This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/JAaR4jCCnSQLvjrBZZCZLxsQln0.roa File: JAaR4jCCnSQLvjrBZZCZLxsQln0.roa (raw, json) Hash identifier: vEKk1FavUKcj+vyn6TLUVpoYaoLPl7KLYR+FhgyFQgw= Subject key identifier: 24:06:91:E2:30:82:9D:24:0B:BE:3A:C1:65:90:99:2F:1B:10:96:7D Certificate issuer: /CN=66feef09c450990af34779ce701be6cd54b3d924 Certificate serial: 019B7BA525E25BB80CBB1E546266F5365D88 Authority key identifier: 66:FE:EF:09:C4:50:99:0A:F3:47:79:CE:70:1B:E6:CD:54:B3:D9:24 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/JAaR4jCCnSQLvjrBZZCZLxsQln0.roa Signing time: Thu 01 Jan 2026 22:19:39 +0000 ROA not before: Thu 01 Jan 2026 22:19:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1299 IP address blocks: 83.168.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.crl rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:25:e2:5b:b8:0c:bb:1e:54:62:66:f5:36:5d:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66feef09c450990af34779ce701be6cd54b3d924 Validity Not Before: Jan 1 22:19:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=240691e230829d240bbe3ac16590992f1b10967d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:33:fc:a0:94:7f:7e:f6:c6:0e:f7:86:2b:50: 98:05:14:2b:f8:01:e8:13:fc:17:97:0f:d1:38:fc: 8a:76:a7:81:a5:96:1e:fd:ae:81:fc:e9:62:82:6b: e3:31:d2:90:e1:17:4f:c8:ab:35:59:49:06:b1:09: 16:79:f2:1a:03:c9:27:af:0e:3d:fb:90:e3:92:7a: e1:6f:ca:81:2a:b8:37:8d:d3:cc:e2:f4:b8:cb:67: 61:cb:1e:41:b9:cc:1b:e5:2f:21:e0:09:40:cb:8d: f1:c1:fb:6e:74:03:c4:ad:e7:2c:b0:4b:13:2b:e0: 95:2f:fb:ec:e9:3a:3e:fb:35:a0:f5:e3:a0:e4:0d: 34:b8:36:20:cf:9f:21:f2:68:d2:21:35:e5:3a:6e: 4c:bd:19:31:8d:53:a2:ff:8b:b4:ce:35:d8:a9:51: ae:63:18:cd:40:62:8b:30:cf:76:f3:ac:ec:6c:0d: 98:92:8a:fe:e8:cc:c2:06:c5:26:b2:7f:7b:e7:b3: 71:49:06:0c:18:2e:79:b8:83:d5:54:1c:e8:c8:ee: 91:09:35:3d:20:33:26:04:14:fc:d2:2d:d6:48:0f: 4a:a6:2c:e3:e3:3c:10:7a:51:33:41:b1:d8:c9:03: 49:12:91:86:ca:66:ae:4c:ca:ca:dc:69:ae:d7:0d: 89:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:06:91:E2:30:82:9D:24:0B:BE:3A:C1:65:90:99:2F:1B:10:96:7D X509v3 Authority Key Identifier: keyid:66:FE:EF:09:C4:50:99:0A:F3:47:79:CE:70:1B:E6:CD:54:B3:D9:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/JAaR4jCCnSQLvjrBZZCZLxsQln0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.168.124.0/24 Signature Algorithm: sha256WithRSAEncryption 69:eb:10:dd:2b:ac:ad:87:31:38:e4:d1:e6:d5:ae:1f:23:8e: