This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3d1760-e4e6-4667-a54c-71e561cb78e9/1/1jLJCus46gm-AStfLL9q2M5Ho3g.roa File: 1jLJCus46gm-AStfLL9q2M5Ho3g.roa (raw, json) Hash identifier: XrU3m/+eSwJdl/VMMh61KI+6fAsJ3/LwxcvviYIdgKo= Subject key identifier: D6:32:C9:0A:EB:38:EA:09:BE:01:2B:5F:2C:BF:6A:D8:CE:47:A3:78 Certificate issuer: /CN=7a5b03e2483bed134387bfc3047a13989fdea41f Certificate serial: 019B7C80DB0667407E0BA9EBD815362E2F36 Authority key identifier: 7A:5B:03:E2:48:3B:ED:13:43:87:BF:C3:04:7A:13:98:9F:DE:A4:1F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/elsD4kg77RNDh7_DBHoTmJ_epB8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3d1760-e4e6-4667-a54c-71e561cb78e9/1/1jLJCus46gm-AStfLL9q2M5Ho3g.roa Signing time: Fri 02 Jan 2026 02:19:38 +0000 ROA not before: Fri 02 Jan 2026 02:19:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34912 IP address blocks: 5.150.144.0/21 maxlen: 21 185.103.104.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/3d1760-e4e6-4667-a54c-71e561cb78e9/1/elsD4kg77RNDh7_DBHoTmJ_epB8.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/3d1760-e4e6-4667-a54c-71e561cb78e9/1/elsD4kg77RNDh7_DBHoTmJ_epB8.mft rsync://rpki.ripe.net/repository/DEFAULT/elsD4kg77RNDh7_DBHoTmJ_epB8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:db:06:67:40:7e:0b:a9:eb:d8:15:36:2e:2f:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7a5b03e2483bed134387bfc3047a13989fdea41f Validity Not Before: Jan 2 02:19:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d632c90aeb38ea09be012b5f2cbf6ad8ce47a378 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:5d:d3:de:9c:5a:bf:85:be:32:c8:f2:2b:82: b6:ac:91:71:d1:d3:35:64:04:19:62:45:2b:a3:f8: b3:f7:1e:d4:a9:0f:d5:78:72:ac:53:72:f9:9b:3e: 75:28:26:9c:c8:da:de:bc:86:a7:03:a2:af:b2:ba: 5e:32:22:34:ec:69:48:0e:57:54:35:83:6a:d3:71: fe:4e:21:fa:1f:5f:dc:0f:d7:67:7c:44:c6:5f:c7: 67:d9:ec:f6:c2:f8:ee:81:88:9e:e7:65:7e:59:fa: 98:21:8f:62:41:2f:07:91:f9:a4:47:1e:db:7e:28: 84:86:e8:10:a9:75:7e:2b:34:6a:f3:d9:5c:7d:cd: c6:15:16:64:f6:8d:08:0d:f3:bd:d1:84:a5:bc:e3: 27:6c:01:7e:d9:bb:7d:11:dd:45:6d:df:1c:e9:73: 51:a7:ef:68:27:b2:ba:6c:d4:96:b9:43:38:b4:58: 33:46:34:0d:a5:e6:a6:11:ed:9b:8c:d9:ac:9a:f0: 3c:c8:ad:f7:ba:2a:ed:94:03:ed:82:da:4d:40:80: a7:f2:70:88:39:f1:a0:c9:df:c4:55:b8:99:73:3f: 52:3b:f8:a7:3c:75:23:eb:14:fc:13:42:ee:01:bb: 40:d0:0f:40:43:e3:14:4c:34:54:9b:d9:43:33:92: 39:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:32:C9:0A:EB:38:EA:09:BE:01:2B:5F:2C:BF:6A:D8:CE:47:A3:78 X509v3 Authority Key Identifier: keyid:7A:5B:03:E2:48:3B:ED:13:43:87:BF:C3:04:7A:13:98:9F:DE:A4:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/elsD4kg77RNDh7_DBHoTmJ_epB8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3d1760-e4e6-4667-a54c-71e561cb78e9/1/1jLJCus46gm-AStfLL9q2M5Ho3g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3d1760-e4e6-4667-a54c-71e561cb78e9/1/elsD4kg77RNDh7_DBHoTmJ_epB8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.150.144.0/21 