This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/7c871d-853e-4a2d-a8d4-bf813cf081b7/1/JtB-_mP0CPyoUgsFyVWDrEIlud8.roa File: JtB-_mP0CPyoUgsFyVWDrEIlud8.roa (raw, json) Hash identifier: egfxT7xeT/hTTg3h54ZByaWRlZbXWQEqw5+/1nELFjo= Subject key identifier: 26:D0:7E:FE:63:F4:08:FC:A8:52:0B:05:C9:55:83:AC:42:25:B9:DF Certificate issuer: /CN=1c98955128bcbc7693eb1a937ff28b40eb3448a0 Certificate serial: 019B7CECF4CCDE73BF7542A64A6917DAD7DF Authority key identifier: 1C:98:95:51:28:BC:BC:76:93:EB:1A:93:7F:F2:8B:40:EB:34:48:A0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJiVUSi8vHaT6xqTf_KLQOs0SKA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/7c871d-853e-4a2d-a8d4-bf813cf081b7/1/JtB-_mP0CPyoUgsFyVWDrEIlud8.roa Signing time: Fri 02 Jan 2026 04:17:42 +0000 ROA not before: Fri 02 Jan 2026 04:17:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43887 IP address blocks: 91.198.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/7c871d-853e-4a2d-a8d4-bf813cf081b7/1/HJiVUSi8vHaT6xqTf_KLQOs0SKA.crl rsync://rpki.ripe.net/repository/DEFAULT/40/7c871d-853e-4a2d-a8d4-bf813cf081b7/1/HJiVUSi8vHaT6xqTf_KLQOs0SKA.mft rsync://rpki.ripe.net/repository/DEFAULT/HJiVUSi8vHaT6xqTf_KLQOs0SKA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ec:f4:cc:de:73:bf:75:42:a6:4a:69:17:da:d7:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c98955128bcbc7693eb1a937ff28b40eb3448a0 Validity Not Before: Jan 2 04:17:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=26d07efe63f408fca8520b05c95583ac4225b9df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:dc:4d:be:6e:fe:8c:07:fc:85:fa:c2:92:f6: f6:2e:02:3a:6a:51:22:3e:c1:8c:9f:29:16:62:f9: 8c:e6:0a:58:b3:dd:d3:bc:fa:77:f5:85:61:5b:61: 58:d8:4e:fe:e1:1d:be:62:b3:2f:4c:15:fb:35:72: 1c:2f:80:5d:e7:ed:65:88:99:bd:d3:eb:33:87:c6: df:52:61:54:4a:54:74:2b:7f:34:73:20:74:5f:6a: 83:b0:c2:aa:72:88:43:5a:06:95:5a:00:a9:48:ab: 1a:a7:bc:71:f7:62:1a:87:78:98:1f:7c:4f:4d:ce: 58:eb:df:b7:03:5e:31:e6:cb:f3:89:48:60:06:58: f1:fa:5f:19:30:cf:cd:af:53:50:44:44:36:37:58: cb:bd:d4:e0:80:b4:38:8c:2e:51:0a:e8:92:42:8f: 8f:8f:1d:02:e4:96:b9:5b:1e:b2:39:f1:f6:c6:12: bb:df:7b:78:21:e7:bd:cc:9e:3e:52:85:66:a7:5f: e1:5f:96:2c:5c:3a:65:3c:21:4b:26:ef:26:be:64: 7a:d9:bf:dd:fa:b8:1f:3e:5d:a7:26:3c:6d:21:0b: d0:d1:b5:e0:16:0d:6d:32:24:50:50:be:df:1f:8e: f7:e7:af:c4:24:92:8f:be:35:b5:d9:80:69:44:ff: c6:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:D0:7E:FE:63:F4:08:FC:A8:52:0B:05:C9:55:83:AC:42:25:B9:DF X509v3 Authority Key Identifier: keyid:1C:98:95:51:28:BC:BC:76:93:EB:1A:93:7F:F2:8B:40:EB:34:48:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJiVUSi8vHaT6xqTf_KLQOs0SKA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/7c871d-853e-4a2d-a8d4-bf813cf081b7/1/JtB-_mP0CPyoUgsFyVWDrEIlud8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/7c871d-853e-4a2d-a8d4-bf813cf081b7/1/HJiVUSi8vHaT6xqTf_KLQOs0SKA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.198.182.0/24 