This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/910633-de46-4ae2-a15a-29c87c8d8335/1/jSTMNWI98laPeFskt5VdyYCzFn4.roa File: jSTMNWI98laPeFskt5VdyYCzFn4.roa (raw, json) Hash identifier: gzOEKofa3x731/L1ThXmhgX8mhfqgZGpQnOVJpBrNiY= Subject key identifier: 8D:24:CC:35:62:3D:F2:56:8F:78:5B:24:B7:95:5D:C9:80:B3:16:7E Certificate issuer: /CN=3cabc3dde8f16cf6d918a40f1682ca41be4d0a41 Certificate serial: 019B7F8088427576FCF137FCB42BF138C1D5 Authority key identifier: 3C:AB:C3:DD:E8:F1:6C:F6:D9:18:A4:0F:16:82:CA:41:BE:4D:0A:41 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PKvD3ejxbPbZGKQPFoLKQb5NCkE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/910633-de46-4ae2-a15a-29c87c8d8335/1/jSTMNWI98laPeFskt5VdyYCzFn4.roa Signing time: Fri 02 Jan 2026 16:18:08 +0000 ROA not before: Fri 02 Jan 2026 16:18:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12984 IP address blocks: 185.118.80.0/22 maxlen: 22 2a06:9280::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/910633-de46-4ae2-a15a-29c87c8d8335/1/PKvD3ejxbPbZGKQPFoLKQb5NCkE.crl rsync://rpki.ripe.net/repository/DEFAULT/74/910633-de46-4ae2-a15a-29c87c8d8335/1/PKvD3ejxbPbZGKQPFoLKQb5NCkE.mft rsync://rpki.ripe.net/repository/DEFAULT/PKvD3ejxbPbZGKQPFoLKQb5NCkE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:80:88:42:75:76:fc:f1:37:fc:b4:2b:f1:38:c1:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3cabc3dde8f16cf6d918a40f1682ca41be4d0a41 Validity Not Before: Jan 2 16:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8d24cc35623df2568f785b24b7955dc980b3167e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:35:a1:96:64:fc:5e:fc:2e:e1:70:5f:a2:ae: ef:ab:f7:59:82:45:f9:bb:66:91:1f:8b:1e:af:fe: a6:18:7d:3e:7a:ac:08:cb:a7:4d:3f:23:d0:60:b6: ad:fb:1e:a0:c6:02:84:83:16:86:1d:c8:c5:0f:ad: 7b:2f:29:b0:90:a0:14:ad:97:1f:9c:2c:44:c3:42: 63:6c:76:07:33:94:ff:89:6d:19:73:f3:8d:9e:8d: 35:29:f8:82:66:9a:3d:a3:a2:6c:d8:d3:f5:6e:07: 0a:3d:9e:da:a6:7b:50:f1:1c:ca:b5:64:c5:2a:58: 0c:12:e3:57:37:e1:a6:a5:32:3b:0a:eb:63:a8:08: 60:87:07:49:59:e1:50:69:00:a9:d2:6a:45:f8:8b: 1f:52:10:e8:91:e6:49:51:41:3c:43:f1:8a:98:4d: 61:89:95:7a:b2:4f:bc:61:28:c5:cf:76:77:fd:b9: f3:ec:c4:a7:41:ed:1d:e1:c0:74:3b:41:08:a7:17: b5:f4:86:95:b4:b4:a7:52:46:b1:ab:18:81:79:1c: 24:62:91:ed:a3:44:28:b4:97:4a:e5:e0:10:a5:df: 2a:bb:ef:6e:fd:3c:e5:cd:b8:7a:7e:64:76:4f:d1: 45:f3:2f:3e:a8:7a:2b:4b:c2:fa:6f:b6:9d:4a:f2: c1:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:24:CC:35:62:3D:F2:56:8F:78:5B:24:B7:95:5D:C9:80:B3:16:7E X509v3 Authority Key Identifier: keyid:3C:AB:C3:DD:E8:F1:6C:F6:D9:18:A4:0F:16:82:CA:41:BE:4D:0A:41 