This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/jXfqR8OBiWCDjEP7mwAoRqdUcHQ.roa File: jXfqR8OBiWCDjEP7mwAoRqdUcHQ.roa (raw, json) Hash identifier: +2a+ncy+XXxbrYtvF5Gc21wWmz6ZjxjjGy4y+38gZwE= Subject key identifier: 8D:77:EA:47:C3:81:89:60:83:8C:43:FB:9B:00:28:46:A7:54:70:74 Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Certificate serial: 019B7F844ED251E70DD47C230D6B87E8A77C Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/jXfqR8OBiWCDjEP7mwAoRqdUcHQ.roa Signing time: Fri 02 Jan 2026 16:22:15 +0000 ROA not before: Fri 02 Jan 2026 16:22:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 7018 IP address blocks: 31.56.33.0/24 maxlen: 24 31.56.160.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 06 Jan 2026 11:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:4e:d2:51:e7:0d:d4:7c:23:0d:6b:87:e8:a7:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Validity Not Before: Jan 2 16:22:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8d77ea47c3818960838c43fb9b002846a7547074 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:c3:39:d9:d1:94:04:a9:a2:a5:d0:b0:81:bd: 5f:a3:e4:aa:9f:bf:e2:d7:e8:6d:54:8c:28:46:4e: fb:d5:ea:66:5b:d1:4e:70:13:2f:bf:69:62:7c:94: 8d:5d:ac:3e:c0:68:f5:d9:37:d7:74:0f:b9:73:21: 2c:e9:91:c7:40:66:83:1c:48:67:34:ea:ab:6e:d5: cc:e9:da:f1:ec:e5:c5:38:01:21:9a:d1:f5:09:51: 3d:f5:25:65:d6:13:8e:a4:6e:16:16:5c:eb:6b:90: 8d:ca:b2:3f:1d:87:95:52:0f:11:01:41:54:b2:98: f1:66:f6:5a:03:a1:3d:89:5f:f0:bc:13:01:c8:7a: 18:df:d5:1f:1b:96:d6:d3:6e:b9:4b:41:46:06:7a: a5:08:a3:5c:d5:80:d6:74:79:a6:8c:fc:20:8d:05: 0c:f0:9a:08:f5:a8:97:fd:66:21:95:44:ca:85:c2: 9c:2b:a1:d5:63:47:53:3f:ca:ff:10:38:e9:ea:0a: 45:ed:a1:42:94:d1:e5:5f:2a:b5:35:30:57:ca:af: 2f:65:1f:2a:4e:68:d9:34:12:fa:a8:30:c5:a1:70: d7:27:a6:78:dd:e4:9f:c8:ff:02:e5:4e:1d:42:92: a1:fa:3a:ee:19:e2:32:0e:83:74:6d:a4:18:9c:0a: 3c:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:77:EA:47:C3:81:89:60:83:8C:43:FB:9B:00:28:46:A7:54:70:74 X509v3 Authority Key Identifier: keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/jXfqR8OBiWCDjEP7mwAoRqdUcHQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.56.33.0/24 31.56.160.0/21 Signature Algorithm: sha256WithRSAEncryption 97:ab:0f:46:a8:d7:ed:69:94:48:59:97:23:41:26:29:67:59: c0:c2:f6:b0:aa:c3:dc:7e:ba:61:ab:4d:2a:71:b1:d9:3b:e6: e7:13:ee:a0:8e:ff:ce:f5:59:21:02:29:ac:97:12:c9:d8:2f: 39:75:46:f2:2b:6e:68:a6:4e:e8:c1:5c:d5:fe:56:ca:ba:61: 6c:19:23:8f:58:93:03:85:08:25:f7:9e:ea:d0:d2:03:32:f3: ae:cf:ed:e7:bf:04:49:1a:36:14:07:3f:7c:98:5d:59:14:65: 30:4c:16:e7:6b:63:54:52:b5:d2:24:00:a4:a4:fb:fc:19:b8: 41:e9:51:48:8e:62:3a:4d:d9:3c:f5:53:c0:f6:f8:93:9a:0f: 79:89:bb:27:7d:2d:64:a8:85:fa:db:12:18:73:d6:e8:6b:b6: 2a:a9:83:02:96:fe:de:3e:83:cb:b8:7f:c2:15:eb:dc:4c:5b: 41:df:66:7b:3b:28:68:9b:7d:63:83:66:86:e0:92:4a:d8:6b: 73:ad:dd:49:1b:81:d3:14:f1:e0:ee:64:30:66:e3:d1:b7:cb: 4f:bb:78:f0:82:8a:5d:40:16:34:c7:37:52:d5:a7:6c:fa:15: fc:b3:ec:dd:05:b8:ee:82:1c:7b:4c:8d:58:ea:bc:26:28:9a: 5b:fa:e5:5a -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/hE7SUecN1HwjDWuH6Kd8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2 YjI1YzUwHhcNMjYwMTAyMTYyMjE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZDc3ZWE0N2MzODE4OTYwODM4YzQzZmI5YjAwMjg0NmE3NTQ3MDc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn8M52dGUBKmipdCwgb1fo+Sqn7/i 1+htVIwoRk771epmW9FOcBMvv2lifJSNXaw+wGj12TfXdA+5cyEs6ZHHQGaDHEhn NOqrbtXM6drx7OXFOAEhmtH1CVE99SVl1hOOpG4WFlzra5CNyrI/HYeVUg8RAUFU spjxZvZaA6E9iV/wvBMByHoY39UfG5bW0265S0FGBnqlCKNc1YDWdHmmjPwgjQUM 8JoI9aiX/WYhlUTKhcKcK6HVY0dTP8r/EDjp6gpF7aFClNHlXyq1NTBXyq8vZR8q TmjZNBL6qDDFoXDXJ6Z43eSfyP8C5U4dQpKh+jruGeIyDoN0baQYnAo8+wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFI136kfDgYlgg4xD+5sAKEanVHB0MB8GA1UdIwQY MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt YjgxMWNmY2I5ZmQ1LzEvalhmcVI4T0JpV0NEakVQN213QW9ScWRVY0hRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1 LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAHzghAwQD HzigMA0GCSqGSIb3DQEBCwUAA4IBAQCXqw9GqNftaZRIWZcjQSYpZ1nAwvawqsPc frphq00qcbHZO+bnE+6gjv/O9VkhAimslxLJ2C85dUbyK25opk7owVzV/lbKumFs GSOPWJMDhQgl957q0NIDMvOuz+3nvwRJGjYUBz98mF1ZFGUwTBbna2NUUrXSJACk pPv8GbhB6VFIjmI6Tdk89VPA9viTmg95ibsnfS1kqIX62xIYc9boa7YqqYMClv7e PoPLuH/CFevcTFtB32Z7Oyhom31jg2aG4JJK2Gtzrd1JG4HTFPHg7mQwZuPRt8tP u3jwgopdQBY0xzdS1ads+hX8s+zdBbjughx7TI1Y6rwmKJpb+uVa -----END CERTIFICATE-----Generated at Mon Jan 5 14:34:47 2026 by rpki-client