This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/5ed5d3-b99c-486b-af9c-7cfd957f08ff/1/JNAnR3OpCBmqbjcaQCFbgyf64p8.roa File: JNAnR3OpCBmqbjcaQCFbgyf64p8.roa (raw, json) Hash identifier: j0YiHlaOdUim9VJP58wic2ZTEsjQbXoSPaCpDLTojSY= Subject key identifier: 24:D0:27:47:73:A9:08:19:AA:6E:37:1A:40:21:5B:83:27:FA:E2:9F Certificate issuer: /CN=6311a9d4c10252fbf73b7165f35acc1dce9f0a93 Certificate serial: 019B7D5D371DD369CFF61892E160D8459A9C Authority key identifier: 63:11:A9:D4:C1:02:52:FB:F7:3B:71:65:F3:5A:CC:1D:CE:9F:0A:93 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YxGp1MECUvv3O3Fl81rMHc6fCpM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/5ed5d3-b99c-486b-af9c-7cfd957f08ff/1/JNAnR3OpCBmqbjcaQCFbgyf64p8.roa Signing time: Fri 02 Jan 2026 06:20:19 +0000 ROA not before: Fri 02 Jan 2026 06:20:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 559 IP address blocks: 86.119.0.0/16 maxlen: 16 130.59.0.0/16 maxlen: 16 192.65.92.0/23 maxlen: 23 192.65.94.0/24 maxlen: 24 192.86.166.0/24 maxlen: 24 195.176.0.0/17 maxlen: 17 195.176.160.0/19 maxlen: 19 195.176.224.0/19 maxlen: 19 2001:620::/29 maxlen: 29 2001:620::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/5ed5d3-b99c-486b-af9c-7cfd957f08ff/1/YxGp1MECUvv3O3Fl81rMHc6fCpM.crl rsync://rpki.ripe.net/repository/DEFAULT/19/5ed5d3-b99c-486b-af9c-7cfd957f08ff/1/YxGp1MECUvv3O3Fl81rMHc6fCpM.mft rsync://rpki.ripe.net/repository/DEFAULT/YxGp1MECUvv3O3Fl81rMHc6fCpM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 12:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:37:1d:d3:69:cf:f6:18:92:e1:60:d8:45:9a:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6311a9d4c10252fbf73b7165f35acc1dce9f0a93 Validity Not Before: Jan 2 06:20:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=24d0274773a90819aa6e371a40215b8327fae29f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:87:b6:7b:29:af:8e:28:40:1c:c9:02:60:3c: 62:7e:2a:cf:60:14:19:8b:b1:dc:17:66:06:11:ea: fe:ed:bc:35:25:35:42:73:ef:da:21:22:cc:06:55: a7:bf:3c:e1:7d:59:ca:29:3b:0d:f9:b9:da:bf:b4: 9a:67:14:7a:84:5e:56:e5:58:d0:dd:77:57:3b:6a: 19:3a:13:59:ce:64:e4:4f:51:5c:f2:c1:66:ed:16: 8e:5c:34:40:3e:f6:8f:dd:41:d6:55:fc:5a:e0:e1: ac:ee:ee:4a:60:e0:9c:7f:c8:d9:3d:6c:f9:70:9e: e6:58:89:55:6e:5b:d8:5f:c0:d3:04:10:1b:60:85: e5:be:98:f0:7c:d5:71:4c:8d:c0:bf:2b:32:11:fb: dc:f7:c6:2b:7e:38:ce:8c:3d:8f:1d:27:c5:72:d0: e6:f8:28:89:e9:3b:0d:db:ae:15:87:9d:8c:95:75: 8e:a7:23:95:ac:f3:7d:90:b1:ad:f8:0d:40:96:75: 61:bd:d5:58:2d:72:9a:6f:41:b0:ac:e8:0e:79:bc: 33:d7:a7:72:fd:54:fb:9d:af:a9:50:0d:09:22:ef: 9a:88:32:8b:99:1e:5c:9a:ce:3a:92:47:e6:5f:bb: b9:40:7c:81:2c:34:bf:fc:14:b3:99:1b:fd:c3:ab: fd:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:D0:27:47:73:A9:08:19:AA:6E:37:1A:40:21:5B:83:27:FA:E2:9F X509v3 Authority Key Identifier: keyid:63:11:A9:D4:C1:02:52:FB:F7:3B:71:65:F3:5A:CC:1D:CE:9F:0A:93 