This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/299278-c57c-4354-b966-9fb224be8b08/1/jkhYRK4apXHLHJ4HFanP0SfT4FA.roa File: jkhYRK4apXHLHJ4HFanP0SfT4FA.roa (raw, json) Hash identifier: Q8Lk/xTao2v2+r34JtDDrlWHGb5NTl6AAYXGaL/XHn8= Subject key identifier: 8E:48:58:44:AE:1A:A5:71:CB:1C:9E:07:15:A9:CF:D1:27:D3:E0:50 Certificate issuer: /CN=ae3cc567febfe34878aeb913861cf0600a283903 Certificate serial: 019B7F1392285A370516F6BE3E745252D73B Authority key identifier: AE:3C:C5:67:FE:BF:E3:48:78:AE:B9:13:86:1C:F0:60:0A:28:39:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rjzFZ_6_40h4rrkThhzwYAooOQM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/299278-c57c-4354-b966-9fb224be8b08/1/jkhYRK4apXHLHJ4HFanP0SfT4FA.roa Signing time: Fri 02 Jan 2026 14:19:07 +0000 ROA not before: Fri 02 Jan 2026 14:19:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51881 IP address blocks: 91.220.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/299278-c57c-4354-b966-9fb224be8b08/1/rjzFZ_6_40h4rrkThhzwYAooOQM.crl rsync://rpki.ripe.net/repository/DEFAULT/a8/299278-c57c-4354-b966-9fb224be8b08/1/rjzFZ_6_40h4rrkThhzwYAooOQM.mft rsync://rpki.ripe.net/repository/DEFAULT/rjzFZ_6_40h4rrkThhzwYAooOQM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:92:28:5a:37:05:16:f6:be:3e:74:52:52:d7:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ae3cc567febfe34878aeb913861cf0600a283903 Validity Not Before: Jan 2 14:19:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8e485844ae1aa571cb1c9e0715a9cfd127d3e050 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ad:12:06:9b:0a:e5:03:db:e4:04:7c:9a:d3: d1:d8:70:3a:3b:25:34:84:02:92:a6:4d:b4:6d:3a: 55:eb:97:62:c4:21:18:64:bc:9b:6f:de:9f:c9:3c: da:66:82:3a:a9:d8:48:84:be:d5:87:66:6b:33:fc: 9d:a3:24:4f:d9:11:8c:93:40:c7:75:63:62:6c:12: e6:94:ff:c4:77:fd:8b:6d:10:43:d3:a6:b0:22:e4: 31:7f:79:17:21:9b:37:56:58:f1:88:d0:12:3f:d6: be:7f:5d:e3:a1:f3:c6:23:50:89:c0:d3:ea:41:40: ff:87:1b:ff:d3:9e:f3:1a:1f:37:eb:83:26:52:35: ed:b8:f5:b3:93:2e:48:3a:55:fb:0d:d5:4e:17:88: 05:5b:57:89:97:2b:f7:44:37:0b:38:4c:15:a3:81: 42:ea:30:e3:42:ab:aa:46:f7:b2:af:49:ab:09:41: 55:c1:e5:f0:0f:de:7d:86:cb:4f:b2:c7:45:be:79: 43:a8:4d:0a:14:b1:d6:8e:1d:fd:f6:5e:01:6f:91: 47:14:ad:99:bb:c3:81:df:37:aa:59:f5:26:94:e4: a1:8e:82:fa:46:13:6b:31:74:ca:1a:9e:51:15:46: 87:8e:76:c7:3a:fe:08:e3:bf:b2:43:77:eb:36:ad: c7:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:48:58:44:AE:1A:A5:71:CB:1C:9E:07:15:A9:CF:D1:27:D3:E0:50 X509v3 Authority Key Identifier: keyid:AE:3C:C5:67:FE:BF:E3:48:78:AE:B9:13:86:1C:F0:60:0A:28:39:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rjzFZ_6_40h4rrkThhzwYAooOQM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/299278-c57c-4354-b966-9fb224be8b08/1/jkhYRK4apXHLHJ4HFanP0SfT4FA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/299278-c57c-4354-b966-9fb224be8b08/1/rjzFZ_6_40h4rrkThhzwYAooOQM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.220.167.0/24 