This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/1b60e9-b6e0-4890-9de1-13b431342ab8/1/jHKFzJMuVgkRMcd39iofZlr79ZM.roa File: jHKFzJMuVgkRMcd39iofZlr79ZM.roa (raw, json) Hash identifier: FKkFHGiWFdzZ6/cs/c28XQ5mPK0a6Et3bTCrTPOeq3k= Subject key identifier: 8C:72:85:CC:93:2E:56:09:11:31:C7:77:F6:2A:1F:66:5A:FB:F5:93 Certificate issuer: /CN=96cbcf2e957ca8d942472a7b0044285b26db6b22 Certificate serial: 019C1CEF4C98884380F7F2557EBFA0738529 Authority key identifier: 96:CB:CF:2E:95:7C:A8:D9:42:47:2A:7B:00:44:28:5B:26:DB:6B:22 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lsvPLpV8qNlCRyp7AEQoWybbayI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/1b60e9-b6e0-4890-9de1-13b431342ab8/1/jHKFzJMuVgkRMcd39iofZlr79ZM.roa Signing time: Mon 02 Feb 2026 05:59:30 +0000 ROA not before: Mon 02 Feb 2026 05:59:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58256 IP address blocks: 37.143.144.0/24 maxlen: 24 37.143.145.0/24 maxlen: 24 37.143.146.0/24 maxlen: 24 37.143.147.0/24 maxlen: 24 37.143.148.0/24 maxlen: 24 37.143.149.0/24 maxlen: 24 37.143.150.0/24 maxlen: 24 37.143.151.0/24 maxlen: 24 91.108.128.0/24 maxlen: 24 91.108.129.0/24 maxlen: 24 91.108.130.0/24 maxlen: 24 91.108.131.0/24 maxlen: 24 91.108.132.0/24 maxlen: 24 91.108.133.0/24 maxlen: 24 91.108.134.0/24 maxlen: 24 91.108.135.0/24 maxlen: 24 91.108.136.0/24 maxlen: 24 91.108.137.0/24 maxlen: 24 91.108.138.0/24 maxlen: 24 91.108.139.0/24 maxlen: 24 91.108.144.0/24 maxlen: 24 91.108.147.0/24 maxlen: 24 91.108.148.0/24 maxlen: 24 91.108.149.0/24 maxlen: 24 91.108.150.0/24 maxlen: 24 91.108.151.0/24 maxlen: 24 91.108.152.0/24 maxlen: 24 91.108.153.0/24 maxlen: 24 91.108.154.0/24 maxlen: 24 91.108.155.0/24 maxlen: 24 91.108.156.0/24 maxlen: 24 91.108.157.0/24 maxlen: 24 91.108.158.0/24 maxlen: 24 91.108.159.0/24 maxlen: 24 185.42.212.0/22 maxlen: 22 185.42.212.0/24 maxlen: 24 185.42.213.0/24 maxlen: 24 185.42.214.0/24 maxlen: 24 185.42.215.0/24 maxlen: 24 185.83.28.0/24 maxlen: 24 185.83.29.0/24 maxlen: 24 185.83.30.0/24 maxlen: 24 185.83.31.0/24 maxlen: 24 185.83.184.0/22 maxlen: 22 185.83.184.0/24 maxlen: 24 185.83.185.0/24 maxlen: 24 185.83.186.0/24 maxlen: 24 185.83.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/1b60e9-b6e0-4890-9de1-13b431342ab8/1/lsvPLpV8qNlCRyp7AEQoWybbayI.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/1b60e9-b6e0-4890-9de1-13b431342ab8/1/lsvPLpV8qNlCRyp7AEQoWybbayI.mft rsync://rpki.ripe.net/repository/DEFAULT/lsvPLpV8qNlCRyp7AEQoWybbayI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1c:ef:4c:98:88:43:80:f7:f2:55:7e:bf:a0:73:85:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96cbcf2e957ca8d942472a7b0044285b26db6b22 Validity Not Before: Feb 2 05:59:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8c7285cc932e56091131c777f62a1f665afbf593 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:ed:5e:45:66:ce:33:ca:04:f3:a7:63:ca:17: 3a:57:0c:f4:6b:b2:06:c0:26:60:98:ac:ab:d5:fb: 42:7d:6f:8f:01:6f:a1:71:1e:63:1a:4a:ff:01:b2: cb:7c:66:58:d9:f9:fe:f2:ca:06:88:b3:19:30:76: 78:8a:af:4b:68:d3:17:f1:c2:2a:47:8f:5b:38:7c: 81:66:a3:fe:8e:f7:9d:95:08:e3:b3:e0:b2:a6:92: 1c:11:76:08:c7:2b:4f:45:d2:cc:bb:eb:b4:d6:f7: b2:72:97:2c:d8:d6:49:85:bb:aa:9f:19:d2:be:c2: ae:e1:b4:5e:1c:94:ee:5e:dd:8e:9f:3c:30:b6:41: 0e:0a:63:ac:99:ca:26:6c:7a:17:f7:6d:f7:c6:b3: 76:c9:e4:57:76:45:a0:dd:54:33:05:21:41:6f:23: 34:c9:3a:32:83:be:3b:9b:f3:ff:c1:43:f3:ba:ef: 56:24:65:e0:ab:7e:84:03:8e:43:b4:8f:35:3f:63: 74:cb:78:92:d4:36:5d:0a:e9:4f:da:85:91:18:9b: ac:4d:2d:16:c4:a2:3c:80:df:8e:fc:c8:d0:9b:41: 0a:cf:66:67:63:30:8d:45:f8:5c:e5:78:bd:55:ab: 12:1a:61:17:3c:19:b2:b3:05:db:9f:9f:8e:71:dd: 26:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:72:85:CC:93:2E:56:09:11:31:C7:77:F6:2A:1F:66:5A:FB:F5:93 X509v3 Authority Key Identifier: keyid:96:CB:CF:2E:95:7C:A8:D9:42:47:2A:7B:00:44:28:5B:26:DB:6B:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lsvPLpV8qNlCRyp7AEQoWybbayI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/1b60e9-b6e0-4890-9de1-13b431342ab8/1/jHKFzJMuVgkRMcd39iofZlr79ZM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/1b60e9-b6e0-4890-9de1-13b431342ab8/1/lsvPLpV8qNlCRyp7AEQoWybbayI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.143.144.0/21 91.108.128.0-91.108.139.255 91.108.144.0/24 91.108.147.0-91.108.159.255 185.42.212.0/22 185.83.28.0/22 185.83.184.0/22 Signature Algorithm: sha256WithRSAEncryption 7a:5b:d2:e3:ea:27:c8:a5:9a:de:5f:f6:f5:c9:2a:33:59:13: 9b:a4:55:88:86:1a:ae:e3:4c:b9:d0:07:f9:6b:34:bc:14:54: c3:9c:cd:ef:6a:f1:70:c7:87:29:fb:9a:c5:b2:4f:fe:0b:51: 4c:c7:1e:0f:90:24:10:6d:69:6f:0c:c9:e5:9f:a6:5d:2d:b0: 07:85:51:e3:ca:34:1b:f4:32:b0:38:ac:93:60:f2:a3:40:b2: c6:7c:47:b6:c1:8c:db:c0:b3:30:e6:e4:57:c6:47:60:1d:44: 31:ae:58:9d:32:df:b8:59:8c:94:a0:46:a2:fe:33:21:55:df: db:9f:42:f6:a8:3c:10:b0:ce:65:93:b4:0c:31:58:52:84:f9: ec:7b:3d:95:9c:2a:cf:e9:6a:0e:35:4d:2e:e3:66:df:d0:64: 3b:ce:36:e3:75:26:a6:c1:c2:59:74:9b:f1:75:79:cb:22:cd: b0:a1:53:bd:64:14:bf:fc:d1:9d:7f:bb:8e:88:84:e8:79:ac: 8a:87:a9:6d:cf:c9:7d:50:d9:1e:70:c5:f3:20:ac:8c:ef:f5: b9:68:0c:a5:c3:c7:e3:d9:09:d9:4d:aa:c1:c9:54:43:fd:8a: f2:a8:4f:83:77:f7:3d:f1:d5:d7:29:c3:ac:36:17:ba:ff:29: 1b:b3:af:a0 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgISAZwc70yYiEOA9/JVfr+gc4UpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2Y2JjZjJlOTU3Y2E4ZDk0MjQ3MmE3YjAwNDQyODViMjZk YjZiMjIwHhcNMjYwMjAyMDU1OTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YzcyODVjYzkzMmU1NjA5MTEzMWM3NzdmNjJhMWY2NjVhZmJmNTkzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj+1eRWbOM8oE86djyhc6Vwz0a7IG wCZgmKyr1ftCfW+PAW+hcR5jGkr/AbLLfGZY2fn+8soGiLMZMHZ4iq9LaNMX8cIq R49bOHyBZqP+jvedlQjjs+CyppIcEXYIxytPRdLMu+u01veycpcs2NZJhbuqnxnS vsKu4bReHJTuXt2OnzwwtkEOCmOsmcombHoX9233xrN2yeRXdkWg3VQzBSFBbyM0 yToyg747m/P/wUPzuu9WJGXgq36EA45DtI81P2N0y3iS1DZdCulP2oWRGJusTS0W xKI8gN+O/MjQm0EKz2ZnYzCNRfhc5Xi9VasSGmEXPBmyswXbn5+Ocd0miwIDAQAB o4ICPTCCAjkwHQYDVR0OBBYEFIxyhcyTLlYJETHHd/YqH2Za+/WTMB8GA1UdIwQY MBaAFJbLzy6VfKjZQkcqewBEKFsm22siMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbHN2UExwVjhxTmxDUnlwN0FFUW9XeWJiYXlJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8xYjYwZTktYjZlMC00ODkwLTlkZTEt MTNiNDMxMzQyYWI4LzEvakhLRnpKTXVWZ2tSTWNkMzlpb2ZabHI3OVpNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC8xYjYwZTktYjZlMC00ODkwLTlkZTEtMTNiNDMxMzQyYWI4 LzEvbHN2UExwVjhxTmxDUnlwN0FFUW9XeWJiYXlJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFMGCCsGAQUFBwEHAQH/BEQwQjBABAIAATA6AwQDJY+QMAwD BAdbbIADBAJbbIgDBABbbJAwDAMEAFtskwMEBVtsgAMEArkq1AMEArlTHAMEArlT uDANBgkqhkiG9w0BAQsFAAOCAQEAelvS4+onyKWa3l/29ckqM1kTm6RViIYaruNM udAH+Ws0vBRUw5zN72rxcMeHKfuaxbJP/gtRTMceD5AkEG1pbwzJ5Z+mXS2wB4VR 48o0G/QysDisk2Dyo0CyxnxHtsGM28CzMObkV8ZHYB1EMa5YnTLfuFmMlKBGov4z IVXf259C9qg8ELDOZZO0DDFYUoT57Hs9lZwqz+lqDjVNLuNm39BkO84243UmpsHC WXSb8XV5yyLNsKFTvWQUv/zRnX+7joiE6Hmsioepbc/JfVDZHnDF8yCsjO/1uWgM pcPH49kJ2U2qwclUQ/2K8qhPg3f3PfHV1ynDrDYXuv8pG7OvoA== -----END CERTIFICATE-----Generated at Tue Feb 10 04:31:17 2026 by rpki-client