This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/ed334c-d797-425a-93a1-a9cc89d44b25/1/JYQFKO-FunI32nUSHCVmHj-U72s.roa File: JYQFKO-FunI32nUSHCVmHj-U72s.roa (raw, json) Hash identifier: t8vcZJVMC1m+PZSUssB6U2g3nAq5K3T4+GIKxNDbOGE= Subject key identifier: 25:84:05:28:EF:85:BA:72:37:DA:75:12:1C:25:66:1E:3F:94:EF:6B Certificate issuer: /CN=2a7df35d41b4062c10fc118189de47da27096db8 Certificate serial: 019B7DCAA9FAD658FFD6E28C6DC128EB70B2 Authority key identifier: 2A:7D:F3:5D:41:B4:06:2C:10:FC:11:81:89:DE:47:DA:27:09:6D:B8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kn3zXUG0BiwQ_BGBid5H2icJbbg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/ed334c-d797-425a-93a1-a9cc89d44b25/1/JYQFKO-FunI32nUSHCVmHj-U72s.roa Signing time: Fri 02 Jan 2026 08:19:52 +0000 ROA not before: Fri 02 Jan 2026 08:19:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 212.4.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/ed334c-d797-425a-93a1-a9cc89d44b25/1/Kn3zXUG0BiwQ_BGBid5H2icJbbg.crl rsync://rpki.ripe.net/repository/DEFAULT/f8/ed334c-d797-425a-93a1-a9cc89d44b25/1/Kn3zXUG0BiwQ_BGBid5H2icJbbg.mft rsync://rpki.ripe.net/repository/DEFAULT/Kn3zXUG0BiwQ_BGBid5H2icJbbg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 08:21:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:a9:fa:d6:58:ff:d6:e2:8c:6d:c1:28:eb:70:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a7df35d41b4062c10fc118189de47da27096db8 Validity Not Before: Jan 2 08:19:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=25840528ef85ba7237da75121c25661e3f94ef6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:4d:c7:8a:af:43:61:15:f6:ea:20:ad:68:1a: 7f:e1:ab:08:7c:73:2f:d1:26:69:65:35:62:6a:bb: 2c:8a:1e:0a:dd:a2:80:78:33:58:7e:e8:dc:95:fa: b1:5e:7b:9a:c3:2d:23:3c:40:9d:90:9b:9f:5a:55: 97:35:4e:85:3b:51:1f:16:72:35:3e:28:93:e5:65: 70:a7:d1:da:ee:90:bd:5f:b6:04:4d:a2:ab:17:37: 24:be:be:ba:00:84:f3:94:7a:da:42:d3:52:06:81: 9d:1b:51:86:0c:65:88:51:1e:87:7e:0c:b5:6f:49: d9:68:c9:98:1e:2c:6c:a4:11:4e:6b:21:bf:c1:fc: 59:36:b6:cb:ba:7e:c6:8c:59:76:46:f4:48:6b:d5: 35:c7:d4:cb:6b:0b:83:a5:32:0a:51:c4:59:06:51: 36:46:dc:53:7b:6f:f7:d2:1e:0f:42:43:4a:0c:4a: e9:b3:20:9e:e0:e6:d2:84:b4:e9:b3:c7:97:4a:4e: b3:c2:1a:82:2e:fb:02:34:a2:d5:6e:5f:c7:33:08: d3:97:2d:c4:0b:9d:a1:61:dc:2e:15:17:dc:c8:a6: cf:fb:f8:c2:8c:3e:5e:71:d9:80:aa:82:f6:0a:db: 64:58:d1:28:1c:1e:bf:e0:38:58:8c:17:a2:53:25: b4:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:84:05:28:EF:85:BA:72:37:DA:75:12:1C:25:66:1E:3F:94:EF:6B X509v3 Authority Key Identifier: keyid:2A:7D:F3:5D:41:B4:06:2C:10:FC:11:81:89:DE:47:DA:27:09:6D:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kn3zXUG0BiwQ_BGBid5H2icJbbg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ed334c-d797-425a-93a1-a9cc89d44b25/1/JYQFKO-FunI32nUSHCVmHj-U72s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ed334c-d797-425a-93a1-a9cc89d44b25/1/Kn3zXUG0BiwQ_BGBid5H2icJbbg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.4.27.0/24 