This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/23ed9a-1ca5-45ea-9b8c-73533de099c3/1/sj-ab-RcHql4I59TCTsyMkUD6vg.roa File: sj-ab-RcHql4I59TCTsyMkUD6vg.roa (raw, json) Hash identifier: VE0oA0NLUA2NKVotc1jXBr68T3tf7XY/p7hOR23C2ks= Subject key identifier: B2:3F:9A:6F:E4:5C:1E:A9:78:23:9F:53:09:3B:32:32:45:03:EA:F8 Certificate issuer: /CN=597a01de87e011803f890ae17749020f995f140c Certificate serial: 019B797E6F3CAE7BBAB31F0376131903BEA5 Authority key identifier: 59:7A:01:DE:87:E0:11:80:3F:89:0A:E1:77:49:02:0F:99:5F:14:0C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WXoB3ofgEYA_iQrhd0kCD5lfFAw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/23ed9a-1ca5-45ea-9b8c-73533de099c3/1/sj-ab-RcHql4I59TCTsyMkUD6vg.roa Signing time: Thu 01 Jan 2026 12:18:07 +0000 ROA not before: Thu 01 Jan 2026 12:18:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3320 IP address blocks: 164.18.96.0/21 maxlen: 21 2a07:b982:c000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/23ed9a-1ca5-45ea-9b8c-73533de099c3/1/WXoB3ofgEYA_iQrhd0kCD5lfFAw.crl rsync://rpki.ripe.net/repository/DEFAULT/22/23ed9a-1ca5-45ea-9b8c-73533de099c3/1/WXoB3ofgEYA_iQrhd0kCD5lfFAw.mft rsync://rpki.ripe.net/repository/DEFAULT/WXoB3ofgEYA_iQrhd0kCD5lfFAw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 03:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:6f:3c:ae:7b:ba:b3:1f:03:76:13:19:03:be:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=597a01de87e011803f890ae17749020f995f140c Validity Not Before: Jan 1 12:18:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b23f9a6fe45c1ea978239f53093b32324503eaf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:06:20:55:bd:dd:bb:aa:f6:ec:bd:e0:89:ce: 75:0e:11:ab:a6:58:ad:3b:d7:7d:82:1e:54:2a:41: 61:c4:5f:9c:80:a4:b4:37:50:2d:9f:5b:ca:13:64: d7:ed:50:33:ab:31:d9:c8:13:94:e4:b9:a6:3b:a3: cf:75:88:75:98:76:c8:c7:eb:be:3b:49:0a:b9:cf: 4d:a2:4e:be:df:da:3f:66:3c:41:f2:54:ac:4c:d4: 38:bf:65:dc:16:0d:fa:ec:0a:52:34:f6:be:19:11: 4a:7c:d0:c7:1f:9a:34:cc:a3:86:e9:81:c0:20:07: 62:ff:f0:c4:6a:1c:bd:bc:b5:47:c1:d6:6a:3f:99: e8:b2:4c:8b:25:d0:01:69:60:d0:c0:2f:8d:36:d5: 09:05:c5:c9:f3:60:4b:8c:66:a3:f9:60:6f:44:4a: 24:46:05:7b:e5:7b:9f:22:44:dc:f3:28:4d:f4:a3: 8c:0e:f9:2c:f8:2a:ad:cd:4d:89:04:90:10:03:49: 5c:0f:87:61:23:3b:59:d7:5a:6f:67:1c:df:c9:c6: 97:e3:b9:40:61:6e:cb:43:9c:e2:c0:fc:c0:0e:bb: 36:76:72:db:0f:33:88:d1:da:6f:ec:d2:27:a2:d6: 80:84:95:ea:9c:d9:42:5d:72:81:3d:f5:48:a7:ac: 41:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:3F:9A:6F:E4:5C:1E:A9:78:23:9F:53:09:3B:32:32:45:03:EA:F8 X509v3 Authority Key Identifier: keyid:59:7A:01:DE:87:E0:11:80:3F:89:0A:E1:77:49:02:0F:99:5F:14:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WXoB3ofgEYA_iQrhd0kCD5lfFAw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/23ed9a-1ca5-45ea-9b8c-73533de099c3/1/sj-ab-RcHql4I59TCTsyMkUD6vg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/23ed9a-1ca5-45ea-9b8c-73533de099c3/1/WXoB3ofgEYA_iQrhd0kCD5lfFAw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 