This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/pJHMT4PzCK6Jnp0ZPFlx4x_J-uE.roa File: pJHMT4PzCK6Jnp0ZPFlx4x_J-uE.roa (raw, json) Hash identifier: QLXVrQxqKqOFfg6bhPDJRQZehC26JV69oujPPdlc02Q= Subject key identifier: A4:91:CC:4F:83:F3:08:AE:89:9E:9D:19:3C:59:71:E3:1F:C9:FA:E1 Certificate issuer: /CN=885b857706dac54e20ca0d11bd6416cb634203b4 Certificate serial: 019B77C6AEB4BE1EC916BAEC1412BF2368AF Authority key identifier: 88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/pJHMT4PzCK6Jnp0ZPFlx4x_J-uE.roa Signing time: Thu 01 Jan 2026 04:17:47 +0000 ROA not before: Thu 01 Jan 2026 04:17:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205026 IP address blocks: 188.130.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.crl rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.mft rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:ae:b4:be:1e:c9:16:ba:ec:14:12:bf:23:68:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=885b857706dac54e20ca0d11bd6416cb634203b4 Validity Not Before: Jan 1 04:17:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a491cc4f83f308ae899e9d193c5971e31fc9fae1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:8f:da:a9:c3:95:f2:9b:1e:c3:f1:33:ba:c4: 01:fd:06:4f:e6:37:62:1d:04:6d:f9:de:a2:05:53: 94:62:f7:5e:b1:72:e7:08:04:fe:1a:50:af:78:41: f9:99:bb:2a:9a:c9:e5:8d:7e:2b:da:76:51:46:52: e7:69:16:90:6d:15:48:43:21:97:e6:d2:c3:8d:30: a7:58:b7:82:b1:16:71:47:dc:55:a7:2e:fa:a2:06: 1c:09:70:62:0b:31:4c:5d:72:69:95:6b:69:4d:21: 7a:28:a0:54:8f:72:89:89:a3:c1:15:28:c4:66:fd: 94:de:a0:5f:bf:12:57:b5:ab:6d:89:70:02:4c:87: e0:eb:39:8e:5e:76:99:2a:c3:67:f2:ac:91:d4:97: 3e:77:d1:7c:9b:f4:61:ce:2c:4c:41:83:54:58:4d: 70:6b:d8:7a:f7:76:91:09:12:1b:df:66:e6:ca:9b: 2b:67:06:06:a3:8c:13:b8:6f:03:23:5b:90:01:d9: d3:8e:cf:ee:9a:b6:18:33:93:8e:8d:79:23:ca:07: 30:a2:4c:e0:52:c0:55:3b:a1:95:69:ec:b4:f6:58: 0a:46:77:60:0f:66:ef:e4:44:24:61:a9:d1:f9:4b: 18:97:4c:ca:c1:03:7d:2f:fe:c7:7e:8d:67:00:05: 2e:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:91:CC:4F:83:F3:08:AE:89:9E:9D:19:3C:59:71:E3:1F:C9:FA:E1 X509v3 Authority Key Identifier: keyid:88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/pJHMT4PzCK6Jnp0ZPFlx4x_J-uE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.130.140.0/24 Signature Algorithm: sha256WithRSAEncryption 41:fd:34:fe:61:c7:0e:d8:d9:2e:56:f6:08:55:47:e8:73:70: 3d:e0:a0:b4:79:3a:46:64:ee:fc:06:de:75:1e:80:46:ce:48: ab:3e:4b:e3:39:c0:04:0f:66:68:7b:6f:08:1e:49:f9:86:be: f0:43:3e:db:77:73:6c:9d:34:f9:58:5f:56:2b:29:aa:66:f6: 6d:98:8f:a7:5d:d8:68:09:39:ad:50:55:1d:12:bd:b6:68:e2: cf:a5:8c:f9:20:b3:b4:aa:22:01:bb:dc:54:d4:ed:c9:1c:0c: d2:26:50:47:cc:77:79:65:f9:1e:b0:8a:29:91:9a:9b:d2:a6: 49:d9:a4:00:89:2f:b0:e0:a7:c4:46:da:d0:0c:02:86:dc:6b: f0:03:b9:e7:5e:d2:cc:8b:ec:ed:6f:24:8c:f5:3d:25:f0:7c: 00:80:79:6e:3d:a6:3f:d0:79:65:b4:b7:e5:50:2b:cd:ae:72: 7f:21:62:f0:24:16:43:1a:40:68:61:9b:d5:ea:86:5e:62:6d: 7b:c3:74:48:63:e2:48:99:de:d5:48:1e:dc:8d:3a:b9:1b:96: 01:97:d3:8b:0e:c3:23:f7:d9:57:ce:fb:b2:65:5b:36:c6:51: 5e:32:26:c7:1c:9f:50:c6:4d:20:36:e7:23:10:7d:a5:c7:e8: e3:7c:45:c1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xq60vh7JFrrsFBK/I2ivMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4NWI4NTc3MDZkYWM1NGUyMGNhMGQxMWJkNjQxNmNiNjM0 MjAzYjQwHhcNMjYwMTAxMDQxNzQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNDkxY2M0ZjgzZjMwOGFlODk5ZTlkMTkzYzU5NzFlMzFmYzlmYWUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx4/aqcOV8psew/EzusQB/QZP5jdi HQRt+d6iBVOUYvdesXLnCAT+GlCveEH5mbsqmsnljX4r2nZRRlLnaRaQbRVIQyGX 5tLDjTCnWLeCsRZxR9xVpy76ogYcCXBiCzFMXXJplWtpTSF6KKBUj3KJiaPBFSjE Zv2U3qBfvxJXtattiXACTIfg6zmOXnaZKsNn8qyR1Jc+d9F8m/RhzixMQYNUWE1w a9h693aRCRIb32bmypsrZwYGo4wTuG8DI1uQAdnTjs/umrYYM5OOjXkjygcwokzg UsBVO6GVaey09lgKRndgD2bv5EQkYanR+UsYl0zKwQN9L/7Hfo1nAAUu4wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKSRzE+D8wiuiZ6dGTxZceMfyfrhMB8GA1UdIwQY MBaAFIhbhXcG2sVOIMoNEb1kFstjQgO0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUZ1RmR3YmF4VTRneWcwUnZXUVd5Mk5DQTdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8zMjFjZGMtMjE0My00YjVjLTk3MzMt MTY2OTljOTZkZDVlLzEvcEpITVQ0UHpDSzZKbnAwWlBGbHg0eF9KLXVFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS8zMjFjZGMtMjE0My00YjVjLTk3MzMtMTY2OTljOTZkZDVl LzEvaUZ1RmR3YmF4VTRneWcwUnZXUVd5Mk5DQTdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvIKMMA0G CSqGSIb3DQEBCwUAA4IBAQBB/TT+YccO2NkuVvYIVUfoc3A94KC0eTpGZO78Bt51 HoBGzkirPkvjOcAED2Zoe28IHkn5hr7wQz7bd3NsnTT5WF9WKymqZvZtmI+nXdho CTmtUFUdEr22aOLPpYz5ILO0qiIBu9xU1O3JHAzSJlBHzHd5ZfkesIopkZqb0qZJ 2aQAiS+w4KfERtrQDAKG3GvwA7nnXtLMi+ztbySM9T0l8HwAgHluPaY/0HlltLfl UCvNrnJ/IWLwJBZDGkBoYZvV6oZeYm17w3RIY+JImd7VSB7cjTq5G5YBl9OLDsMj 99lXzvuyZVs2xlFeMibHHJ9Qxk0gNucjEH2lx+jjfEXB -----END CERTIFICATE-----Generated at Sun Jan 25 20:58:32 2026 by rpki-client