This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/f35432-cf99-4f19-a76e-07b7fef0858f/1/jpcPAYO0vBwJA8ouiKgmlRSBP_I.roa File: jpcPAYO0vBwJA8ouiKgmlRSBP_I.roa (raw, json) Hash identifier: ndvQcEOfrGPn5H+JU39HBzxi3s5bQEUJ9vA23XpxTsI= Subject key identifier: 8E:97:0F:01:83:B4:BC:1C:09:03:CA:2E:88:A8:26:95:14:81:3F:F2 Certificate issuer: /CN=c9b232958097b5863eafd047bb315171eaa01fb7 Certificate serial: 019B7DCACCD878FD7282CB647B0F25C823FE Authority key identifier: C9:B2:32:95:80:97:B5:86:3E:AF:D0:47:BB:31:51:71:EA:A0:1F:B7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ybIylYCXtYY-r9BHuzFRceqgH7c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/f35432-cf99-4f19-a76e-07b7fef0858f/1/jpcPAYO0vBwJA8ouiKgmlRSBP_I.roa Signing time: Fri 02 Jan 2026 08:20:01 +0000 ROA not before: Fri 02 Jan 2026 08:20:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57326 IP address blocks: 95.128.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/f35432-cf99-4f19-a76e-07b7fef0858f/1/ybIylYCXtYY-r9BHuzFRceqgH7c.crl rsync://rpki.ripe.net/repository/DEFAULT/de/f35432-cf99-4f19-a76e-07b7fef0858f/1/ybIylYCXtYY-r9BHuzFRceqgH7c.mft rsync://rpki.ripe.net/repository/DEFAULT/ybIylYCXtYY-r9BHuzFRceqgH7c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:cc:d8:78:fd:72:82:cb:64:7b:0f:25:c8:23:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c9b232958097b5863eafd047bb315171eaa01fb7 Validity Not Before: Jan 2 08:20:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8e970f0183b4bc1c0903ca2e88a8269514813ff2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:49:61:80:b2:2e:da:ad:b0:d3:94:00:67:61: 01:15:72:bd:95:ef:46:49:6b:58:aa:6e:ad:43:4c: 3f:18:65:3c:e3:ca:3c:c9:12:43:32:a4:92:ea:7b: 6b:2b:70:b0:1f:0e:f0:4d:e2:97:c0:38:ef:96:5c: 96:08:ea:1e:84:9f:79:15:bb:38:6b:f0:c6:f3:18: 25:f0:9f:01:c6:e2:c9:85:9e:47:22:4e:eb:15:b2: 9c:ca:3b:0f:36:91:1b:8e:ff:68:5b:91:a3:b3:c5: ce:d2:ae:ff:7d:fc:73:b4:a1:fb:a8:f0:6d:58:b1: 84:13:b5:cf:09:41:d6:a1:79:99:15:0f:d8:f6:de: c8:b1:cb:57:35:16:57:bc:cf:ed:ce:1a:9a:dd:19: cd:39:3d:c7:bd:76:cd:32:de:46:46:3e:a7:93:a0: ef:8f:8d:06:7a:a5:18:4c:c6:1c:b2:54:eb:63:84: 42:0a:c8:8c:58:9b:4a:4f:cf:51:36:8f:10:a0:49: 88:03:3b:c8:41:3f:16:61:7b:14:a0:c6:db:1c:c3: da:9b:1f:63:25:8e:bf:b1:d9:01:31:b4:2f:5c:e6: cc:24:51:d7:3b:69:45:ee:6e:39:74:d6:48:a6:f8: 99:f2:82:38:15:21:65:4b:d5:05:13:c6:89:19:39: 65:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:97:0F:01:83:B4:BC:1C:09:03:CA:2E:88:A8:26:95:14:81:3F:F2 X509v3 Authority Key Identifier: keyid:C9:B2:32:95:80:97:B5:86:3E:AF:D0:47:BB:31:51:71:EA:A0:1F:B7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ybIylYCXtYY-r9BHuzFRceqgH7c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f35432-cf99-4f19-a76e-07b7fef0858f/1/jpcPAYO0vBwJA8ouiKgmlRSBP_I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f35432-cf99-4f19-a76e-07b7fef0858f/1/ybIylYCXtYY-r9BHuzFRceqgH7c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.128.172.0/24 