This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/JGKLr4eYvFyQS44nBzhaqSDqb4M.roa File: JGKLr4eYvFyQS44nBzhaqSDqb4M.roa (raw, json) Hash identifier: R8q2g33KJxVN+/8kBrx+AnoKYUUKSwPLQijlXQQHaMQ= Subject key identifier: 24:62:8B:AF:87:98:BC:5C:90:4B:8E:27:07:38:5A:A9:20:EA:6F:83 Certificate issuer: /CN=bac03ae6c5458ad280765ba5527980a06fec23a8 Certificate serial: 019B7D5D2B553300BA46F07745FC24C01AA3 Authority key identifier: BA:C0:3A:E6:C5:45:8A:D2:80:76:5B:A5:52:79:80:A0:6F:EC:23:A8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/usA65sVFitKAdlulUnmAoG_sI6g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/JGKLr4eYvFyQS44nBzhaqSDqb4M.roa Signing time: Fri 02 Jan 2026 06:20:16 +0000 ROA not before: Fri 02 Jan 2026 06:20:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15600 IP address blocks: 185.167.8.0/22 maxlen: 22 2a0b:2e00::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.crl rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.mft rsync://rpki.ripe.net/repository/DEFAULT/usA65sVFitKAdlulUnmAoG_sI6g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:2b:55:33:00:ba:46:f0:77:45:fc:24:c0:1a:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bac03ae6c5458ad280765ba5527980a06fec23a8 Validity Not Before: Jan 2 06:20:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=24628baf8798bc5c904b8e2707385aa920ea6f83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c9:e2:db:49:e6:99:32:dc:b9:88:10:eb:05: 5f:b9:5f:62:a3:f4:57:75:ef:d6:09:69:6f:71:6e: 8b:df:60:e2:cb:2f:6f:86:5e:e0:c4:c7:4d:9d:64: 89:90:93:6f:29:ed:11:00:ed:e0:09:21:57:ec:29: 89:e7:f0:84:60:97:ec:62:cf:93:c0:58:26:dd:81: d0:36:a8:04:4d:32:ee:d7:d8:9f:86:b6:55:3f:ea: 85:62:01:02:20:ae:c9:e4:1e:a6:fe:ad:88:b7:c7: 0a:72:c6:36:39:82:c4:3f:f2:f5:5e:44:2e:ec:a4: 64:d1:e5:3a:a7:58:b1:05:5e:38:e6:55:3f:b4:1f: 7b:a5:76:ed:c4:1c:14:f3:a5:94:1e:12:dd:ef:df: 0f:27:c1:48:31:2a:77:24:71:8c:06:5c:35:40:a2: 98:23:78:d8:e0:4a:8e:9d:c5:09:fc:ad:8d:56:45: f2:a8:61:d5:93:a0:3b:2b:a7:08:b3:e5:a9:0a:66: 55:5e:3f:53:5e:fa:0c:64:25:ba:ff:84:06:a2:23: 1f:76:89:1a:e6:82:99:37:d0:c0:b6:b4:5d:98:a5: 08:4f:d0:41:53:80:69:41:94:e5:2e:de:ed:50:e7: c6:e4:5f:c2:58:e2:ae:b9:af:17:1e:65:4c:40:21: 7d:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:62:8B:AF:87:98:BC:5C:90:4B:8E:27:07:38:5A:A9:20:EA:6F:83 X509v3 Authority Key Identifier: keyid:BA:C0:3A:E6:C5:45:8A:D2:80:76:5B:A5:52:79:80:A0:6F:EC:23:A8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/usA65sVFitKAdlulUnmAoG_sI6g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/JGKLr4eYvFyQS44nBzhaqSDqb4M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.167.8.0/22 