This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/jwsbk3UxQHXyjEExXwNUXcrvx38.roa File: jwsbk3UxQHXyjEExXwNUXcrvx38.roa (raw, json) Hash identifier: Glu31tXKVdAhpJSQOXApQod2ByFLYzTP23c7sIux+Ks= Subject key identifier: 8F:0B:1B:93:75:31:40:75:F2:8C:41:31:5F:03:54:5D:CA:EF:C7:7F Certificate issuer: /CN=d1fd3436d7a19a7343fa800d87a01af183da318b Certificate serial: 019B79110A8AD3BD4ABE41B38BFD23D4EC6E Authority key identifier: D1:FD:34:36:D7:A1:9A:73:43:FA:80:0D:87:A0:1A:F1:83:DA:31:8B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0f00NtehmnND-oANh6Aa8YPaMYs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/jwsbk3UxQHXyjEExXwNUXcrvx38.roa Signing time: Thu 01 Jan 2026 10:18:38 +0000 ROA not before: Thu 01 Jan 2026 10:18:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47215 IP address blocks: 185.13.208.0/22 maxlen: 24 2a03:a540::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.crl rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.mft rsync://rpki.ripe.net/repository/DEFAULT/0f00NtehmnND-oANh6Aa8YPaMYs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:0a:8a:d3:bd:4a:be:41:b3:8b:fd:23:d4:ec:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d1fd3436d7a19a7343fa800d87a01af183da318b Validity Not Before: Jan 1 10:18:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8f0b1b9375314075f28c41315f03545dcaefc77f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:d3:85:39:d6:f2:15:28:a9:43:81:be:8f:04: ce:0f:8c:10:05:17:55:9d:ff:ca:df:58:ac:8d:0e: 79:13:41:f9:f8:6f:94:87:26:6d:56:7e:20:4a:13: 30:da:7f:75:41:48:25:60:e7:80:26:c9:f8:75:20: 85:a9:f8:3b:b4:84:2a:9a:b6:a9:a5:56:f5:8d:4e: f0:6b:20:94:03:69:53:52:b8:0b:a1:e7:16:cf:c3: 60:0f:e4:e0:b9:74:a5:50:94:ae:2e:bd:a8:a2:f0: 88:7e:d3:38:93:cd:f2:0d:2f:f2:89:bd:5b:8a:a7: ce:18:26:fc:90:fe:0a:d8:06:2e:db:85:90:cc:dd: b1:2a:b2:e0:82:91:15:c8:e8:80:9e:0d:5f:4c:61: d2:21:d0:9a:85:17:4f:fc:ab:b6:0e:98:a0:27:54: 80:a4:a0:e0:da:36:1c:32:25:24:f7:86:d6:04:07: 02:3a:46:db:c3:61:53:01:db:6b:68:41:93:4e:cf: 1b:07:e0:8c:80:fb:9c:e5:5b:81:31:fa:36:29:10: 6d:fa:dd:a3:e5:f9:50:c0:b4:c2:c3:f0:d3:54:94: 2c:7d:6f:d1:f8:08:69:37:75:f0:83:82:e6:93:6d: 7d:98:82:2f:8b:8a:15:45:21:5e:43:ac:c6:20:3e: 72:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:0B:1B:93:75:31:40:75:F2:8C:41:31:5F:03:54:5D:CA:EF:C7:7F X509v3 Authority Key Identifier: keyid:D1:FD:34:36:D7:A1:9A:73:43:FA:80:0D:87:A0:1A:F1:83:DA:31:8B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f00NtehmnND-oANh6Aa8YPaMYs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/jwsbk3UxQHXyjEExXwNUXcrvx38.