This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/4737c9-e263-44e7-8fed-57c955c9c85d/1/JNDctSQyCVHEUhqnByChAmEncfg.roa File: JNDctSQyCVHEUhqnByChAmEncfg.roa (raw, json) Hash identifier: yXoH/sBRxwLt/qpjNEIKQniBORvNxA7f4SJGosPqLLA= Subject key identifier: 24:D0:DC:B5:24:32:09:51:C4:52:1A:A7:07:20:A1:02:61:27:71:F8 Certificate issuer: /CN=006b06b5d0ff1000e10c4276eea0880af209d7a2 Certificate serial: 019B7B35F957685929F8BE1F5431BC45AB7E Authority key identifier: 00:6B:06:B5:D0:FF:10:00:E1:0C:42:76:EE:A0:88:0A:F2:09:D7:A2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AGsGtdD_EADhDEJ27qCICvIJ16I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/4737c9-e263-44e7-8fed-57c955c9c85d/1/JNDctSQyCVHEUhqnByChAmEncfg.roa Signing time: Thu 01 Jan 2026 20:18:13 +0000 ROA not before: Thu 01 Jan 2026 20:18:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 2a04:1f41::/32 maxlen: 48 2a04:1f42::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/4737c9-e263-44e7-8fed-57c955c9c85d/1/AGsGtdD_EADhDEJ27qCICvIJ16I.crl rsync://rpki.ripe.net/repository/DEFAULT/62/4737c9-e263-44e7-8fed-57c955c9c85d/1/AGsGtdD_EADhDEJ27qCICvIJ16I.mft rsync://rpki.ripe.net/repository/DEFAULT/AGsGtdD_EADhDEJ27qCICvIJ16I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 08:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:f9:57:68:59:29:f8:be:1f:54:31:bc:45:ab:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=006b06b5d0ff1000e10c4276eea0880af209d7a2 Validity Not Before: Jan 1 20:18:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=24d0dcb524320951c4521aa70720a102612771f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:35:71:78:a5:af:21:af:5d:ee:78:f0:78:cb: 2f:af:f3:a3:54:b3:68:b3:97:81:27:dc:52:52:3e: 4a:e1:73:70:7e:00:4e:0b:07:4c:a3:ca:b4:0a:0d: 2d:18:6a:51:36:b8:4d:22:87:39:8f:47:7a:77:48: af:2a:bc:9d:59:3b:90:0a:ea:d7:27:ed:28:05:82: 76:ca:89:2e:57:12:75:91:9f:e7:f9:3a:41:22:3e: 3e:06:e5:74:f3:5b:ea:d1:f9:3b:59:bf:0c:4d:2b: dd:f5:89:ff:01:1b:79:5e:ff:97:ac:4f:07:95:71: 55:5a:4f:1d:ac:d4:8b:0f:e7:ca:46:c7:33:44:c5: 40:40:4f:70:3e:8c:d0:4e:be:72:55:98:7e:57:e9: 89:1c:c4:06:af:54:10:f9:36:2c:13:dc:b5:ea:c7: c0:25:dd:55:38:e8:ff:f8:34:8a:c1:2b:e4:63:2c: 0c:aa:7b:3c:1c:4f:64:c7:f0:96:eb:8c:ee:61:45: e9:32:fc:39:86:91:72:49:64:4e:d1:00:68:be:4c: 46:90:9f:2f:fb:10:7a:dc:68:03:96:ab:36:a6:23: 40:52:da:79:cb:b1:57:c3:8b:1c:90:bc:27:61:42: 8a:33:9e:35:3b:70:24:95:23:c2:9f:a3:09:fc:d5: ca:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:D0:DC:B5:24:32:09:51:C4:52:1A:A7:07:20:A1:02:61:27:71:F8 X509v3 Authority Key Identifier: