This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/JF1S5nChkcbeHK1YmZzl8eEwqB8.roa File: JF1S5nChkcbeHK1YmZzl8eEwqB8.roa (raw, json) Hash identifier: wmxaRB1M5Kn+LV3DtXz/lQpX7fY1n782f7y8VXUfVvs= Subject key identifier: 24:5D:52:E6:70:A1:91:C6:DE:1C:AD:58:99:9C:E5:F1:E1:30:A8:1F Certificate issuer: /CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de Certificate serial: 019B76EB41C92B96A526B80DE2DC5732BA3A Authority key identifier: 1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/JF1S5nChkcbeHK1YmZzl8eEwqB8.roa Signing time: Thu 01 Jan 2026 00:18:07 +0000 ROA not before: Thu 01 Jan 2026 00:18:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 553 IP address blocks: 141.68.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:41:c9:2b:96:a5:26:b8:0d:e2:dc:57:32:ba:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de Validity Not Before: Jan 1 00:18:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=245d52e670a191c6de1cad58999ce5f1e130a81f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:9d:88:57:8c:55:d7:8e:e1:6d:76:95:e3:2c: c4:7c:52:e8:96:96:29:8f:40:71:bd:9a:a6:07:c3: 4a:9b:75:b7:2e:13:65:0b:a6:be:9a:23:5e:ee:fa: e0:e1:29:c2:4f:d2:75:7a:f1:2c:af:a5:03:5a:0c: d3:2c:ff:45:00:cd:d9:9e:bd:a3:e7:75:5c:2f:e0: 9a:76:7b:74:62:7e:a7:45:58:28:e4:4a:3b:58:fa: af:75:73:93:d0:43:6f:4b:25:ee:73:31:87:7a:f8: 2f:c9:b7:9e:80:30:67:9c:dc:f9:7b:1a:5a:c9:e7: 69:d1:74:8f:c7:af:0d:0b:e3:cd:be:f4:b3:a3:96: ac:d5:f2:d6:a5:79:57:bc:97:7d:9a:a8:77:63:c9: 74:ee:00:b9:f6:ff:07:55:18:2c:75:98:19:ad:fc: cf:60:86:18:92:22:17:77:59:91:80:92:8b:eb:d9: 79:da:f2:75:99:9c:b1:16:d4:22:3d:7d:b6:fa:0a: 1d:7a:c1:48:4e:61:c5:93:4a:f5:82:a4:b9:d4:fa: 7a:9d:64:94:1e:bf:39:67:bb:b6:80:ef:2c:bd:d6: aa:d8:7b:17:3a:11:28:db:f6:1c:46:ae:f2:ef:88: 7f:74:09:ab:ce:5d:6d:7e:ec:39:76:b5:e0:ac:5a: 61:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:5D:52:E6:70:A1:91:C6:DE:1C:AD:58:99:9C:E5:F1:E1:30:A8:1F X509v3 Authority Key Identifier: keyid:1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/JF1S5nChkcbeHK1YmZzl8eEwqB8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 141.68.0.0/16 Signature Algorithm: sha256WithRSAEncryption 49:6c:53:45:03:89:47:91:e7:a0:d7:1b:a0:43:7d:cc:37:f6: ac:80:8e:67:a6:fd:b6:58:8c:e3:50:8b:22:dd:2a:69:46:b8: a6:9f:9f:97:09:dc:19:ee:69:c5:31:d3:90:9d:6b:c4:a2:63: ed:8a:a3:cd:39:c8:03:47:b7:b1:af:08:c2:c6:7f:b9:80:a3: 03:37:ad:b8:d3:2d:ad:46:5b:27:ca:c5:c8:9f:ba:3c:07:72: 6b:7f:f5:16:60:0c:a5:d2:56:85:90:3d:de:4c:ba:de:63:1e: c2:5f:04:c4:f0:cc:86:fe:8d:f1:5f:9e:7d:ee:46:1a:a3:3b: cf:7f:71:59:0e:e5:92:33:0b:e8:0d:3e:f2:9a:0a:ff:70:92: b4:73:a7:34:4a:d3:9c:00:d2:e1:fa:cf:b1:42:24:08:e4:7b: de:61:58:c3:ad:12:30:ad:7b:09:76:f7:3d:69:fe:fc:dc:23: 01:e3:42:6a:18:3e:ff:a8:b8:11:48:6c:87:9b:9f:6b:43:15: 7a:28:89:38:f5:75:18:14:3a:1f:ac:1b:72:ed:2f:49:23:4a: a5:69:06:61:27:47:95:9b:04:bf:75:ab:df:0a:99:6a:4c:31: 0f:a9:48:9e:1a:e8:4c:28:d5:5a:b5:04:3c:20:52:3c:26:45: f3:45:22:73 -----BEGIN CERTIFICATE----- MIIE/DCCA+SgAwIBAgISAZt260HJK5alJrgN4txXMro6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkMzFlMDIwN2VkM2NhNzY4NGEwM2U4OGY5YTFkZTI5MjJk ZDQ1ZGUwHhcNMjYwMTAxMDAxODA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNDVkNTJlNjcwYTE5MWM2ZGUxY2FkNTg5OTljZTVmMWUxMzBhODFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx52IV4xV147hbXaV4yzEfFLolpYp j0BxvZqmB8NKm3W3LhNlC6a+miNe7vrg4SnCT9J1evEsr6UDWgzTLP9FAM3Znr2j 53VcL+Cadnt0Yn6nRVgo5Eo7WPqvdXOT0ENvSyXuczGHevgvybeegDBnnNz5expa yedp0XSPx68NC+PNvvSzo5as1fLWpXlXvJd9mqh3Y8l07gC59v8HVRgsdZgZrfzP YIYYkiIXd1mRgJKL69l52vJ1mZyxFtQiPX22+godesFITmHFk0r1gqS51Pp6nWSU Hr85Z7u2gO8svdaq2HsXOhEo2/YcRq7y74h/dAmrzl1tfuw5drXgrFphGwIDAQAB o4ICCDCCAgQwHQYDVR0OBBYEFCRdUuZwoZHG3hytWJmc5fHhMKgfMB8GA1UdIwQY MBaAFB0x4CB+08p2hKA+iPmh3iki3UXeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFRIZ0lIN1R5bmFFb0Q2SS1hSGVLU0xkUmQ0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My83MzBlMzgtZmY4OS00M2UxLTk0ZmUt YTFiNzc4ZjRkMDdkLzEvSkYxUzVuQ2hrY2JlSEsxWW1aemw4ZUV3cUI4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My83MzBlMzgtZmY4OS00M2UxLTk0ZmUtYTFiNzc4ZjRkMDdk LzEvSFRIZ0lIN1R5bmFFb0Q2SS1hSGVLU0xkUmQ0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjUQwDQYJ KoZIhvcNAQELBQADggEBAElsU0UDiUeR56DXG6BDfcw39qyAjmem/bZYjONQiyLd KmlGuKafn5cJ3BnuacUx05Cda8SiY+2Ko805yANHt7GvCMLGf7mAowM3rbjTLa1G WyfKxcifujwHcmt/9RZgDKXSVoWQPd5Mut5jHsJfBMTwzIb+jfFfnn3uRhqjO89/ cVkO5ZIzC+gNPvKaCv9wkrRzpzRK05wA0uH6z7FCJAjke95hWMOtEjCtewl29z1p /vzcIwHjQmoYPv+ouBFIbIebn2tDFXooiTj1dRgUOh+sG3LtL0kjSqVpBmEnR5Wb BL91q98KmWpMMQ+pSJ4a6Ewo1Vq1BDwgUjwmRfNFInM= -----END CERTIFICATE-----Generated at Mon Feb 2 08:08:26 2026 by rpki-client