This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9f50e1-3ec4-46dc-b4f7-874234ed1e5e/1/JarLaEzkDzbmZJJ38af3qQLqeXM.roa File: JarLaEzkDzbmZJJ38af3qQLqeXM.roa (raw, json) Hash identifier: PZ9i3KgsocU0Ak3wOk/fU4TiIXG7bFd+0z1g3xOW5fo= Subject key identifier: 25:AA:CB:68:4C:E4:0F:36:E6:64:92:77:F1:A7:F7:A9:02:EA:79:73 Certificate issuer: /CN=3af1507fda4e704828c7e03caf626456aafc5b1a Certificate serial: 019B7EA74BC626CF19616435FA81B87BB8ED Authority key identifier: 3A:F1:50:7F:DA:4E:70:48:28:C7:E0:3C:AF:62:64:56:AA:FC:5B:1A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvFQf9pOcEgox-A8r2JkVqr8Wxo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9f50e1-3ec4-46dc-b4f7-874234ed1e5e/1/JarLaEzkDzbmZJJ38af3qQLqeXM.roa Signing time: Fri 02 Jan 2026 12:20:51 +0000 ROA not before: Fri 02 Jan 2026 12:20:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199536 IP address blocks: 185.148.100.0/22 maxlen: 22 2a0f:57c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/9f50e1-3ec4-46dc-b4f7-874234ed1e5e/1/OvFQf9pOcEgox-A8r2JkVqr8Wxo.crl rsync://rpki.ripe.net/repository/DEFAULT/24/9f50e1-3ec4-46dc-b4f7-874234ed1e5e/1/OvFQf9pOcEgox-A8r2JkVqr8Wxo.mft rsync://rpki.ripe.net/repository/DEFAULT/OvFQf9pOcEgox-A8r2JkVqr8Wxo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:4b:c6:26:cf:19:61:64:35:fa:81:b8:7b:b8:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3af1507fda4e704828c7e03caf626456aafc5b1a Validity Not Before: Jan 2 12:20:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=25aacb684ce40f36e6649277f1a7f7a902ea7973 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:1d:2a:d7:36:bd:e4:d1:06:64:34:dd:e4:82: c8:33:d2:2e:e0:87:74:1e:32:d8:1f:17:82:f2:63: 59:84:88:10:0e:11:87:0f:c4:8c:8b:ae:3b:5b:d1: 90:21:d8:7c:20:02:c6:82:d5:33:e1:92:31:9c:a8: 83:a3:3d:b0:7c:f2:1f:d2:b6:ba:38:20:62:9d:fb: 27:1e:d9:3c:2b:38:35:ed:cb:98:1c:c5:b4:54:09: b7:ef:3f:7a:fd:fc:94:bd:eb:c3:45:f7:93:6e:c2: 9f:20:da:47:12:bd:5d:74:85:98:3d:a1:28:06:f4: 3b:23:28:10:7e:75:77:f7:5c:d1:e5:98:bf:73:82: c9:fe:89:2c:19:f3:14:b9:fd:b9:bf:ba:0e:26:1c: 7f:86:e9:69:d1:3c:2c:95:4f:87:72:5a:f8:2b:5e: e1:f3:34:d9:ae:ad:a3:b1:63:2a:0b:78:5c:ea:04: ef:ff:a6:f6:cc:b5:a2:6e:1b:05:dc:c8:44:17:2f: 29:09:3b:a5:dc:f1:ce:09:67:94:da:e3:ec:f2:de: 8d:61:99:e2:92:08:31:ff:25:4e:4a:bb:66:71:43: c4:ef:c0:e3:7f:db:b5:19:72:97:63:d8:91:8a:26: 15:2e:9c:5d:63:48:be:16:d7:90:f7:15:38:3b:d0: 89:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:AA:CB:68:4C:E4:0F:36:E6:64:92:77:F1:A7:F7:A9:02:EA:79:73 X509v3 Authority Key Identifier: keyid:3A:F1:50:7F:DA:4E:70:48:28:C7:E0:3C:AF:62:64:56:AA:FC:5B:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvFQf9pOcEgox-A8r2JkVqr8Wxo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9f50e1-3ec4-46dc-b4f7-874234ed1e5e/1/JarLaEzkDzbmZJJ38af3qQLqeXM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9f50e1-3ec4-46dc-b4f7-874234ed1e5e/1/OvFQf9pOcEgox-A8r2JkVqr8Wxo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.148.100.0/22 