This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/40ea14-dc50-4aa0-aa85-28d010603529/1/jSg-FBkeg1R-PLxCirXbhqCALA8.roa File: jSg-FBkeg1R-PLxCirXbhqCALA8.roa (raw, json) Hash identifier: lF16qfXyhlcBonE6Swph7S7GMbK5m+Lvc5sCLsaOquY= Subject key identifier: 8D:28:3E:14:19:1E:83:54:7E:3C:BC:42:8A:B5:DB:86:A0:80:2C:0F Certificate issuer: /CN=b4bdc376a159d05e2af97176a3eba8360e60d176 Certificate serial: 019B7F15D393F9BDF46367E7272B566E7E1E Authority key identifier: B4:BD:C3:76:A1:59:D0:5E:2A:F9:71:76:A3:EB:A8:36:0E:60:D1:76 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tL3DdqFZ0F4q-XF2o-uoNg5g0XY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/40ea14-dc50-4aa0-aa85-28d010603529/1/jSg-FBkeg1R-PLxCirXbhqCALA8.roa Signing time: Fri 02 Jan 2026 14:21:35 +0000 ROA not before: Fri 02 Jan 2026 14:21:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50247 IP address blocks: 45.85.184.0/23 maxlen: 24 45.85.184.0/24 maxlen: 24 45.85.185.0/24 maxlen: 24 45.131.33.0/24 maxlen: 24 45.131.34.0/24 maxlen: 24 91.218.240.0/24 maxlen: 24 91.224.142.0/23 maxlen: 24 91.224.142.0/24 maxlen: 24 91.224.143.0/24 maxlen: 24 109.95.88.0/21 maxlen: 21 109.196.80.0/20 maxlen: 20 109.197.36.0/23 maxlen: 23 109.207.103.0/24 maxlen: 24 185.178.236.0/22 maxlen: 22 2a0a:7080::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/40ea14-dc50-4aa0-aa85-28d010603529/1/tL3DdqFZ0F4q-XF2o-uoNg5g0XY.crl rsync://rpki.ripe.net/repository/DEFAULT/e3/40ea14-dc50-4aa0-aa85-28d010603529/1/tL3DdqFZ0F4q-XF2o-uoNg5g0XY.mft rsync://rpki.ripe.net/repository/DEFAULT/tL3DdqFZ0F4q-XF2o-uoNg5g0XY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Feb 2026 11:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:d3:93:f9:bd:f4:63:67:e7:27:2b:56:6e:7e:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4bdc376a159d05e2af97176a3eba8360e60d176 Validity Not Before: Jan 2 14:21:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8d283e14191e83547e3cbc428ab5db86a0802c0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:31:2c:c0:42:13:58:95:44:dd:0c:d6:57:72: 9e:93:ea:71:a4:ce:a3:c6:95:22:05:71:90:67:4a: ed:3e:f2:12:42:38:16:29:6b:32:ca:b2:4c:fb:fc: 42:9e:fb:a6:d0:29:d5:83:bd:81:32:24:3a:76:85: bc:01:76:7c:f3:b0:e3:78:46:5a:e9:35:8d:5f:29: b9:1c:28:88:3f:35:b7:0e:96:89:6f:15:47:8c:5e: fd:c0:1b:61:0d:b7:2f:a3:da:c5:a7:67:93:d6:07: 31:0d:0c:77:30:71:2b:93:47:cc:0f:fa:2f:6a:23: ee:0a:05:11:c4:86:76:b1:96:0b:bf:83:0f:b6:87: 46:45:28:fe:9a:c0:37:b5:52:6a:07:5d:91:19:34: e3:7a:94:5e:3c:fb:42:6b:75:8d:1b:e8:d6:f6:4b: 15:bd:47:97:df:7c:e8:1f:64:68:bb:5a:a6:f9:46: 63:fa:2c:4a:48:73:92:fa:36:07:00:ed:79:19:cb: 69:40:0c:2e:1e:4a:ce:42:d4:a6:83:f5:85:cd:14: 9e:ef:fa:4f:04:35:64:03:f4:d2:ad:8f:31:22:fc: f5:04:6f:05:fc:27:2f:d2:90:fd:4d:ce:cc:25:1e: 53:1c:2b:75:6c:61:1c:05:25:d8:a6:16:e3:65:f0: e0:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:28:3E:14:19:1E:83:54:7E:3C:BC:42:8A:B5:DB:86:A0:80:2C:0F X509v3 Authority Key Identifier: keyid:B4:BD:C3:76:A1:59:D0:5E:2A:F9:71:76:A3:EB:A8:36:0E:60:D1:76 