This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/72155a-d109-4c2d-b974-1128e5ce6a5b/1/JwHH6LBZedJ4Hv0TunMjXoDshWM.roa File: JwHH6LBZedJ4Hv0TunMjXoDshWM.roa (raw, json) Hash identifier: D5XiTo1X7KneliPOhbgW7WFXSwpdBlipBaJGWbMwuis= Subject key identifier: 27:01:C7:E8:B0:59:79:D2:78:1E:FD:13:BA:73:23:5E:80:EC:85:63 Certificate issuer: /CN=4c2b89c3c57a3e296aa4061e962840be7ae8f018 Certificate serial: 019B77C6F686C8A23AF08F0DDD0F1BBD9B43 Authority key identifier: 4C:2B:89:C3:C5:7A:3E:29:6A:A4:06:1E:96:28:40:BE:7A:E8:F0:18 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TCuJw8V6PilqpAYelihAvnro8Bg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/72155a-d109-4c2d-b974-1128e5ce6a5b/1/JwHH6LBZedJ4Hv0TunMjXoDshWM.roa Signing time: Thu 01 Jan 2026 04:18:06 +0000 ROA not before: Thu 01 Jan 2026 04:18:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215540 IP address blocks: 85.234.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/72155a-d109-4c2d-b974-1128e5ce6a5b/1/TCuJw8V6PilqpAYelihAvnro8Bg.crl rsync://rpki.ripe.net/repository/DEFAULT/86/72155a-d109-4c2d-b974-1128e5ce6a5b/1/TCuJw8V6PilqpAYelihAvnro8Bg.mft rsync://rpki.ripe.net/repository/DEFAULT/TCuJw8V6PilqpAYelihAvnro8Bg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 04:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:f6:86:c8:a2:3a:f0:8f:0d:dd:0f:1b:bd:9b:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4c2b89c3c57a3e296aa4061e962840be7ae8f018 Validity Not Before: Jan 1 04:18:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2701c7e8b05979d2781efd13ba73235e80ec8563 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:41:a9:5d:a1:fa:3d:da:5a:bd:f1:ae:97:7a: ba:ca:da:2d:70:4e:f7:cf:fb:3d:39:57:16:d4:cd: 03:8a:b7:18:69:83:f2:b7:6a:b2:62:d9:f0:b2:59: f2:c6:25:12:2a:0c:21:c6:fe:f7:05:1a:cf:68:4d: 0d:6a:e9:8f:65:ca:49:95:d0:38:b8:41:78:b7:8f: 2f:a5:7e:91:4d:97:ed:88:2c:6a:b0:f4:fe:65:e4: c2:89:9a:1e:7b:55:34:2d:20:f0:72:1d:1b:ac:82: 60:98:2b:cc:7f:bd:62:ae:ff:74:2a:42:47:63:21: a4:8e:23:84:5c:e8:0c:e3:5e:f8:72:26:d1:43:43: 2c:fd:26:46:dc:be:39:b2:fd:0d:d3:59:b3:67:82: aa:5d:4b:6d:3a:05:a2:a5:bc:f4:88:47:fa:b8:84: b2:7d:42:90:1e:e3:04:0d:a9:bf:f8:7b:13:fe:28: e8:78:46:97:0d:f0:0a:29:b4:40:10:c5:28:4e:4a: b2:6a:20:9f:8c:83:56:30:a0:b8:05:85:50:7a:1e: ac:54:f7:1a:25:d8:32:77:8f:33:cf:3c:49:42:7a: 93:ff:00:04:d1:05:9d:ea:ff:f9:e0:2c:63:a4:ca: 45:39:b3:c7:79:0b:b2:23:7c:ed:cb:5c:2b:55:12: 6a:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:01:C7:E8:B0:59:79:D2:78:1E:FD:13:BA:73:23:5E:80:EC:85:63 X509v3 Authority Key Identifier: keyid:4C:2B:89:C3:C5:7A:3E:29:6A:A4:06:1E:96:28:40:BE:7A:E8:F0:18 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TCuJw8V6PilqpAYelihAvnro8Bg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/72155a-d109-4c2d-b974-1128e5ce6a5b/1/JwHH6LBZedJ4Hv0TunMjXoDshWM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/72155a-d109-4c2d-b974-1128e5ce6a5b/1/TCuJw8V6PilqpAYelihAvnro8Bg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.234.100.