This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/jhCtmBFu6zR8aX_bZUbayRuZiUs.roa File: jhCtmBFu6zR8aX_bZUbayRuZiUs.roa (raw, json) Hash identifier: PbfHOxWO0njywkZg3DvDQotxDm3+mBSNJp/TOrfF+Kw= Subject key identifier: 8E:10:AD:98:11:6E:EB:34:7C:69:7F:DB:65:46:DA:C9:1B:99:89:4B Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478 Certificate serial: 019B76EAF54ED3643F2BF44AE26CFDC07153 Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/jhCtmBFu6zR8aX_bZUbayRuZiUs.roa Signing time: Thu 01 Jan 2026 00:17:48 +0000 ROA not before: Thu 01 Jan 2026 00:17:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 140042 IP address blocks: 46.249.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.mft rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 06:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:f5:4e:d3:64:3f:2b:f4:4a:e2:6c:fd:c0:71:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478 Validity Not Before: Jan 1 00:17:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8e10ad98116eeb347c697fdb6546dac91b99894b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:be:e6:1d:34:9e:5a:c7:7a:58:a7:96:96:64: 0f:7e:12:40:b7:5c:39:8c:3a:72:00:b8:35:75:4e: 8b:2e:6c:0a:a5:e0:17:b9:8b:7d:b0:41:fd:b3:be: 09:49:7e:4d:90:00:ad:62:5d:6d:fe:5d:3b:41:f4: c1:56:32:38:a4:b5:32:d3:68:7a:29:7c:00:cb:d2: ea:7d:74:5b:d4:c7:44:c3:03:30:b6:2b:d7:c0:74: 0c:d2:17:9e:97:34:55:78:3a:7d:f6:8f:4d:fe:1a: 31:17:db:ef:62:8d:3d:4b:37:31:20:65:04:4e:df: 85:a4:05:d5:12:f1:5d:27:af:9e:53:00:54:e9:2b: b3:e2:a5:85:97:d4:3a:84:6a:d7:84:16:ef:84:8a: 6d:5d:15:41:7c:d5:2b:d3:0b:67:8b:d7:46:44:83: 71:2c:c0:4a:dd:4d:63:83:84:0e:88:03:ba:e7:da: 96:63:be:13:7c:62:bd:d9:c0:1f:3b:ba:06:3f:7a: b4:de:2d:40:d5:1d:36:2a:ba:a2:8e:3d:c9:30:70: ee:4c:c9:68:5c:89:74:32:22:f2:16:9a:86:4d:58: ed:1b:b8:96:b6:75:5f:af:d5:95:b5:b2:9d:97:34: 4c:2b:c5:01:55:3d:f6:6a:c3:d3:f5:ea:d7:8b:c9: 44:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:10:AD:98:11:6E:EB:34:7C:69:7F:DB:65:46:DA:C9:1B:99:89:4B X509v3 Authority Key Identifier: keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/jhCtmBFu6zR8aX_bZUbayRuZiUs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.249.108.0/24 Signature Algorithm: sha256WithRSAEncryption b2:d7:12:3b:6c:09:05:c3:b3:07:a5:53:65:9f:01:90:c0:91: c5:a5:d6:b6:84:93:2f:ef:60:1e:e1:b4:4e:1a:a5:0c:35:ca: e1:46:dc:1a:93:49:0b:2b:de:f4:11:61:ba:ba:45:e3:55:09: 30:bd:f6:58:a4:38:89:81:23:70:68:ac:68:ae:a5:99:d6:ee: c1:56:5e:c3:22:7d:e9:0f:2a:d9:80:d5:de:32:54:ff:df:83: bf:b2:11:d5:0e:18:b4:00:9e:29:de:ad:ff:14:0d:37:ec:a0: 1a:38:eb:cc:13:2f:8d:4e:00:0c:e9:be:b7:0d:ba:14:ab:33: 8d:83:45:b9:f6:5d:61:bb:18:3b:bf:a3:5c:13:6f:b3:9b:b4: ac:83:7a:e3:76:92:86:a7:a3:31:7b:87:57:0b:51:f5:d3:4f: e0:c3:fb:25:8a:08:de:1a:05:dc:b2:b3:e0:2c:05:4f:d8:e0: 96:c4:cf:2e:d1:40:64:a2:78:0e:1f:e2:8d:2a:4c:9c:65:66: 44:b1:16:14:e8:0f:ff:a6:23:cb:45:40:e1:3f:0e:67:6f:7a: ac:64:33:e8:64:93:bf:30:1f:8b:c1:f5:a2:a6:25:c8:9d:3c: 28:49:e7:96:a0:32:ab:c3:69:91:c2:2a:e8:28:19:02:cd:6a: e1:b0:e8:f1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt26vVO02Q/K/RK4mz9wHFTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhYzNkYWExYjE0ODUwZjJlNjFjNTkyYjIxOTE5MTVhNWU2 NWE0NzgwHhcNMjYwMTAxMDAxNzQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZTEwYWQ5ODExNmVlYjM0N2M2OTdmZGI2NTQ2ZGFjOTFiOTk4OTRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk77mHTSeWsd6WKeWlmQPfhJAt1w5 jDpyALg1dU6LLmwKpeAXuYt9sEH9s74JSX5NkACtYl1t/l07QfTBVjI4pLUy02h6 KXwAy9LqfXRb1MdEwwMwtivXwHQM0heelzRVeDp99o9N/hoxF9vvYo09SzcxIGUE Tt+FpAXVEvFdJ6+eUwBU6Suz4qWFl9Q6hGrXhBbvhIptXRVBfNUr0wtni9dGRINx LMBK3U1jg4QOiAO659qWY74TfGK92cAfO7oGP3q03i1A1R02Krqijj3JMHDuTMlo XIl0MiLyFpqGTVjtG7iWtnVfr9WVtbKdlzRMK8UBVT32asPT9erXi8lEeQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFI4QrZgRbus0fGl/22VG2skbmYlLMB8GA1UdIwQY MBaAFCrD2qGxSFDy5hxZKyGRkVpeZaR4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUt ZmUwNjU5MTc2YTU2LzEvamhDdG1CRnU2elI4YVhfYlpVYmF5UnVaaVVzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUtZmUwNjU5MTc2YTU2 LzEvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALvlsMA0G CSqGSIb3DQEBCwUAA4IBAQCy1xI7bAkFw7MHpVNlnwGQwJHFpda2hJMv72Ae4bRO GqUMNcrhRtwak0kLK970EWG6ukXjVQkwvfZYpDiJgSNwaKxorqWZ1u7BVl7DIn3p DyrZgNXeMlT/34O/shHVDhi0AJ4p3q3/FA037KAaOOvMEy+NTgAM6b63DboUqzON g0W59l1huxg7v6NcE2+zm7Ssg3rjdpKGp6Mxe4dXC1H100/gw/sligjeGgXcsrPg LAVP2OCWxM8u0UBkongOH+KNKkycZWZEsRYU6A//piPLRUDhPw5nb3qsZDPoZJO/ MB+LwfWipiXInTwoSeeWoDKrw2mRwiroKBkCzWrhsOjx -----END CERTIFICATE-----Generated at Wed Jan 21 13:49:21 2026 by rpki-client