This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/JWjFmf6S4HmgGP-WugMZZyA6GlQ.roa File: JWjFmf6S4HmgGP-WugMZZyA6GlQ.roa (raw, json) Hash identifier: I69Zj4heqEvHRy7sYj2BmyE5pa+774U5B30gPTlCO3I= Subject key identifier: 25:68:C5:99:FE:92:E0:79:A0:18:FF:96:BA:03:19:67:20:3A:1A:54 Certificate issuer: /CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2 Certificate serial: 019B7D5CC02A0DBF1ABAE841C8EE2396CB5C Authority key identifier: 52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/JWjFmf6S4HmgGP-WugMZZyA6GlQ.roa Signing time: Fri 02 Jan 2026 06:19:49 +0000 ROA not before: Fri 02 Jan 2026 06:19:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6206 IP address blocks: 37.46.192.0/21 maxlen: 24 91.199.50.0/24 maxlen: 24 94.185.80.0/21 maxlen: 24 94.228.208.0/20 maxlen: 24 109.235.48.0/21 maxlen: 24 194.110.67.0/24 maxlen: 24 2a00:dd0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/UtycIYtRDAe8Zlmwn70yr-aKv9I.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/UtycIYtRDAe8Zlmwn70yr-aKv9I.mft rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 03:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:c0:2a:0d:bf:1a:ba:e8:41:c8:ee:23:96:cb:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2 Validity Not Before: Jan 2 06:19:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2568c599fe92e079a018ff96ba031967203a1a54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:65:a6:3a:42:83:fe:35:ed:d0:52:e9:42:cd: 04:15:7a:2a:0b:49:c1:b2:3b:ca:7b:8c:29:5c:3a: b7:cd:a9:f2:6e:ff:51:b9:50:ce:7c:de:e6:53:d1: 9d:42:b0:a9:cb:93:88:76:09:08:44:a4:3c:48:8c: c0:2c:5f:1f:ee:9a:61:e4:d6:3c:39:4a:5d:4b:e6: 89:ba:72:74:21:19:ee:e4:98:de:f8:35:0f:e2:62: 31:9b:46:61:b7:ae:e8:5e:c5:cd:a8:26:84:42:d8: e7:f9:fd:2f:0b:29:e0:6c:dd:0f:5c:86:73:86:03: 45:c1:6a:79:5a:15:e6:ce:cb:ec:8b:4b:b6:d5:c5: 6f:57:a8:16:0c:58:b0:b1:9d:1a:46:95:b8:a9:d8: 3c:d5:86:30:a1:e2:90:e2:d2:aa:39:51:b2:3b:f8: 55:08:5f:15:cb:77:5c:1e:a6:2c:58:d3:0d:d6:33: bd:4d:e3:8c:5e:a3:92:b6:d0:19:89:95:1a:55:5b: 1d:a6:00:4c:b9:7a:7b:ba:13:ca:78:18:88:4e:b3: 5a:fa:b2:8c:83:59:a1:88:5d:b5:7d:a4:37:fe:1d: e1:d6:30:36:ac:4c:5a:a6:37:f5:50:82:02:b0:03: 78:3e:03:f2:fc:c2:44:d1:3c:fd:ab:2e:da:ca:cd: 02:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:68:C5:99:FE:92:E0:79:A0:18:FF:96:BA:03:19:67:20:3A:1A:54 X509v3 Authority Key Identifier: keyid:52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/JWjFmf6S4HmgGP-WugMZZyA6GlQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/UtycIYtRDAe8Zlmwn70yr-aKv9I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.46.192.0/21 91.199.50.0/24 94.185.80.0/21 94.228.208.0/20 109.235.48.0/21 