This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/jXqaF5MblobSNBdDx4RNzl0oyTM.roa File: jXqaF5MblobSNBdDx4RNzl0oyTM.roa (raw, json) Hash identifier: BFvzdKcA+RwPbBxbUimir+ZwCoUlTYvoMhP2qmMesDw= Subject key identifier: 8D:7A:9A:17:93:1B:96:86:D2:34:17:43:C7:84:4D:CE:5D:28:C9:33 Certificate issuer: /CN=6b104f1e4abaec1eff80f262c62f96c25438c8e1 Certificate serial: 019BEA4E2E1719AC163511A1402D95A6514F Authority key identifier: 6B:10:4F:1E:4A:BA:EC:1E:FF:80:F2:62:C6:2F:96:C2:54:38:C8:E1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/axBPHkq67B7_gPJixi-WwlQ4yOE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/jXqaF5MblobSNBdDx4RNzl0oyTM.roa Signing time: Fri 23 Jan 2026 10:02:30 +0000 ROA not before: Fri 23 Jan 2026 10:02:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51852 IP address blocks: 153.51.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/axBPHkq67B7_gPJixi-WwlQ4yOE.crl rsync://rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/axBPHkq67B7_gPJixi-WwlQ4yOE.mft rsync://rpki.ripe.net/repository/DEFAULT/axBPHkq67B7_gPJixi-WwlQ4yOE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ea:4e:2e:17:19:ac:16:35:11:a1:40:2d:95:a6:51:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6b104f1e4abaec1eff80f262c62f96c25438c8e1 Validity Not Before: Jan 23 10:02:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8d7a9a17931b9686d2341743c7844dce5d28c933 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:2a:8e:37:84:3f:75:cb:de:b9:07:24:02:20: 39:31:9c:7c:64:ec:6a:d8:c1:5c:5e:99:9d:79:c2: 82:4f:be:80:88:e9:c0:ce:1b:2a:91:39:c4:90:84: 14:e5:17:22:94:30:ab:e1:86:d1:5e:62:f2:a9:17: b3:6d:15:19:c8:64:cf:5c:91:ce:7f:f4:36:af:d1: 15:b5:f7:e9:a0:8f:85:31:72:ab:a6:51:02:b1:35: cd:4f:fb:59:d7:8f:cf:04:d4:09:83:9e:17:ad:6a: e8:fb:59:aa:dd:7a:c5:2e:5f:4e:6c:97:7b:af:8a: cd:60:5c:b1:59:1f:3f:ee:c0:1f:d8:c3:7e:ca:02: f2:06:25:e0:3c:09:6c:d3:c2:b4:12:96:fb:6f:e8: fd:d3:2d:5b:3f:01:7d:fa:74:1c:9f:a8:f0:19:3c: a4:71:b7:46:a1:63:0f:69:63:a4:e5:02:e2:08:28: e7:74:5d:d1:a4:fa:09:14:da:4a:2d:51:59:08:da: d7:eb:d0:d9:02:d9:75:f4:00:de:df:58:70:db:2c: 29:90:bd:18:69:85:0a:60:1a:30:29:05:b2:df:a5: dd:e8:fc:1b:88:11:ca:7c:28:2c:76:0e:13:65:47: ac:57:52:00:15:92:ed:60:ab:f6:a0:e8:55:ee:eb: 6a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:7A:9A:17:93:1B:96:86:D2:34:17:43:C7:84:4D:CE:5D:28:C9:33 X509v3 Authority Key Identifier: keyid:6B:10:4F:1E:4A:BA:EC:1E:FF:80:F2:62:C6:2F:96:C2:54:38:C8:E1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/axBPHkq67B7_gPJixi-WwlQ4yOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/jXqaF5MblobSNBdDx4RNzl0oyTM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/axBPHkq67B7_gPJixi-WwlQ4yOE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 