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YxGp1MECUvv3O3Fl81rMHc6fCpM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/5ed5d3-b99c-486b-af9c-7cfd957f08ff/1/JNAnR3OpCBmqbjcaQCFbgyf64p8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/5ed5d3-b99c-486b-af9c-7cfd957f08ff/1/YxGp1MECUvv3O3Fl81rMHc6fCpM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.119.0.0/16 130.59.0.0/16 192.65.92.0-192.65.94.255 192.86.166.0/24 195.176.0.0/17 195.176.160.0/19 195.176.224.0/19 IPv6: 2001:620::/29 Signature Algorithm: sha256WithRSAEncryption 90:89:8f:c6:dc:c3:2e:e5:03:9c:23:cd:3d:31:90:b0:c6:a9: 23:e3:d5:64:32:19:77:d8:e9:b5:b2:f9:33:bb:e2:3c:36:5b: 05:56:53:9d:56:62:c2:ee:05:c9:a9:23:fb:09:be:ba:7d:98: f5:8b:3d:be:82:86:f8:2a:5d:88:33:41:51:8c:7e:80:7f:a9: 0f:e1:83:6d:48:4f:5d:51:2d:f6:74:42:09:51:c9:f2:a3:22: 34:78:b9:5b:31:27:fa:d0:51:be:92:84:b2:ee:a1:0b:11:00: a9:80:9a:c9:6a:de:54:df:73:df:b9:78:85:4f:f5:48:c7:b0: c8:d0:44:fb:85:db:eb:2c:af:72:a7:71:63:47:d3:b0:51:37: 67:d5:0a:a4:57:68:e0:13:5f:8e:69:e5:e5:63:62:33:ea:25: a3:cb:b7:d9:f8:b0:44:77:00:d4:94:4a:44:d4:b1:83:c4:c2: 75:23:bb:7d:fd:a5:11:ae:8c:b3:a4:66:7d:38:fe:9f:5f:0d: a7:fe:2a:b0:da:2b:85:c8:25:00:f3:7e:fa:12:7a:35:1c:3e: bd:c3:14:f2:5a:5d:c5:57:8c:bb:06:a5:3f:86:64:86:c8:d5: 37:13:22:33:34:6c:fd:96:76:52:d9:4e:4d:02:22:a2:b8:25: eb:6a:67:dd -----BEGIN CERTIFICATE----- MIIFNjCCBB6gAwIBAgISAZt9XTcd02nP9hiS4WDYRZqcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzMTFhOWQ0YzEwMjUyZmJmNzNiNzE2NWYzNWFjYzFkY2U5 ZjBhOTMwHhcNMjYwMTAyMDYyMDE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNGQwMjc0NzczYTkwODE5YWE2ZTM3MWE0MDIxNWI4MzI3ZmFlMjlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6oe2eymvjihAHMkCYDxifirPYBQZ i7HcF2YGEer+7bw1JTVCc+/aISLMBlWnvzzhfVnKKTsN+bnav7SaZxR6hF5W5VjQ 3XdXO2oZOhNZzmTkT1Fc8sFm7RaOXDRAPvaP3UHWVfxa4OGs7u5KYOCcf8jZPWz5 cJ7mWIlVblvYX8DTBBAbYIXlvpjwfNVxTI3AvysyEfvc98YrfjjOjD2PHSfFctDm +CiJ6TsN264Vh52MlXWOpyOVrPN9kLGt+A1AlnVhvdVYLXKab0GwrOgOebwz16dy /VT7na+pUA0JIu+aiDKLmR5cms46kkfmX7u5QHyBLDS//BSzmRv9w6v9YQIDAQAB o4ICQjCCAj4wHQYDVR0OBBYEFCTQJ0dzqQgZqm43GkAhW4Mn+uKfMB8GA1UdIwQY MBaAFGMRqdTBAlL79ztxZfNazB3OnwqTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWXhHcDFNRUNVdnYzTzNGbDgxck1IYzZmQ3BNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS81ZWQ1ZDMtYjk5Yy00ODZiLWFmOWMt N2NmZDk1N2YwOGZmLzEvSk5BblIzT3BDQm1xYmpjYVFDRmJneWY2NHA4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS81ZWQ1ZDMtYjk5Yy00ODZiLWFmOWMtN2NmZDk1N2YwOGZm LzEvWXhHcDFNRUNVdnYzTzNGbDgxck1IYzZmQ3BNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFgGCCsGAQUFBwEHAQH/BEkwRzA2BAIAATAwAwMAVncDAwCC OzAMAwQCwEFcAwQAwEFeAwQAwFamAwQHw7AAAwQFw7CgAwQFw7DgMA0EAgACMAcD BQMgAQYgMA0GCSqGSIb3DQEBCwUAA4IBAQCQiY/G3MMu5QOcI809MZCwxqkj49Vk Mhl32Om1svkzu+I8NlsFVlOdVmLC7gXJqSP7Cb66fZj1iz2+gob4Kl2IM0FRjH6A f6kP4YNtSE9dUS32dEIJUcnyoyI0eLlbMSf60FG+koSy7qELEQCpgJrJat5U33Pf uXiFT/VIx7DI0ET7hdvrLK9yp3FjR9OwUTdn1QqkV2jgE1+OaeXlY2Iz6iWjy7fZ +LBEdwDUlEpE1LGDxMJ1I7t9/aURroyzpGZ9OP6fXw2n/iqw2iuFyCUA8376Eno1 HD69wxTyWl3FV4y7BqU/hmSGyNU3EyIzNGz9lnZS2U5NAiKiuCXramfd -----END CERTIFICATE-----Generated at Sun Jan 25 19:59:13 2026 by rpki-client