This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/96eb70-0d04-476f-825e-556cc2e071dc/1/jfn31bWoPt5u8J8dk_jaDuYtKVY.roa File: jfn31bWoPt5u8J8dk_jaDuYtKVY.roa (raw, json) Hash identifier: KodCP7xC+csniIon7z4178+lNkYaP00De8YC+4THaAc= Subject key identifier: 8D:F9:F7:D5:B5:A8:3E:DE:6E:F0:9F:1D:93:F8:DA:0E:E6:2D:29:56 Certificate issuer: /CN=1490fc17382dd6066a38e423badb2d8a18d1c045 Certificate serial: 019B7CEE6284A4F7F7931A69B7F183CAD9C1 Authority key identifier: 14:90:FC:17:38:2D:D6:06:6A:38:E4:23:BA:DB:2D:8A:18:D1:C0:45 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FJD8Fzgt1gZqOOQjutstihjRwEU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/96eb70-0d04-476f-825e-556cc2e071dc/1/jfn31bWoPt5u8J8dk_jaDuYtKVY.roa Signing time: Fri 02 Jan 2026 04:19:16 +0000 ROA not before: Fri 02 Jan 2026 04:19:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212100 IP address blocks: 185.1.59.0/24 maxlen: 24 2001:7f8:cc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/96eb70-0d04-476f-825e-556cc2e071dc/1/FJD8Fzgt1gZqOOQjutstihjRwEU.crl rsync://rpki.ripe.net/repository/DEFAULT/be/96eb70-0d04-476f-825e-556cc2e071dc/1/FJD8Fzgt1gZqOOQjutstihjRwEU.mft rsync://rpki.ripe.net/repository/DEFAULT/FJD8Fzgt1gZqOOQjutstihjRwEU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:62:84:a4:f7:f7:93:1a:69:b7:f1:83:ca:d9:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1490fc17382dd6066a38e423badb2d8a18d1c045 Validity Not Before: Jan 2 04:19:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8df9f7d5b5a83ede6ef09f1d93f8da0ee62d2956 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:4d:5e:ad:b0:6e:29:e2:cd:93:6d:a3:96:7e: d7:1b:25:dc:e7:10:7f:41:3e:db:a7:80:36:d8:f6: a4:12:d8:89:c0:a5:9e:a5:7b:6b:01:de:7e:e3:3d: f0:3c:cc:80:33:f3:ff:c7:62:fe:b6:ea:0c:c4:c9: 0f:e6:e6:c3:f1:06:05:f4:82:3d:f4:36:77:b7:aa: 92:25:97:b3:b1:bc:e1:38:6b:22:bc:e9:08:91:1c: 95:91:72:9e:a1:15:0a:de:50:56:4a:0a:c6:fa:d9: e5:f1:72:8a:f9:5b:be:f6:51:18:e6:61:0b:ee:1f: 0e:88:a2:c7:c2:21:a6:51:0a:d1:95:97:b2:93:8d: b3:31:8a:4f:25:d7:80:0e:a2:f1:bb:95:4a:df:1a: ba:1b:59:47:dd:64:3f:02:b2:31:51:bf:33:57:0f: 95:bd:e2:98:ba:2b:f9:7d:dc:28:60:ba:27:26:00: 58:32:fc:53:b8:0a:c1:9d:1c:9c:98:e7:c5:f3:2a: 25:7b:23:36:02:84:b5:ee:33:2b:71:5d:2a:45:58: c4:46:0f:77:b4:e8:88:e0:b2:ee:36:a2:5a:55:56: f8:30:05:8e:d3:4d:5b:6c:e5:fa:af:aa:d5:9a:2d: f2:b9:bb:58:d5:31:f9:09:8c:4b:57:a1:74:10:a0: c5:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:F9:F7:D5:B5:A8:3E:DE:6E:F0:9F:1D:93:F8:DA:0E:E6:2D:29:56 X509v3 Authority Key Identifier: keyid:14:90:FC:17:38:2D:D6:06:6A:38:E4:23:BA:DB:2D:8A:18:D1:C0:45 