c9:18:41:4b:16:a5:e6:8c:df:66:15:1b:53:37:f7:de:fa:2b: 6b:44:09:f2:bb:fa:f0:7d:86:c1:77:7c:c0:31:6f:c0:f1:9e: 6f:94:7c:c8:5d:69:08:c6:ee:6a:b5:d3:43:d6:62:0e:1d:2e: f1:aa:4c:aa:a1:e2:38:08:e1:24:6a:b6:06:81:3b:c3:79:b4: 17:b7:09:cb:ae:5b:45:ef:58:a9:88:1e:79:30:45:e5:5b:ba: ec:29:23:0d:ef:0c:46:d2:a9:f7:0a:ad:05:2a:4a:df:15:0a: 55:86:c0:56:3e:26:8a:f8:df:dc:0f:b1:80:81:53:df:26:46: ab:e8:68:9e:e8:07:ce:a0:dc:a5:9a:70:67:a3:6c:b6:91:5d: c4:21:71:b2:fd:45:f0:90:dc:ab:3d:1a:53:ea:e3:4a:c6:33: 9e:6b:9b:d4:08:0b:a1:d4:70:e2:5d:e7:62:1f:8d:41:29:8f: a0:fd:ed:ce:87:70:9c:0f:65:d9:16:18:b4:ad:5f:3b:7a:b5: 4a:a3:b4:a3:f8:c6:60:b7:e3:eb:78:66:3c:0c:4b:3e:99:84: d4:89:0f:15:e8:db:a5:01:c0:fa:4f:2d:61:72:58:2c:49:f2: db:0c:60:3c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7pSXiW7gMux5UYmb1Nl2IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2ZmVlZjA5YzQ1MDk5MGFmMzQ3NzljZTcwMWJlNmNkNTRi M2Q5MjQwHhcNMjYwMTAxMjIxOTM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNDA2OTFlMjMwODI5ZDI0MGJiZTNhYzE2NTkwOTkyZjFiMTA5NjdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvDP8oJR/fvbGDveGK1CYBRQr+AHo E/wXlw/ROPyKdqeBpZYe/a6B/OligmvjMdKQ4RdPyKs1WUkGsQkWefIaA8knrw49 +5Djknrhb8qBKrg3jdPM4vS4y2dhyx5Bucwb5S8h4AlAy43xwftudAPErecssEsT K+CVL/vs6To++zWg9eOg5A00uDYgz58h8mjSITXlOm5MvRkxjVOi/4u0zjXYqVGu YxjNQGKLMM9286zsbA2Ykor+6MzCBsUmsn9757NxSQYMGC55uIPVVBzoyO6RCTU9 IDMmBBT80i3WSA9Kpizj4zwQelEzQbHYyQNJEpGGymauTMrK3Gmu1w2JjQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCQGkeIwgp0kC746wWWQmS8bEJZ9MB8GA1UdIwQY MBaAFGb+7wnEUJkK80d5znAb5s1Us9kkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWnY3dkNjUlFtUXJ6UjNuT2NCdm16VlN6MlNRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy9hMTU5N2ItNmVmMi00NDMwLWFhNTYt ODI0NTFmMzNmNGNhLzEvSkFhUjRqQ0NuU1FMdmpyQlpaQ1pMeHNRbG4wLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yy9hMTU5N2ItNmVmMi00NDMwLWFhNTYtODI0NTFmMzNmNGNh LzEvWnY3dkNjUlFtUXJ6UjNuT2NCdm16VlN6MlNRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAU6h8MA0G CSqGSIb3DQEBCwUAA4IBAQBp6xDdK6ythzE45NHm1a4fI47JGEFLFqXmjN9mFRtT N/fe+itrRAnyu/rwfYbBd3zAMW/A8Z5vlHzIXWkIxu5qtdND1mIOHS7xqkyqoeI4 COEkarYGgTvDebQXtwnLrltF71ipiB55MEXlW7rsKSMN7wxG0qn3Cq0FKkrfFQpV hsBWPiaK+N/cD7GAgVPfJkar6Gie6AfOoNylmnBno2y2kV3EIXGy/UXwkNyrPRpT 6uNKxjOea5vUCAuh1HDiXediH41BKY+g/e3Oh3CcD2XZFhi0rV87erVKo7Sj+MZg t+PreGY8DEs+mYTUiQ8V6NulAcD6Ty1hclgsSfLbDGA8 -----END CERTIFICATE-----Generated at Wed Jan 21 07:21:55 2026 by rpki-client