164.18.96.0/21 IPv6: 2a07:b982:c000::/48 Signature Algorithm: sha256WithRSAEncryption d7:54:74:eb:43:f9:3d:b3:05:8d:b8:e7:9a:2e:24:c8:f5:e3: f0:53:df:8a:14:03:37:cb:7a:0d:ea:03:a9:c6:fb:94:f6:b8: 6c:0a:02:2d:e2:bf:b1:4f:51:b2:cb:5f:d6:73:2d:e6:f9:dc: 3f:d2:69:3f:20:21:bb:55:b5:76:ef:50:06:c9:c3:de:3e:c3: 94:30:56:89:c3:96:ce:71:1c:08:75:cc:b8:c7:b6:2d:ae:cf: b2:df:2d:db:f9:3e:87:65:50:81:1f:a0:70:91:04:4a:ae:b0: 37:13:fb:00:e2:28:19:2a:d6:51:ca:7b:2c:e9:70:ff:22:04: 88:27:45:b4:fa:d0:a9:7b:29:76:52:61:14:6d:2c:22:72:62: 93:7d:10:0d:5b:95:e7:44:dc:2f:cd:13:a9:16:ca:28:61:1a: 75:ee:d8:a4:81:ec:b1:2e:bd:fa:65:49:95:21:07:0a:9f:ab: e6:56:eb:a1:14:76:a4:c0:59:fa:3a:02:f5:62:30:e8:27:b7: d0:f3:1c:9a:97:b9:ef:d3:aa:51:76:7f:b8:51:27:4e:57:7a: 90:a4:d6:5d:28:67:2c:23:41:d5:ae:e1:d6:b5:c0:00:67:e4: 8c:c8:86:e4:c6:44:e8:be:5a:20:d2:f2:4e:8d:b7:95:45:8a: 38:5a:29:9d -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt5fm88rnu6sx8DdhMZA76lMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU5N2EwMWRlODdlMDExODAzZjg5MGFlMTc3NDkwMjBmOTk1 ZjE0MGMwHhcNMjYwMTAxMTIxODA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMjNmOWE2ZmU0NWMxZWE5NzgyMzlmNTMwOTNiMzIzMjQ1MDNlYWY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqgYgVb3du6r27L3gic51DhGrplit O9d9gh5UKkFhxF+cgKS0N1Atn1vKE2TX7VAzqzHZyBOU5LmmO6PPdYh1mHbIx+u+ O0kKuc9Nok6+39o/ZjxB8lSsTNQ4v2XcFg367ApSNPa+GRFKfNDHH5o0zKOG6YHA IAdi//DEahy9vLVHwdZqP5noskyLJdABaWDQwC+NNtUJBcXJ82BLjGaj+WBvREok RgV75XufIkTc8yhN9KOMDvks+CqtzU2JBJAQA0lcD4dhIztZ11pvZxzfycaX47lA YW7LQ5ziwPzADrs2dnLbDzOI0dpv7NInotaAhJXqnNlCXXKBPfVIp6xB2wIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFLI/mm/kXB6peCOfUwk7MjJFA+r4MB8GA1UdIwQY MBaAFFl6Ad6H4BGAP4kK4XdJAg+ZXxQMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV1hvQjNvZmdFWUFfaVFyaGQwa0NENWxmRkF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi8yM2VkOWEtMWNhNS00NWVhLTliOGMt NzM1MzNkZTA5OWMzLzEvc2otYWItUmNIcWw0STU5VENUc3lNa1VENnZnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi8yM2VkOWEtMWNhNS00NWVhLTliOGMtNzM1MzNkZTA5OWMz LzEvV1hvQjNvZmdFWUFfaVFyaGQwa0NENWxmRkF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDpBJgMA8E AgACMAkDBwAqB7mCwAAwDQYJKoZIhvcNAQELBQADggEBANdUdOtD+T2zBY2455ou JMj14/BT34oUAzfLeg3qA6nG+5T2uGwKAi3iv7FPUbLLX9ZzLeb53D/SaT8gIbtV tXbvUAbJw94+w5QwVonDls5xHAh1zLjHti2uz7LfLdv5PodlUIEfoHCRBEqusDcT +wDiKBkq1lHKeyzpcP8iBIgnRbT60Kl7KXZSYRRtLCJyYpN9EA1bledE3C/NE6kW yihhGnXu2KSB7LEuvfplSZUhBwqfq+ZW66EUdqTAWfo6AvViMOgnt9DzHJqXue/T qlF2f7hRJ05XepCk1l0oZywjQdWu4da1wABn5IzIhuTGROi+WiDS8k6Nt5VFijha KZ0= -----END CERTIFICATE-----Generated at Mon Jan 19 11:47:16 2026 by rpki-client