This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/844a25-a8df-4561-b3e7-9785a335542a/1/jEXsJW-dSuLpQO5YOKPLDNwuGDI.roa File: jEXsJW-dSuLpQO5YOKPLDNwuGDI.roa (raw, json) Hash identifier: UIwmv+B0668akDpzT0mGvVjjYi0KKoE4bndrHcRym44= Subject key identifier: 8C:45:EC:25:6F:9D:4A:E2:E9:40:EE:58:38:A3:CB:0C:DC:2E:18:32 Certificate issuer: /CN=30aff75209684a354669061d23da29f8ea2f1d5e Certificate serial: 019B79ED3EBF4A9BF303A62CD1991C23CEB0 Authority key identifier: 30:AF:F7:52:09:68:4A:35:46:69:06:1D:23:DA:29:F8:EA:2F:1D:5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MK_3UgloSjVGaQYdI9op-OovHV4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/844a25-a8df-4561-b3e7-9785a335542a/1/jEXsJW-dSuLpQO5YOKPLDNwuGDI.roa Signing time: Thu 01 Jan 2026 14:19:09 +0000 ROA not before: Thu 01 Jan 2026 14:19:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203068 IP address blocks: 185.90.208.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/844a25-a8df-4561-b3e7-9785a335542a/1/MK_3UgloSjVGaQYdI9op-OovHV4.crl rsync://rpki.ripe.net/repository/DEFAULT/41/844a25-a8df-4561-b3e7-9785a335542a/1/MK_3UgloSjVGaQYdI9op-OovHV4.mft rsync://rpki.ripe.net/repository/DEFAULT/MK_3UgloSjVGaQYdI9op-OovHV4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 08:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:3e:bf:4a:9b:f3:03:a6:2c:d1:99:1c:23:ce:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30aff75209684a354669061d23da29f8ea2f1d5e Validity Not Before: Jan 1 14:19:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8c45ec256f9d4ae2e940ee5838a3cb0cdc2e1832 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:14:2f:53:5c:8d:fb:53:43:9b:28:1b:ad:3b: 96:9d:24:3e:30:16:56:36:87:1f:06:23:24:c6:5f: 71:d9:04:3c:9d:f6:39:e1:d8:07:8b:9c:c8:75:be: 3c:a7:c0:9e:fb:98:38:f9:c7:73:24:d7:d1:f1:89: ad:e0:cf:32:79:53:50:d6:e1:ed:b7:5e:3c:28:57: fb:a4:bd:d5:f6:b9:e9:34:5f:42:2c:d8:0e:5e:94: 82:03:d2:fc:d2:c7:36:82:a0:82:a1:72:46:21:f7: cd:fb:29:fd:31:26:1e:58:fb:9d:c2:a8:27:78:e3: ec:4d:b8:5f:e1:60:cf:01:de:de:bf:f1:83:94:13: 85:31:e8:1e:eb:17:7c:b8:13:28:c2:dd:01:fd:44: 18:b7:aa:bb:72:fe:cf:6e:59:1d:5d:bb:68:ac:84: 53:41:5d:17:a2:c1:5b:e6:d7:e9:1f:16:9a:7b:49: 69:67:b2:33:a5:d0:eb:c4:48:13:ed:2c:06:4a:77: ea:d8:74:b2:85:f5:21:2a:e9:93:b8:35:65:13:8b: 0c:89:83:0e:7e:19:3e:17:56:37:68:15:fd:ae:8a: a2:09:28:97:26:f7:b6:39:ec:1b:f5:cf:6c:96:31: 9d:94:be:dc:d0:c2:7d:8f:36:22:65:59:76:39:3a: 76:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:45:EC:25:6F:9D:4A:E2:E9:40:EE:58:38:A3:CB:0C:DC:2E:18:32 X509v3 Authority Key Identifier: keyid:30:AF:F7:52:09:68:4A:35:46:69:06:1D:23:DA:29:F8:EA:2F:1D:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MK_3UgloSjVGaQYdI9op-OovHV4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/844a25-a8df-4561-b3e7-9785a335542a/1/jEXsJW-dSuLpQO5YOKPLDNwuGDI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/844a25-a8df-4561-b3e7-9785a335542a/1/MK_3UgloSjVGaQYdI9op-OovHV4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.90.208.0/22 Signature Algorithm: sha256WithRSAEncryption 53:af:27:d9:7d:3b:4d:85:9d:4b:0d:b3:94:e9:58:3c:82:b2: 20:2b:e9:09:92:83:99:a4:1f:5e:72:9d:48:9a:32:98:21:fd: 33:7e:0a:64:0a:b6:f2:e7:3a:8f:4b:87:0f:8d:c6:c1:38:e8: e4:de:2e:f3:e6:1a:9d:98:88:a5:07:74:be:d2:6e:b1:8e:d7: 56:39:e1:b3:dd:55:9b:76:41:66:66:80:78:ab:81:cb:c6:4f: 89:b2:46:e4:de:8e:b5:c8:d7:5d:06:af:cd:86:fa:61:5c:ce: 49:8d:02:99:fa:d0:12:9d:1d:95:12:ba:a8:5a:f9:21:ae:a2: ac:da:57:b3:4d:db:4e:b0:ca:2a:58:7c:e0:29:17:82:c6:4d: bb:11:6d:7f:87:86:3c:79:c4:38:a9:b2:48:3e:4b:83:68:74: c3:87:d7:74:c8:2b:87:c1:f9:49:de:2a:13:28:64:fb:69:89: d4:c3:e2:73:1f:1e:09:9d:b7:d1:c8:e6:38:7c:66:4d:53:8e: ba:a1:2a:10:2c:9b:2b:fc:bf:44:93:47:1b:af:19:19:8b:ed: 61:f2:22:a8:0d:7c:7e:1b:d8:25:ad:f6:a2:57:01:ab:c7:04: ff:65:d8:14:ce:c7:5e:04:db:0d:4c:f7:85:03:b3:40:f1:40: da:e5:ed:18 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57T6/SpvzA6Ys0ZkcI86wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwYWZmNzUyMDk2ODRhMzU0NjY5MDYxZDIzZGEyOWY4ZWEy ZjFkNWUwHhcNMjYwMTAxMTQxOTA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YzQ1ZWMyNTZmOWQ0YWUyZTk0MGVlNTgzOGEzY2IwY2RjMmUxODMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3xQvU1yN+1NDmygbrTuWnSQ+MBZW NocfBiMkxl9x2QQ8nfY54dgHi5zIdb48p8Ce+5g4+cdzJNfR8Ymt4M8yeVNQ1uHt t148KFf7pL3V9rnpNF9CLNgOXpSCA9L80sc2gqCCoXJGIffN+yn9MSYeWPudwqgn eOPsTbhf4WDPAd7ev/GDlBOFMege6xd8uBMowt0B/UQYt6q7cv7PblkdXbtorIRT QV0XosFb5tfpHxaae0lpZ7IzpdDrxEgT7SwGSnfq2HSyhfUhKumTuDVlE4sMiYMO fhk+F1Y3aBX9roqiCSiXJve2Oewb9c9sljGdlL7c0MJ9jzYiZVl2OTp2YwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIxF7CVvnUri6UDuWDijywzcLhgyMB8GA1UdIwQY MBaAFDCv91IJaEo1RmkGHSPaKfjqLx1eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTUtfM1VnbG9TalZHYVFZZEk5b3AtT292SFY0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS84NDRhMjUtYThkZi00NTYxLWIzZTct OTc4NWEzMzU1NDJhLzEvakVYc0pXLWRTdUxwUU81WU9LUExETnd1R0RJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS84NDRhMjUtYThkZi00NTYxLWIzZTctOTc4NWEzMzU1NDJh LzEvTUtfM1VnbG9TalZHYVFZZEk5b3AtT292SFY0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuVrQMA0G CSqGSIb3DQEBCwUAA4IBAQBTryfZfTtNhZ1LDbOU6Vg8grIgK+kJkoOZpB9ecp1I mjKYIf0zfgpkCrby5zqPS4cPjcbBOOjk3i7z5hqdmIilB3S+0m6xjtdWOeGz3VWb dkFmZoB4q4HLxk+Jskbk3o61yNddBq/NhvphXM5JjQKZ+tASnR2VErqoWvkhrqKs 2lezTdtOsMoqWHzgKReCxk27EW1/h4Y8ecQ4qbJIPkuDaHTDh9d0yCuHwflJ3ioT KGT7aYnUw+JzHx4JnbfRyOY4fGZNU466oSoQLJsr/L9Ek0cbrxkZi+1h8iKoDXx+ G9glrfaiVwGrxwT/ZdgUzsdeBNsNTPeFA7NA8UDa5e0Y -----END CERTIFICATE-----Generated at Mon Jan 26 12:26:10 2026 by rpki-client