This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/JD8IpoXqXzIC8vLaBRunpCPEQvU.roa File: JD8IpoXqXzIC8vLaBRunpCPEQvU.roa (raw, json) Hash identifier: JEXzDk48fkmrTJN1DyidrVTKmnWcqnbDgWMrAk17GAI= Subject key identifier: 24:3F:08:A6:85:EA:5F:32:02:F2:F2:DA:05:1B:A7:A4:23:C4:42:F5 Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528 Certificate serial: 019B78344418EECB80EE12996A179A74C278 Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/JD8IpoXqXzIC8vLaBRunpCPEQvU.roa Signing time: Thu 01 Jan 2026 06:17:29 +0000 ROA not before: Thu 01 Jan 2026 06:17:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51453 IP address blocks: 37.235.0.0/23 maxlen: 23 37.235.2.0/24 maxlen: 24 185.81.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.mft rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:44:18:ee:cb:80:ee:12:99:6a:17:9a:74:c2:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528 Validity Not Before: Jan 1 06:17:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=243f08a685ea5f3202f2f2da051ba7a423c442f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:82:e0:57:10:5d:dd:a8:47:9d:99:24:33:5d: 95:99:27:b5:6c:22:99:92:72:67:80:7b:80:22:2f: 2c:70:13:12:fc:e2:1f:6b:24:fd:8a:9b:ec:79:a3: 34:24:2c:73:32:3d:4f:41:f6:d5:dc:38:f4:dd:b2: 8f:67:2f:80:cf:5f:04:fc:84:ee:31:29:f1:f6:3f: 68:c5:90:07:7b:53:21:09:6f:a1:8f:e6:6c:b3:d3: 28:c7:74:ef:f2:b6:50:b8:2c:d4:a8:23:66:bc:b3: ee:12:3a:65:c3:fd:60:53:e0:66:7c:cd:82:f0:1b: 55:94:57:3c:c3:da:22:57:3e:4f:6a:24:60:5a:68: 45:f9:10:61:80:89:01:5b:aa:b4:81:46:26:d3:a6: 3a:40:c1:67:e2:2a:8f:81:6d:32:74:fa:55:22:8d: 9d:52:17:0d:64:e7:0f:f7:c9:15:5a:69:13:eb:a2: da:1b:09:cc:fc:b1:0a:77:23:ce:ca:36:a7:38:98: e1:0b:36:e0:c3:70:26:e6:c9:b2:38:e3:e9:b8:18: 26:ba:5b:67:5d:29:b2:3a:b4:ab:52:b5:d8:61:28: e1:9a:6a:b2:0c:3d:16:eb:bc:f7:90:66:f4:f7:bc: 4d:d6:61:20:dd:95:4f:75:b2:81:39:42:b3:31:71: 3c:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:3F:08:A6:85:EA:5F:32:02:F2:F2:DA:05:1B:A7:A4:23:C4:42:F5 X509v3 Authority Key Identifier: keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/JD8IpoXqXzIC8vLaBRunpCPEQvU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.235.0.0-37.235.2.255 185.81.204.0/24 Signature Algorithm: sha256WithRSAEncryption 76:41:d6:14:fe:f4:44:39:a5:e9:15:1b:d9:cf:74:1a:4e:01: 47:a8:6d:16:36:76:7b:cb:d3:6c:52:3d:53:db:43:cf:d5:ce: 9d:00:14:57:20:8e:34:fc:d2:ee:84:a1:f8:7e:b6:e6:53:07: 