This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/57e08c-ca3a-4099-ae74-e7daec194a69/1/kJQG6geGOu2RAJRA_7GzYnIhBYQ.roa File: kJQG6geGOu2RAJRA_7GzYnIhBYQ.roa (raw, json) Hash identifier: XUqqP9TjiZCkPcmNHG3SdvuU3ttO6pgsFTxEU7wHJZE= Subject key identifier: 90:94:06:EA:07:86:3A:ED:91:00:94:40:FF:B1:B3:62:72:21:05:84 Certificate issuer: /CN=25776c77f8ebe7094ca007ace1a9c0bfdc2b3aec Certificate serial: 019B7DC9E78943C2B26DC363A313B11B3442 Authority key identifier: 25:77:6C:77:F8:EB:E7:09:4C:A0:07:AC:E1:A9:C0:BF:DC:2B:3A:EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JXdsd_jr5wlMoAes4anAv9wrOuw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/57e08c-ca3a-4099-ae74-e7daec194a69/1/kJQG6geGOu2RAJRA_7GzYnIhBYQ.roa Signing time: Fri 02 Jan 2026 08:19:02 +0000 ROA not before: Fri 02 Jan 2026 08:19:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 135377 IP address blocks: 23.90.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/57e08c-ca3a-4099-ae74-e7daec194a69/1/JXdsd_jr5wlMoAes4anAv9wrOuw.crl rsync://rpki.ripe.net/repository/DEFAULT/fa/57e08c-ca3a-4099-ae74-e7daec194a69/1/JXdsd_jr5wlMoAes4anAv9wrOuw.mft rsync://rpki.ripe.net/repository/DEFAULT/JXdsd_jr5wlMoAes4anAv9wrOuw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 15:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c9:e7:89:43:c2:b2:6d:c3:63:a3:13:b1:1b:34:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25776c77f8ebe7094ca007ace1a9c0bfdc2b3aec Validity Not Before: Jan 2 08:19:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=909406ea07863aed91009440ffb1b36272210584 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9e:ad:7a:73:24:02:14:31:bb:78:8a:1e:30: 71:7f:aa:f1:bf:84:92:cf:83:ad:3d:6d:9d:bd:7e: d4:fd:fe:4e:df:d5:91:ea:ad:8c:c3:76:1a:ba:f5: 30:d7:cd:9a:9d:55:23:9d:88:41:d4:82:3c:51:32: 57:98:b4:3e:79:89:d4:b2:f5:bb:85:e2:f9:63:4b: 77:52:fb:58:ad:c8:96:eb:f8:61:6a:f4:cb:2d:5d: 14:1b:82:82:24:f0:95:6c:f6:97:95:7b:17:d2:29: 23:b6:09:8e:3a:cc:8f:b7:3d:5f:2a:32:c5:ee:a6: b6:41:c8:c8:c1:9f:8c:cf:9b:78:c4:20:88:f8:d2: 9a:b9:78:1e:0e:38:67:5d:57:b3:ec:39:b3:f3:5b: 36:93:62:68:01:1b:9f:b2:ea:44:19:af:96:ab:a2: c3:c2:b9:9b:4e:e4:ca:01:02:aa:00:00:98:5c:02: 5b:b2:79:0d:8b:68:eb:81:21:70:e5:39:ad:23:d5: 23:95:f5:4f:f8:17:48:50:c1:8f:71:06:fe:88:10: ef:87:16:cd:f8:44:c0:06:73:f8:da:ee:9a:b4:23: aa:31:37:e5:b3:3d:51:b0:60:58:a4:84:79:db:fd: c1:12:c2:6f:43:ac:a6:cd:ce:85:4f:19:60:9c:cf: a4:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:94:06:EA:07:86:3A:ED:91:00:94:40:FF:B1:B3:62:72:21:05:84 X509v3 Authority Key Identifier: keyid:25:77:6C:77:F8:EB:E7:09:4C:A0:07:AC:E1:A9:C0:BF:DC:2B:3A:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JXdsd_jr5wlMoAes4anAv9wrOuw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/57e08c-ca3a-4099-ae74-e7daec194a69/1/kJQG6geGOu2RAJRA_7GzYnIhBYQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/57e08c-ca3a-4099-ae74-e7daec194a69/1/JXdsd_jr5wlMoAes4anAv9wrOuw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.90.156.