This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/a1972a-9e18-4791-8530-f774f1eafbff/1/jN1MNJJzz6nkhurADJXEP9ytqmM.roa File: jN1MNJJzz6nkhurADJXEP9ytqmM.roa (raw, json) Hash identifier: GRqEsDxhV3ugvj9OHpXpUsMc7ljdeWmRso4kAcjjsao= Subject key identifier: 8C:DD:4C:34:92:73:CF:A9:E4:86:EA:C0:0C:95:C4:3F:DC:AD:AA:63 Certificate issuer: /CN=0b1c6d0de70cc51805b63a5e2327622525d075b1 Certificate serial: 019B7DCA9C7F4755F39BBED316E46C1BEFB0 Authority key identifier: 0B:1C:6D:0D:E7:0C:C5:18:05:B6:3A:5E:23:27:62:25:25:D0:75:B1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CxxtDecMxRgFtjpeIydiJSXQdbE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/a1972a-9e18-4791-8530-f774f1eafbff/1/jN1MNJJzz6nkhurADJXEP9ytqmM.roa Signing time: Fri 02 Jan 2026 08:19:48 +0000 ROA not before: Fri 02 Jan 2026 08:19:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 46.226.52.0/23 maxlen: 23 85.158.140.0/24 maxlen: 24 85.158.141.0/24 maxlen: 24 85.158.142.0/24 maxlen: 24 85.158.143.0/24 maxlen: 24 193.109.254.0/24 maxlen: 24 193.109.255.0/24 maxlen: 24 195.245.230.0/24 maxlen: 24 195.245.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/a1972a-9e18-4791-8530-f774f1eafbff/1/CxxtDecMxRgFtjpeIydiJSXQdbE.crl rsync://rpki.ripe.net/repository/DEFAULT/ca/a1972a-9e18-4791-8530-f774f1eafbff/1/CxxtDecMxRgFtjpeIydiJSXQdbE.mft rsync://rpki.ripe.net/repository/DEFAULT/CxxtDecMxRgFtjpeIydiJSXQdbE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 14:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:9c:7f:47:55:f3:9b:be:d3:16:e4:6c:1b:ef:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0b1c6d0de70cc51805b63a5e2327622525d075b1 Validity Not Before: Jan 2 08:19:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8cdd4c349273cfa9e486eac00c95c43fdcadaa63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a2:60:fd:23:8c:c7:42:e3:d2:6b:d9:9e:e6: a6:66:06:fa:3c:66:85:ed:fa:ec:8e:5d:e5:8b:c2: f4:b5:56:97:ac:b7:63:ef:55:4c:6a:7d:c5:b8:83: 39:8b:42:ba:3d:7c:64:8a:5a:80:dc:6d:b6:c0:fc: fc:17:b8:f1:01:ff:c6:2e:c3:97:5c:f4:b4:03:da: 04:f6:1b:ef:8f:9d:a5:fe:a8:1b:f9:c1:69:a5:7d: ff:dd:20:b1:1e:a5:0b:45:8a:80:f5:98:8c:08:71: 92:cb:95:c1:8e:58:6b:50:6a:c0:69:59:08:09:a3: 7a:fb:20:f7:9e:51:7a:bb:ec:4f:21:1a:f2:05:a5: db:93:38:a6:fd:bc:3a:66:2a:0a:77:bf:e3:77:ea: e0:92:ed:f2:49:2c:10:bc:bd:ba:3c:77:2d:46:24: df:4a:4b:b6:74:ee:c3:1c:fa:9a:60:35:05:c4:35: 86:45:5b:3c:0e:6d:63:1d:56:6f:d8:e6:02:d5:3c: ac:1c:2f:d0:4f:9b:81:8d:b3:5d:a3:65:2e:37:18: 2f:97:a0:1d:45:9d:66:13:35:68:be:bc:fa:c9:fe: 20:d5:ec:95:88:e6:2c:8a:6d:2d:6e:4e:7e:e5:9f: 60:00:f1:b5:75:c8:58:36:4f:d3:b2:dd:a7:97:eb: 97:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:DD:4C:34:92:73:CF:A9:E4:86:EA:C0:0C:95:C4:3F:DC:AD:AA:63 X509v3 Authority Key Identifier: keyid:0B:1C:6D:0D:E7:0C:C5:18:05:B6:3A:5E:23:27:62:25:25:D0:75:B1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CxxtDecMxRgFtjpeIydiJSXQdbE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/a1972a-9e18-4791-8530-f774f1eafbff/1/jN1MNJJzz6nkhurADJXEP9ytqmM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/a1972a-9e18-4791-8530-f774f1eafbff/1/CxxtDecMxRgFtjpeIydiJSXQdbE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.226.52.0/23 85.158.140.0/22 193.109.254.0/23 195.245.230.0/23 Signature Algorithm: sha256WithRSAEncryption 84:b3:0b:a3:9e:0d:dd:12:52:d5:2b:5f:86:dd:0b:fe:48:95: 58:bc:9d:51:a0:37:08:b1:a1:ae:76:dd:e0:5b:94:75:99:23: 3d:e3:db:5d:ef:96:9c:e9:30:7f:4a:ab:75:2f:24:03:aa:56: d3:68:00:eb:0c:14:ab:11:a7:9b:fa:be:3d:df:85:50:53:56: 09:96:8b:31:16:93:82:13:7a:2a:8a:7e:90:6c:a2:fe:e2:30: 12:ff:16:19:57:35:c3:63:08:80:97:55:85:b9:9c:db:58:87: 11:91:68:de:d7:e3:63:32:d0:c0:c9:85:96:ac:77:a3:60:16: 39:ac:13:e7:19:d3:38:8a:0a:ad:14:7e:ae:fc:bd:bc:6b:3e: 30:c3:0d:f1:ca:ad:4f:e9:fc:1f:e4:4a:0e:d5:3c:1e:74:aa: 88:4c:af:a7:37:af:98:6e:ad:9c:c2:26:80:49:93:27:3d:36: ae:41:ce:a8:62:64:b9:86:7e:2a:6e:53:4d:36:cb:17:62:9d: 86:5d:94:65:6f:1c:ff:70:44:18:c2:16:86:69:30:8e:6e:fc: 7b:fb:91:43:58:74:31:cb:f4:6e:be:c7:8b:dd:b4:7d:c6:7d: 2e:5d:a8:a7:2b:6f:76:05:2f:b6:e7:73:3f:61:8e:93:3d:9e: 7b:61:8b:a7 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZt9ypx/R1Xzm77TFuRsG++wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBiMWM2ZDBkZTcwY2M1MTgwNWI2M2E1ZTIzMjc2MjI1MjVk MDc1YjEwHhcNMjYwMTAyMDgxOTQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4Y2RkNGMzNDkyNzNjZmE5ZTQ4NmVhYzAwYzk1YzQzZmRjYWRhYTYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu6Jg/SOMx0Lj0mvZnuamZgb6PGaF 7frsjl3li8L0tVaXrLdj71VMan3FuIM5i0K6PXxkilqA3G22wPz8F7jxAf/GLsOX XPS0A9oE9hvvj52l/qgb+cFppX3/3SCxHqULRYqA9ZiMCHGSy5XBjlhrUGrAaVkI CaN6+yD3nlF6u+xPIRryBaXbkzim/bw6ZioKd7/jd+rgku3ySSwQvL26PHctRiTf Sku2dO7DHPqaYDUFxDWGRVs8Dm1jHVZv2OYC1TysHC/QT5uBjbNdo2UuNxgvl6Ad RZ1mEzVovrz6yf4g1eyViOYsim0tbk5+5Z9gAPG1dchYNk/Tst2nl+uXBwIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFIzdTDSSc8+p5IbqwAyVxD/crapjMB8GA1UdIwQY MBaAFAscbQ3nDMUYBbY6XiMnYiUl0HWxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ3h4dERlY014UmdGdGpwZUl5ZGlKU1hRZGJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS9hMTk3MmEtOWUxOC00NzkxLTg1MzAt Zjc3NGYxZWFmYmZmLzEvak4xTU5KSnp6Nm5raHVyQURKWEVQOXl0cW1NLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYS9hMTk3MmEtOWUxOC00NzkxLTg1MzAtZjc3NGYxZWFmYmZm LzEvQ3h4dERlY014UmdGdGpwZUl5ZGlKU1hRZGJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQBLuI0AwQC VZ6MAwQBwW3+AwQBw/XmMA0GCSqGSIb3DQEBCwUAA4IBAQCEswujng3dElLVK1+G 3Qv+SJVYvJ1RoDcIsaGudt3gW5R1mSM949td75ac6TB/Sqt1LyQDqlbTaADrDBSr Eaeb+r4934VQU1YJlosxFpOCE3oqin6QbKL+4jAS/xYZVzXDYwiAl1WFuZzbWIcR kWje1+NjMtDAyYWWrHejYBY5rBPnGdM4igqtFH6u/L28az4www3xyq1P6fwf5EoO 1TwedKqITK+nN6+Ybq2cwiaASZMnPTauQc6oYmS5hn4qblNNNssXYp2GXZRlbxz/ cEQYwhaGaTCObvx7+5FDWHQxy/RuvseL3bR9xn0uXainK292BS+253M/YY6TPZ57 YYun -----END CERTIFICATE-----Generated at Wed Jan 7 23:47:57 2026 by rpki-client