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tL3DdqFZ0F4q-XF2o-uoNg5g0XY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/40ea14-dc50-4aa0-aa85-28d010603529/1/jSg-FBkeg1R-PLxCirXbhqCALA8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/40ea14-dc50-4aa0-aa85-28d010603529/1/tL3DdqFZ0F4q-XF2o-uoNg5g0XY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.85.184.0/23 45.131.33.0-45.131.34.255 91.218.240.0/24 91.224.142.0/23 109.95.88.0/21 109.196.80.0/20 109.197.36.0/23 109.207.103.0/24 185.178.236.0/22 IPv6: 2a0a:7080::/29 Signature Algorithm: sha256WithRSAEncryption 02:20:01:64:e2:f3:a2:7f:93:9b:8a:d6:bf:fc:c4:e1:1c:63: 22:66:08:c4:74:cd:fb:b1:8a:20:f3:86:6c:aa:f0:78:67:ae: 52:89:cf:72:8b:ef:70:06:1e:70:1c:b5:67:ee:75:f0:40:14: ca:16:d5:93:86:c2:bd:9d:ff:19:d6:aa:db:9c:37:5a:39:ab: 9f:9e:61:5d:6b:f4:f1:95:a0:18:c6:b5:77:c4:1e:5f:11:fc: ec:36:18:e2:12:d2:6a:37:c7:fa:cd:2e:a3:09:9c:e6:a1:31: 02:d7:0e:b5:96:cc:39:f4:7b:76:a4:ab:7a:9e:bd:7f:f4:de: 85:b2:e8:fe:ce:78:a2:98:ef:0d:bf:7e:72:b4:d9:64:3e:b3: 68:30:9f:f1:15:a1:20:87:e8:89:3b:b0:46:b7:44:53:af:f7: f6:63:9e:52:4c:f6:d0:1c:51:9d:d3:d3:d7:e9:6e:28:ae:03: ee:e9:89:39:e8:cf:c4:44:06:8b:e4:a8:4b:96:3e:55:91:33: 95:29:31:14:07:ff:08:08:9a:f8:9f:1a:4c:72:4a:81:99:bd: 55:52:f5:52:76:dc:7d:c9:5f:c9:5d:b7:69:cf:2d:c2:4b:c4: 34:30:e0:ae:46:dd:19:40:8d:ac:d4:e3:59:97:22:1b:49:64: 1c:39:9f:3d -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgISAZt/FdOT+b30Y2fnJytWbn4eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0YmRjMzc2YTE1OWQwNWUyYWY5NzE3NmEzZWJhODM2MGU2 MGQxNzYwHhcNMjYwMTAyMTQyMTM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZDI4M2UxNDE5MWU4MzU0N2UzY2JjNDI4YWI1ZGI4NmEwODAyYzBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhjEswEITWJVE3QzWV3Kek+pxpM6j xpUiBXGQZ0rtPvISQjgWKWsyyrJM+/xCnvum0CnVg72BMiQ6doW8AXZ887DjeEZa 6TWNXym5HCiIPzW3DpaJbxVHjF79wBthDbcvo9rFp2eT1gcxDQx3MHErk0fMD/ov aiPuCgURxIZ2sZYLv4MPtodGRSj+msA3tVJqB12RGTTjepRePPtCa3WNG+jW9ksV vUeX33zoH2Rou1qm+UZj+ixKSHOS+jYHAO15GctpQAwuHkrOQtSmg/WFzRSe7/pP BDVkA/TSrY8xIvz1BG8F/Ccv0pD9Tc7MJR5THCt1bGEcBSXYphbjZfDgBwIDAQAB o4ICUDCCAkwwHQYDVR0OBBYEFI0oPhQZHoNUfjy8Qoq124aggCwPMB8GA1UdIwQY MBaAFLS9w3ahWdBeKvlxdqPrqDYOYNF2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdEwzRGRxRlowRjRxLVhGMm8tdW9OZzVnMFhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy80MGVhMTQtZGM1MC00YWEwLWFhODUt MjhkMDEwNjAzNTI5LzEvalNnLUZCa2VnMVItUEx4Q2lyWGJocUNBTEE4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMy80MGVhMTQtZGM1MC00YWEwLWFhODUtMjhkMDEwNjAzNTI5 LzEvdEwzRGRxRlowRjRxLVhGMm8tdW9OZzVnMFhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGYGCCsGAQUFBwEHAQH/BFcwVTBEBAIAATA+AwQBLVW4MAwD BAAtgyEDBAAtgyIDBABb2vADBAFb4I4DBANtX1gDBARtxFADBAFtxSQDBABtz2cD BAK5suwwDQQCAAIwBwMFAyoKcIAwDQYJKoZIhvcNAQELBQADggEBAAIgAWTi86J/ k5uK1r/8xOEcYyJmCMR0zfuxiiDzhmyq8HhnrlKJz3KL73AGHnActWfudfBAFMoW 1ZOGwr2d/xnWqtucN1o5q5+eYV1r9PGVoBjGtXfEHl8R/Ow2GOIS0mo3x/rNLqMJ nOahMQLXDrWWzDn0e3akq3qevX/03oWy6P7OeKKY7w2/fnK02WQ+s2gwn/EVoSCH 6Ik7sEa3RFOv9/ZjnlJM9tAcUZ3T09fpbiiuA+7piTnoz8REBovkqEuWPlWRM5Up MRQH/wgImvifGkxySoGZvVVS9VJ23H3JX8ldt2nPLcJLxDQw4K5G3RlAjazU41mX IhtJZBw5nz0= -----END CERTIFICATE-----Generated at Fri Feb 6 22:45:25 2026 by rpki-client