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:fc:02:f8:80:ec:4e:0a:1b:09:c2:3c:92:8a:48:b9:b5:df: e8:7e:19:ef:71:76:d6:86:f8:7e:57:01:25:33:da:e1:4b:20: 24:62:b9:e1:d9:ce:08:b7:11:4c:62:aa:db:0c:44:72:3a:94: cc:e3:ed:f9:10:fb:ff:00:7e:6d:de:7d:7d:12:fe:71:8c:00: 79:33:d4:e1:1e:ca:10:2b:13:ef:42:06:d7:89:96:1e:32:54: be:1f:ef:15:62:d3:bc:0d:fb:5a:ec:4d:b5:93:f8:07:68:da: 0b:11:95:78:5e:ee:81:8d:8f:67:d4:e5:7f:52:8e:33:8f:f8: ca:04:25:55:87:26:96:c4:96:79:55:b5:16:52:97:86:24:e9: b4:38:1d:e9:70:33:cf:4f:08:03:56:07:8a:f9:29:15:08:a9: ac:50:3b:03:4e:ee:f9:31:e8:cb:fc:20:28:d0:f8:1f:f7:bf: 59:16:2b:2a:b0:a2:f4:8c:26:93:3e:1b:9f:36:b9:a7:ec:12: 2f:89:b7:5e:3b:d1:8d:17:5d:c7:e1:ff:c4:c6:42:6b:ab:b7: fd:e6:cf:7e:88:c0:d0:ef:97:99:7d:df:99:28:bc:2d:a8:ea: 68:00:d4:ba:73:4b:49:06:c9:5c:25:e9:06:d1:d7:f1:80:8d: 08:28:3f:b4 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9yeeJQ8KybcNjoxOxGzRCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1Nzc2Yzc3ZjhlYmU3MDk0Y2EwMDdhY2UxYTljMGJmZGMy YjNhZWMwHhcNMjYwMTAyMDgxOTAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MDk0MDZlYTA3ODYzYWVkOTEwMDk0NDBmZmIxYjM2MjcyMjEwNTg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtp6tenMkAhQxu3iKHjBxf6rxv4SS z4OtPW2dvX7U/f5O39WR6q2Mw3YauvUw182anVUjnYhB1II8UTJXmLQ+eYnUsvW7 heL5Y0t3UvtYrciW6/hhavTLLV0UG4KCJPCVbPaXlXsX0ikjtgmOOsyPtz1fKjLF 7qa2QcjIwZ+Mz5t4xCCI+NKauXgeDjhnXVez7Dmz81s2k2JoARufsupEGa+Wq6LD wrmbTuTKAQKqAACYXAJbsnkNi2jrgSFw5TmtI9UjlfVP+BdIUMGPcQb+iBDvhxbN +ETABnP42u6atCOqMTflsz1RsGBYpIR52/3BEsJvQ6ymzc6FTxlgnM+kCQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJCUBuoHhjrtkQCUQP+xs2JyIQWEMB8GA1UdIwQY MBaAFCV3bHf46+cJTKAHrOGpwL/cKzrsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSlhkc2RfanI1d2xNb0FlczRhbkF2OXdyT3V3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS81N2UwOGMtY2EzYS00MDk5LWFlNzQt ZTdkYWVjMTk0YTY5LzEva0pRRzZnZUdPdTJSQUpSQV83R3pZbkloQllRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYS81N2UwOGMtY2EzYS00MDk5LWFlNzQtZTdkYWVjMTk0YTY5 LzEvSlhkc2RfanI1d2xNb0FlczRhbkF2OXdyT3V3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAF1qcMA0G CSqGSIb3DQEBCwUAA4IBAQAL/AL4gOxOChsJwjySiki5td/ofhnvcXbWhvh+VwEl M9rhSyAkYrnh2c4ItxFMYqrbDERyOpTM4+35EPv/AH5t3n19Ev5xjAB5M9ThHsoQ KxPvQgbXiZYeMlS+H+8VYtO8Dfta7E21k/gHaNoLEZV4Xu6BjY9n1OV/Uo4zj/jK BCVVhyaWxJZ5VbUWUpeGJOm0OB3pcDPPTwgDVgeK+SkVCKmsUDsDTu75MejL/CAo 0Pgf979ZFisqsKL0jCaTPhufNrmn7BIvibdeO9GNF13H4f/ExkJrq7f95s9+iMDQ 75eZfd+ZKLwtqOpoANS6c0tJBslcJekG0dfxgI0IKD+0 -----END CERTIFICATE-----Generated at Wed Jan 21 01:30:37 2026 by rpki-client