This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/Jz8RZAWrUimyuGnjG5ub7oNokXU.roa File: Jz8RZAWrUimyuGnjG5ub7oNokXU.roa (raw, json) Hash identifier: IeObP/asysAN8PfUm4Hn659vFyCN9hWBT1PSEjvx9O8= Subject key identifier: 27:3F:11:64:05:AB:52:29:B2:B8:69:E3:1B:9B:9B:EE:83:68:91:75 Certificate issuer: /CN=4dd954d3c77c9c4e37eebf753d86f3dcf091d4a9 Certificate serial: 019B7BA35346BFB4A5C29AD3811D79B62718 Authority key identifier: 4D:D9:54:D3:C7:7C:9C:4E:37:EE:BF:75:3D:86:F3:DC:F0:91:D4:A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/Jz8RZAWrUimyuGnjG5ub7oNokXU.roa Signing time: Thu 01 Jan 2026 22:17:39 +0000 ROA not before: Thu 01 Jan 2026 22:17:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 5650 IP address blocks: 161.8.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/TdlU08d8nE437r91PYbz3PCR1Kk.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/TdlU08d8nE437r91PYbz3PCR1Kk.mft rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 06:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:53:46:bf:b4:a5:c2:9a:d3:81:1d:79:b6:27:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4dd954d3c77c9c4e37eebf753d86f3dcf091d4a9 Validity Not Before: Jan 1 22:17:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=273f116405ab5229b2b869e31b9b9bee83689175 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a9:a0:97:b2:a7:d0:60:70:19:f7:8a:c2:7c: cc:7e:5e:c6:f0:f0:aa:72:33:39:27:3f:1d:10:04: d9:1d:d8:f9:4d:77:d8:db:68:ab:e1:5f:4e:02:8c: 16:83:c8:dd:fb:89:3b:4c:28:49:cf:06:7c:05:b6: d8:d6:4b:33:58:38:dd:53:bd:98:16:5e:69:83:40: 55:3d:29:a6:4f:b9:87:66:77:e3:cf:63:26:b2:97: 93:f7:3c:a0:c5:9f:6a:11:22:85:73:04:04:6a:57: c5:c7:8f:d7:06:c6:a1:7e:bf:29:c3:7f:bb:0f:f1: e9:ee:7f:79:a2:d1:65:1d:31:f6:5b:7b:28:bf:e4: 36:8b:86:65:c6:b6:e1:dd:65:01:c5:fc:ea:14:3a: 7a:9a:e3:69:22:a5:51:65:d2:68:4e:6e:ff:c8:c0: 45:61:af:53:01:f0:1e:e1:b7:56:6d:2b:38:b4:82: 79:b3:81:dd:d7:b4:61:05:7d:a7:2d:52:18:83:25: d8:84:11:70:be:39:c2:31:1e:48:8d:8d:c1:94:9c: 82:a5:6d:83:2e:2a:c6:67:f0:48:98:39:2e:81:42: 14:f4:e3:6f:c9:52:47:4a:3a:cc:7e:e2:99:d3:5f: 05:e6:7c:59:48:5a:ee:4c:cb:a6:ea:3f:ec:6b:a1: 8d:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:3F:11:64:05:AB:52:29:B2:B8:69:E3:1B:9B:9B:EE:83:68:91:75 X509v3 Authority Key Identifier: keyid:4D:D9:54:D3:C7:7C:9C:4E:37:EE:BF:75:3D:86:F3:DC:F0:91:D4:A9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/Jz8RZAWrUimyuGnjG5ub7oNokXU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/TdlU08d8nE437r91PYbz3PCR1Kk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.8.160.0/19 