This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/b2e3d3-32ed-4bb2-acf6-204148c5a017/1/jMbXfYwQDm8CjXt4xxwnq70JuMY.roa File: jMbXfYwQDm8CjXt4xxwnq70JuMY.roa (raw, json) Hash identifier: FXNV3Qmyjy1ONKJk6QzKO0EfhVvk4xc2mM2Ngz7Mp/k= Subject key identifier: 8C:C6:D7:7D:8C:10:0E:6F:02:8D:7B:78:C7:1C:27:AB:BD:09:B8:C6 Certificate issuer: /CN=359ddc737684ce041754a95b56b5a076d8851048 Certificate serial: 019B76EB5E2A154FE980C2025B6F22D27E92 Authority key identifier: 35:9D:DC:73:76:84:CE:04:17:54:A9:5B:56:B5:A0:76:D8:85:10:48 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZ3cc3aEzgQXVKlbVrWgdtiFEEg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/b2e3d3-32ed-4bb2-acf6-204148c5a017/1/jMbXfYwQDm8CjXt4xxwnq70JuMY.roa Signing time: Thu 01 Jan 2026 00:18:15 +0000 ROA not before: Thu 01 Jan 2026 00:18:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207264 IP address blocks: 185.117.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/b2e3d3-32ed-4bb2-acf6-204148c5a017/1/NZ3cc3aEzgQXVKlbVrWgdtiFEEg.crl rsync://rpki.ripe.net/repository/DEFAULT/89/b2e3d3-32ed-4bb2-acf6-204148c5a017/1/NZ3cc3aEzgQXVKlbVrWgdtiFEEg.mft rsync://rpki.ripe.net/repository/DEFAULT/NZ3cc3aEzgQXVKlbVrWgdtiFEEg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:5e:2a:15:4f:e9:80:c2:02:5b:6f:22:d2:7e:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=359ddc737684ce041754a95b56b5a076d8851048 Validity Not Before: Jan 1 00:18:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8cc6d77d8c100e6f028d7b78c71c27abbd09b8c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:1a:4a:06:24:48:43:98:8d:75:99:49:92:f4: f9:51:d3:91:86:46:03:f2:8b:19:6c:18:48:1d:2c: f3:52:78:2f:3d:a0:c8:44:e9:a2:b1:0e:53:65:64: 36:f7:ac:94:34:67:69:04:fe:3b:13:1e:24:e1:ad: d9:f8:33:cc:58:74:cb:fd:e9:37:cf:ac:14:66:74: d7:a4:f8:04:c3:bd:a5:a7:08:10:23:30:70:5c:17: aa:d9:b1:94:22:2c:89:1b:21:20:ee:6e:6d:f6:48: ba:ff:2a:ea:bc:02:39:d7:9a:e4:c7:55:03:63:89: 64:63:54:6e:5d:b4:9f:1f:af:2e:f6:6f:4a:66:fb: 34:4b:4b:26:e8:56:72:f2:85:d9:20:7f:75:05:10: 06:f9:4f:0b:c0:d3:e9:06:17:71:c0:bd:6d:d0:37: 2e:fd:fe:46:77:75:66:2f:15:a8:bc:80:3c:63:bf: 2f:ae:85:c4:bd:71:df:4a:d8:1d:25:47:56:db:f7: db:ff:6e:6e:d0:a2:70:55:2b:7e:32:04:d1:15:8d: 2f:22:6e:e3:fc:12:ed:c2:97:0d:f6:4a:7c:0e:7f: d0:d1:aa:47:fb:3c:72:d5:d8:6f:1d:cf:d3:58:18: c4:a5:9c:a3:f2:49:9c:b0:af:f0:e3:e4:a7:27:c7: f2:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:C6:D7:7D:8C:10:0E:6F:02:8D:7B:78:C7:1C:27:AB:BD:09:B8:C6 X509v3 Authority Key Identifier: keyid:35:9D:DC:73:76:84:CE:04:17:54:A9:5B:56:B5:A0:76:D8:85:10:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZ3cc3aEzgQXVKlbVrWgdtiFEEg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/b2e3d3-32ed-4bb2-acf6-204148c5a017/1/jMbXfYwQDm8CjXt4xxwnq70JuMY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/89/b2e3d3-32ed-4bb2-acf6-204148c5a017/1/NZ3cc3aEzgQXVKlbVrWgdtiFEEg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.117.98.0/24 