This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/c345f3-b53a-41bf-996b-34b8d9de96ca/1/jpSNAjoIWW5o1dEpckRnfaNZUDo.roa File: jpSNAjoIWW5o1dEpckRnfaNZUDo.roa (raw, json) Hash identifier: kdIhMxsuZJUQm1IC9DaIIdMEPEig2DJxhqMNYmLbqDc= Subject key identifier: 8E:94:8D:02:3A:08:59:6E:68:D5:D1:29:72:44:67:7D:A3:59:50:3A Certificate issuer: /CN=a634878281144a46a856003d622f6141ea4e006f Certificate serial: 019B7E39126ADD1F330D3B9A6B567A7C9427 Authority key identifier: A6:34:87:82:81:14:4A:46:A8:56:00:3D:62:2F:61:41:EA:4E:00:6F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pjSHgoEUSkaoVgA9Yi9hQepOAG8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/c345f3-b53a-41bf-996b-34b8d9de96ca/1/jpSNAjoIWW5o1dEpckRnfaNZUDo.roa Signing time: Fri 02 Jan 2026 10:20:28 +0000 ROA not before: Fri 02 Jan 2026 10:20:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44381 IP address blocks: 45.154.232.0/24 maxlen: 24 45.154.233.0/24 maxlen: 24 45.154.235.0/24 maxlen: 24 92.62.32.0/20 maxlen: 20 95.141.64.0/20 maxlen: 20 217.144.64.0/20 maxlen: 20 2a02:2c8::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/c345f3-b53a-41bf-996b-34b8d9de96ca/1/pjSHgoEUSkaoVgA9Yi9hQepOAG8.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/c345f3-b53a-41bf-996b-34b8d9de96ca/1/pjSHgoEUSkaoVgA9Yi9hQepOAG8.mft rsync://rpki.ripe.net/repository/DEFAULT/pjSHgoEUSkaoVgA9Yi9hQepOAG8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:12:6a:dd:1f:33:0d:3b:9a:6b:56:7a:7c:94:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a634878281144a46a856003d622f6141ea4e006f Validity Not Before: Jan 2 10:20:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8e948d023a08596e68d5d1297244677da359503a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:85:68:33:ff:b8:55:46:d0:e1:b9:d0:d7:45: d7:38:88:80:f5:91:df:5b:2e:c5:48:26:dc:ef:13: e1:16:e2:9f:ba:ac:35:05:d6:cf:3b:cc:91:51:3c: 49:b8:27:7f:df:37:cb:a5:b2:05:7d:ee:39:88:bb: 0f:51:80:51:b4:c7:18:71:ee:68:c3:3c:1e:37:af: 21:7f:a6:66:60:bb:c0:ed:3c:34:8a:86:b5:d6:f3: 4c:1a:0d:c8:8a:fe:71:02:a2:e3:5b:36:76:a9:3c: 00:44:81:b1:6c:2c:3c:b1:53:2f:6b:b0:d2:fa:6a: 43:be:07:25:57:49:12:d7:48:33:32:56:83:ab:d9: d2:c2:8a:16:20:7c:f1:f0:63:b4:4e:1a:c0:94:8c: d1:32:7a:b6:64:59:64:50:4e:58:f6:2d:1e:60:ab: 1e:aa:41:0b:57:d5:22:16:94:d5:65:6d:d5:7e:4c: a7:fe:2e:61:9c:6a:04:1f:f9:58:a2:d8:ea:90:5e: e3:ef:b9:79:d6:e3:9d:42:40:04:3f:a9:31:f9:f3: 47:8a:35:45:69:88:13:99:a0:3a:5e:27:d4:20:d0: b8:54:e9:07:09:76:63:6f:c6:81:4a:f6:ea:1a:1f: dd:27:90:1a:01:d1:8a:a5:9f:e0:13:a1:68:9c:bb: 96:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:94:8D:02:3A:08:59:6E:68:D5:D1:29:72:44:67:7D:A3:59:50:3A X509v3 Authority Key Identifier: