This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/b476f9-d242-465a-8748-5f1dc0a0bfcf/1/JEiGbQEv5uxJuy32ir_fQeAKys8.roa File: JEiGbQEv5uxJuy32ir_fQeAKys8.roa (raw, json) Hash identifier: h5HQWsILbTzf8iWmMH9s843eJqaOXzdBwkJ2EOOO/q0= Subject key identifier: 24:48:86:6D:01:2F:E6:EC:49:BB:2D:F6:8A:BF:DF:41:E0:0A:CA:CF Certificate issuer: /CN=edafdca6eace4f1293223b02eebc278243869b7b Certificate serial: 019B7AC783A3F55BF02671956A31E900B2D8 Authority key identifier: ED:AF:DC:A6:EA:CE:4F:12:93:22:3B:02:EE:BC:27:82:43:86:9B:7B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7a_cpurOTxKTIjsC7rwngkOGm3s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/b476f9-d242-465a-8748-5f1dc0a0bfcf/1/JEiGbQEv5uxJuy32ir_fQeAKys8.roa Signing time: Thu 01 Jan 2026 18:17:34 +0000 ROA not before: Thu 01 Jan 2026 18:17:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1902 IP address blocks: 185.156.128.0/22 maxlen: 22 2a07:9e40::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/b476f9-d242-465a-8748-5f1dc0a0bfcf/1/7a_cpurOTxKTIjsC7rwngkOGm3s.crl rsync://rpki.ripe.net/repository/DEFAULT/6c/b476f9-d242-465a-8748-5f1dc0a0bfcf/1/7a_cpurOTxKTIjsC7rwngkOGm3s.mft rsync://rpki.ripe.net/repository/DEFAULT/7a_cpurOTxKTIjsC7rwngkOGm3s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:83:a3:f5:5b:f0:26:71:95:6a:31:e9:00:b2:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=edafdca6eace4f1293223b02eebc278243869b7b Validity Not Before: Jan 1 18:17:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2448866d012fe6ec49bb2df68abfdf41e00acacf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:da:2a:f6:77:e2:83:d9:a8:ac:eb:50:c5:54: 9a:0a:41:2f:0e:f2:0f:73:b4:62:b3:cd:23:c3:95: 1f:ee:50:67:17:7f:55:a2:0e:70:65:4f:b4:c4:d5: f2:57:46:8f:ec:be:60:b4:3e:cc:3a:4a:25:be:fe: af:07:f8:92:16:b3:57:81:0b:a9:29:ab:e3:a2:df: 31:56:e2:9e:d9:ce:f1:29:d4:20:15:c0:f7:f4:64: ec:ea:b0:7f:60:07:1b:a9:bc:10:cd:55:1d:c6:de: 20:b5:81:9a:ee:00:82:fe:23:eb:92:fb:43:fd:5b: ea:83:64:3e:a8:b1:bf:06:75:35:05:d8:cc:b1:bc: 8b:63:5e:45:31:ef:85:41:d2:25:66:71:5f:e5:1e: 22:fc:05:85:35:12:02:73:db:1f:0b:71:c5:2e:1c: 98:4f:46:6d:d3:e8:23:bd:63:9f:18:63:ce:aa:99: a9:15:b9:b4:96:eb:ab:95:a6:d1:d0:cf:43:a9:50: 9a:5c:74:4e:87:8f:eb:66:91:13:04:7d:8e:4a:5a: cd:50:72:e8:97:fc:e6:89:1d:52:f3:53:06:e6:56: 8b:d0:49:b4:6f:b4:9a:4e:c8:dc:e3:2a:94:36:9e: 27:42:a8:c3:fa:44:52:b2:73:64:a6:76:ee:df:3e: 2f:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:48:86:6D:01:2F:E6:EC:49:BB:2D:F6:8A:BF:DF:41:E0:0A:CA:CF X509v3 Authority Key Identifier: keyid:ED:AF:DC:A6:EA:CE:4F:12:93:22:3B:02:EE:BC:27:82:43:86:9B:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a_cpurOTxKTIjsC7rwngkOGm3s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/b476f9-d242-465a-8748-5f1dc0a0bfcf/1/JEiGbQEv5uxJuy32ir_fQeAKys8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/b476f9-d242-465a-8748-5f1dc0a0bfcf/1/7a_cpurOTxKTIjsC7rwngkOGm3s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.156.128.0/22 