This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/e1b20f-4d6d-40e0-af8a-3f17cbcba5ca/1/JvdKR8w378wRcIgnyCDN8YQt0NY.roa File: JvdKR8w378wRcIgnyCDN8YQt0NY.roa (raw, json) Hash identifier: yPYUw3ORIF3GkrD9VXNJ088VEVXOizVNl2vWPpByN18= Subject key identifier: 26:F7:4A:47:CC:37:EF:CC:11:70:88:27:C8:20:CD:F1:84:2D:D0:D6 Certificate issuer: /CN=5b25909f3b94e55f5ef336a27d274a7dfd0d96b2 Certificate serial: 019B78A2D24530DBC03EB87D8045B29C6B09 Authority key identifier: 5B:25:90:9F:3B:94:E5:5F:5E:F3:36:A2:7D:27:4A:7D:FD:0D:96:B2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WyWQnzuU5V9e8zaifSdKff0NlrI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/e1b20f-4d6d-40e0-af8a-3f17cbcba5ca/1/JvdKR8w378wRcIgnyCDN8YQt0NY.roa Signing time: Thu 01 Jan 2026 08:18:15 +0000 ROA not before: Thu 01 Jan 2026 08:18:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41400 IP address blocks: 185.98.200.0/22 maxlen: 22 2a04:c00::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/e1b20f-4d6d-40e0-af8a-3f17cbcba5ca/1/WyWQnzuU5V9e8zaifSdKff0NlrI.crl rsync://rpki.ripe.net/repository/DEFAULT/af/e1b20f-4d6d-40e0-af8a-3f17cbcba5ca/1/WyWQnzuU5V9e8zaifSdKff0NlrI.mft rsync://rpki.ripe.net/repository/DEFAULT/WyWQnzuU5V9e8zaifSdKff0NlrI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 17:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:d2:45:30:db:c0:3e:b8:7d:80:45:b2:9c:6b:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5b25909f3b94e55f5ef336a27d274a7dfd0d96b2 Validity Not Before: Jan 1 08:18:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=26f74a47cc37efcc11708827c820cdf1842dd0d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:5b:fe:3d:a7:1e:fe:98:bc:32:e2:0d:2b:f0: 7c:5a:ff:03:63:e1:fa:34:52:62:fd:56:ce:b4:b7: ef:1f:58:83:15:a6:3c:a2:6e:81:44:a8:92:d0:7a: 08:66:8c:d4:1c:86:f8:e2:61:ad:c9:60:e9:44:34: 34:b5:0c:06:ea:da:eb:15:d2:64:99:8f:cf:4f:19: 4a:8e:9a:e3:8a:e8:dc:19:e1:53:0b:57:9b:13:63: 7f:fd:c0:b8:45:eb:5b:98:3d:03:66:87:ec:e4:ec: 39:12:ef:39:ab:98:8f:00:99:02:4a:d7:77:a1:4e: 30:46:57:15:74:7e:d0:a5:e0:f2:9a:ce:da:07:96: a7:46:45:14:f1:25:68:d5:06:8d:0e:af:93:41:e4: df:fd:da:c4:c5:b0:e0:e3:97:be:92:cc:a5:f5:49: 75:4b:d7:50:5c:45:1e:59:7d:dc:fe:4c:1f:95:d4: d4:42:b7:56:4a:8b:02:8a:38:ee:d3:cd:cb:bb:81: c5:20:49:88:46:54:71:e0:5b:f2:96:66:5e:97:22: 76:87:74:8e:98:88:da:9e:ba:44:46:89:ba:a9:7e: 03:99:1b:ac:48:0e:44:77:61:a6:5e:25:27:86:b0: 70:72:4e:48:05:93:8a:3d:f4:42:14:14:61:1e:cb: 8a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:F7:4A:47:CC:37:EF:CC:11:70:88:27:C8:20:CD:F1:84:2D:D0:D6 X509v3 Authority Key Identifier: keyid:5B:25:90:9F:3B:94:E5:5F:5E:F3:36:A2:7D:27:4A:7D:FD:0D:96:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WyWQnzuU5V9e8zaifSdKff0NlrI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/e1b20f-4d6d-40e0-af8a-3f17cbcba5ca/1/JvdKR8w378wRcIgnyCDN8YQt0NY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/e1b20f-4d6d-40e0-af8a-3f17cbcba5ca/1/WyWQnzuU5V9e8zaifSdKff0NlrI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.98.200.0/22 IPv6: 2a04:c00::/29 Signature Algorithm: sha256WithRSAEncryption 37:2b:28:a5:00:0d:fd:0b:0d:5d:a5:79:3e:92:5e:10:96:5c: b7:10:e0:f9:51:c1:56:26:9b:dc:2e:5d:88:4b:1d:b2:fb:a2: 27:e4:ec:8f:35:9a:b3:d9:2b:20:ae:81:85:60:aa:aa:62:e5: 97:b5:83:89:fa:ef:ba:54:40:8e:a9:c8:f7:1b:ef:19:1b:df: 1d:30:c7:e5:f3:65:c4:dc:36:d0:7b:39:9a:74:a1:9c:19:63: 06:d3:83:60:03:43:70:1a:34:4b:fb:f0:c0:70:3c:4c:f5:de: 7c:5b:33:6c:2f:44:a7:65:8c:ac:e5:63:8e:50:f2:48:f5:94: 98:40:62:54:e8:bf:11:0f:3b:58:80:1c:19:b5:11:e6:f4:0e: b0:dc:d7:e4:af:c3:af:13:fe:6c:8c:f1:be:3a:4f:50:8d:e2: 96:36:ca:b3:ce:d5:94:95:5a:7b:07:43:f4:57:1b:83:f5:f0: 2f:92:96:4c:5c:3f:e2:47:c6:db:5e:da:89:23:ec:86:0e:d6: b8:8f:10:b8:4f:18:98:44:f8:e2:72:4e:5b:39:ca:f0:4b:50: 38:06:28:be:86:6d:cd:1e:d3:fd:7c:bc:7e:07:c2:fa:01:c4: 26:72:ed:81:f8:8f:14:99:cd:5a:a5:bf:f6:77:dd:30:7f:88: 8a:58:a7:89 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4otJFMNvAPrh9gEWynGsJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDViMjU5MDlmM2I5NGU1NWY1ZWYzMzZhMjdkMjc0YTdkZmQw ZDk2YjIwHhcNMjYwMTAxMDgxODE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNmY3NGE0N2NjMzdlZmNjMTE3MDg4MjdjODIwY2RmMTg0MmRkMGQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Fv+Pace/pi8MuINK/B8Wv8DY+H6 NFJi/VbOtLfvH1iDFaY8om6BRKiS0HoIZozUHIb44mGtyWDpRDQ0tQwG6trrFdJk mY/PTxlKjprjiujcGeFTC1ebE2N//cC4RetbmD0DZofs5Ow5Eu85q5iPAJkCStd3 oU4wRlcVdH7QpeDyms7aB5anRkUU8SVo1QaNDq+TQeTf/drExbDg45e+ksyl9Ul1 S9dQXEUeWX3c/kwfldTUQrdWSosCijju083Lu4HFIEmIRlRx4FvylmZelyJ2h3SO mIjanrpERom6qX4DmRusSA5Ed2GmXiUnhrBwck5IBZOKPfRCFBRhHsuKHwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFCb3SkfMN+/MEXCIJ8ggzfGELdDWMB8GA1UdIwQY MBaAFFslkJ87lOVfXvM2on0nSn39DZayMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV3lXUW56dVU1VjllOHphaWZTZEtmZjBObHJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi9lMWIyMGYtNGQ2ZC00MGUwLWFmOGEt M2YxN2NiY2JhNWNhLzEvSnZkS1I4dzM3OHdSY0lnbnlDRE44WVF0ME5ZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi9lMWIyMGYtNGQ2ZC00MGUwLWFmOGEtM2YxN2NiY2JhNWNh LzEvV3lXUW56dVU1VjllOHphaWZTZEtmZjBObHJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuWLIMA0E AgACMAcDBQMqBAwAMA0GCSqGSIb3DQEBCwUAA4IBAQA3KyilAA39Cw1dpXk+kl4Q lly3EOD5UcFWJpvcLl2ISx2y+6In5OyPNZqz2SsgroGFYKqqYuWXtYOJ+u+6VECO qcj3G+8ZG98dMMfl82XE3DbQezmadKGcGWMG04NgA0NwGjRL+/DAcDxM9d58WzNs L0SnZYys5WOOUPJI9ZSYQGJU6L8RDztYgBwZtRHm9A6w3Nfkr8OvE/5sjPG+Ok9Q jeKWNsqzztWUlVp7B0P0VxuD9fAvkpZMXD/iR8bbXtqJI+yGDta4jxC4TxiYRPji ck5bOcrwS1A4Bii+hm3NHtP9fLx+B8L6AcQmcu2B+I8Umc1apb/2d90wf4iKWKeJ -----END CERTIFICATE-----Generated at Tue Feb 10 01:29:44 2026 by rpki-client