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FJD8Fzgt1gZqOOQjutstihjRwEU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/96eb70-0d04-476f-825e-556cc2e071dc/1/jfn31bWoPt5u8J8dk_jaDuYtKVY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/96eb70-0d04-476f-825e-556cc2e071dc/1/FJD8Fzgt1gZqOOQjutstihjRwEU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.1.59.0/24 IPv6: 2001:7f8:cc::/48 Signature Algorithm: sha256WithRSAEncryption 22:05:63:42:54:53:12:74:58:56:c4:40:c4:67:69:d0:d9:a4: 1b:5a:04:9a:c3:81:8c:01:d5:e6:cf:a5:59:dc:2b:f0:7f:96: 44:2a:e0:3a:d5:dd:f7:c5:38:5c:de:e3:d7:08:c4:9f:6c:db: 43:ae:46:65:b8:19:6f:b1:2a:ab:0c:5b:a6:f7:76:c0:b9:46: 6b:f0:b0:20:d2:04:7e:f1:89:e6:6f:63:ae:15:58:28:35:82: b5:c1:76:7b:34:d3:b3:81:75:3c:7d:61:12:e4:f4:ae:fc:f7: 77:6a:1f:32:55:d6:75:3b:1f:fb:6c:c7:ae:8e:f0:cd:61:92: 49:6e:9c:54:b4:02:36:7d:10:77:bb:8d:85:47:19:8a:18:82: 9e:c4:dd:73:40:03:ce:4b:50:e1:9c:76:ef:a3:dc:ee:6f:41: cd:c1:e2:86:cf:83:ab:4e:29:29:c0:36:0f:ac:5c:54:42:29: 39:be:60:2e:1b:44:de:d7:41:60:2b:1a:67:ac:76:b5:b0:d4: 9f:7a:86:f2:64:60:8f:ea:c1:02:af:6a:70:9f:00:dc:64:f6: 5b:c5:d9:2f:bd:9a:0e:42:2e:fe:a2:0d:9f:e0:19:01:e3:40: 77:0f:e2:53:44:aa:cb:15:74:13:a6:87:42:55:21:3d:ef:39: 88:a5:39:48 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt87mKEpPf3kxppt/GDytnBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE0OTBmYzE3MzgyZGQ2MDY2YTM4ZTQyM2JhZGIyZDhhMThk MWMwNDUwHhcNMjYwMTAyMDQxOTE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZGY5ZjdkNWI1YTgzZWRlNmVmMDlmMWQ5M2Y4ZGEwZWU2MmQyOTU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt01erbBuKeLNk22jln7XGyXc5xB/ QT7bp4A22PakEtiJwKWepXtrAd5+4z3wPMyAM/P/x2L+tuoMxMkP5ubD8QYF9II9 9DZ3t6qSJZezsbzhOGsivOkIkRyVkXKeoRUK3lBWSgrG+tnl8XKK+Vu+9lEY5mEL 7h8OiKLHwiGmUQrRlZeyk42zMYpPJdeADqLxu5VK3xq6G1lH3WQ/ArIxUb8zVw+V veKYuiv5fdwoYLonJgBYMvxTuArBnRycmOfF8yoleyM2AoS17jMrcV0qRVjERg93 tOiI4LLuNqJaVVb4MAWO001bbOX6r6rVmi3yubtY1TH5CYxLV6F0EKDFJQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFI3599W1qD7ebvCfHZP42g7mLSlWMB8GA1UdIwQY MBaAFBSQ/Bc4LdYGajjkI7rbLYoY0cBFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRkpEOEZ6Z3QxZ1pxT09RanV0c3RpaGpSd0VVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS85NmViNzAtMGQwNC00NzZmLTgyNWUt NTU2Y2MyZTA3MWRjLzEvamZuMzFiV29QdDV1OEo4ZGtfamFEdVl0S1ZZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS85NmViNzAtMGQwNC00NzZmLTgyNWUtNTU2Y2MyZTA3MWRj LzEvRkpEOEZ6Z3QxZ1pxT09RanV0c3RpaGpSd0VVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAuQE7MA8E AgACMAkDBwAgAQf4AMwwDQYJKoZIhvcNAQELBQADggEBACIFY0JUUxJ0WFbEQMRn adDZpBtaBJrDgYwB1ebPpVncK/B/lkQq4DrV3ffFOFze49cIxJ9s20OuRmW4GW+x KqsMW6b3dsC5RmvwsCDSBH7xieZvY64VWCg1grXBdns007OBdTx9YRLk9K7893dq HzJV1nU7H/tsx66O8M1hkklunFS0AjZ9EHe7jYVHGYoYgp7E3XNAA85LUOGcdu+j 3O5vQc3B4obPg6tOKSnANg+sXFRCKTm+YC4bRN7XQWArGmesdrWw1J96hvJkYI/q wQKvanCfANxk9lvF2S+9mg5CLv6iDZ/gGQHjQHcP4lNEqssVdBOmh0JVIT3vOYil OUg= -----END CERTIFICATE-----Generated at Mon Jan 19 18:02:51 2026 by rpki-client