IPv6: 2a07:9e40::/29 Signature Algorithm: sha256WithRSAEncryption 2a:8a:7b:63:6c:92:b1:1b:c9:f7:52:78:d2:0e:bd:6a:41:c6: 1e:13:0d:1b:01:46:2f:3c:00:e5:6e:e5:c5:64:e3:1b:4b:96: 3c:05:b9:c2:05:89:ee:71:2a:14:50:1e:af:ab:e2:e2:2a:07: 82:90:a7:ef:26:35:14:46:4c:d8:c4:fb:d9:0d:a2:fd:75:10: eb:79:58:39:25:cb:eb:33:21:0c:3e:8f:36:ef:22:11:27:d6: 0c:69:61:48:0c:09:b5:de:73:6c:dd:5e:df:cb:09:84:90:60: 91:58:df:2b:5f:16:37:aa:74:b9:53:df:cb:38:bb:1f:fb:55: b6:2f:af:50:d5:01:45:4d:c6:ab:d3:bf:a5:39:0b:9a:cf:07: 36:f7:c8:19:a9:09:99:48:36:bf:ea:df:37:9c:22:2c:e5:0d: f6:4f:bd:cb:75:bd:a3:26:a4:b1:2b:ee:9c:53:d0:25:94:df: b5:fe:8f:26:b4:88:7c:c6:2e:8a:ee:97:d9:7b:52:99:a7:67: fc:a6:60:5b:c7:0a:8b:a5:b8:a7:08:5e:1d:f9:06:9d:af:20: 27:0a:c5:d9:3a:41:c0:4e:ef:3b:57:c0:e9:ee:33:a6:a2:d9: 8b:b8:0b:f1:bb:78:c3:da:63:0b:b1:e8:a2:98:42:48:9a:df: e8:c6:b5:06 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt6x4Oj9VvwJnGVajHpALLYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVkYWZkY2E2ZWFjZTRmMTI5MzIyM2IwMmVlYmMyNzgyNDM4 NjliN2IwHhcNMjYwMTAxMTgxNzM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNDQ4ODY2ZDAxMmZlNmVjNDliYjJkZjY4YWJmZGY0MWUwMGFjYWNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvdoq9nfig9morOtQxVSaCkEvDvIP c7Ris80jw5Uf7lBnF39Vog5wZU+0xNXyV0aP7L5gtD7MOkolvv6vB/iSFrNXgQup Kavjot8xVuKe2c7xKdQgFcD39GTs6rB/YAcbqbwQzVUdxt4gtYGa7gCC/iPrkvtD /Vvqg2Q+qLG/BnU1BdjMsbyLY15FMe+FQdIlZnFf5R4i/AWFNRICc9sfC3HFLhyY T0Zt0+gjvWOfGGPOqpmpFbm0luurlabR0M9DqVCaXHROh4/rZpETBH2OSlrNUHLo l/zmiR1S81MG5laL0Em0b7SaTsjc4yqUNp4nQqjD+kRSsnNkpnbu3z4vBwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFCRIhm0BL+bsSbst9oq/30HgCsrPMB8GA1UdIwQY MBaAFO2v3Kbqzk8SkyI7Au68J4JDhpt7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN2FfY3B1ck9UeEtUSWpzQzdyd25na09HbTNzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy9iNDc2ZjktZDI0Mi00NjVhLTg3NDgt NWYxZGMwYTBiZmNmLzEvSkVpR2JRRXY1dXhKdXkzMmlyX2ZRZUFLeXM4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yy9iNDc2ZjktZDI0Mi00NjVhLTg3NDgtNWYxZGMwYTBiZmNm LzEvN2FfY3B1ck9UeEtUSWpzQzdyd25na09HbTNzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuZyAMA0E AgACMAcDBQMqB55AMA0GCSqGSIb3DQEBCwUAA4IBAQAqintjbJKxG8n3UnjSDr1q QcYeEw0bAUYvPADlbuXFZOMbS5Y8BbnCBYnucSoUUB6vq+LiKgeCkKfvJjUURkzY xPvZDaL9dRDreVg5JcvrMyEMPo827yIRJ9YMaWFIDAm13nNs3V7fywmEkGCRWN8r XxY3qnS5U9/LOLsf+1W2L69Q1QFFTcar07+lOQuazwc298gZqQmZSDa/6t83nCIs 5Q32T73Ldb2jJqSxK+6cU9AllN+1/o8mtIh8xi6K7pfZe1KZp2f8pmBbxwqLpbin CF4d+QadryAnCsXZOkHATu87V8Dp7jOmotmLuAvxu3jD2mMLseiimEJImt/oxrUG -----END CERTIFICATE-----Generated at Sun Jan 25 21:28:31 2026 by rpki-client