This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/4d27bb-f85c-4bfd-b1c3-47bcd39c3d86/1/jBNc2MW8DhC9H1qn8-QUDhR0rD0.roa File: jBNc2MW8DhC9H1qn8-QUDhR0rD0.roa (raw, json) Hash identifier: ZPkJWGkBrHokbfgKinCVErvUSmXlIXedqOUHsLmoVy4= Subject key identifier: 8C:13:5C:D8:C5:BC:0E:10:BD:1F:5A:A7:F3:E4:14:0E:14:74:AC:3D Certificate issuer: /CN=5ae8c78f161397ae1dbd0ac322584f62fb740097 Certificate serial: 019B77C761DF1F5D2DEEF43A4DAF92182320 Authority key identifier: 5A:E8:C7:8F:16:13:97:AE:1D:BD:0A:C3:22:58:4F:62:FB:74:00:97 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WujHjxYTl64dvQrDIlhPYvt0AJc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/4d27bb-f85c-4bfd-b1c3-47bcd39c3d86/1/jBNc2MW8DhC9H1qn8-QUDhR0rD0.roa Signing time: Thu 01 Jan 2026 04:18:33 +0000 ROA not before: Thu 01 Jan 2026 04:18:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57651 IP address blocks: 2001:78c::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/4d27bb-f85c-4bfd-b1c3-47bcd39c3d86/1/WujHjxYTl64dvQrDIlhPYvt0AJc.crl rsync://rpki.ripe.net/repository/DEFAULT/56/4d27bb-f85c-4bfd-b1c3-47bcd39c3d86/1/WujHjxYTl64dvQrDIlhPYvt0AJc.mft rsync://rpki.ripe.net/repository/DEFAULT/WujHjxYTl64dvQrDIlhPYvt0AJc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 15:35:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:61:df:1f:5d:2d:ee:f4:3a:4d:af:92:18:23:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ae8c78f161397ae1dbd0ac322584f62fb740097 Validity Not Before: Jan 1 04:18:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8c135cd8c5bc0e10bd1f5aa7f3e4140e1474ac3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:07:8a:13:7f:38:25:c0:cf:43:63:85:46:cd: 8d:8e:cf:0d:ea:34:e3:2a:b3:16:22:e6:7b:a8:f5: 3f:d5:24:1b:cb:eb:5e:0a:57:9a:fb:64:6c:3e:61: f1:85:3d:9a:59:96:d0:16:fd:6e:b9:d4:ee:a7:f7: a0:82:57:c7:24:7a:16:d6:3f:d6:2e:a4:99:7e:8d: 54:16:a2:24:14:c9:e1:0a:79:cd:15:f3:a1:16:9e: 4f:e5:60:22:18:68:3f:52:79:2b:a1:91:5a:4c:80: 62:d1:95:6c:15:3a:3d:df:23:55:3d:86:0d:18:1c: 08:e3:69:3c:6b:6a:ba:5a:fb:ba:56:96:7e:f2:b7: 03:df:ed:4e:95:0a:2a:95:91:89:bc:c0:10:67:52: 7e:72:f8:80:7b:56:4e:f3:c8:61:7e:ee:d1:98:1b: e9:62:bc:d0:b1:16:76:d5:2c:1b:5d:60:1e:e7:56: 37:cd:65:5e:de:87:60:85:50:9b:5d:84:38:d9:e1: af:ab:36:b0:d0:21:6b:7f:2b:d3:7a:4c:36:3d:d8: a7:79:8b:80:04:c4:13:1e:dd:e9:12:4a:8d:fa:cf: d4:56:c1:a9:4e:a3:a3:d0:c0:84:36:eb:54:5e:eb: ca:85:5a:d5:a9:55:5f:b4:bc:c8:1d:92:06:cc:a4: a7:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:13:5C:D8:C5:BC:0E:10:BD:1F:5A:A7:F3:E4:14:0E:14:74:AC:3D X509v3 Authority Key Identifier: keyid:5A:E8:C7:8F:16:13:97:AE:1D:BD:0A:C3:22:58:4F:62:FB:74:00:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WujHjxYTl64dvQrDIlhPYvt0AJc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/4d27bb-f85c-4bfd-b1c3-47bcd39c3d86/1/jBNc2MW8DhC9H1qn8-QUDhR0rD0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/4d27bb-f85c-4bfd-b1c3-47bcd39c3d86/1/WujHjxYTl64dvQrDIlhPYvt0AJc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:78c::/32 Signature Algorithm: sha256WithRSAEncryption 8f:50:75:41:6c:c0:fa:a0:bc:00:85:fc:95:69:74:9c:77:de: 87:d0:bb:ca:79:a9:a3:f8:06:ef:9a:39:de:19:3a:14:7f:b1: de:7b:c7:33:df:b1:cd:ec:43:68:42:43:9c:8f:50:98:6f:82: 55:c1:bc:18:81:8c:2e:fa:fa:55:34:a3:b8:9b:02:1f:57:9c: b1:6d:08:3e:00:d6:62:3d:8f:e9:2a:87:94:83:dd:49:4d:47: 30:00:6d:e7:8a:f7:62:a5:f5:80:3e:f5:c2:8f:68:21:3b:57: 7e:b6:8b:08:82:df:bd:8f:77:24:8f:6f:2b:d7:7e:6e:4e:fb: 97:24:1d:19:55:31:ef:18:a8:6e:b1:ed:a1:22:f2:1f:7a:35: 1a:97:07:0b:b6:7e:5c:56:1c:9e:9d:bf:5d:37:a0:d7:3d:1d: de:d2:c8:ff:99:e6:48:ea:ef:39:af:dd:a1:61:70:b2:2f:9d: d2:9a:2c:ad:ff:3f:63:e1:1e:22:45:ca:42:49:ea:48:7c:8f: c7:11:be:b0:74:b1:94:94:4b:30:ba:ab:34:19:45:41:c3:31: b0:69:d5:87:4e:cc:69:f2:c5:cf:90:b3:88:31:b8:8a:f6:eb: 58:72:a9:22:39:d3:3c:03:25:5b:48:db:82:60:05:4b:aa:ad: 81:78:79:88 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt3x2HfH10t7vQ6Ta+SGCMgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVhZThjNzhmMTYxMzk3YWUxZGJkMGFjMzIyNTg0ZjYyZmI3 NDAwOTcwHhcNMjYwMTAxMDQxODMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YzEzNWNkOGM1YmMwZTEwYmQxZjVhYTdmM2U0MTQwZTE0NzRhYzNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwAeKE384JcDPQ2OFRs2Njs8N6jTj KrMWIuZ7qPU/1SQby+teClea+2RsPmHxhT2aWZbQFv1uudTup/egglfHJHoW1j/W LqSZfo1UFqIkFMnhCnnNFfOhFp5P5WAiGGg/UnkroZFaTIBi0ZVsFTo93yNVPYYN GBwI42k8a2q6Wvu6VpZ+8rcD3+1OlQoqlZGJvMAQZ1J+cviAe1ZO88hhfu7RmBvp YrzQsRZ21SwbXWAe51Y3zWVe3odghVCbXYQ42eGvqzaw0CFrfyvTekw2PdineYuA BMQTHt3pEkqN+s/UVsGpTqOj0MCENutUXuvKhVrVqVVftLzIHZIGzKSn7QIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFIwTXNjFvA4QvR9ap/PkFA4UdKw9MB8GA1UdIwQY MBaAFFrox48WE5euHb0KwyJYT2L7dACXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV3VqSGp4WVRsNjRkdlFyRElsaFBZdnQwQUpjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni80ZDI3YmItZjg1Yy00YmZkLWIxYzMt NDdiY2QzOWMzZDg2LzEvakJOYzJNVzhEaEM5SDFxbjgtUVVEaFIwckQwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni80ZDI3YmItZjg1Yy00YmZkLWIxYzMtNDdiY2QzOWMzZDg2 LzEvV3VqSGp4WVRsNjRkdlFyRElsaFBZdnQwQUpjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAIAEHjDAN BgkqhkiG9w0BAQsFAAOCAQEAj1B1QWzA+qC8AIX8lWl0nHfeh9C7ynmpo/gG75o5 3hk6FH+x3nvHM9+xzexDaEJDnI9QmG+CVcG8GIGMLvr6VTSjuJsCH1ecsW0IPgDW Yj2P6SqHlIPdSU1HMABt54r3YqX1gD71wo9oITtXfraLCILfvY93JI9vK9d+bk77 lyQdGVUx7xiobrHtoSLyH3o1GpcHC7Z+XFYcnp2/XTeg1z0d3tLI/5nmSOrvOa/d oWFwsi+d0posrf8/Y+EeIkXKQknqSHyPxxG+sHSxlJRLMLqrNBlFQcMxsGnVh07M afLFz5CziDG4ivbrWHKpIjnTPAMlW0jbgmAFS6qtgXh5iA== -----END CERTIFICATE-----Generated at Tue Feb 3 00:06:12 2026 by rpki-client