This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/4bd661-9b0c-4560-b1d1-2cea8e153632/1/JoUKfEu67T1yJyCyuLRPbJCk_UQ.roa File: JoUKfEu67T1yJyCyuLRPbJCk_UQ.roa (raw, json) Hash identifier: /JFcfYSQ61PUPBzY8BJBcJYoayzrujrEpWXJsY4TO/o= Subject key identifier: 26:85:0A:7C:4B:BA:ED:3D:72:27:20:B2:B8:B4:4F:6C:90:A4:FD:44 Certificate issuer: /CN=3a5d4a329702e2c9831cd36262bbb7fa7b97de37 Certificate serial: 019B76EB4047AAC4D5174977BBBF37A4050F Authority key identifier: 3A:5D:4A:32:97:02:E2:C9:83:1C:D3:62:62:BB:B7:FA:7B:97:DE:37 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ol1KMpcC4smDHNNiYru3-nuX3jc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/4bd661-9b0c-4560-b1d1-2cea8e153632/1/JoUKfEu67T1yJyCyuLRPbJCk_UQ.roa Signing time: Thu 01 Jan 2026 00:18:07 +0000 ROA not before: Thu 01 Jan 2026 00:18:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47191 IP address blocks: 37.77.80.0/21 maxlen: 24 74.113.236.0/23 maxlen: 24 103.143.178.0/23 maxlen: 24 172.96.38.0/23 maxlen: 24 192.198.184.0/23 maxlen: 24 195.246.194.0/24 maxlen: 24 199.36.102.0/23 maxlen: 24 216.180.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/4bd661-9b0c-4560-b1d1-2cea8e153632/1/Ol1KMpcC4smDHNNiYru3-nuX3jc.crl rsync://rpki.ripe.net/repository/DEFAULT/e9/4bd661-9b0c-4560-b1d1-2cea8e153632/1/Ol1KMpcC4smDHNNiYru3-nuX3jc.mft rsync://rpki.ripe.net/repository/DEFAULT/Ol1KMpcC4smDHNNiYru3-nuX3jc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 12:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:40:47:aa:c4:d5:17:49:77:bb:bf:37:a4:05:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a5d4a329702e2c9831cd36262bbb7fa7b97de37 Validity Not Before: Jan 1 00:18:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=26850a7c4bbaed3d722720b2b8b44f6c90a4fd44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a0:3c:89:24:d3:02:64:32:92:a1:f1:b5:46: 6b:fa:05:11:51:e8:5f:11:1e:e5:9f:70:77:01:5a: b6:4f:50:1f:8f:c5:8a:ab:32:d3:ed:02:97:df:90: 23:14:da:b9:1c:d1:37:fc:c6:d9:0d:46:0a:97:02: 8b:20:cf:6c:8a:a5:b0:55:53:06:e1:8a:1e:f8:26: 73:fb:5c:02:fe:a0:bc:8b:9b:bd:0b:aa:9f:45:7e: 41:41:b8:26:f2:58:04:51:d9:ec:6f:82:da:38:4d: f8:d4:97:03:5f:b5:f5:9d:48:2b:f2:38:96:d8:88: 09:8f:76:a2:de:e2:d9:0b:14:bb:9d:95:98:e6:41: 2d:c4:1d:62:a2:cf:28:2f:6e:1a:d0:23:57:4a:9f: 66:c5:e9:61:5e:11:74:07:48:02:38:10:11:ef:8d: cf:f6:75:ad:00:9b:7e:75:b6:2e:13:fb:9b:6e:71: b2:b9:e6:2c:5b:0d:69:19:ec:73:00:a2:0f:f8:e4: 0b:f3:9b:fd:64:02:62:2f:75:4d:39:9d:89:a7:b4: 8f:e1:46:69:ee:b2:b1:6c:9a:d2:6c:0b:f6:59:de: f1:48:3d:35:c5:88:50:51:f7:5b:72:a3:b6:d0:84: f6:97:55:91:14:bf:4a:d2:23:fe:98:6f:57:17:90: f5:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:85:0A:7C:4B:BA:ED:3D:72:27:20:B2:B8:B4:4F:6C:90:A4:FD:44 X509v3 Authority Key Identifier: keyid:3A:5D:4A:32:97:02:E2:C9:83:1C:D3:62:62:BB:B7:FA:7B:97:DE:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ol1KMpcC4smDHNNiYru3-nuX3jc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/4bd661-9b0c-4560-b1d1-2cea8e153632/1/JoUKfEu67T1yJyCyuLRPbJCk_UQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/4bd661-9b0c-4560-b1d1-2cea8e153632/1/Ol1KMpcC4smDHNNiYru3-nuX3jc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.77.80.0/21 74.113.236.0/23 103.143.178.0/23 172.96.38.0/23 192.198.184.0/23 195.246.194.0/24 199.36.102.0/23 216.180.224.0/20 Signature Algorithm: sha256WithRSAEncryption 1a:00:06:82:33:e2:77:bc:07:a9:05:31:48:24:f0:46:f9:f4: c4:e5:b4:29:f8:fb:be:01:b4:70:c4:86:ec:44:26:bf:a6:6c: 52:59:62:0b:18:9a:90:20:64:91:c0:2e:a3:b0:c0:a6:0c:e1: 94:b2:ee:c9:63:71:95:fb:45:25:74:96:a6:10:ec:24:35:67: 38:97:89:15:16:88:28:ec:12:e5:c8:b2:15:e9:ce:eb:77:6e: b1:ea:59:db:da:51:d3:b3:72:e6:1f:6e:70:c3:0f:aa:b7:9a: 57:12:c2:55:21:12:6e:7a:d8:03:2c:ed:f8:ec:97:33:55:00: 38:e9:39:e5:0c:c7:c6:1a:62:3a:0c:43:d6:2d:41:f2:4c:eb: 61:89:b9:e8:07:ff:35:f4:75:3f:e1:13:09:b1:20:41:05:1f: ff:6f:d1:71:6b:fd:55:5f:19:d0:20:87:76:a7:04:ed:b7:f0: 1a:18:50:64:90:b8:bc:56:67:3e:6a:5e:0b:1b:f7:62:37:cb: ab:ca:69:c2:92:34:0d:28:e3:1b:cf:f6:6c:01:81:ca:ab:58: 80:a1:5f:f8:55:e4:85:da:cd:38:77:74:17:e1:4c:92:00:24: 5e:12:1d:dc:57:2a:26:21:42:57:0f:7b:b6:a4:11:36:37:6f: 95:64:e2:1c -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZt260BHqsTVF0l3u783pAUPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhNWQ0YTMyOTcwMmUyYzk4MzFjZDM2MjYyYmJiN2ZhN2I5 N2RlMzcwHhcNMjYwMTAxMDAxODA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNjg1MGE3YzRiYmFlZDNkNzIyNzIwYjJiOGI0NGY2YzkwYTRmZDQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyKA8iSTTAmQykqHxtUZr+gURUehf ER7ln3B3AVq2T1Afj8WKqzLT7QKX35AjFNq5HNE3/MbZDUYKlwKLIM9siqWwVVMG 4Yoe+CZz+1wC/qC8i5u9C6qfRX5BQbgm8lgEUdnsb4LaOE341JcDX7X1nUgr8jiW 2IgJj3ai3uLZCxS7nZWY5kEtxB1ios8oL24a0CNXSp9mxelhXhF0B0gCOBAR743P 9nWtAJt+dbYuE/ubbnGyueYsWw1pGexzAKIP+OQL85v9ZAJiL3VNOZ2Jp7SP4UZp 7rKxbJrSbAv2Wd7xSD01xYhQUfdbcqO20IT2l1WRFL9K0iP+mG9XF5D1cQIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFCaFCnxLuu09cicgsri0T2yQpP1EMB8GA1UdIwQY MBaAFDpdSjKXAuLJgxzTYmK7t/p7l943MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2wxS01wY0M0c21ESE5OaVlydTMtbnVYM2pjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS80YmQ2NjEtOWIwYy00NTYwLWIxZDEt MmNlYThlMTUzNjMyLzEvSm9VS2ZFdTY3VDF5SnlDeXVMUlBiSkNrX1VRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOS80YmQ2NjEtOWIwYy00NTYwLWIxZDEtMmNlYThlMTUzNjMy LzEvT2wxS01wY0M0c21ESE5OaVlydTMtbnVYM2pjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQDJU1QAwQB SnHsAwQBZ4+yAwQBrGAmAwQBwMa4AwQAw/bCAwQBxyRmAwQE2LTgMA0GCSqGSIb3 DQEBCwUAA4IBAQAaAAaCM+J3vAepBTFIJPBG+fTE5bQp+Pu+AbRwxIbsRCa/pmxS WWILGJqQIGSRwC6jsMCmDOGUsu7JY3GV+0UldJamEOwkNWc4l4kVFogo7BLlyLIV 6c7rd26x6lnb2lHTs3LmH25www+qt5pXEsJVIRJuetgDLO347JczVQA46TnlDMfG GmI6DEPWLUHyTOthibnoB/819HU/4RMJsSBBBR//b9Fxa/1VXxnQIId2pwTtt/Aa GFBkkLi8Vmc+al4LG/diN8urymnCkjQNKOMbz/ZsAYHKq1iAoV/4VeSF2s04d3QX 4UySACReEh3cVyomIUJXD3u2pBE2N2+VZOIc -----END CERTIFICATE-----Generated at Tue Jan 20 22:19:36 2026 by rpki-client