36:00:3c:ec:78:e1:df:d0:de:97:f5:e3:58:d9:13:0a:df:92: 7f:af:87:b6:32:3d:3c:9a:3a:1c:8c:14:e3:d6:0f:66:f0:ff: 06:6c:cc:11:c8:4d:22:97:36:04:a1:f5:1d:39:92:62:38:1b: c5:0d:9d:31:2d:67:f4:ec:4f:ba:c1:c5:37:95:f3:7c:91:c1: 0e:a8:39:c5:c4:1d:bc:c7:30:97:b4:81:69:8d:b3:73:50:5d: 6d:39:ad:8b:25:5b:da:0b:34:f3:8d:ab:25:3b:a6:b7:8c:ab: 00:c7:8e:20:33:c0:ce:ab:1c:7e:f4:bd:9a:fe:df:94:d6:fb: ba:2b:df:c2:2b:d1:ee:03:a1:2c:4c:c0:e9:23:d9:5a:06:4e: 27:bf:76:af:e5:fc:60:ed:35:ca:71:31:85:5b:02:3a:97:b3: 5a:8f:21:e4:fb:02:5c:30:65:be:9f:6d:9d:1a:ed:d5:19:83: 0f:14:cf:96:ea:7d:c2:c5:90:9d:d5:1e:78:2e:a9:57:70:c4: e7:4e:8d:d9 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgISAZt4NEQY7suA7hKZaheadMJ4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1MzlhZmViYWNlODk5YThlZTBiYjRmOGJiNDQ3NWZlMjQ3 YTE1MjgwHhcNMjYwMTAxMDYxNzI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNDNmMDhhNjg1ZWE1ZjMyMDJmMmYyZGEwNTFiYTdhNDIzYzQ0MmY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1oLgVxBd3ahHnZkkM12VmSe1bCKZ knJngHuAIi8scBMS/OIfayT9ipvseaM0JCxzMj1PQfbV3Dj03bKPZy+Az18E/ITu MSnx9j9oxZAHe1MhCW+hj+Zss9Mox3Tv8rZQuCzUqCNmvLPuEjplw/1gU+BmfM2C 8BtVlFc8w9oiVz5PaiRgWmhF+RBhgIkBW6q0gUYm06Y6QMFn4iqPgW0ydPpVIo2d UhcNZOcP98kVWmkT66LaGwnM/LEKdyPOyjanOJjhCzbgw3Am5smyOOPpuBgmultn XSmyOrSrUrXYYSjhmmqyDD0W67z3kGb097xN1mEg3ZVPdbKBOUKzMXE82wIDAQAB o4ICFjCCAhIwHQYDVR0OBBYEFCQ/CKaF6l8yAvLy2gUbp6QjxEL1MB8GA1UdIwQY MBaAFKU5r+us6Jmo7gu0+LtEdf4kehUoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFRtdjY2em9tYWp1QzdUNHUwUjFfaVI2RlNnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS85OGM0ZWUtMmY1OS00NWE3LWFkYjYt NzQxMzk1OTEzMTJlLzEvSkQ4SXBvWHFYeklDOHZMYUJSdW5wQ1BFUXZVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZS85OGM0ZWUtMmY1OS00NWE3LWFkYjYtNzQxMzk1OTEzMTJl LzEvcFRtdjY2em9tYWp1QzdUNHUwUjFfaVI2RlNnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCwGCCsGAQUFBwEHAQH/BB0wGzAZBAIAATATMAsDAwAl6wME ACXrAgMEALlRzDANBgkqhkiG9w0BAQsFAAOCAQEAdkHWFP70RDml6RUb2c90Gk4B R6htFjZ2e8vTbFI9U9tDz9XOnQAUVyCONPzS7oSh+H625lMHNgA87Hjh39Del/Xj WNkTCt+Sf6+HtjI9PJo6HIwU49YPZvD/BmzMEchNIpc2BKH1HTmSYjgbxQ2dMS1n 9OxPusHFN5XzfJHBDqg5xcQdvMcwl7SBaY2zc1BdbTmtiyVb2gs0842rJTumt4yr AMeOIDPAzqscfvS9mv7flNb7uivfwivR7gOhLEzA6SPZWgZOJ792r+X8YO01ynEx hVsCOpezWo8h5PsCXDBlvp9tnRrt1RmDDxTPlup9wsWQndUeeC6pV3DE506N2Q== -----END CERTIFICATE-----Generated at Mon Jan 26 04:41:56 2026 by rpki-client