153.51.190.0/24 Signature Algorithm: sha256WithRSAEncryption 57:15:50:41:18:46:3f:78:bc:b9:da:54:75:4f:a0:db:a8:7e: aa:69:59:6a:34:07:fd:bd:2a:0c:eb:c8:df:b6:79:9d:c7:a6: ae:34:a7:6d:51:19:04:15:d4:fb:5d:39:5a:c5:45:90:73:d5: 92:2c:e7:30:cf:f9:fb:86:6d:f5:f7:71:05:0f:da:26:38:95: a0:b4:e4:85:ef:41:0c:d5:f5:09:3c:6a:6d:07:ed:e3:66:75: ab:3d:d3:39:0c:44:86:58:d0:d3:73:64:8e:b5:14:fd:87:c9: 38:be:f1:83:4c:30:5a:00:fa:dc:61:5b:8a:68:14:dc:f0:1e: 32:29:a8:0f:47:e7:e6:50:00:d9:2e:b5:43:8a:d7:ec:e6:36: 67:54:75:63:77:bc:96:3d:58:c7:e2:f6:22:33:55:61:7d:60: 19:0a:e3:9e:85:aa:62:70:16:e0:81:d7:96:95:f0:31:1f:b0: 83:0e:9f:28:c9:f5:7d:90:d0:13:64:b7:da:be:2e:4b:d8:8e: 7c:2b:53:ca:0d:17:06:5d:19:e7:32:fc:26:7e:9e:4a:24:45: 99:e0:db:70:1c:53:cc:2a:e0:66:a2:90:3b:68:e0:15:12:6b: 7d:27:f1:59:59:7c:11:bf:78:59:6f:9e:23:9c:3d:99:12:cf: d1:77:0d:17 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZvqTi4XGawWNRGhQC2VplFPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZiMTA0ZjFlNGFiYWVjMWVmZjgwZjI2MmM2MmY5NmMyNTQz OGM4ZTEwHhcNMjYwMTIzMTAwMjMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZDdhOWExNzkzMWI5Njg2ZDIzNDE3NDNjNzg0NGRjZTVkMjhjOTMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAviqON4Q/dcveuQckAiA5MZx8ZOxq 2MFcXpmdecKCT76AiOnAzhsqkTnEkIQU5RcilDCr4YbRXmLyqRezbRUZyGTPXJHO f/Q2r9EVtffpoI+FMXKrplECsTXNT/tZ14/PBNQJg54XrWro+1mq3XrFLl9ObJd7 r4rNYFyxWR8/7sAf2MN+ygLyBiXgPAls08K0Epb7b+j90y1bPwF9+nQcn6jwGTyk cbdGoWMPaWOk5QLiCCjndF3RpPoJFNpKLVFZCNrX69DZAtl19ADe31hw2ywpkL0Y aYUKYBowKQWy36Xd6PwbiBHKfCgsdg4TZUesV1IAFZLtYKv2oOhV7utqIwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFI16mheTG5aG0jQXQ8eETc5dKMkzMB8GA1UdIwQY MBaAFGsQTx5Kuuwe/4DyYsYvlsJUOMjhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYXhCUEhrcTY3QjdfZ1BKaXhpLVd3bFE0eU9FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS82NTNjMjQtNjhlNS00YWQ4LWI3NjMt MzBjOWRlMjA1YWZjLzEvalhxYUY1TWJsb2JTTkJkRHg0Uk56bDBveVRNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS82NTNjMjQtNjhlNS00YWQ4LWI3NjMtMzBjOWRlMjA1YWZj LzEvYXhCUEhrcTY3QjdfZ1BKaXhpLVd3bFE0eU9FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmTO+MA0G CSqGSIb3DQEBCwUAA4IBAQBXFVBBGEY/eLy52lR1T6DbqH6qaVlqNAf9vSoM68jf tnmdx6auNKdtURkEFdT7XTlaxUWQc9WSLOcwz/n7hm3193EFD9omOJWgtOSF70EM 1fUJPGptB+3jZnWrPdM5DESGWNDTc2SOtRT9h8k4vvGDTDBaAPrcYVuKaBTc8B4y KagPR+fmUADZLrVDitfs5jZnVHVjd7yWPVjH4vYiM1VhfWAZCuOehapicBbggdeW lfAxH7CDDp8oyfV9kNATZLfavi5L2I58K1PKDRcGXRnnMvwmfp5KJEWZ4NtwHFPM KuBmopA7aOAVEmt9J/FZWXwRv3hZb54jnD2ZEs/Rdw0X -----END CERTIFICATE-----Generated at Sun Jan 25 19:16:47 2026 by rpki-client