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PKvD3ejxbPbZGKQPFoLKQb5NCkE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/910633-de46-4ae2-a15a-29c87c8d8335/1/jSTMNWI98laPeFskt5VdyYCzFn4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/74/910633-de46-4ae2-a15a-29c87c8d8335/1/PKvD3ejxbPbZGKQPFoLKQb5NCkE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.118.80.0/22 IPv6: 2a06:9280::/29 Signature Algorithm: sha256WithRSAEncryption 8c:a5:ef:e7:27:e1:84:36:13:dc:79:a6:87:07:5a:46:48:58: 15:53:18:2d:de:01:19:d8:c3:3a:3d:13:f8:99:e7:90:b2:83: 37:61:3c:09:ec:a6:ed:15:9a:38:fc:64:b5:04:8a:2f:4a:e0: 57:3f:49:5f:d6:36:e6:3f:cd:d6:61:84:88:a6:46:0c:00:6b: ae:53:a5:7d:2c:0f:c8:db:e7:47:d8:6f:cf:b8:0e:19:84:77: 99:90:2a:f8:1e:3f:3c:42:94:ec:25:3b:4d:08:e9:d3:8c:d9: 93:2a:b9:e9:22:4e:79:40:66:89:dc:c8:98:6f:ef:24:75:00: 95:6b:0e:56:af:80:24:94:61:db:c6:79:10:2e:97:fe:04:09: b0:10:72:50:67:8a:bd:e4:96:6b:49:f5:84:d8:79:c3:86:b0: f3:5d:36:8e:5e:31:c5:74:8e:ce:2a:e6:80:f6:e9:06:65:43: 92:88:a4:95:13:2c:d0:fd:40:9c:57:01:54:04:e2:e8:c9:11: 86:23:4f:7f:1b:da:1c:19:96:9e:3a:66:62:dc:41:a5:4f:07: e2:77:0c:2f:2f:3e:3d:46:3a:eb:51:a9:e9:ec:76:8b:49:87: c1:8f:e8:0a:e1:2e:a1:75:69:a0:8a:5e:5e:1c:56:7a:4c:1a: c8:ec:d5:8c -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/gIhCdXb88Tf8tCvxOMHVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNjYWJjM2RkZThmMTZjZjZkOTE4YTQwZjE2ODJjYTQxYmU0 ZDBhNDEwHhcNMjYwMTAyMTYxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZDI0Y2MzNTYyM2RmMjU2OGY3ODViMjRiNzk1NWRjOTgwYjMxNjdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5DWhlmT8Xvwu4XBfoq7vq/dZgkX5 u2aRH4ser/6mGH0+eqwIy6dNPyPQYLat+x6gxgKEgxaGHcjFD617LymwkKAUrZcf nCxEw0JjbHYHM5T/iW0Zc/ONno01KfiCZpo9o6Js2NP1bgcKPZ7apntQ8RzKtWTF KlgMEuNXN+GmpTI7CutjqAhghwdJWeFQaQCp0mpF+IsfUhDokeZJUUE8Q/GKmE1h iZV6sk+8YSjFz3Z3/bnz7MSnQe0d4cB0O0EIpxe19IaVtLSnUkaxqxiBeRwkYpHt o0QotJdK5eAQpd8qu+9u/Tzlzbh6fmR2T9FF8y8+qHorS8L6b7adSvLBmwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFI0kzDViPfJWj3hbJLeVXcmAsxZ+MB8GA1UdIwQY MBaAFDyrw93o8Wz22RikDxaCykG+TQpBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUEt2RDNlanhiUGJaR0tRUEZvTEtRYjVOQ2tFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC85MTA2MzMtZGU0Ni00YWUyLWExNWEt MjljODdjOGQ4MzM1LzEvalNUTU5XSTk4bGFQZUZza3Q1VmR5WUN6Rm40LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NC85MTA2MzMtZGU0Ni00YWUyLWExNWEtMjljODdjOGQ4MzM1 LzEvUEt2RDNlanhiUGJaR0tRUEZvTEtRYjVOQ2tFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuXZQMA0E AgACMAcDBQMqBpKAMA0GCSqGSIb3DQEBCwUAA4IBAQCMpe/nJ+GENhPceaaHB1pG SFgVUxgt3gEZ2MM6PRP4meeQsoM3YTwJ7KbtFZo4/GS1BIovSuBXP0lf1jbmP83W YYSIpkYMAGuuU6V9LA/I2+dH2G/PuA4ZhHeZkCr4Hj88QpTsJTtNCOnTjNmTKrnp Ik55QGaJ3MiYb+8kdQCVaw5Wr4AklGHbxnkQLpf+BAmwEHJQZ4q95JZrSfWE2HnD hrDzXTaOXjHFdI7OKuaA9ukGZUOSiKSVEyzQ/UCcVwFUBOLoyRGGI09/G9ocGZae OmZi3EGlTwfidwwvLz49RjrrUanp7HaLSYfBj+gK4S6hdWmgil5eHFZ6TBrI7NWM -----END CERTIFICATE-----Generated at Tue Feb 10 07:30:48 2026 by rpki-client