keyid:00:6B:06:B5:D0:FF:10:00:E1:0C:42:76:EE:A0:88:0A:F2:09:D7:A2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AGsGtdD_EADhDEJ27qCICvIJ16I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/4737c9-e263-44e7-8fed-57c955c9c85d/1/JNDctSQyCVHEUhqnByChAmEncfg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/62/4737c9-e263-44e7-8fed-57c955c9c85d/1/AGsGtdD_EADhDEJ27qCICvIJ16I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a04:1f41::-2a04:1f42:ffff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 12:95:28:8c:18:03:15:fb:13:09:87:1f:67:74:ce:df:62:26: e3:c2:9c:57:59:b3:75:48:18:0b:8d:c4:b7:d4:35:93:c7:db: 45:78:a3:dc:31:2f:04:f5:ca:5f:32:76:37:23:41:7b:13:a4: 95:db:31:50:ff:c3:ae:41:b0:e0:dc:95:58:6a:94:77:b8:9c: e0:c0:d9:fb:a8:b9:da:7e:4c:46:fc:4a:9d:8e:28:38:8f:d1: 00:8c:5b:71:ef:a3:d4:84:c8:b7:7c:a7:fc:d0:43:76:82:99: 49:45:91:5a:e7:81:b9:e0:86:08:2d:63:f1:72:15:ec:e5:62: 84:61:04:ed:d5:00:23:31:17:c8:dc:56:2f:70:f5:06:49:2c: bd:a9:6f:52:d6:28:c7:b6:64:aa:e5:15:4f:1e:db:37:5e:35: 33:4d:4c:ef:93:82:23:3c:57:17:32:b4:cf:35:a5:04:2f:fd: 4c:64:19:40:4a:db:06:37:62:5d:d9:10:fb:9f:a6:77:6f:36: a1:f5:f4:59:f1:a5:44:5f:78:30:08:c0:33:df:68:78:ad:41: bd:99:78:0c:eb:11:cd:21:50:c9:b8:17:0d:70:a7:1e:a3:c9: 89:90:99:b6:98:84:66:b8:ac:fb:10:bb:1d:69:2e:36:80:08: 74:35:fb:96 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgISAZt7NflXaFkp+L4fVDG8Rat+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwNmIwNmI1ZDBmZjEwMDBlMTBjNDI3NmVlYTA4ODBhZjIw OWQ3YTIwHhcNMjYwMTAxMjAxODEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNGQwZGNiNTI0MzIwOTUxYzQ1MjFhYTcwNzIwYTEwMjYxMjc3MWY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxzVxeKWvIa9d7njweMsvr/OjVLNo s5eBJ9xSUj5K4XNwfgBOCwdMo8q0Cg0tGGpRNrhNIoc5j0d6d0ivKrydWTuQCurX J+0oBYJ2yokuVxJ1kZ/n+TpBIj4+BuV081vq0fk7Wb8MTSvd9Yn/ARt5Xv+XrE8H lXFVWk8drNSLD+fKRsczRMVAQE9wPozQTr5yVZh+V+mJHMQGr1QQ+TYsE9y16sfA Jd1VOOj/+DSKwSvkYywMqns8HE9kx/CW64zuYUXpMvw5hpFySWRO0QBovkxGkJ8v +xB63GgDlqs2piNAUtp5y7FXw4sckLwnYUKKM541O3AklSPCn6MJ/NXKbQIDAQAB o4ICEzCCAg8wHQYDVR0OBBYEFCTQ3LUkMglRxFIapwcgoQJhJ3H4MB8GA1UdIwQY MBaAFABrBrXQ/xAA4QxCdu6giAryCdeiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQUdzR3RkRF9FQURoREVKMjdxQ0lDdklKMTZJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi80NzM3YzktZTI2My00NGU3LThmZWQt NTdjOTU1YzljODVkLzEvSk5EY3RTUXlDVkhFVWhxbkJ5Q2hBbUVuY2ZnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Mi80NzM3YzktZTI2My00NGU3LThmZWQtNTdjOTU1YzljODVk LzEvQUdzR3RkRF9FQURoREVKMjdxQ0lDdklKMTZJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCkGCCsGAQUFBwEHAQH/BBowGDAWBAIAAjAQMA4DBQAqBB9B AwUAKgQfQjANBgkqhkiG9w0BAQsFAAOCAQEAEpUojBgDFfsTCYcfZ3TO32Im48Kc V1mzdUgYC43Et9Q1k8fbRXij3DEvBPXKXzJ2NyNBexOkldsxUP/DrkGw4NyVWGqU d7ic4MDZ+6i52n5MRvxKnY4oOI/RAIxbce+j1ITIt3yn/NBDdoKZSUWRWueBueCG CC1j8XIV7OVihGEE7dUAIzEXyNxWL3D1BkksvalvUtYox7ZkquUVTx7bN141M01M 75OCIzxXFzK0zzWlBC/9TGQZQErbBjdiXdkQ+5+md282ofX0WfGlRF94MAjAM99o eK1BvZl4DOsRzSFQybgXDXCnHqPJiZCZtpiEZris+xC7HWkuNoAIdDX7lg== -----END CERTIFICATE-----Generated at Fri Jan 9 17:04:36 2026 by rpki-client