This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/jSo8LlbLTQUprmkCvCcp7vebsYM.roa File: jSo8LlbLTQUprmkCvCcp7vebsYM.roa (raw, json) Hash identifier: e+Nqj5Gyhm+1Lb9J0xv7jEYozjDQOgg2/b6Jm3ghN/I= Subject key identifier: 8D:2A:3C:2E:56:CB:4D:05:29:AE:69:02:BC:27:29:EE:F7:9B:B1:83 Certificate issuer: /CN=77d2d928423104e5c3480e21b4a3ed1498b2a27e Certificate serial: 019C0F6606133EA8DF011B5CCC497A05E538 Authority key identifier: 77:D2:D9:28:42:31:04:E5:C3:48:0E:21:B4:A3:ED:14:98:B2:A2:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d9LZKEIxBOXDSA4htKPtFJiyon4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/jSo8LlbLTQUprmkCvCcp7vebsYM.roa Signing time: Fri 30 Jan 2026 14:54:30 +0000 ROA not before: Fri 30 Jan 2026 14:54:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 62392 IP address blocks: 151.216.128.0/17 maxlen: 17 185.175.216.0/22 maxlen: 22 2001:67c:1810::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.crl rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft rsync://rpki.ripe.net/repository/DEFAULT/d9LZKEIxBOXDSA4htKPtFJiyon4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 20:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:0f:66:06:13:3e:a8:df:01:1b:5c:cc:49:7a:05:e5:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=77d2d928423104e5c3480e21b4a3ed1498b2a27e Validity Not Before: Jan 30 14:54:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8d2a3c2e56cb4d0529ae6902bc2729eef79bb183 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c2:9d:a5:2a:64:cc:3d:a1:ae:ca:60:b8:2a: 7f:8f:31:5c:03:e1:82:70:54:f0:58:0b:91:e2:ca: cd:c0:00:7e:65:1c:5e:7e:ec:2f:54:1f:30:88:d8: 71:ea:66:9c:6a:4f:d0:c2:9b:7d:c4:63:25:5d:59: 6d:7f:09:eb:82:fa:77:59:30:d0:53:74:73:7d:0a: 8e:2f:ef:15:c5:af:91:60:65:5a:ce:55:fc:35:39: 47:db:84:30:87:90:00:7a:2e:21:fe:14:3f:7b:57: 19:54:07:5d:1c:be:81:cf:fd:a5:9c:be:17:ae:d7: 72:42:2f:f4:f9:12:81:8e:86:e9:00:8a:76:fa:71: 52:dd:2b:07:64:1c:9a:77:88:25:eb:40:b9:26:a9: 35:b5:7b:c8:7a:ff:98:21:dc:f6:81:78:1c:96:53: 08:6c:89:a4:2c:76:2d:39:d1:9f:4a:51:d4:8b:24: 65:50:67:dd:0d:b6:af:91:cb:e1:2c:eb:93:2f:98: e4:bc:b6:fb:4b:a5:db:c5:e3:5d:29:c3:14:6f:db: 98:59:36:6f:74:5b:32:95:7d:da:6b:de:e1:a7:c6: 84:36:fb:c2:cc:6a:49:ec:53:8f:24:b2:10:02:3d: eb:b4:a4:52:71:ff:b8:49:d1:5b:d6:ea:34:d7:ac: c0:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:2A:3C:2E:56:CB:4D:05:29:AE:69:02:BC:27:29:EE:F7:9B:B1:83 X509v3 Authority Key Identifier: keyid:77:D2:D9:28:42:31:04:E5:C3:48:0E:21:B4:A3:ED:14:98:B2:A2:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9LZKEIxBOXDSA4htKPtFJiyon4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/jSo8LlbLTQUprmkCvCcp7vebsYM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.216.128.0/17 