkI0hxOTiHsMQ93xwAL61sxPg5UFF9+lTYXRtdACw 0l3s6PQbinwpJ+EeAMEqGBynytVjDhHwinpJJ962SeOrEacA8PTNYWT0dbeJ5QKE LPIv0ncQdH9sBM8QJKI9UnSV8fGq25hhmETSBW3cAxlnYPcMSQnYvSwDySzS5TCU H/ItuOPU2VaJkPcyNAHCHvdC9z5oSyfMx1+LzLPsgs/v34p0z41ktLrr2gK+fuAl CQPBc4R0vWWBZX782chreMVQ5pg3QbU6P/8S3S2sPCHv -----END CERTIFICATE-----Generated at Sat Jan 3 18:58:50 2026 by rpki-client