Signature Algorithm: sha256WithRSAEncryption 00:53:80:c0:82:e3:ce:b4:fa:03:c6:30:dd:c6:47:e2:05:18: e3:23:82:22:2b:92:c8:c5:64:6e:97:4c:84:1a:3d:23:f8:fd: bf:17:4e:61:cb:0d:45:69:11:90:b8:13:77:d3:2c:53:e8:31: e6:04:c0:3e:59:c0:1f:33:3a:66:a7:ca:91:17:30:7a:d0:c2: 6d:2d:88:69:02:3c:e1:84:40:d1:be:5a:c1:24:a8:67:c7:86: bd:9c:e7:8d:4b:48:63:1e:67:e7:9a:22:f7:cc:9d:a6:e8:7c: d7:c3:7d:9c:08:b7:35:3d:9b:b7:6f:19:b3:c0:f0:c7:fc:1e: 80:3c:d4:27:a8:63:b1:cc:86:26:0b:da:3d:ad:ad:85:e9:f2: 03:be:16:b0:be:f6:2c:73:df:9e:0f:21:a8:d4:55:d9:bc:6b: e6:22:91:ba:06:17:44:40:8d:58:44:de:dc:8b:56:ba:ee:05: 30:e5:5c:fc:ff:9e:83:6a:07:fb:45:5c:06:9f:2f:e8:19:fe: e5:80:0f:e7:df:d8:61:72:e1:bc:b2:5f:b4:92:6c:dd:2c:88: de:bf:83:84:f8:34:a6:e9:e3:c9:ad:f2:ec:10:97:80:79:58: 02:f0:37:2d:5b:77:49:2a:a4:35:36:9f:41:a2:6f:a3:a7:67: 65:be:e4:7f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7o1NGv7SlwprTgR15ticYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkZDk1NGQzYzc3YzljNGUzN2VlYmY3NTNkODZmM2RjZjA5 MWQ0YTkwHhcNMjYwMTAxMjIxNzM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNzNmMTE2NDA1YWI1MjI5YjJiODY5ZTMxYjliOWJlZTgzNjg5MTc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnqmgl7Kn0GBwGfeKwnzMfl7G8PCq cjM5Jz8dEATZHdj5TXfY22ir4V9OAowWg8jd+4k7TChJzwZ8BbbY1kszWDjdU72Y Fl5pg0BVPSmmT7mHZnfjz2MmspeT9zygxZ9qESKFcwQEalfFx4/XBsahfr8pw3+7 D/Hp7n95otFlHTH2W3sov+Q2i4Zlxrbh3WUBxfzqFDp6muNpIqVRZdJoTm7/yMBF Ya9TAfAe4bdWbSs4tIJ5s4Hd17RhBX2nLVIYgyXYhBFwvjnCMR5IjY3BlJyCpW2D LirGZ/BImDkugUIU9ONvyVJHSjrMfuKZ018F5nxZSFruTMum6j/sa6GN9wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCc/EWQFq1Ipsrhp4xubm+6DaJF1MB8GA1UdIwQY MBaAFE3ZVNPHfJxON+6/dT2G89zwkdSpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVGRsVTA4ZDhuRTQzN3I5MVBZYnozUENSMUtrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC83YTJhOTktMTQ2Yy00NzgxLWEzMDIt ZWI3YWFhNjgyOGJlLzEvSno4UlpBV3JVaW15dUduakc1dWI3b05va1hVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC83YTJhOTktMTQ2Yy00NzgxLWEzMDItZWI3YWFhNjgyOGJl LzEvVGRsVTA4ZDhuRTQzN3I5MVBZYnozUENSMUtrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFoQigMA0G CSqGSIb3DQEBCwUAA4IBAQAAU4DAguPOtPoDxjDdxkfiBRjjI4IiK5LIxWRul0yE Gj0j+P2/F05hyw1FaRGQuBN30yxT6DHmBMA+WcAfMzpmp8qRFzB60MJtLYhpAjzh hEDRvlrBJKhnx4a9nOeNS0hjHmfnmiL3zJ2m6HzXw32cCLc1PZu3bxmzwPDH/B6A PNQnqGOxzIYmC9o9ra2F6fIDvhawvvYsc9+eDyGo1FXZvGvmIpG6BhdEQI1YRN7c i1a67gUw5Vz8/56Dagf7RVwGny/oGf7lgA/n39hhcuG8sl+0kmzdLIjev4OE+DSm 6ePJrfLsEJeAeVgC8DctW3dJKqQ1Np9Bom+jp2dlvuR/ -----END CERTIFICATE-----Generated at Sun Jan 18 11:04:29 2026 by rpki-client