185.175.216.0/22 IPv6: 2001:67c:1810::/48 Signature Algorithm: sha256WithRSAEncryption 9e:39:21:c4:65:8f:96:9b:2f:e6:e7:1a:84:79:b0:af:01:79: cb:36:0c:89:34:7b:4b:fa:cd:7f:5e:2c:d4:9b:a3:d5:9f:b8: 09:7b:e8:20:55:77:dd:1c:ec:52:92:72:10:09:f9:76:c8:a3: dd:be:8c:1d:8a:2a:7b:4e:6a:3a:ef:90:3c:19:94:c1:68:d1: 80:3b:71:62:3e:87:b9:0d:d4:d9:b0:a8:2e:66:a8:8f:1e:63: 9a:a9:0f:1c:8e:54:6f:75:dc:0e:fd:3f:72:43:b4:b8:f8:29: a1:16:f9:06:81:fc:8d:cc:51:41:50:90:86:ce:5e:2c:a3:ba: c1:37:c0:ed:8e:60:40:ad:d5:22:04:f5:ef:69:c8:57:1a:d8: 1c:b7:78:c6:36:2b:fd:b5:f8:50:19:5b:14:8e:0e:38:11:e5: af:4d:28:3b:ac:bc:d2:6c:b1:3a:3e:98:cd:1e:0f:71:b1:84: 4c:06:15:c0:eb:30:5f:68:5b:73:e9:d2:06:76:2e:74:22:c7: 2c:26:83:a1:80:d8:47:28:46:a1:42:66:e0:7e:f8:3e:8c:03: 80:a9:1e:97:05:ed:05:67:19:04:26:f5:83:35:8c:47:68:c5: ac:1a:d5:3a:d1:b8:ba:11:f9:73:bf:55:95:48:76:e8:4c:20: 08:39:a1:fc -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgISAZwPZgYTPqjfARtczEl6BeU4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc3ZDJkOTI4NDIzMTA0ZTVjMzQ4MGUyMWI0YTNlZDE0OThi MmEyN2UwHhcNMjYwMTMwMTQ1NDMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZDJhM2MyZTU2Y2I0ZDA1MjlhZTY5MDJiYzI3MjllZWY3OWJiMTgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApcKdpSpkzD2hrspguCp/jzFcA+GC cFTwWAuR4srNwAB+ZRxefuwvVB8wiNhx6macak/Qwpt9xGMlXVltfwnrgvp3WTDQ U3RzfQqOL+8Vxa+RYGVazlX8NTlH24Qwh5AAei4h/hQ/e1cZVAddHL6Bz/2lnL4X rtdyQi/0+RKBjobpAIp2+nFS3SsHZByad4gl60C5Jqk1tXvIev+YIdz2gXgcllMI bImkLHYtOdGfSlHUiyRlUGfdDbavkcvhLOuTL5jkvLb7S6XbxeNdKcMUb9uYWTZv dFsylX3aa97hp8aENvvCzGpJ7FOPJLIQAj3rtKRScf+4SdFb1uo016zARwIDAQAB o4ICIDCCAhwwHQYDVR0OBBYEFI0qPC5Wy00FKa5pArwnKe73m7GDMB8GA1UdIwQY MBaAFHfS2ShCMQTlw0gOIbSj7RSYsqJ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZDlMWktFSXhCT1hEU0E0aHRLUHRGSml5b240LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS8yYjllMjktZDU2OC00ZDUzLWIxMjgt NDg4NzkyMzg4ZTViLzEvalNvOExsYkxUUVVwcm1rQ3ZDY3A3dmVic1lNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS8yYjllMjktZDU2OC00ZDUzLWIxMjgtNDg4NzkyMzg4ZTVi LzEvZDlMWktFSXhCT1hEU0E0aHRLUHRGSml5b240LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTASBAIAATAMAwQHl9iAAwQC ua/YMA8EAgACMAkDBwAgAQZ8GBAwDQYJKoZIhvcNAQELBQADggEBAJ45IcRlj5ab L+bnGoR5sK8Becs2DIk0e0v6zX9eLNSbo9WfuAl76CBVd90c7FKSchAJ+XbIo92+ jB2KKntOajrvkDwZlMFo0YA7cWI+h7kN1NmwqC5mqI8eY5qpDxyOVG913A79P3JD tLj4KaEW+QaB/I3MUUFQkIbOXiyjusE3wO2OYECt1SIE9e9pyFca2By3eMY2K/21 +FAZWxSODjgR5a9NKDusvNJssTo+mM0eD3GxhEwGFcDrMF9oW3Pp0gZ2LnQixywm g6GA2EcoRqFCZuB++D6MA4CpHpcF7QVnGQQm9YM1jEdoxawa1TrRuLoR+XO/VZVI duhMIAg5ofw= -----END CERTIFICATE-----Generated at Mon Feb 2 08:07:51 2026 by rpki-client