IPv6: 2a0b:2e00::/29 Signature Algorithm: sha256WithRSAEncryption 2c:a2:64:5f:a3:e9:04:e3:49:7c:64:ef:cf:60:b5:4d:7c:57: 37:59:ca:ec:a5:c1:2c:33:47:04:0a:e5:47:ba:f4:08:82:ed: 05:ea:95:14:44:38:44:90:62:ea:3a:36:86:b7:69:d2:bf:61: 3f:ae:7f:f5:57:0d:1d:5b:4f:8c:03:c8:5b:83:1c:4c:b0:5d: b1:c2:af:56:5c:d0:a5:9d:9e:1c:f6:ed:68:f8:b1:b1:2c:97: 55:17:4b:10:0a:e0:1c:45:d3:20:43:5c:22:c1:d8:39:ff:66: e2:20:6b:22:a8:00:bf:41:94:21:0f:0d:5b:d8:3e:08:30:04: e1:84:c5:9d:cd:76:c7:77:19:3b:7a:ef:a8:ae:2b:8c:b5:a8: 5c:2c:38:e4:0e:91:9d:e5:99:7a:74:6f:c8:7e:29:64:f3:94: 35:b4:0e:a8:92:78:32:48:35:ab:20:27:ee:8f:27:db:22:fa: bd:44:a9:9d:08:76:f1:8e:f5:27:ff:d6:89:2d:5c:b6:04:9d: a4:5a:e7:f0:e8:9b:bd:e3:00:dd:2b:b3:9d:2d:e0:bc:3e:eb: 36:08:81:58:be:18:0d:7c:05:3d:a4:21:e2:c9:d7:d7:bf:27: 9e:47:d3:50:25:eb:ba:ad:f8:78:a8:59:7f:eb:ce:98:14:16: f2:db:6a:64 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt9XStVMwC6RvB3RfwkwBqjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhYzAzYWU2YzU0NThhZDI4MDc2NWJhNTUyNzk4MGEwNmZl YzIzYTgwHhcNMjYwMTAyMDYyMDE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNDYyOGJhZjg3OThiYzVjOTA0YjhlMjcwNzM4NWFhOTIwZWE2ZjgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwMni20nmmTLcuYgQ6wVfuV9io/RX de/WCWlvcW6L32Diyy9vhl7gxMdNnWSJkJNvKe0RAO3gCSFX7CmJ5/CEYJfsYs+T wFgm3YHQNqgETTLu19ifhrZVP+qFYgECIK7J5B6m/q2It8cKcsY2OYLEP/L1XkQu 7KRk0eU6p1ixBV445lU/tB97pXbtxBwU86WUHhLd798PJ8FIMSp3JHGMBlw1QKKY I3jY4EqOncUJ/K2NVkXyqGHVk6A7K6cIs+WpCmZVXj9TXvoMZCW6/4QGoiMfdoka 5oKZN9DAtrRdmKUIT9BBU4BpQZTlLt7tUOfG5F/CWOKuua8XHmVMQCF9HwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFCRii6+HmLxckEuOJwc4Wqkg6m+DMB8GA1UdIwQY MBaAFLrAOubFRYrSgHZbpVJ5gKBv7COoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXNBNjVzVkZpdEtBZGx1bFVubUFvR19zSTZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC9lOTMxZTYtYTE1Mi00YTFhLWIwOGEt MTA4MWFlYjEyMWIzLzEvSkdLTHI0ZVl2RnlRUzQ0bkJ6aGFxU0RxYjRNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZC9lOTMxZTYtYTE1Mi00YTFhLWIwOGEtMTA4MWFlYjEyMWIz LzEvdXNBNjVzVkZpdEtBZGx1bFVubUFvR19zSTZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuacIMA0E AgACMAcDBQMqCy4AMA0GCSqGSIb3DQEBCwUAA4IBAQAsomRfo+kE40l8ZO/PYLVN fFc3WcrspcEsM0cECuVHuvQIgu0F6pUURDhEkGLqOjaGt2nSv2E/rn/1Vw0dW0+M A8hbgxxMsF2xwq9WXNClnZ4c9u1o+LGxLJdVF0sQCuAcRdMgQ1wiwdg5/2biIGsi qAC/QZQhDw1b2D4IMAThhMWdzXbHdxk7eu+oriuMtahcLDjkDpGd5Zl6dG/Ifilk 85Q1tA6okngySDWrICfujyfbIvq9RKmdCHbxjvUn/9aJLVy2BJ2kWufw6Ju94wDd K7OdLeC8Pus2CIFYvhgNfAU9pCHiydfXvyeeR9NQJeu6rfh4qFl/686YFBby22pk -----END CERTIFICATE-----Generated at Mon Jan 26 20:41:37 2026 by rpki-client