keyid:A6:34:87:82:81:14:4A:46:A8:56:00:3D:62:2F:61:41:EA:4E:00:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pjSHgoEUSkaoVgA9Yi9hQepOAG8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c345f3-b53a-41bf-996b-34b8d9de96ca/1/jpSNAjoIWW5o1dEpckRnfaNZUDo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c345f3-b53a-41bf-996b-34b8d9de96ca/1/pjSHgoEUSkaoVgA9Yi9hQepOAG8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.154.232.0/23 45.154.235.0/24 92.62.32.0/20 95.141.64.0/20 217.144.64.0/20 IPv6: 2a02:2c8::/32 Signature Algorithm: sha256WithRSAEncryption 10:91:fc:a5:46:c5:96:e5:06:bf:95:d8:3c:0b:f7:a9:65:13: 52:c1:90:c4:39:84:dc:b0:f1:06:ee:8f:37:b5:49:64:34:3b: ab:c8:b7:49:a1:76:f7:80:16:88:4c:7a:84:35:c0:88:f9:b3: 40:64:18:7b:ef:02:a8:91:3a:de:cd:52:7f:b1:39:c1:67:07: cb:62:f6:6d:5b:4b:a0:bd:03:99:e3:9f:a2:ee:ed:b1:cb:86: 6a:f8:57:72:56:6b:63:13:5f:1d:6c:5d:5b:f9:55:17:a2:ff: 7e:21:e3:8f:47:20:e2:ee:cf:69:41:d0:fd:8f:7a:e6:1b:8c: 22:1c:1e:e2:f2:2f:ec:46:d1:99:53:52:ed:b6:76:f1:1d:68: 8b:a2:03:2d:60:51:b3:7b:45:f9:8d:81:98:f3:66:06:99:b2: 19:60:76:28:77:9b:8e:07:73:18:fc:79:c1:42:e6:b7:4c:71: 51:f9:85:e3:be:61:d1:4b:21:cc:92:a2:95:6e:21:6c:53:47: 20:b9:c0:60:dc:1f:b4:0e:f8:16:17:66:0c:87:70:4b:8f:a1: 5c:f8:fe:63:52:78:d5:06:09:13:b0:2e:c9:cf:e6:50:0f:fe: 78:4c:80:00:1a:44:d4:26:3e:7f:13:28:34:f7:b2:3c:39:3f: 71:00:23:bc -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgISAZt+ORJq3R8zDTuaa1Z6fJQnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2MzQ4NzgyODExNDRhNDZhODU2MDAzZDYyMmY2MTQxZWE0 ZTAwNmYwHhcNMjYwMTAyMTAyMDI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZTk0OGQwMjNhMDg1OTZlNjhkNWQxMjk3MjQ0Njc3ZGEzNTk1MDNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArYVoM/+4VUbQ4bnQ10XXOIiA9ZHf Wy7FSCbc7xPhFuKfuqw1BdbPO8yRUTxJuCd/3zfLpbIFfe45iLsPUYBRtMcYce5o wzweN68hf6ZmYLvA7Tw0ioa11vNMGg3Iiv5xAqLjWzZ2qTwARIGxbCw8sVMva7DS +mpDvgclV0kS10gzMlaDq9nSwooWIHzx8GO0ThrAlIzRMnq2ZFlkUE5Y9i0eYKse qkELV9UiFpTVZW3Vfkyn/i5hnGoEH/lYotjqkF7j77l51uOdQkAEP6kx+fNHijVF aYgTmaA6XifUINC4VOkHCXZjb8aBSvbqGh/dJ5AaAdGKpZ/gE6FonLuWfwIDAQAB o4ICMDCCAiwwHQYDVR0OBBYEFI6UjQI6CFluaNXRKXJEZ32jWVA6MB8GA1UdIwQY MBaAFKY0h4KBFEpGqFYAPWIvYUHqTgBvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcGpTSGdvRVVTa2FvVmdBOVlpOWhRZXBPQUc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS9jMzQ1ZjMtYjUzYS00MWJmLTk5NmIt MzRiOGQ5ZGU5NmNhLzEvanBTTkFqb0lXVzVvMWRFcGNrUm5mYU5aVURvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS9jMzQ1ZjMtYjUzYS00MWJmLTk5NmItMzRiOGQ5ZGU5NmNh LzEvcGpTSGdvRVVTa2FvVmdBOVlpOWhRZXBPQUc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQBLZroAwQA LZrrAwQEXD4gAwQEX41AAwQE2ZBAMA0EAgACMAcDBQAqAgLIMA0GCSqGSIb3DQEB CwUAA4IBAQAQkfylRsWW5Qa/ldg8C/epZRNSwZDEOYTcsPEG7o83tUlkNDuryLdJ oXb3gBaITHqENcCI+bNAZBh77wKokTrezVJ/sTnBZwfLYvZtW0ugvQOZ45+i7u2x y4Zq+FdyVmtjE18dbF1b+VUXov9+IeOPRyDi7s9pQdD9j3rmG4wiHB7i8i/sRtGZ U1LttnbxHWiLogMtYFGze0X5jYGY82YGmbIZYHYod5uOB3MY/HnBQua3THFR+YXj vmHRSyHMkqKVbiFsU0cgucBg3B+0DvgWF2YMh3BLj6Fc+P5jUnjVBgkTsC7Jz+ZQ D/54TIAAGkTUJj5/Eyg097I8OT9xACO8 -----END CERTIFICATE-----Generated at Mon Feb 9 21:23:35 2026 by rpki-client