This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/jColA7yIjXE-tPAN9rcgBP4_TcE.roa File: jColA7yIjXE-tPAN9rcgBP4_TcE.roa (raw, json) Hash identifier: mORexpnikqVw3NtZGwqDx1VMpRI85dROBxL5U3jth1g= Subject key identifier: 8C:2A:25:03:BC:88:8D:71:3E:B4:F0:0D:F6:B7:20:04:FE:3F:4D:C1 Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Certificate serial: 019B7D5D744CCF941DE9C079D48978B76E87 Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/jColA7yIjXE-tPAN9rcgBP4_TcE.roa Signing time: Fri 02 Jan 2026 06:20:35 +0000 ROA not before: Fri 02 Jan 2026 06:20:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215114 IP address blocks: 139.28.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:74:4c:cf:94:1d:e9:c0:79:d4:89:78:b7:6e:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Validity Not Before: Jan 2 06:20:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8c2a2503bc888d713eb4f00df6b72004fe3f4dc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e3:b2:61:23:99:17:c9:8b:e2:a5:84:ab:a5: a9:df:41:ae:ab:0e:23:b5:71:f7:e5:ac:35:d3:25: 13:8c:a6:3a:2e:d0:e7:3a:e1:fa:0f:a8:45:5f:e9: bf:d0:64:69:c2:09:8c:24:d0:21:12:39:7f:7a:f7: c0:84:b5:7b:bb:23:60:75:9c:63:d0:81:87:59:19: 40:d2:1b:23:3b:7d:a5:73:ae:57:04:78:7d:05:67: 8c:08:b8:df:6a:1b:65:61:12:e7:4a:cd:5a:e2:b1: ea:96:ad:b4:55:c1:bb:a0:ab:9a:3b:bf:2a:fc:65: 3b:a6:9b:1b:24:3a:56:16:98:c1:78:6a:b8:8b:1a: 59:72:23:dd:b2:cf:c4:b8:48:7f:9e:f1:57:fa:cb: bc:84:04:b4:a5:fd:f2:16:4f:60:41:0d:14:f2:91: 9d:fc:17:98:a6:1a:06:8d:5d:c4:21:0f:78:2e:f1: c7:a1:75:ca:c6:98:b2:67:47:c6:3e:e7:7e:ec:42: b0:05:d8:4e:d3:af:90:bb:78:69:9c:37:32:2c:40: ac:2d:22:f6:60:fe:9f:b6:64:a3:56:0c:2f:9f:3b: a1:8b:28:af:62:6f:9d:bb:4d:7b:72:e1:5d:9d:c9: cb:31:27:69:cd:40:65:f6:7f:b9:d9:8c:fa:7d:b3: aa:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:2A:25:03:BC:88:8D:71:3E:B4:F0:0D:F6:B7:20:04:FE:3F:4D:C1 X509v3 Authority Key Identifier: keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/jColA7yIjXE-tPAN9rcgBP4_TcE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.28.99.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:fe:89:7c:bc:33:94:75:79:17:76:5f:34:ff:d1:34:0a:99: 80:89:43:56:ab:8f:04:67:d3:b6:c9:08:0e:8a:ed:73:4d:24: bb:8a:89:78:0c:eb:ee:c8:fd:2a:b7:6a:ba:eb:de:e5:b9:2f: ba:61:e1:1c:e3:e3:2c:58:a4:7c:30:60:5c:72:3f:ce:44:9f: 81:35:87:60:36:c6:96:82:00:d4:04:8f:0b:14:18:3b:5d:c9: eb:d5:82:59:f5:50:40:e9:a7:f6:70:d1:b5:76:de:63:f6:fe: a8:7a:b4:70:fd:fc:f2:95:7b:ea:70:7e:d1:c2:cc:7f:57:7e: 9b:7d:2c:cd:e6:18:ea:ea:6d:2b:3d:92:d7:11:6a:ce:8d:c0: ce:1d:15:bf:39:a8:ef:06:28:c8:e0:27:e8:46:c8:bf:1d:4b: 68:3e:01:ab:2d:d1:3f:a6:15:c8:55:cd:cf:32:4e:09:7c:75: be:c1:88:97:0d:43:b0:ba:fd:fc:2e:66:5a:1c:92:b6:11:78: 38:35:d4:e9:73:9e:c1:fa:36:7c:aa:c5:b2:ec:d4:77:37:2d: db:93:a5:76:28:12:38:69:fc:98:13:d0:8b:76:cd:2b:e4:8c: f1:75:7c:cd:a4:f9:2e:ef:b5:f2:05:d9:fd:e8:fd:4a:9d:b4: 01:f6:ff:a2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XXRMz5Qd6cB51Il4t26HMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw ZmFkOWIwHhcNMjYwMTAyMDYyMDM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YzJhMjUwM2JjODg4ZDcxM2ViNGYwMGRmNmI3MjAwNGZlM2Y0ZGMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1+OyYSOZF8mL4qWEq6Wp30Guqw4j tXH35aw10yUTjKY6LtDnOuH6D6hFX+m/0GRpwgmMJNAhEjl/evfAhLV7uyNgdZxj 0IGHWRlA0hsjO32lc65XBHh9BWeMCLjfahtlYRLnSs1a4rHqlq20VcG7oKuaO78q /GU7ppsbJDpWFpjBeGq4ixpZciPdss/EuEh/nvFX+su8hAS0pf3yFk9gQQ0U8pGd /BeYphoGjV3EIQ94LvHHoXXKxpiyZ0fGPud+7EKwBdhO06+Qu3hpnDcyLECsLSL2 YP6ftmSjVgwvnzuhiyivYm+du017cuFdncnLMSdpzUBl9n+52Yz6fbOqEwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIwqJQO8iI1xPrTwDfa3IAT+P03BMB8GA1UdIwQY MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt ZGM1ZWM3NDhmNmE1LzEvakNvbEE3eUlqWEUtdFBBTjlyY2dCUDRfVGNFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1 LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAixxjMA0G CSqGSIb3DQEBCwUAA4IBAQB8/ol8vDOUdXkXdl80/9E0CpmAiUNWq48EZ9O2yQgO iu1zTSS7iol4DOvuyP0qt2q6697luS+6YeEc4+MsWKR8MGBccj/ORJ+BNYdgNsaW ggDUBI8LFBg7Xcnr1YJZ9VBA6af2cNG1dt5j9v6oerRw/fzylXvqcH7Rwsx/V36b fSzN5hjq6m0rPZLXEWrOjcDOHRW/OajvBijI4CfoRsi/HUtoPgGrLdE/phXIVc3P Mk4JfHW+wYiXDUOwuv38LmZaHJK2EXg4NdTpc57B+jZ8qsWy7NR3Ny3bk6V2KBI4 afyYE9CLds0r5IzxdXzNpPku77XyBdn96P1KnbQB9v+i -----END CERTIFICATE-----Generated at Fri Jan 9 13:13:06 2026 by rpki-client