185.103.104.0/22 Signature Algorithm: sha256WithRSAEncryption 44:d3:7b:38:f3:01:b5:44:82:fe:01:44:d6:64:70:18:70:3d: 25:53:84:a1:e9:eb:3c:d3:af:67:d4:1a:87:22:fa:50:94:be: e0:67:6e:63:ea:87:8f:cd:eb:8b:8a:d5:f0:1e:09:0c:17:83: ff:c3:9e:6b:41:0c:32:1e:ee:6d:b3:f7:d7:27:7b:d9:84:ce: bb:fd:ba:0b:77:d6:2e:56:2e:c1:32:1f:08:7b:bd:7c:9b:f7: b3:5d:4d:88:8c:33:e6:3f:2a:80:e0:13:3f:b1:46:21:d4:a3: 35:ec:5d:06:30:4f:21:d4:2b:74:fa:25:ec:8f:5b:5b:43:28: 51:f5:66:bb:97:fc:98:62:fb:11:52:53:50:60:9a:98:ea:ba: 37:f9:b3:9f:b7:c8:0f:fc:c6:c2:68:f5:eb:d7:e1:8a:0f:13: fc:57:8f:da:9a:04:05:2f:c2:47:01:be:e0:71:08:ae:3f:0e: bf:ad:e4:35:97:74:20:51:a1:a9:bb:74:1a:98:72:1d:36:f6: 19:2a:7f:35:b2:2e:3c:d2:72:8a:1c:5f:0a:a3:62:1f:45:d8: 07:01:0e:59:23:e9:45:62:9f:0c:f3:33:2f:26:ef:46:03:19: 5a:1c:15:72:6c:24:2a:6f:77:9f:f0:82:fe:57:e6:05:50:e2: 89:a7:d6:d6 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8gNsGZ0B+C6nr2BU2Li82MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdhNWIwM2UyNDgzYmVkMTM0Mzg3YmZjMzA0N2ExMzk4OWZk ZWE0MWYwHhcNMjYwMTAyMDIxOTM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNjMyYzkwYWViMzhlYTA5YmUwMTJiNWYyY2JmNmFkOGNlNDdhMzc4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm13T3pxav4W+MsjyK4K2rJFx0dM1 ZAQZYkUro/iz9x7UqQ/VeHKsU3L5mz51KCacyNrevIanA6KvsrpeMiI07GlIDldU NYNq03H+TiH6H1/cD9dnfETGX8dn2ez2wvjugYie52V+WfqYIY9iQS8HkfmkRx7b fiiEhugQqXV+KzRq89lcfc3GFRZk9o0IDfO90YSlvOMnbAF+2bt9Ed1Fbd8c6XNR p+9oJ7K6bNSWuUM4tFgzRjQNpeamEe2bjNmsmvA8yK33uirtlAPtgtpNQICn8nCI OfGgyd/EVbiZcz9SO/inPHUj6xT8E0LuAbtA0A9AQ+MUTDRUm9lDM5I5cwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFNYyyQrrOOoJvgErXyy/atjOR6N4MB8GA1UdIwQY MBaAFHpbA+JIO+0TQ4e/wwR6E5if3qQfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZWxzRDRrZzc3Uk5EaDdfREJIb1RtSl9lcEI4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS8zZDE3NjAtZTRlNi00NjY3LWE1NGMt NzFlNTYxY2I3OGU5LzEvMWpMSkN1czQ2Z20tQVN0ZkxMOXEyTTVIbzNnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS8zZDE3NjAtZTRlNi00NjY3LWE1NGMtNzFlNTYxY2I3OGU5 LzEvZWxzRDRrZzc3Uk5EaDdfREJIb1RtSl9lcEI4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDBZaQAwQC uWdoMA0GCSqGSIb3DQEBCwUAA4IBAQBE03s48wG1RIL+AUTWZHAYcD0lU4Sh6es8 069n1BqHIvpQlL7gZ25j6oePzeuLitXwHgkMF4P/w55rQQwyHu5ts/fXJ3vZhM67 /boLd9YuVi7BMh8Ie718m/ezXU2IjDPmPyqA4BM/sUYh1KM17F0GME8h1Ct0+iXs j1tbQyhR9Wa7l/yYYvsRUlNQYJqY6ro3+bOft8gP/MbCaPXr1+GKDxP8V4/amgQF L8JHAb7gcQiuPw6/reQ1l3QgUaGpu3QamHIdNvYZKn81si480nKKHF8Ko2IfRdgH AQ5ZI+lFYp8M8zMvJu9GAxlaHBVybCQqb3ef8IL+V+YFUOKJp9bW -----END CERTIFICATE-----Generated at Mon Jan 26 06:18:02 2026 by rpki-client