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:4a:22:8f:81:fe:2b:e2:88:91:f4:d9:72:07:ab:e9:6b:2a: 23:d3:a6:c1:a1:1f:11:24:ec:7d:28:9f:1b:de:e6:5c:d1:e6: 7b:96:01:94:15:5a:7c:7e:d6:05:17:e3:24:99:b0:27:cf:a6: ce:9f:f1:87:29:ec:89:ef:ad:97:00:1c:20:ed:18:de:de:ec: f0:ab:b2:b3:ed:a5:16:08:0a:32:91:01:3e:fd:d9:34:da:bc: 0c:29:af:39:a0:0c:d8:5f:d1:87:3e:0c:54:10:16:3e:41:3a: 26:db:69:6c:ae:cc:65:8d:67:c0:06:82:64:9d:6e:cd:ec:54: df:bb:00:93:2c:b4:83:49:82:13:72:8b:8c:b3:9b:e3:64:59: 8d:09:79:86:38:92:e0:d8:e4:a4:bb:6b:9c:65:88:8e:89:4d: f7:6a:dd:90:87:2a:06:d0:22:eb:e4:6f:7e:29:06:35:3c:44: 26:24:49:8f:bc:a6:a5:58:7d:5a:fb:a3:33:1e:86:f3:db:bf: 58:91:d1:e6:b1:ce:94:64:58:26:97:e3:06:e8:f3:f2:6f:8e: 8d:87:41:18:f7:83:b8:a4:8f:8c:6f:e4:dc:06:26:01:a4:08: bc:94:36:c7:37:8c:2c:ad:1c:f4:88:1e:01:7c:d5:46:39:15: 4b:90:f1:4c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xvaGyKI68I8N3Q8bvZtDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjMmI4OWMzYzU3YTNlMjk2YWE0MDYxZTk2Mjg0MGJlN2Fl OGYwMTgwHhcNMjYwMTAxMDQxODA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNzAxYzdlOGIwNTk3OWQyNzgxZWZkMTNiYTczMjM1ZTgwZWM4NTYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnUGpXaH6PdpavfGul3q6ytotcE73 z/s9OVcW1M0DircYaYPyt2qyYtnwslnyxiUSKgwhxv73BRrPaE0NaumPZcpJldA4 uEF4t48vpX6RTZftiCxqsPT+ZeTCiZoee1U0LSDwch0brIJgmCvMf71irv90KkJH YyGkjiOEXOgM4174cibRQ0Ms/SZG3L45sv0N01mzZ4KqXUttOgWipbz0iEf6uISy fUKQHuMEDam/+HsT/ijoeEaXDfAKKbRAEMUoTkqyaiCfjINWMKC4BYVQeh6sVPca Jdgyd48zzzxJQnqT/wAE0QWd6v/54CxjpMpFObPHeQuyI3zty1wrVRJq6wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCcBx+iwWXnSeB79E7pzI16A7IVjMB8GA1UdIwQY MBaAFEwricPFej4paqQGHpYoQL566PAYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVEN1Snc4VjZQaWxxcEFZZWxpaEF2bnJvOEJnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni83MjE1NWEtZDEwOS00YzJkLWI5NzQt MTEyOGU1Y2U2YTViLzEvSndISDZMQlplZEo0SHYwVHVuTWpYb0RzaFdNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni83MjE1NWEtZDEwOS00YzJkLWI5NzQtMTEyOGU1Y2U2YTVi LzEvVEN1Snc4VjZQaWxxcEFZZWxpaEF2bnJvOEJnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVepkMA0G CSqGSIb3DQEBCwUAA4IBAQAOSiKPgf4r4oiR9NlyB6vpayoj06bBoR8RJOx9KJ8b 3uZc0eZ7lgGUFVp8ftYFF+MkmbAnz6bOn/GHKeyJ762XABwg7Rje3uzwq7Kz7aUW CAoykQE+/dk02rwMKa85oAzYX9GHPgxUEBY+QTom22lsrsxljWfABoJknW7N7FTf uwCTLLSDSYITcouMs5vjZFmNCXmGOJLg2OSku2ucZYiOiU33at2QhyoG0CLr5G9+ KQY1PEQmJEmPvKalWH1a+6MzHobz279YkdHmsc6UZFgml+MG6PPyb46Nh0EY94O4 pI+Mb+TcBiYBpAi8lDbHN4wsrRz0iB4BfNVGORVLkPFM -----END CERTIFICATE-----Generated at Sun Jan 25 15:13:30 2026 by rpki-client