194.110.67.0/24 IPv6: 2a00:dd0::/32 Signature Algorithm: sha256WithRSAEncryption 50:34:4e:d8:5e:b7:ba:8b:de:40:6f:d4:89:85:0b:4b:da:6e: 23:f1:74:b2:bc:e6:91:b3:58:d9:46:ba:a7:43:58:db:24:25: ee:af:94:1c:a3:53:1d:dc:7a:9f:0c:87:ef:d6:69:91:50:29: e4:c0:f9:16:1d:70:87:13:62:9f:d6:a2:17:99:7d:89:3c:b4: eb:0a:f8:e0:5d:6e:99:7c:c0:6c:85:24:f1:b6:0f:c7:08:8b: 2e:3f:c2:ed:ad:71:d8:d4:3c:6a:4b:a7:81:30:ad:d3:34:1d: fe:71:b9:f1:20:0d:a8:73:47:7e:44:17:3f:25:85:df:76:a1: a2:3e:6d:49:f7:50:f0:29:ed:73:d5:fc:e3:77:62:ac:0b:3a: 08:5f:32:86:9d:9c:53:f0:8e:17:ed:ec:bb:9c:10:83:c2:9e: 74:ca:d4:e7:ad:24:1b:32:41:7d:fb:8d:65:1b:b0:c0:c2:af: 16:6a:64:4a:fe:1c:63:e4:34:a7:77:3b:ec:69:51:cf:d1:76: b1:c0:7c:5e:cb:b8:38:16:5f:2d:d8:58:e7:bf:2a:0b:69:05: 09:8b:cc:b4:b0:f9:44:dc:b5:e8:c0:83:61:51:4c:e1:54:69: 34:e0:c6:a4:58:65:89:4a:03:f7:1f:26:09:60:66:a6:59:e4: dc:49:6d:d1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgISAZt9XMAqDb8auuhByO4jlstcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyZGM5YzIxOGI1MTBjMDdiYzY2NTliMDlmYmQzMmFmZTY4 YWJmZDIwHhcNMjYwMTAyMDYxOTQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNTY4YzU5OWZlOTJlMDc5YTAxOGZmOTZiYTAzMTk2NzIwM2ExYTU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArGWmOkKD/jXt0FLpQs0EFXoqC0nB sjvKe4wpXDq3zanybv9RuVDOfN7mU9GdQrCpy5OIdgkIRKQ8SIzALF8f7pph5NY8 OUpdS+aJunJ0IRnu5Jje+DUP4mIxm0Zht67oXsXNqCaEQtjn+f0vCyngbN0PXIZz hgNFwWp5WhXmzsvsi0u21cVvV6gWDFiwsZ0aRpW4qdg81YYwoeKQ4tKqOVGyO/hV CF8Vy3dcHqYsWNMN1jO9TeOMXqOSttAZiZUaVVsdpgBMuXp7uhPKeBiITrNa+rKM g1mhiF21faQ3/h3h1jA2rExapjf1UIICsAN4PgPy/MJE0Tz9qy7ays0C9wIDAQAB o4ICNjCCAjIwHQYDVR0OBBYEFCVoxZn+kuB5oBj/lroDGWcgOhpUMB8GA1UdIwQY MBaAFFLcnCGLUQwHvGZZsJ+9Mq/mir/SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXR5Y0lZdFJEQWU4Wmxtd243MHlyLWFLdjlJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC80MDliN2UtMTI3NS00M2VkLWFmMGYt NTJmOTdiMjc3ZDFmLzEvSldqRm1mNlM0SG1nR1AtV3VnTVpaeUE2R2xRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC80MDliN2UtMTI3NS00M2VkLWFmMGYtNTJmOTdiMjc3ZDFm LzEvVXR5Y0lZdFJEQWU4Wmxtd243MHlyLWFLdjlJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAqBAIAATAkAwQDJS7AAwQA W8cyAwQDXrlQAwQEXuTQAwQDbeswAwQAwm5DMA0EAgACMAcDBQAqAA3QMA0GCSqG SIb3DQEBCwUAA4IBAQBQNE7YXre6i95Ab9SJhQtL2m4j8XSyvOaRs1jZRrqnQ1jb JCXur5Qco1Md3HqfDIfv1mmRUCnkwPkWHXCHE2Kf1qIXmX2JPLTrCvjgXW6ZfMBs hSTxtg/HCIsuP8LtrXHY1DxqS6eBMK3TNB3+cbnxIA2oc0d+RBc/JYXfdqGiPm1J 91DwKe1z1fzjd2KsCzoIXzKGnZxT8I4X7ey7nBCDwp50ytTnrSQbMkF9+41lG7DA wq8WamRK/hxj5DSndzvsaVHP0XaxwHxey7g4Fl8t2FjnvyoLaQUJi8y0sPlE3LXo wINhUUzhVGk04MakWGWJSgP3HyYJYGamWeTcSW3R -----END CERTIFICATE-----Generated at Sun Jan 25 13:02:26 2026 by rpki-client