This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/090d42-b5f7-4cfe-bd6c-6178dbfff555/1/rpjNvKh9ePR6haBv67DbOq7D6B4.roa File: rpjNvKh9ePR6haBv67DbOq7D6B4.roa (raw, json) Hash identifier: taddzFa3lxAS4j5IFhn2U/FGfG/kCon7BIwZV1qiiDs= Subject key identifier: AE:98:CD:BC:A8:7D:78:F4:7A:85:A0:6F:EB:B0:DB:3A:AE:C3:E8:1E Certificate issuer: /CN=7896a8c7e9ba09d2f1d44863670be213fc0ca210 Certificate serial: 019B7758D04502A9111E2705B0B2785F0142 Authority key identifier: 78:96:A8:C7:E9:BA:09:D2:F1:D4:48:63:67:0B:E2:13:FC:0C:A2:10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eJaox-m6CdLx1EhjZwviE_wMohA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/090d42-b5f7-4cfe-bd6c-6178dbfff555/1/rpjNvKh9ePR6haBv67DbOq7D6B4.roa Signing time: Thu 01 Jan 2026 02:17:47 +0000 ROA not before: Thu 01 Jan 2026 02:17:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213719 IP address blocks: 103.143.173.0/24 maxlen: 24 2a14:e400::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/090d42-b5f7-4cfe-bd6c-6178dbfff555/1/eJaox-m6CdLx1EhjZwviE_wMohA.crl rsync://rpki.ripe.net/repository/DEFAULT/27/090d42-b5f7-4cfe-bd6c-6178dbfff555/1/eJaox-m6CdLx1EhjZwviE_wMohA.mft rsync://rpki.ripe.net/repository/DEFAULT/eJaox-m6CdLx1EhjZwviE_wMohA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:d0:45:02:a9:11:1e:27:05:b0:b2:78:5f:01:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7896a8c7e9ba09d2f1d44863670be213fc0ca210 Validity Not Before: Jan 1 02:17:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ae98cdbca87d78f47a85a06febb0db3aaec3e81e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fd:8b:6b:7f:2b:f1:b4:6a:e9:85:d8:c7:92: e7:3a:b8:db:f0:6c:6b:02:13:94:1e:96:d2:45:97: c1:ba:44:bf:af:ff:77:eb:fb:5e:ed:85:09:73:19: 1e:04:c4:11:69:f2:78:b1:3f:b7:b4:a7:14:9d:e4: ec:84:8d:d0:f7:bd:dd:47:5f:11:84:d2:f4:5d:27: 81:86:d0:50:bb:53:0a:11:6d:f6:31:71:8c:05:d0: 3b:f1:10:bb:52:a2:d7:53:c1:6c:b0:fc:9a:42:ce: 6b:40:fd:bd:2d:9a:e3:c9:6f:fc:97:34:f7:a2:d6: bf:b3:fb:61:62:69:b0:58:69:89:f7:dd:2b:e8:9e: d5:2e:42:d9:0f:09:ec:0b:09:40:e4:93:45:e3:c5: 15:41:2f:22:82:48:31:bc:aa:1d:6d:13:4e:0f:dc: a8:80:c0:79:4b:2f:3e:ef:48:a1:ee:be:98:96:c6: 78:dd:68:7e:0f:57:bb:ac:23:c7:36:eb:b3:ee:ee: 13:2f:a9:78:49:79:c9:df:e3:25:af:d9:c0:02:1f: f7:7c:f2:da:10:7a:7b:20:d8:c2:40:04:71:99:14: 5c:e7:26:7d:60:43:7c:c6:36:40:da:83:2c:ca:e8: c6:18:70:22:b0:36:41:1a:ef:92:3b:df:99:30:ad: af:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:98:CD:BC:A8:7D:78:F4:7A:85:A0:6F:EB:B0:DB:3A:AE:C3:E8:1E X509v3 Authority Key Identifier: keyid:78:96:A8:C7:E9:BA:09:D2:F1:D4:48:63:67:0B:E2:13:FC:0C:A2:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eJaox-m6CdLx1EhjZwviE_wMohA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/090d42-b5f7-4cfe-bd6c-6178dbfff555/1/rpjNvKh9ePR6haBv67DbOq7D6B4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/090d42-b5f7-4cfe-bd6c-6178dbfff555/1/eJaox-m6CdLx1EhjZwviE_wMohA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.173.0/24 