Signature Algorithm: sha256WithRSAEncryption 70:b5:02:83:11:01:09:68:03:59:44:9a:74:02:ab:c9:25:c3: a6:a0:2f:f1:77:80:d4:38:40:6e:4c:20:a3:a8:2e:ba:d9:02: 4e:2f:c2:d6:1a:52:50:13:b8:e7:7b:72:8d:79:3c:cb:5f:6e: c6:6e:89:7b:a1:5e:ad:23:f1:33:ae:58:f1:98:7e:83:c1:62: c8:04:21:67:20:77:a1:4c:67:bb:7c:41:02:d2:c4:32:75:8e: 1f:82:59:32:9b:9c:ec:dc:82:c9:48:89:06:dd:ac:97:a1:ae: fb:aa:25:b8:38:63:40:c3:92:f3:af:66:d9:e4:05:0c:f5:f7: 80:94:bf:18:c1:76:9c:3a:3f:9f:41:f3:7c:ea:f9:a4:ed:5b: b0:78:67:25:0b:57:b0:3a:9f:0d:3a:72:c3:d8:2f:9b:ed:78: c5:09:68:5e:d4:50:cd:02:bb:9f:7f:43:a1:06:e1:92:02:56: 29:40:76:68:b6:9d:4d:92:a5:f7:f6:de:b5:88:20:d5:36:70: 93:c0:a9:d1:3d:43:92:a8:5b:95:ea:8d:2f:a5:1a:7e:60:de: 32:74:8d:ea:3b:91:90:50:04:c8:fd:a5:46:af:de:44:e5:62: 1b:fa:f9:79:8e:bb:49:a2:b7:a7:31:e2:be:03:65:8a:66:77: b4:23:10:6a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/E5IoWjcFFva+PnRSUtc7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlM2NjNTY3ZmViZmUzNDg3OGFlYjkxMzg2MWNmMDYwMGEy ODM5MDMwHhcNMjYwMTAyMTQxOTA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZTQ4NTg0NGFlMWFhNTcxY2IxYzllMDcxNWE5Y2ZkMTI3ZDNlMDUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA360SBpsK5QPb5AR8mtPR2HA6OyU0 hAKSpk20bTpV65dixCEYZLybb96fyTzaZoI6qdhIhL7Vh2ZrM/ydoyRP2RGMk0DH dWNibBLmlP/Ed/2LbRBD06awIuQxf3kXIZs3VljxiNASP9a+f13jofPGI1CJwNPq QUD/hxv/057zGh8364MmUjXtuPWzky5IOlX7DdVOF4gFW1eJlyv3RDcLOEwVo4FC 6jDjQquqRveyr0mrCUFVweXwD959hstPssdFvnlDqE0KFLHWjh399l4Bb5FHFK2Z u8OB3zeqWfUmlOShjoL6RhNrMXTKGp5RFUaHjnbHOv4I47+yQ3frNq3HhQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFI5IWESuGqVxyxyeBxWpz9En0+BQMB8GA1UdIwQY MBaAFK48xWf+v+NIeK65E4Yc8GAKKDkDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcmp6RlpfNl80MGg0cnJrVGhoendZQW9vT1FNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC8yOTkyNzgtYzU3Yy00MzU0LWI5NjYt OWZiMjI0YmU4YjA4LzEvamtoWVJLNGFwWEhMSEo0SEZhblAwU2ZUNEZBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOC8yOTkyNzgtYzU3Yy00MzU0LWI5NjYtOWZiMjI0YmU4YjA4 LzEvcmp6RlpfNl80MGg0cnJrVGhoendZQW9vT1FNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9ynMA0G CSqGSIb3DQEBCwUAA4IBAQBwtQKDEQEJaANZRJp0AqvJJcOmoC/xd4DUOEBuTCCj qC662QJOL8LWGlJQE7jne3KNeTzLX27Gbol7oV6tI/EzrljxmH6DwWLIBCFnIHeh TGe7fEEC0sQydY4fglkym5zs3ILJSIkG3ayXoa77qiW4OGNAw5Lzr2bZ5AUM9feA lL8YwXacOj+fQfN86vmk7VuweGclC1ewOp8NOnLD2C+b7XjFCWhe1FDNAruff0Oh BuGSAlYpQHZotp1NkqX39t61iCDVNnCTwKnRPUOSqFuV6o0vpRp+YN4ydI3qO5GQ UATI/aVGr95E5WIb+vl5jrtJorenMeK+A2WKZne0IxBq -----END CERTIFICATE-----Generated at Mon Feb 9 21:00:39 2026 by rpki-client