IPv6: 2a0f:57c0::/32 Signature Algorithm: sha256WithRSAEncryption 1c:2d:5d:41:1a:38:a4:95:71:d8:5d:0d:da:06:b4:65:4e:22: b3:e7:a4:8c:3f:fa:d1:75:00:2a:a2:f3:06:0a:96:1c:de:21: 41:5d:dd:e7:42:ce:0e:91:22:95:e6:3e:11:a7:5f:65:e7:be: 5e:16:cd:63:37:de:b6:04:ef:87:5c:ea:d1:96:20:2a:f6:de: 49:70:5a:c2:8c:14:dc:5d:54:56:e9:cf:0a:9a:59:73:c1:93: 84:cc:93:5a:72:87:52:39:7a:33:c7:07:95:78:24:2f:1f:85: 48:cc:ae:2e:9d:57:5f:6d:60:bc:4c:d2:23:ca:78:d3:3e:d0: e1:27:b6:bd:6e:f5:fe:20:67:d9:28:dc:13:42:da:b2:45:d1: ca:16:75:21:22:9f:18:eb:7b:2d:6a:a9:88:fc:23:28:d5:36: 45:94:44:48:23:e6:02:50:27:2c:3b:1b:a1:95:68:1d:e0:06: 67:88:51:b0:88:46:c8:c1:27:91:eb:17:a3:90:3e:43:85:a6: 2a:1f:64:3c:49:fc:ae:6a:86:1f:15:6a:30:c4:8e:92:98:ee: ec:1d:5a:97:75:23:ba:cc:40:51:7d:39:be:28:8a:ff:2b:8d: 1d:ca:fb:63:f0:91:a4:3e:ae:f7:e1:f6:de:75:37:b7:4c:92: 5f:5a:05:8b -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt+p0vGJs8ZYWQ1+oG4e7jtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhZjE1MDdmZGE0ZTcwNDgyOGM3ZTAzY2FmNjI2NDU2YWFm YzViMWEwHhcNMjYwMTAyMTIyMDUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNWFhY2I2ODRjZTQwZjM2ZTY2NDkyNzdmMWE3ZjdhOTAyZWE3OTczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnx0q1za95NEGZDTd5ILIM9Iu4Id0 HjLYHxeC8mNZhIgQDhGHD8SMi647W9GQIdh8IALGgtUz4ZIxnKiDoz2wfPIf0ra6 OCBinfsnHtk8Kzg17cuYHMW0VAm37z96/fyUvevDRfeTbsKfINpHEr1ddIWYPaEo BvQ7IygQfnV391zR5Zi/c4LJ/oksGfMUuf25v7oOJhx/hulp0TwslU+Hclr4K17h 8zTZrq2jsWMqC3hc6gTv/6b2zLWibhsF3MhEFy8pCTul3PHOCWeU2uPs8t6NYZni kggx/yVOSrtmcUPE78Djf9u1GXKXY9iRiiYVLpxdY0i+FteQ9xU4O9CJWQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFCWqy2hM5A825mSSd/Gn96kC6nlzMB8GA1UdIwQY MBaAFDrxUH/aTnBIKMfgPK9iZFaq/FsaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3ZGUWY5cE9jRWdveC1BOHIySmtWcXI4V3hvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC85ZjUwZTEtM2VjNC00NmRjLWI0Zjct ODc0MjM0ZWQxZTVlLzEvSmFyTGFFemtEemJtWkpKMzhhZjNxUUxxZVhNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC85ZjUwZTEtM2VjNC00NmRjLWI0ZjctODc0MjM0ZWQxZTVl LzEvT3ZGUWY5cE9jRWdveC1BOHIySmtWcXI4V3hvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuZRkMA0E AgACMAcDBQAqD1fAMA0GCSqGSIb3DQEBCwUAA4IBAQAcLV1BGjiklXHYXQ3aBrRl TiKz56SMP/rRdQAqovMGCpYc3iFBXd3nQs4OkSKV5j4Rp19l575eFs1jN962BO+H XOrRliAq9t5JcFrCjBTcXVRW6c8KmllzwZOEzJNacodSOXozxweVeCQvH4VIzK4u nVdfbWC8TNIjynjTPtDhJ7a9bvX+IGfZKNwTQtqyRdHKFnUhIp8Y63staqmI/CMo 1TZFlERII+YCUCcsOxuhlWgd4AZniFGwiEbIwSeR6xejkD5DhaYqH2Q8SfyuaoYf FWowxI6SmO7sHVqXdSO6zEBRfTm+KIr/K40dyvtj8JGkPq734fbedTe3TJJfWgWL -----END CERTIFICATE-----Generated at Mon Feb 9 20:10:25 2026 by rpki-client