This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/17e82a-0e0c-426b-a170-75fea6a70eb7/1/JDIQvJOOgOU1198oLwbvPRw_rhI.roa File: JDIQvJOOgOU1198oLwbvPRw_rhI.roa (raw, json) Hash identifier: ULh5noQt/vxcOhnB+/7fGlpNTGaGPtsJ4TS11neT8M4= Subject key identifier: 24:32:10:BC:93:8E:80:E5:35:D7:DF:28:2F:06:EF:3D:1C:3F:AE:12 Certificate issuer: /CN=aa060a63da29d7f95617a6ffbb4f51cccbc78651 Certificate serial: 019B77C6BFB741D3AD3F6A2E495D7BDE59D1 Authority key identifier: AA:06:0A:63:DA:29:D7:F9:56:17:A6:FF:BB:4F:51:CC:CB:C7:86:51 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qgYKY9op1_lWF6b_u09RzMvHhlE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/17e82a-0e0c-426b-a170-75fea6a70eb7/1/JDIQvJOOgOU1198oLwbvPRw_rhI.roa Signing time: Thu 01 Jan 2026 04:17:52 +0000 ROA not before: Thu 01 Jan 2026 04:17:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204094 IP address blocks: 185.113.140.0/24 maxlen: 24 185.113.141.0/24 maxlen: 24 185.113.142.0/24 maxlen: 24 185.113.143.0/24 maxlen: 24 185.231.233.0/24 maxlen: 24 2a03::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/17e82a-0e0c-426b-a170-75fea6a70eb7/1/qgYKY9op1_lWF6b_u09RzMvHhlE.crl rsync://rpki.ripe.net/repository/DEFAULT/26/17e82a-0e0c-426b-a170-75fea6a70eb7/1/qgYKY9op1_lWF6b_u09RzMvHhlE.mft rsync://rpki.ripe.net/repository/DEFAULT/qgYKY9op1_lWF6b_u09RzMvHhlE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:bf:b7:41:d3:ad:3f:6a:2e:49:5d:7b:de:59:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa060a63da29d7f95617a6ffbb4f51cccbc78651 Validity Not Before: Jan 1 04:17:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=243210bc938e80e535d7df282f06ef3d1c3fae12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:30:48:7d:0b:ec:51:39:29:20:a5:3a:b6:5b: 29:f8:81:11:36:8a:a5:83:ec:3f:e1:24:d8:6e:ae: 30:3c:b6:ab:1d:64:3b:db:a8:6e:fb:9a:46:8e:e8: 1c:b5:55:49:30:29:4b:68:fb:6b:02:ad:93:46:e0: 01:ab:2c:56:48:88:21:eb:f6:d2:ca:1b:36:f1:6d: 55:6c:dc:b9:22:0b:5a:29:6a:6b:e0:d6:50:14:82: 44:dd:3c:3f:43:be:7a:5d:3a:0e:87:f1:31:c8:23: 74:c7:d7:0e:e6:d7:d3:50:12:c4:ed:51:b4:ca:61: 7f:f5:ba:77:9e:7f:68:a5:78:8c:0a:2a:d8:da:a0: ae:c9:91:09:e3:8d:c0:1f:8e:66:40:74:cb:85:e7: 5a:d2:ed:85:35:1a:55:ac:8a:84:81:07:3a:9a:79: 72:8a:32:a0:b4:2c:51:03:51:d7:a9:4f:7f:e7:e0: e9:ad:2b:a4:44:26:43:85:04:26:21:0c:3e:31:6c: 2c:a4:fa:d4:1c:53:e4:d6:3b:0a:fc:ff:fd:dd:39: 73:78:12:22:ad:4b:7c:52:29:87:17:5f:4b:aa:df: f6:4d:6b:5a:e1:4c:1e:c2:20:10:70:23:cf:b6:9c: da:c0:7a:f0:a7:14:03:86:64:ee:13:51:c7:d0:7b: 2d:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:32:10:BC:93:8E:80:E5:35:D7:DF:28:2F:06:EF:3D:1C:3F:AE:12 X509v3 Authority Key Identifier: keyid:AA:06:0A:63:DA:29:D7:F9:56:17:A6:FF:BB:4F:51:CC:CB:C7:86:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qgYKY9op1_lWF6b_u09RzMvHhlE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/17e82a-0e0c-426b-a170-75fea6a70eb7/1/JDIQvJOOgOU1198oLwbvPRw_rhI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/26/17e82a-0e0c-426b-a170-75fea6a70eb7/1/qgYKY9op1_lWF6b_u09RzMvHhlE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.113.140.0/22 185.231.233.0/24 IPv6: 2a03::/32 Signature Algorithm: sha256WithRSAEncryption 24:06:26:7f:1c:4d:a8:30:f5:7e:9d:e4:d1:8e:38:ff:b9:c8: 9d:3b:f3:91:39:3f:27:e3:61:58:a6:bd:ab:7f:fc:c3:a6:5c: 8d:ff:81:10:af:5f:d6:09:da:5a:ba:1d:8d:e6:42:07:28:3e: 61:6e:85:e7:66:c8:8e:7c:c1:21:56:bc:a0:bf:f9:1c:20:1b: a5:11:e1:4a:cd:0b:92:ee:48:0f:1e:01:f8:39:f3:a7:63:2d: 0a:91:d3:0a:f8:5b:6f:b1:4d:8c:15:fc:f2:dc:88:8f:bf:5f: 08:42:7b:f6:d7:e9:94:e5:4c:f9:38:da:67:51:59:10:15:49: ee:ce:5f:e4:a7:4f:99:b2:ea:e3:a7:37:9c:6b:02:8f:2f:9e: b6:ce:93:ce:f2:64:58:64:05:f9:2b:5a:fa:59:2f:c2:28:7b: 4f:dc:0d:35:7d:ec:c8:e9:9a:da:28:48:ea:7d:7f:c2:ac:4e: 95:7b:ce:1c:49:79:c6:85:58:a2:2f:e8:10:f5:65:2d:9b:be: 7a:00:ca:79:c4:62:99:e0:50:82:c6:3b:92:08:99:ba:a6:a2: 0e:d0:3e:a8:ba:96:c9:2b:0c:c9:a2:1f:09:7a:fa:12:a5:e0: a4:fd:2c:21:cc:ac:07:fb:3b:7d:b5:5e:57:77:74:82:fe:6a: 1f:43:64:48 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt3xr+3QdOtP2ouSV173lnRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhMDYwYTYzZGEyOWQ3Zjk1NjE3YTZmZmJiNGY1MWNjY2Jj Nzg2NTEwHhcNMjYwMTAxMDQxNzUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNDMyMTBiYzkzOGU4MGU1MzVkN2RmMjgyZjA2ZWYzZDFjM2ZhZTEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqDBIfQvsUTkpIKU6tlsp+IERNoql g+w/4STYbq4wPLarHWQ726hu+5pGjugctVVJMClLaPtrAq2TRuABqyxWSIgh6/bS yhs28W1VbNy5IgtaKWpr4NZQFIJE3Tw/Q756XToOh/ExyCN0x9cO5tfTUBLE7VG0 ymF/9bp3nn9opXiMCirY2qCuyZEJ443AH45mQHTLheda0u2FNRpVrIqEgQc6mnly ijKgtCxRA1HXqU9/5+DprSukRCZDhQQmIQw+MWwspPrUHFPk1jsK/P/93TlzeBIi rUt8UimHF19Lqt/2TWta4UwewiAQcCPPtpzawHrwpxQDhmTuE1HH0HstOwIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFCQyELyTjoDlNdffKC8G7z0cP64SMB8GA1UdIwQY MBaAFKoGCmPaKdf5Vhem/7tPUczLx4ZRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcWdZS1k5b3AxX2xXRjZiX3UwOVJ6TXZIaGxFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi8xN2U4MmEtMGUwYy00MjZiLWExNzAt NzVmZWE2YTcwZWI3LzEvSkRJUXZKT09nT1UxMTk4b0x3YnZQUndfcmhJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNi8xN2U4MmEtMGUwYy00MjZiLWExNzAtNzVmZWE2YTcwZWI3 LzEvcWdZS1k5b3AxX2xXRjZiX3UwOVJ6TXZIaGxFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCuXGMAwQA uefpMA0EAgACMAcDBQAqAwAAMA0GCSqGSIb3DQEBCwUAA4IBAQAkBiZ/HE2oMPV+ neTRjjj/ucidO/OROT8n42FYpr2rf/zDplyN/4EQr1/WCdpauh2N5kIHKD5hboXn ZsiOfMEhVrygv/kcIBulEeFKzQuS7kgPHgH4OfOnYy0KkdMK+FtvsU2MFfzy3IiP v18IQnv21+mU5Uz5ONpnUVkQFUnuzl/kp0+ZsurjpzecawKPL562zpPO8mRYZAX5 K1r6WS/CKHtP3A01fezI6ZraKEjqfX/CrE6Ve84cSXnGhViiL+gQ9WUtm756AMp5 xGKZ4FCCxjuSCJm6pqIO0D6oupbJKwzJoh8JevoSpeCk/SwhzKwH+zt9tV5Xd3SC /mofQ2RI -----END CERTIFICATE-----Generated at Sun Jan 25 19:16:04 2026 by rpki-client