This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/rjNblK4bxhZyMeZC4OHShSQ8Jlc.roa File: rjNblK4bxhZyMeZC4OHShSQ8Jlc.roa (raw, json) Hash identifier: yvBwo79kSdn4a3N6pjUOiYNe2QQKF2EmdQtpBeT8m8w= Subject key identifier: AE:33:5B:94:AE:1B:C6:16:72:31:E6:42:E0:E1:D2:85:24:3C:26:57 Certificate issuer: /CN=3a00807698f0b097d69ab3926917d1dcc838a624 Certificate serial: 019B7C128D09D3868CAB87F9BA69A683000F Authority key identifier: 3A:00:80:76:98:F0:B0:97:D6:9A:B3:92:69:17:D1:DC:C8:38:A6:24 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/rjNblK4bxhZyMeZC4OHShSQ8Jlc.roa Signing time: Fri 02 Jan 2026 00:19:09 +0000 ROA not before: Fri 02 Jan 2026 00:19:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 52000 IP address blocks: 5.180.97.0/24 maxlen: 24 45.11.79.0/24 maxlen: 24 45.81.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.mft rsync://rpki.ripe.net/repository/DEFAULT/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:8d:09:d3:86:8c:ab:87:f9:ba:69:a6:83:00:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a00807698f0b097d69ab3926917d1dcc838a624 Validity Not Before: Jan 2 00:19:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ae335b94ae1bc6167231e642e0e1d285243c2657 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:4b:63:01:f3:c8:df:8c:d0:65:ec:c1:28:76: 85:2a:23:52:af:5b:ed:42:d3:78:f0:c1:6f:90:4d: de:4b:5c:a9:eb:19:9a:72:64:98:c2:aa:0e:22:95: 6f:20:06:81:20:b0:03:c0:80:35:75:eb:2b:f9:95: 6a:06:eb:33:db:95:34:c3:90:4a:a5:b3:7f:f6:75: 3d:de:91:fe:c9:3a:c0:3f:5e:7b:66:cd:00:4e:84: e4:04:ce:fb:32:57:19:31:97:49:13:e2:04:1a:bb: cb:1f:b7:72:1b:6e:94:d0:42:87:f4:bd:75:ed:52: 47:50:32:72:fa:b0:a4:a6:f4:02:ce:7b:fe:a3:68: 89:7e:0b:be:74:45:30:91:df:f0:3f:84:4b:99:a3: f3:f0:72:7a:e6:f3:f7:29:de:a6:dd:b9:5d:c0:09: a6:89:b4:64:66:64:5f:91:d4:68:35:1a:10:1b:10: 43:ab:a6:0f:0b:7d:df:da:f2:c4:cc:2a:59:95:e2: e8:ba:cb:a1:72:9f:9a:3c:b1:e7:75:d6:57:9a:96: a8:ea:4f:90:35:72:67:8e:bb:e6:91:f6:4c:40:ed: c9:d2:81:ca:60:00:9b:b7:52:39:89:5b:e3:28:22: ff:8b:84:fd:31:53:05:67:47:91:e9:a6:50:51:74: c6:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:33:5B:94:AE:1B:C6:16:72:31:E6:42:E0:E1:D2:85:24:3C:26:57 X509v3 Authority Key Identifier: keyid:3A:00:80:76:98:F0:B0:97:D6:9A:B3:92:69:17:D1:DC:C8:38:A6:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/rjNblK4bxhZyMeZC4OHShSQ8Jlc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.180.97.0/24 45.11.79.0/24 45.81.35.