This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/1jhK6FlZl5hM4Uobk038Kp_qa2Y.roa File: 1jhK6FlZl5hM4Uobk038Kp_qa2Y.roa (raw, json) Hash identifier: 2WoESQPg3Jk+4IXMvTcODAWwogRB6i9rlzqgm3VM7XA= Subject key identifier: D6:38:4A:E8:59:59:97:98:4C:E1:4A:1B:93:4D:FC:2A:9F:EA:6B:66 Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528 Certificate serial: 019B78343FC69AA0232142FE31965F9E6230 Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/1jhK6FlZl5hM4Uobk038Kp_qa2Y.roa Signing time: Thu 01 Jan 2026 06:17:28 +0000 ROA not before: Thu 01 Jan 2026 06:17:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 21245 IP address blocks: 144.208.204.0/24 maxlen: 24 144.208.206.0/24 maxlen: 24 185.2.176.0/24 maxlen: 24 217.146.6.0/24 maxlen: 24 217.146.7.0/24 maxlen: 24 2a05:8900:36::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.mft rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:3f:c6:9a:a0:23:21:42:fe:31:96:5f:9e:62:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528 Validity Not Before: Jan 1 06:17:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d6384ae8595997984ce14a1b934dfc2a9fea6b66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:39:b9:01:7c:62:19:e7:52:bf:c2:d8:48:da: 41:97:f7:3c:40:6e:3f:5e:dc:8b:38:df:fa:5e:29: 2e:31:fb:34:61:53:61:23:18:2b:c0:66:5a:03:51: 22:9a:7b:aa:39:f6:ab:24:ef:ca:67:6a:e8:cc:a3: a2:3c:fa:f5:c2:f9:e6:13:18:f9:fe:95:3c:ec:1e: e0:06:5a:4e:ff:19:db:a6:87:f9:a7:96:3e:e5:c9: 70:82:25:29:be:e5:fd:3d:5e:30:fa:09:d3:76:42: bc:4d:3e:6e:66:2c:79:07:8c:96:b3:28:38:89:6f: 3f:d2:46:f6:6f:e2:f0:69:de:3c:b6:15:69:bb:34: 81:37:7f:f8:78:75:21:5b:af:43:db:c1:50:77:4b: 02:62:34:d4:bd:b6:a9:f9:79:8f:0b:7f:71:d1:ed: 2c:f9:26:fa:52:b2:3b:a1:82:b8:c2:44:3d:38:43: 03:4f:74:14:8d:dd:e7:b5:a9:c8:13:6f:ab:6f:29: e1:85:c3:ad:b3:c2:d5:77:0d:3a:16:88:b6:84:24: df:8e:d6:fb:49:7f:f8:b8:1d:47:38:97:40:24:5d: 7d:62:ad:f5:c9:b5:69:bc:ee:2f:c0:7f:a1:91:ec: 2f:44:8a:57:cd:d0:73:47:0f:13:cf:99:68:70:37: e4:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:38:4A:E8:59:59:97:98:4C:E1:4A:1B:93:4D:FC:2A:9F:EA:6B:66 X509v3 Authority Key Identifier: keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/1jhK6FlZl5hM4Uobk038Kp_qa2Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.208.204.0/24 144.208.206.0/24 185.2.176.0/24 217.146.6.0/23 IPv6: 2a05:8900:36::/48 Signature Algorithm: sha256WithRSAEncryption bb:a6:74:b5:d2:96:52:cf:87:fb:c5:52:f4:24:08:38:ec:bf: 5c:b5:e4:9e:9c:bb:3a:c7:61:82:2e:4e:84:ff:7a:29:b2:62: 