This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/J1ZNlvpAp8dQYGMOD7UX0oUYBcI.roa File: J1ZNlvpAp8dQYGMOD7UX0oUYBcI.roa (raw, json) Hash identifier: EeG9YUdg/cA88sV9yS1ysCVKGj6cTXLlHbFYfJXwIrI= Subject key identifier: 27:56:4D:96:FA:40:A7:C7:50:60:63:0E:0F:B5:17:D2:85:18:05:C2 Certificate issuer: /CN=3e17837a10db1d3dd73e20df0b479e40db2236fe Certificate serial: 019B7834F19FB8AA24E444F1571131919BC1 Authority key identifier: 3E:17:83:7A:10:DB:1D:3D:D7:3E:20:DF:0B:47:9E:40:DB:22:36:FE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PheDehDbHT3XPiDfC0eeQNsiNv4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/J1ZNlvpAp8dQYGMOD7UX0oUYBcI.roa Signing time: Thu 01 Jan 2026 06:18:14 +0000 ROA not before: Thu 01 Jan 2026 06:18:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210631 IP address blocks: 185.173.148.0/22 maxlen: 23 2a0b:5900::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.crl rsync://rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.mft rsync://rpki.ripe.net/repository/DEFAULT/PheDehDbHT3XPiDfC0eeQNsiNv4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 06 Jan 2026 18:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:f1:9f:b8:aa:24:e4:44:f1:57:11:31:91:9b:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e17837a10db1d3dd73e20df0b479e40db2236fe Validity Not Before: Jan 1 06:18:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=27564d96fa40a7c75060630e0fb517d2851805c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:98:3f:56:1b:ed:ed:f8:4e:69:83:59:c9:df: 47:c1:fb:1b:15:32:56:2a:6e:63:bb:8e:7a:75:f0: e0:56:32:f8:85:23:40:7a:54:c4:86:0c:95:3d:7a: ea:cc:18:7c:29:42:27:9c:27:6a:01:48:2e:b3:09: 2c:57:2d:77:64:40:b5:8d:d9:df:7d:a1:78:df:c7: a3:6d:3e:d9:0c:f7:65:f1:88:d4:34:8a:a9:0e:18: 29:ba:4a:bc:f3:fd:ca:68:e1:eb:08:17:0c:8c:ac: 92:98:53:33:a2:d7:0a:5b:f2:d3:eb:46:46:fb:9c: 16:a5:da:dc:58:8d:8b:cb:af:ad:4f:6c:35:56:4e: 22:bf:d9:43:66:40:16:f5:a5:e4:b8:70:90:06:79: 2f:24:ae:78:c7:07:d8:f2:46:6b:0d:13:42:26:87: 7e:8e:61:f0:33:40:0c:2e:5b:38:73:bf:cf:d7:e8: 3e:42:0d:85:1a:f5:f0:60:be:22:05:ad:85:18:e9: 7c:e3:0f:38:26:ac:e6:8c:26:f4:96:bb:16:44:a6: f6:1f:62:f8:1b:d0:59:51:62:06:95:67:44:df:f7: 6f:04:47:38:1b:5b:f4:5d:46:70:d6:fb:77:7c:41: 32:bb:db:73:5b:3d:8e:af:24:3f:5c:fd:5c:72:98: 11:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:56:4D:96:FA:40:A7:C7:50:60:63:0E:0F:B5:17:D2:85:18:05:C2 X509v3 Authority Key Identifier: keyid:3E:17:83:7A:10:DB:1D:3D:D7:3E:20:DF:0B:47:9E:40:DB:22:36:FE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PheDehDbHT3XPiDfC0eeQNsiNv4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/J1ZNlvpAp8dQYGMOD7UX0oUYBcI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.173.148.0/22 