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:3f:20:2e:d8:5e:01:58:94:7e:9f:29:46:88:74:ff:c7:03: 73:92:25:f0:05:2e:ec:3a:e2:e5:92:ee:da:3a:9a:38:fa:26: 3b:43:77:19:bb:f4:3f:38:de:f1:c4:6e:8d:65:03:be:f4:9d: cf:15:ee:a7:e0:a7:8b:f2:26:af:15:10:bf:05:04:3b:c5:38: a6:df:14:ef:34:5d:ce:52:90:43:c1:c1:d1:b6:64:bb:66:20: cd:6a:bd:c6:a2:97:5a:4e:7a:d2:d0:bf:e4:fb:fa:f6:24:05: 16:f9:b2:b9:b4:65:57:1f:f2:ed:26:01:b9:95:97:e3:f6:c8: c2:d9:34:75:cd:f6:e4:39:ba:20:e1:fe:cb:f2:6d:25:ef:84: ba:04:3c:e4:91:06:47:5c:52:53:1e:43:7a:3b:f3:c5:9b:a4: 2d:da:3f:3e:fd:1c:47:95:10:9f:49:80:b7:b2:6d:b6:88:41: 5c:3f:69:fe:8e:7a:40:c3:13:56:36:6f:f6:a9:35:0e:7a:dc: 37:42:fa:7f:fd:32:ae:e9:a3:e2:85:88:58:3e:5e:89:a5:24: b2:57:a1:85:82:19:c3:c9:3d:52:1e:8d:57:53:28:52:e3:90: a9:a8:f1:56:b6:88:8a:47:62:30:1a:81:ca:96:56:d5:da:d1: da:cf:eb:d6 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt8Eo0J04aMq4f5ummmgwAPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhMDA4MDc2OThmMGIwOTdkNjlhYjM5MjY5MTdkMWRjYzgz OGE2MjQwHhcNMjYwMTAyMDAxOTA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZTMzNWI5NGFlMWJjNjE2NzIzMWU2NDJlMGUxZDI4NTI0M2MyNjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArktjAfPI34zQZezBKHaFKiNSr1vt QtN48MFvkE3eS1yp6xmacmSYwqoOIpVvIAaBILADwIA1desr+ZVqBusz25U0w5BK pbN/9nU93pH+yTrAP157Zs0AToTkBM77MlcZMZdJE+IEGrvLH7dyG26U0EKH9L11 7VJHUDJy+rCkpvQCznv+o2iJfgu+dEUwkd/wP4RLmaPz8HJ65vP3Kd6m3bldwAmm ibRkZmRfkdRoNRoQGxBDq6YPC33f2vLEzCpZleLousuhcp+aPLHnddZXmpao6k+Q NXJnjrvmkfZMQO3J0oHKYACbt1I5iVvjKCL/i4T9MVMFZ0eR6aZQUXTGEwIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFK4zW5SuG8YWcjHmQuDh0oUkPCZXMB8GA1UdIwQY MBaAFDoAgHaY8LCX1pqzkmkX0dzIOKYkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2dDQWRwandzSmZXbXJPU2FSZlIzTWc0cGlRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS8xNDNkMjktY2Y3Mi00ZDAxLTkxOGMt MTZhZmM0ZGZmZGQ0LzEvcmpOYmxLNGJ4aFp5TWVaQzRPSFNoU1E4SmxjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS8xNDNkMjktY2Y3Mi00ZDAxLTkxOGMtMTZhZmM0ZGZmZGQ0 LzEvT2dDQWRwandzSmZXbXJPU2FSZlIzTWc0cGlRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQABbRhAwQA LQtPAwQALVEjMA0GCSqGSIb3DQEBCwUAA4IBAQB8PyAu2F4BWJR+nylGiHT/xwNz kiXwBS7sOuLlku7aOpo4+iY7Q3cZu/Q/ON7xxG6NZQO+9J3PFe6n4KeL8iavFRC/ BQQ7xTim3xTvNF3OUpBDwcHRtmS7ZiDNar3GopdaTnrS0L/k+/r2JAUW+bK5tGVX H/LtJgG5lZfj9sjC2TR1zfbkObog4f7L8m0l74S6BDzkkQZHXFJTHkN6O/PFm6Qt 2j8+/RxHlRCfSYC3sm22iEFcP2n+jnpAwxNWNm/2qTUOetw3Qvp//TKu6aPihYhY Pl6JpSSyV6GFghnDyT1SHo1XUyhS45CpqPFWtoiKR2IwGoHKllbV2tHaz+vW -----END CERTIFICATE-----Generated at Thu Jan 8 23:54:37 2026 by rpki-client