This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/IJnC-N05GdmM27KMD4nPv_jgrAA.roa File: IJnC-N05GdmM27KMD4nPv_jgrAA.roa (raw, json) Hash identifier: 0gfHLI7gx+cotcw7BmyVIoEbp12FQtcpMxEc2VBuVq4= Subject key identifier: 20:99:C2:F8:DD:39:19:D9:8C:DB:B2:8C:0F:89:CF:BF:F8:E0:AC:00 Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c Certificate serial: 019B7DCB611F90929CE4A46AE47CDE32143F Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/IJnC-N05GdmM27KMD4nPv_jgrAA.roa Signing time: Fri 02 Jan 2026 08:20:39 +0000 ROA not before: Fri 02 Jan 2026 08:20:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43830 IP address blocks: 31.40.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:61:1f:90:92:9c:e4:a4:6a:e4:7c:de:32:14:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c Validity Not Before: Jan 2 08:20:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2099c2f8dd3919d98cdbb28c0f89cfbff8e0ac00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:fd:fc:22:ca:7b:cb:2d:00:56:44:fd:d3:a1: 83:9e:31:51:a4:6b:7b:1c:be:a5:a2:18:f2:08:3f: 41:b5:83:7e:86:d4:08:bb:f2:26:24:43:41:6c:47: 05:97:33:06:a4:a2:7c:4e:d2:fb:55:b8:bc:74:a7: d6:c8:75:27:be:ee:cd:2e:7d:b2:3b:65:e0:24:a7: 16:3e:2f:da:7a:57:f3:63:8c:c0:0b:20:cf:e9:53: c1:ee:6a:70:35:15:f9:a6:5e:b3:77:d0:d5:ef:77: f5:ff:ea:1a:b6:e5:f7:2d:df:19:ac:a6:d3:f6:47: e6:9a:e8:ef:8f:9e:b2:9d:36:5d:b8:9c:87:a0:e9: 54:d9:27:9f:68:a0:d5:b3:bb:45:88:29:48:3b:3e: 8d:11:42:56:4b:5c:f8:49:63:0d:f0:9d:ab:ad:89: 31:dc:a9:0c:8e:80:b5:3c:03:53:bd:ba:78:0c:77: 43:b6:3d:70:99:ba:fa:d3:6c:b9:96:d7:0d:f8:f9: 47:55:a8:5a:48:e0:35:ab:b0:f2:57:77:cc:10:fe: 1b:0c:94:28:3c:cb:bb:c2:14:f4:02:de:05:91:9d: e2:52:e5:4c:34:b3:10:ec:3f:85:bc:4a:73:80:4d: cf:47:e7:a8:32:26:27:f2:48:a2:33:34:94:9a:70: de:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:99:C2:F8:DD:39:19:D9:8C:DB:B2:8C:0F:89:CF:BF:F8:E0:AC:00 X509v3 Authority Key Identifier: keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/IJnC-N05GdmM27KMD4nPv_jgrAA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.40.251.0/24 Signature Algorithm: sha256WithRSAEncryption 10:d9:72:3f:e3:94:a6:df:e9:c8:aa:d7:aa:38:fa:90:d3:89: 4d:af:b3:36:33:a3:46:45:04:6b:9e:55:43:f5:a7:04:50:d7: 25:45:68:50:9e:98:f6:43:2a:d0:99:2e:8a:1e:aa:53:82:ae: cb:1c:d2:e0:0f:4f:75:de:64:64:4d:1a:1b:5a:26:8f:13:38: 2a:0b:76:38:56:3f:66:1f:6b:60:dd:44:4d:c1:38:b0:77:8b: b8:ba:02:d4:9e:a6:82:5e:0a:2b:f7:02:45:a4:da:23:21:eb: 59:06:ae:ab:7a:38:01:61:98:d1:a5:94:b4:bf:15:de:29:bb: dc:35:e9:3a:c2:f4:2e:9e:3f:02:71:7d:c6:b7:89:d4:83:df: 4a:cc:ab:a8:a6:1a:85:4f:66:79:e0:f4:d0:c4:91:e0:f2:a7: 6d:23:a4:cb:17:e5:c3:34:4f:e8:39:9b:2a:ec:48:6e:d2:85: 45:fb:7e:72:2f:2f:55:9f:dd:4b:5d:53:de:5e:bf:02:cc:66: a9:54:84:ae:a6:3d:d7:8c:49:46:44:4a:10:0e:15:43:6f:f6: bd:f7:63:35:11:32:60:90:c9:bb:19:b9:c7:09:e6:76:a0:f5: b4:f4:2a:2b:b7:c5:f3:64:c2:59:9b:4b:eb:85:3a:53:a4:41: 0f:9a:15:50 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9y2EfkJKc5KRq5HzeMhQ/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5MzM1M2MxZmFiZTg5NmFmOGI4NWZlNzYwMGU0NjM0OTY4 ZmNjNGMwHhcNMjYwMTAyMDgyMDM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMDk5YzJmOGRkMzkxOWQ5OGNkYmIyOGMwZjg5Y2ZiZmY4ZTBhYzAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv/38Isp7yy0AVkT906GDnjFRpGt7 HL6lohjyCD9BtYN+htQIu/ImJENBbEcFlzMGpKJ8TtL7Vbi8dKfWyHUnvu7NLn2y O2XgJKcWPi/aelfzY4zACyDP6VPB7mpwNRX5pl6zd9DV73f1/+oatuX3Ld8ZrKbT 9kfmmujvj56ynTZduJyHoOlU2SefaKDVs7tFiClIOz6NEUJWS1z4SWMN8J2rrYkx 3KkMjoC1PANTvbp4DHdDtj1wmbr602y5ltcN+PlHVahaSOA1q7DyV3fMEP4bDJQo PMu7whT0At4FkZ3iUuVMNLMQ7D+FvEpzgE3PR+eoMiYn8kiiMzSUmnDe1wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCCZwvjdORnZjNuyjA+Jz7/44KwAMB8GA1UdIwQY MBaAFAkzU8H6volq+Lhf52AORjSWj8xMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGIt MjM5ZDJmZTM5OGIxLzEvSUpuQy1OMDVHZG1NMjdLTUQ0blB2X2pnckFBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGItMjM5ZDJmZTM5OGIx LzEvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAHyj7MA0G CSqGSIb3DQEBCwUAA4IBAQAQ2XI/45Sm3+nIqteqOPqQ04lNr7M2M6NGRQRrnlVD 9acEUNclRWhQnpj2QyrQmS6KHqpTgq7LHNLgD0913mRkTRobWiaPEzgqC3Y4Vj9m H2tg3URNwTiwd4u4ugLUnqaCXgor9wJFpNojIetZBq6rejgBYZjRpZS0vxXeKbvc Nek6wvQunj8CcX3Gt4nUg99KzKuophqFT2Z54PTQxJHg8qdtI6TLF+XDNE/oOZsq 7Ehu0oVF+35yLy9Vn91LXVPeXr8CzGapVISupj3XjElGREoQDhVDb/a992M1ETJg kMm7GbnHCeZ2oPW09Cort8XzZMJZm0vrhTpTpEEPmhVQ -----END CERTIFICATE-----Generated at Tue Jan 20 02:46:29 2026 by rpki-client