Signature Algorithm: sha256WithRSAEncryption 70:f8:c3:73:c4:26:71:15:78:89:87:25:02:18:0d:5a:9e:d7: c4:df:3c:c5:b8:26:96:4e:85:ef:f6:2f:f6:04:43:47:54:97: b1:d2:37:6d:cd:83:28:fe:63:ed:87:6d:4e:b3:f8:3c:48:7a: 40:bd:23:e0:66:d2:9e:ee:61:76:ab:51:33:07:22:10:a6:d6: 5c:52:60:51:2a:82:fe:84:6f:22:5b:ec:14:6c:ea:ec:15:13: a5:9a:af:2c:86:9e:14:f8:fe:83:66:0e:77:e3:a6:5d:ff:92: 24:7d:f0:c3:43:7b:e1:ef:5f:dc:07:95:1a:cf:1a:98:b1:08: e9:4d:c3:97:58:69:7b:09:f9:64:49:cb:6b:18:a3:db:f5:98: f6:16:b3:e3:5c:4e:8a:94:e7:62:e5:ec:53:d7:80:74:90:13: 2c:6e:38:4c:cf:52:73:45:e7:11:d7:94:91:0b:28:bd:33:3c: a7:61:59:5f:ab:96:e2:b2:21:f9:96:97:c8:84:28:f4:8d:82: da:c9:4b:e2:a9:06:5c:4d:4a:06:30:89:78:f3:00:fb:4a:91: a5:c0:bf:76:5d:d8:49:1f:76:bb:2d:49:6b:9e:6f:08:6d:0e: e2:40:45:f3:90:53:a1:28:de:87:27:da:a5:f3:ae:97:76:ac: 10:e7:cf:4b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9yszYeP1ygstkew8lyCP+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM5YjIzMjk1ODA5N2I1ODYzZWFmZDA0N2JiMzE1MTcxZWFh MDFmYjcwHhcNMjYwMTAyMDgyMDAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZTk3MGYwMTgzYjRiYzFjMDkwM2NhMmU4OGE4MjY5NTE0ODEzZmYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyElhgLIu2q2w05QAZ2EBFXK9le9G SWtYqm6tQ0w/GGU848o8yRJDMqSS6ntrK3CwHw7wTeKXwDjvllyWCOoehJ95Fbs4 a/DG8xgl8J8BxuLJhZ5HIk7rFbKcyjsPNpEbjv9oW5Gjs8XO0q7/ffxztKH7qPBt WLGEE7XPCUHWoXmZFQ/Y9t7IsctXNRZXvM/tzhqa3RnNOT3HvXbNMt5GRj6nk6Dv j40GeqUYTMYcslTrY4RCCsiMWJtKT89RNo8QoEmIAzvIQT8WYXsUoMbbHMPamx9j JY6/sdkBMbQvXObMJFHXO2lF7m45dNZIpviZ8oI4FSFlS9UFE8aJGTllxwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFI6XDwGDtLwcCQPKLoioJpUUgT/yMB8GA1UdIwQY MBaAFMmyMpWAl7WGPq/QR7sxUXHqoB+3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWJJeWxZQ1h0WVktcjlCSHV6RlJjZXFnSDdjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS9mMzU0MzItY2Y5OS00ZjE5LWE3NmUt MDdiN2ZlZjA4NThmLzEvanBjUEFZTzB2QndKQThvdWlLZ21sUlNCUF9JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZS9mMzU0MzItY2Y5OS00ZjE5LWE3NmUtMDdiN2ZlZjA4NThm LzEveWJJeWxZQ1h0WVktcjlCSHV6RlJjZXFnSDdjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAX4CsMA0G CSqGSIb3DQEBCwUAA4IBAQBw+MNzxCZxFXiJhyUCGA1antfE3zzFuCaWToXv9i/2 BENHVJex0jdtzYMo/mPth21Os/g8SHpAvSPgZtKe7mF2q1EzByIQptZcUmBRKoL+ hG8iW+wUbOrsFROlmq8shp4U+P6DZg5346Zd/5IkffDDQ3vh71/cB5UazxqYsQjp TcOXWGl7CflkSctrGKPb9Zj2FrPjXE6KlOdi5exT14B0kBMsbjhMz1JzRecR15SR Cyi9MzynYVlfq5bisiH5lpfIhCj0jYLayUviqQZcTUoGMIl48wD7SpGlwL92XdhJ H3a7LUlrnm8IbQ7iQEXzkFOhKN6HJ9ql866XdqwQ589L -----END CERTIFICATE-----Generated at Mon Feb 9 20:09:36 2026 by rpki-client