Signature Algorithm: sha256WithRSAEncryption 76:a8:5c:db:4c:d3:ec:b3:dd:e8:75:a8:23:60:21:12:82:38: c5:bc:4a:55:dd:26:74:5d:56:a2:48:a7:37:ac:ca:54:9c:28: e8:e6:05:7c:c2:f3:e3:85:46:a2:6d:ea:e2:7c:8a:0c:ce:4e: 6f:c6:4f:c3:f9:67:44:7a:6c:e8:23:6d:5b:37:32:a8:71:18: c4:84:65:d9:fa:c5:75:ed:1f:8a:7e:10:37:a8:56:27:db:d3: d9:ea:51:bb:29:93:ea:c8:2c:56:c5:bf:4a:d4:95:19:3d:a2: bb:94:ee:78:8f:7e:95:9e:cf:cd:af:ce:29:25:09:25:a0:c2: 98:ed:10:3c:b2:9c:ed:b5:06:ef:93:c0:40:11:b5:78:57:ba: 75:d0:a9:d6:d6:c8:81:d6:70:fe:c2:38:d8:97:32:af:f6:d6: a0:a8:ce:8a:69:a3:bb:e9:8f:55:34:98:a1:19:b2:16:df:25: 7c:cc:59:be:bf:ba:8f:00:e1:c7:8f:41:83:11:f7:02:aa:9c: 14:de:ad:63:ee:ea:26:22:07:f9:d8:d7:3f:18:68:78:15:e1: 99:77:9d:b6:b8:8e:eb:19:9e:ad:de:10:93:1d:86:8e:e3:43: 2e:3e:81:bc:02:f6:53:6f:56:20:b1:83:90:7e:00:ed:5f:db: 4f:aa:5a:63 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9yqn61lj/1uKMbcEo63CyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhN2RmMzVkNDFiNDA2MmMxMGZjMTE4MTg5ZGU0N2RhMjcw OTZkYjgwHhcNMjYwMTAyMDgxOTUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNTg0MDUyOGVmODViYTcyMzdkYTc1MTIxYzI1NjYxZTNmOTRlZjZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+U3Hiq9DYRX26iCtaBp/4asIfHMv 0SZpZTViarssih4K3aKAeDNYfujclfqxXnuawy0jPECdkJufWlWXNU6FO1EfFnI1 PiiT5WVwp9Ha7pC9X7YETaKrFzckvr66AITzlHraQtNSBoGdG1GGDGWIUR6Hfgy1 b0nZaMmYHixspBFOayG/wfxZNrbLun7GjFl2RvRIa9U1x9TLawuDpTIKUcRZBlE2 RtxTe2/30h4PQkNKDErpsyCe4ObShLTps8eXSk6zwhqCLvsCNKLVbl/HMwjTly3E C52hYdwuFRfcyKbP+/jCjD5ecdmAqoL2CttkWNEoHB6/4DhYjBeiUyW0/wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCWEBSjvhbpyN9p1EhwlZh4/lO9rMB8GA1UdIwQY MBaAFCp9811BtAYsEPwRgYneR9onCW24MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS24zelhVRzBCaXdRX0JHQmlkNUgyaWNKYmJnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC9lZDMzNGMtZDc5Ny00MjVhLTkzYTEt YTljYzg5ZDQ0YjI1LzEvSllRRktPLUZ1bkkzMm5VU0hDVm1Iai1VNzJzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOC9lZDMzNGMtZDc5Ny00MjVhLTkzYTEtYTljYzg5ZDQ0YjI1 LzEvS24zelhVRzBCaXdRX0JHQmlkNUgyaWNKYmJnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1AQbMA0G CSqGSIb3DQEBCwUAA4IBAQB2qFzbTNPss93odagjYCESgjjFvEpV3SZ0XVaiSKc3 rMpUnCjo5gV8wvPjhUaiberifIoMzk5vxk/D+WdEemzoI21bNzKocRjEhGXZ+sV1 7R+KfhA3qFYn29PZ6lG7KZPqyCxWxb9K1JUZPaK7lO54j36Vns/Nr84pJQkloMKY 7RA8spzttQbvk8BAEbV4V7p10KnW1siB1nD+wjjYlzKv9tagqM6KaaO76Y9VNJih GbIW3yV8zFm+v7qPAOHHj0GDEfcCqpwU3q1j7uomIgf52Nc/GGh4FeGZd522uI7r GZ6t3hCTHYaO40MuPoG8AvZTb1YgsYOQfgDtX9tPqlpj -----END CERTIFICATE-----Generated at Fri Jan 2 16:24:28 2026 by rpki-client