Signature Algorithm: sha256WithRSAEncryption 28:a1:34:17:10:24:8d:f1:aa:e8:ac:15:85:af:65:ac:99:58: ed:62:8f:8a:a9:b3:f0:6c:28:ad:f4:18:da:47:9f:1b:ab:04: 45:a0:7b:6c:bb:6b:af:e1:7b:4a:0c:07:e4:16:8c:d3:3a:13: f4:c8:86:31:1d:3a:ce:08:16:15:2f:9e:71:13:21:ef:41:90: 48:5e:b8:16:3c:50:03:3f:b3:c6:2a:f9:4a:dc:b6:f8:d3:30: f9:e6:64:c7:fb:a8:1e:07:e4:56:53:af:df:46:2f:28:01:ee: 7f:4b:ac:9b:7c:10:40:9a:f1:fe:83:bd:e6:40:46:11:57:77: 8c:81:01:9d:67:47:3e:bd:63:87:5a:b3:6b:7f:75:37:10:2a: 75:be:99:e8:63:a2:f6:1b:a6:a7:56:97:cf:23:42:b4:17:13: 9e:4c:73:78:20:2d:cf:b4:3d:9e:c3:7b:1e:5b:9c:ea:33:9b: d6:6e:85:48:3d:28:f3:4f:00:14:8b:25:4f:5c:d2:b8:1b:48: b4:2c:83:fc:35:aa:93:43:61:df:75:4a:e4:22:57:ef:be:a1: 7c:e3:34:13:f6:a9:59:56:db:85:4a:15:e8:80:2a:46:b5:c8: 35:3d:cd:2e:67:80:80:c3:dc:c7:50:6c:f1:54:99:a5:91:90: c4:d3:8a:83 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt2614qFU/pgMICW28i0n6SMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1OWRkYzczNzY4NGNlMDQxNzU0YTk1YjU2YjVhMDc2ZDg4 NTEwNDgwHhcNMjYwMTAxMDAxODE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4Y2M2ZDc3ZDhjMTAwZTZmMDI4ZDdiNzhjNzFjMjdhYmJkMDliOGM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8BpKBiRIQ5iNdZlJkvT5UdORhkYD 8osZbBhIHSzzUngvPaDIROmisQ5TZWQ296yUNGdpBP47Ex4k4a3Z+DPMWHTL/ek3 z6wUZnTXpPgEw72lpwgQIzBwXBeq2bGUIiyJGyEg7m5t9ki6/yrqvAI515rkx1UD Y4lkY1RuXbSfH68u9m9KZvs0S0sm6FZy8oXZIH91BRAG+U8LwNPpBhdxwL1t0Dcu /f5Gd3VmLxWovIA8Y78vroXEvXHfStgdJUdW2/fb/25u0KJwVSt+MgTRFY0vIm7j /BLtwpcN9kp8Dn/Q0apH+zxy1dhvHc/TWBjEpZyj8kmcsK/w4+SnJ8fyZQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIzG132MEA5vAo17eMccJ6u9CbjGMB8GA1UdIwQY MBaAFDWd3HN2hM4EF1SpW1a1oHbYhRBIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTlozY2MzYUV6Z1FYVktsYlZyV2dkdGlGRUVnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS9iMmUzZDMtMzJlZC00YmIyLWFjZjYt MjA0MTQ4YzVhMDE3LzEvak1iWGZZd1FEbThDalh0NHh4d25xNzBKdU1ZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OS9iMmUzZDMtMzJlZC00YmIyLWFjZjYtMjA0MTQ4YzVhMDE3 LzEvTlozY2MzYUV6Z1FYVktsYlZyV2dkdGlGRUVnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuXViMA0G CSqGSIb3DQEBCwUAA4IBAQAooTQXECSN8arorBWFr2WsmVjtYo+KqbPwbCit9Bja R58bqwRFoHtsu2uv4XtKDAfkFozTOhP0yIYxHTrOCBYVL55xEyHvQZBIXrgWPFAD P7PGKvlK3Lb40zD55mTH+6geB+RWU6/fRi8oAe5/S6ybfBBAmvH+g73mQEYRV3eM gQGdZ0c+vWOHWrNrf3U3ECp1vpnoY6L2G6anVpfPI0K0FxOeTHN4IC3PtD2ew3se W5zqM5vWboVIPSjzTwAUiyVPXNK4G0i0LIP8NaqTQ2HfdUrkIlfvvqF84zQT9qlZ VtuFShXogCpGtcg1Pc0uZ4CAw9zHUGzxVJmlkZDE04qD -----END CERTIFICATE-----Generated at Tue Feb 10 02:47:53 2026 by rpki-client