Signature Algorithm: sha256WithRSAEncryption 63:a0:a8:26:9c:75:b9:ee:7e:e9:c4:43:8b:01:38:97:b6:26: b1:88:f8:38:5f:b5:23:77:c7:15:57:d0:e8:a2:29:3a:c7:a5: bf:b2:7a:65:52:83:1d:83:14:c5:fb:fb:02:98:3d:d7:31:e3: 28:c4:11:31:a8:72:3a:29:f7:ad:4c:eb:35:8b:aa:a6:5a:7a: 40:c4:0e:f2:e6:b1:b7:f8:f6:52:59:78:3c:2e:cf:6f:06:8e: 16:90:25:f8:30:a1:cd:e7:bb:1a:a6:dd:3d:79:22:aa:55:1b: 9f:df:25:ac:70:8e:22:5b:a1:8d:13:67:5e:e8:01:b5:34:00: 71:ed:c4:2b:df:e7:1a:85:ce:e8:7d:e8:93:7b:4a:5d:7a:e0: 8a:22:c0:74:1a:46:eb:07:d5:3f:36:f9:a7:c1:9a:b5:af:50: 2c:25:f1:0e:7a:ed:a8:fa:a8:9e:77:19:56:d6:a5:fa:4d:83: 9a:7f:6b:37:53:13:79:a8:9f:28:e8:e4:dd:da:67:96:a1:dc: bf:1e:3c:e8:cc:be:71:db:92:79:35:d8:75:62:eb:cf:2d:17: ba:e7:cb:c3:96:fe:60:73:2f:a5:83:33:aa:b8:98:60:ad:43: 8d:e4:46:ad:da:c9:1c:28:90:24:bb:5d:9a:7a:3f:45:c9:42: 0b:79:37:6c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87PTM3nO/dUKmSmkX2tffMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjOTg5NTUxMjhiY2JjNzY5M2ViMWE5MzdmZjI4YjQwZWIz NDQ4YTAwHhcNMjYwMTAyMDQxNzQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNmQwN2VmZTYzZjQwOGZjYTg1MjBiMDVjOTU1ODNhYzQyMjViOWRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwtxNvm7+jAf8hfrCkvb2LgI6alEi PsGMnykWYvmM5gpYs93TvPp39YVhW2FY2E7+4R2+YrMvTBX7NXIcL4Bd5+1liJm9 0+szh8bfUmFUSlR0K380cyB0X2qDsMKqcohDWgaVWgCpSKsap7xx92Iah3iYH3xP Tc5Y69+3A14x5svziUhgBljx+l8ZMM/Nr1NQREQ2N1jLvdTggLQ4jC5RCuiSQo+P jx0C5Ja5Wx6yOfH2xhK733t4Iee9zJ4+UoVmp1/hX5YsXDplPCFLJu8mvmR62b/d +rgfPl2nJjxtIQvQ0bXgFg1tMiRQUL7fH47356/EJJKPvjW12YBpRP/GewIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCbQfv5j9Aj8qFILBclVg6xCJbnfMB8GA1UdIwQY MBaAFByYlVEovLx2k+sak3/yi0DrNEigMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEppVlVTaTh2SGFUNnhxVGZfS0xRT3MwU0tBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC83Yzg3MWQtODUzZS00YTJkLWE4ZDQt YmY4MTNjZjA4MWI3LzEvSnRCLV9tUDBDUHlvVWdzRnlWV0RyRUlsdWQ4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC83Yzg3MWQtODUzZS00YTJkLWE4ZDQtYmY4MTNjZjA4MWI3 LzEvSEppVlVTaTh2SGFUNnhxVGZfS0xRT3MwU0tBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8a2MA0G CSqGSIb3DQEBCwUAA4IBAQBjoKgmnHW57n7pxEOLATiXtiaxiPg4X7Ujd8cVV9Do oik6x6W/snplUoMdgxTF+/sCmD3XMeMoxBExqHI6KfetTOs1i6qmWnpAxA7y5rG3 +PZSWXg8Ls9vBo4WkCX4MKHN57sapt09eSKqVRuf3yWscI4iW6GNE2de6AG1NABx 7cQr3+cahc7ofeiTe0pdeuCKIsB0GkbrB9U/NvmnwZq1r1AsJfEOeu2o+qiedxlW 1qX6TYOaf2s3UxN5qJ8o6OTd2meWody/HjzozL5x25J5Ndh1YuvPLRe658vDlv5g cy+lgzOquJhgrUON5Eat2skcKJAku12aej9FyUILeTds -----END CERTIFICATE-----Generated at Tue Jan 27 04:57:42 2026 by rpki-client