IPv6: 2a0b:5900::/32 Signature Algorithm: sha256WithRSAEncryption 1c:1f:25:40:97:05:31:5c:fd:51:9a:e3:8b:c4:43:60:a8:67: 14:9d:12:83:ff:35:e2:99:f2:ca:65:fb:cf:93:7c:31:c8:b4: 5c:ca:bc:0c:fc:61:29:c6:47:63:00:05:43:b9:03:ac:47:df: 35:40:35:43:fc:1f:f7:35:71:15:f8:12:fc:cc:0e:38:73:1a: b4:48:04:31:a8:c8:3f:7f:f0:04:21:ed:38:14:e7:c4:ff:0e: 2a:07:80:4a:15:b3:5b:51:40:27:9d:6e:fc:59:69:59:8f:57: ff:e8:bd:96:c8:27:5d:b4:95:a0:9b:d0:92:55:e6:65:43:22: c8:dd:a1:18:cb:dc:7c:b5:bf:09:32:69:7f:fe:37:2a:9e:de: d9:b1:06:ab:2c:81:23:ca:d7:f1:41:3c:ab:3e:0a:5a:f6:3d: a1:27:9f:25:5c:d9:d9:04:f2:d2:68:74:78:e1:02:b3:99:cc: e8:4b:32:1e:fc:4d:84:81:f2:bc:91:b1:9f:23:99:44:a5:35: 51:d3:94:d5:e8:45:11:0e:e1:f1:72:4c:67:77:09:b8:f0:00: ae:15:3e:49:06:d7:cd:74:82:f8:6f:8e:2d:e6:15:f3:54:43: df:16:1f:5f:4a:14:ec:88:c5:04:8c:6d:07:30:9e:9e:8d:6c: 56:83:b5:07 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4NPGfuKok5ETxVxExkZvBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlMTc4MzdhMTBkYjFkM2RkNzNlMjBkZjBiNDc5ZTQwZGIy MjM2ZmUwHhcNMjYwMTAxMDYxODE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNzU2NGQ5NmZhNDBhN2M3NTA2MDYzMGUwZmI1MTdkMjg1MTgwNWMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr5g/Vhvt7fhOaYNZyd9HwfsbFTJW Km5ju456dfDgVjL4hSNAelTEhgyVPXrqzBh8KUInnCdqAUguswksVy13ZEC1jdnf faF438ejbT7ZDPdl8YjUNIqpDhgpukq88/3KaOHrCBcMjKySmFMzotcKW/LT60ZG +5wWpdrcWI2Ly6+tT2w1Vk4iv9lDZkAW9aXkuHCQBnkvJK54xwfY8kZrDRNCJod+ jmHwM0AMLls4c7/P1+g+Qg2FGvXwYL4iBa2FGOl84w84JqzmjCb0lrsWRKb2H2L4 G9BZUWIGlWdE3/dvBEc4G1v0XUZw1vt3fEEyu9tzWz2OryQ/XP1ccpgRIwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFCdWTZb6QKfHUGBjDg+1F9KFGAXCMB8GA1UdIwQY MBaAFD4Xg3oQ2x091z4g3wtHnkDbIjb+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUGhlRGVoRGJIVDNYUGlEZkMwZWVRTnNpTnY0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS80YzA0M2MtNWZjZC00OGNiLWJkNTAt YzU5NmFmMmE0MmJhLzEvSjFaTmx2cEFwOGRRWUdNT0Q3VVgwb1VZQmNJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS80YzA0M2MtNWZjZC00OGNiLWJkNTAtYzU5NmFmMmE0MmJh LzEvUGhlRGVoRGJIVDNYUGlEZkMwZWVRTnNpTnY0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCua2UMA0E AgACMAcDBQAqC1kAMA0GCSqGSIb3DQEBCwUAA4IBAQAcHyVAlwUxXP1RmuOLxENg qGcUnRKD/zXimfLKZfvPk3wxyLRcyrwM/GEpxkdjAAVDuQOsR981QDVD/B/3NXEV +BL8zA44cxq0SAQxqMg/f/AEIe04FOfE/w4qB4BKFbNbUUAnnW78WWlZj1f/6L2W yCddtJWgm9CSVeZlQyLI3aEYy9x8tb8JMml//jcqnt7ZsQarLIEjytfxQTyrPgpa 9j2hJ58lXNnZBPLSaHR44QKzmczoSzIe/E2EgfK8kbGfI5lEpTVR05TV6EURDuHx ckxndwm48ACuFT5JBtfNdIL4b44t5hXzVEPfFh9fShTsiMUEjG0HMJ6ejWxWg7UH -----END CERTIFICATE-----Generated at Tue Jan 6 04:59:04 2026 by rpki-client