1d:dd:10:9c:15:88:16:1a:98:a1:24:3a:ad:2f:20:d5:b3:79: b6:71:1d:9a:c6:78:e6:8e:f9:7e:1d:46:f5:90:40:89:1c:73: e1:69:28:4b:e2:00:50:6e:a0:3a:19:56:1c:2c:b6:bc:02:b5: fa:61:66:38:af:ec:52:66:f7:5e:d4:12:9c:d5:c3:6a:94:a2: 48:3f:6b:e2:3c:38:8c:0a:6a:b4:5f:70:95:b6:bb:ca:e5:ae: 89:d5:c7:04:4b:95:82:4b:cf:b4:3e:40:02:a5:a6:d0:c0:ac: 8a:e4:16:c3:16:ef:a1:78:4b:d8:09:2c:fa:24:04:66:77:f5: 39:c9:26:80:3c:c8:b5:ed:af:06:d2:54:3c:a7:86:67:c4:88: 20:05:4a:e4:04:04:bf:59:cc:d3:24:ed:9b:e4:c0:7b:bd:73: 1a:3d:f6:2c:f4:64:40:82:0f:d5:20:ca:9c:64:14:d2:55:11: 7c:6e:4c:2c:21:b9:99:0c:d9:76:33:b8:7c:12:15:52:35:9d: ca:b4:42:e6:c9:de:2e:2d:16:ca:a3:ce:07:e0:3c:b4:d2:a8: cd:e8:fe:8b -----BEGIN CERTIFICATE----- MIIFIDCCBAigAwIBAgISAZt4ND/GmqAjIUL+MZZfnmIwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1MzlhZmViYWNlODk5YThlZTBiYjRmOGJiNDQ3NWZlMjQ3 YTE1MjgwHhcNMjYwMTAxMDYxNzI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNjM4NGFlODU5NTk5Nzk4NGNlMTRhMWI5MzRkZmMyYTlmZWE2YjY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsDm5AXxiGedSv8LYSNpBl/c8QG4/ XtyLON/6XikuMfs0YVNhIxgrwGZaA1EimnuqOfarJO/KZ2rozKOiPPr1wvnmExj5 /pU87B7gBlpO/xnbpof5p5Y+5clwgiUpvuX9PV4w+gnTdkK8TT5uZix5B4yWsyg4 iW8/0kb2b+Lwad48thVpuzSBN3/4eHUhW69D28FQd0sCYjTUvbap+XmPC39x0e0s +Sb6UrI7oYK4wkQ9OEMDT3QUjd3ntanIE2+rbynhhcOts8LVdw06Foi2hCTfjtb7 SX/4uB1HOJdAJF19Yq31ybVpvO4vwH+hkewvRIpXzdBzRw8Tz5locDfkYwIDAQAB o4ICLDCCAigwHQYDVR0OBBYEFNY4SuhZWZeYTOFKG5NN/Cqf6mtmMB8GA1UdIwQY MBaAFKU5r+us6Jmo7gu0+LtEdf4kehUoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFRtdjY2em9tYWp1QzdUNHUwUjFfaVI2RlNnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS85OGM0ZWUtMmY1OS00NWE3LWFkYjYt NzQxMzk1OTEzMTJlLzEvMWpoSzZGbFpsNWhNNFVvYmswMzhLcF9xYTJZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZS85OGM0ZWUtMmY1OS00NWE3LWFkYjYtNzQxMzk1OTEzMTJl LzEvcFRtdjY2em9tYWp1QzdUNHUwUjFfaVI2RlNnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEIGCCsGAQUFBwEHAQH/BDMwMTAeBAIAATAYAwQAkNDMAwQA kNDOAwQAuQKwAwQB2ZIGMA8EAgACMAkDBwAqBYkAADYwDQYJKoZIhvcNAQELBQAD ggEBALumdLXSllLPh/vFUvQkCDjsv1y15J6cuzrHYYIuToT/eimyYh3dEJwViBYa mKEkOq0vINWzebZxHZrGeOaO+X4dRvWQQIkcc+FpKEviAFBuoDoZVhwstrwCtfph Zjiv7FJm917UEpzVw2qUokg/a+I8OIwKarRfcJW2u8rlronVxwRLlYJLz7Q+QAKl ptDArIrkFsMW76F4S9gJLPokBGZ39TnJJoA8yLXtrwbSVDynhmfEiCAFSuQEBL9Z zNMk7ZvkwHu9cxo99iz0ZECCD9UgypxkFNJVEXxuTCwhuZkM2XYzuHwSFVI1ncq0 QubJ3i4tFsqjzgfgPLTSqM3o/os= -----END CERTIFICATE-----Generated at Sun Jan 25 15:36:16 2026 by rpki-client