IPv6: 2a14:e400::/29 Signature Algorithm: sha256WithRSAEncryption 24:05:84:7c:28:4b:32:8e:52:d5:5c:b6:87:a3:36:52:bb:0e: 17:50:71:9e:6f:43:3d:2c:5d:29:28:74:41:38:30:d8:ad:07: 4a:e2:a7:74:0c:a3:3f:9d:62:82:67:55:82:28:46:1c:96:fa: 94:5d:f9:5c:20:92:ee:61:3a:9d:67:de:4f:6f:a6:02:87:a7: ca:cf:15:1c:ad:74:e0:d8:ec:ca:50:9e:64:2f:27:24:08:0b: f0:03:33:26:64:f7:70:b8:d1:d0:4e:c2:c9:21:a9:40:ee:86: d1:e4:40:e7:01:ea:a5:0f:7b:f5:53:1e:8f:8b:05:e7:7b:4e: 5f:0a:35:01:e4:38:45:8e:86:08:ad:29:e4:46:c7:7a:05:5d: 9c:54:a8:46:ae:94:f4:52:13:e7:e2:be:32:7c:bf:61:56:29: 6f:8d:18:e5:f5:8d:2d:fa:2a:a9:81:be:43:2b:fd:73:04:ef: 90:26:0e:68:ce:19:b5:c8:3b:14:17:92:85:b3:05:29:a3:e8: 17:01:d8:2d:d1:77:8e:2c:b9:70:c1:23:e8:bd:91:be:15:03: 8b:90:cc:70:8a:43:b1:e5:de:64:1d:28:e3:ad:a2:52:60:16: 28:21:b8:bc:a6:57:58:d3:32:99:70:46:5d:77:27:2d:9d:0e: fb:34:84:53 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt3WNBFAqkRHicFsLJ4XwFCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc4OTZhOGM3ZTliYTA5ZDJmMWQ0NDg2MzY3MGJlMjEzZmMw Y2EyMTAwHhcNMjYwMTAxMDIxNzQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZTk4Y2RiY2E4N2Q3OGY0N2E4NWEwNmZlYmIwZGIzYWFlYzNlODFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvf2La38r8bRq6YXYx5LnOrjb8Gxr AhOUHpbSRZfBukS/r/936/te7YUJcxkeBMQRafJ4sT+3tKcUneTshI3Q973dR18R hNL0XSeBhtBQu1MKEW32MXGMBdA78RC7UqLXU8FssPyaQs5rQP29LZrjyW/8lzT3 ota/s/thYmmwWGmJ990r6J7VLkLZDwnsCwlA5JNF48UVQS8igkgxvKodbRNOD9yo gMB5Sy8+70ih7r6YlsZ43Wh+D1e7rCPHNuuz7u4TL6l4SXnJ3+Mlr9nAAh/3fPLa EHp7INjCQARxmRRc5yZ9YEN8xjZA2oMsyujGGHAisDZBGu+SO9+ZMK2vSQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFK6YzbyofXj0eoWgb+uw2zquw+geMB8GA1UdIwQY MBaAFHiWqMfpugnS8dRIY2cL4hP8DKIQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZUphb3gtbTZDZEx4MUVoalp3dmlFX3dNb2hBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy8wOTBkNDItYjVmNy00Y2ZlLWJkNmMt NjE3OGRiZmZmNTU1LzEvcnBqTnZLaDllUFI2aGFCdjY3RGJPcTdENkI0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy8wOTBkNDItYjVmNy00Y2ZlLWJkNmMtNjE3OGRiZmZmNTU1 LzEvZUphb3gtbTZDZEx4MUVoalp3dmlFX3dNb2hBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAZ4+tMA0E AgACMAcDBQMqFOQAMA0GCSqGSIb3DQEBCwUAA4IBAQAkBYR8KEsyjlLVXLaHozZS uw4XUHGeb0M9LF0pKHRBODDYrQdK4qd0DKM/nWKCZ1WCKEYclvqUXflcIJLuYTqd Z95Pb6YCh6fKzxUcrXTg2OzKUJ5kLyckCAvwAzMmZPdwuNHQTsLJIalA7obR5EDn AeqlD3v1Ux6PiwXne05fCjUB5DhFjoYIrSnkRsd6BV2cVKhGrpT0UhPn4r4yfL9h VilvjRjl9Y0t+iqpgb5DK/1zBO+QJg5ozhm1yDsUF5KFswUpo+gXAdgt0XeOLLlw wSPovZG+FQOLkMxwikOx5d5kHSjjraJSYBYoIbi8pldY0zKZcEZddyctnQ77NIRT -----END CERTIFICATE-----Generated at Mon Feb 9 22:36:23 2026 by rpki-client