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.13.208.0/22 IPv6: 2a03:a540::/32 Signature Algorithm: sha256WithRSAEncryption 92:1e:52:da:16:f7:ad:e8:d3:43:e5:be:e4:70:15:f1:2d:91: dc:28:b6:05:03:ff:4a:1f:8b:25:66:3a:3b:46:7e:03:57:38: 1a:c3:0e:dc:9f:36:06:23:02:3b:52:0b:81:8c:fe:6a:8b:9e: 24:88:58:88:a0:68:32:41:18:8b:e6:a5:5f:54:3c:5e:20:02: f2:34:84:b7:8b:ab:a7:24:e3:af:92:57:7d:da:a3:16:8b:fc: c8:a2:db:20:c5:68:fe:ed:fe:ea:18:12:3e:6b:3a:8d:64:56: 8c:48:63:a0:cc:ab:d4:c7:e3:c5:85:12:39:61:a1:9d:df:18: 27:01:f1:cf:9a:6c:cc:91:cb:00:9f:9c:72:c7:80:07:04:20: 2b:13:96:fb:49:e1:ed:18:fe:b4:98:18:5b:e3:41:b4:22:bf: 37:2c:26:13:d8:eb:a5:ce:31:f2:dc:d3:e9:45:62:e3:cc:ff: b7:70:ec:c9:ee:fd:ed:d5:f6:bf:c7:1f:8f:4f:50:4a:9d:60: 22:0b:26:9d:73:de:17:51:35:23:b8:83:bd:22:93:68:a7:fd: 74:1a:b8:9c:a1:a3:36:1c:11:6e:77:80:2b:f3:ce:63:84:ac: 05:f4:b0:a1:ac:a5:29:3a:dc:7b:05:79:b8:e7:7b:ad:14:ac: 0e:59:48:ec -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5EQqK071KvkGzi/0j1OxuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxZmQzNDM2ZDdhMTlhNzM0M2ZhODAwZDg3YTAxYWYxODNk YTMxOGIwHhcNMjYwMTAxMTAxODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZjBiMWI5Mzc1MzE0MDc1ZjI4YzQxMzE1ZjAzNTQ1ZGNhZWZjNzdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7tOFOdbyFSipQ4G+jwTOD4wQBRdV nf/K31isjQ55E0H5+G+UhyZtVn4gShMw2n91QUglYOeAJsn4dSCFqfg7tIQqmrap pVb1jU7wayCUA2lTUrgLoecWz8NgD+TguXSlUJSuLr2oovCIftM4k83yDS/yib1b iqfOGCb8kP4K2AYu24WQzN2xKrLggpEVyOiAng1fTGHSIdCahRdP/Ku2DpigJ1SA pKDg2jYcMiUk94bWBAcCOkbbw2FTAdtraEGTTs8bB+CMgPuc5VuBMfo2KRBt+t2j 5flQwLTCw/DTVJQsfW/R+AhpN3Xwg4Lmk219mIIvi4oVRSFeQ6zGID5yCQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFI8LG5N1MUB18oxBMV8DVF3K78d/MB8GA1UdIwQY MBaAFNH9NDbXoZpzQ/qADYegGvGD2jGLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGYwME50ZWhtbk5ELW9BTmg2QWE4WVBhTVlzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy9iY2Q1ZTgtNWQxZi00NmIxLTk2YmMt MzlhNjZjYmUxZTRkLzEvandzYmszVXhRSFh5akVFeFh3TlVYY3J2eDM4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yy9iY2Q1ZTgtNWQxZi00NmIxLTk2YmMtMzlhNjZjYmUxZTRk LzEvMGYwME50ZWhtbk5ELW9BTmg2QWE4WVBhTVlzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuQ3QMA0E AgACMAcDBQAqA6VAMA0GCSqGSIb3DQEBCwUAA4IBAQCSHlLaFvet6NND5b7kcBXx LZHcKLYFA/9KH4slZjo7Rn4DVzgaww7cnzYGIwI7UguBjP5qi54kiFiIoGgyQRiL 5qVfVDxeIALyNIS3i6unJOOvkld92qMWi/zIotsgxWj+7f7qGBI+azqNZFaMSGOg zKvUx+PFhRI5YaGd3xgnAfHPmmzMkcsAn5xyx4AHBCArE5b7SeHtGP60mBhb40G0 Ir83LCYT2OulzjHy3NPpRWLjzP+3cOzJ7v3t1fa/xx+PT1BKnWAiCyadc94XUTUj uIO9IpNop/10GricoaM2HBFud4Ar885jhKwF9LChrKUpOtx7BXm453utFKwOWUjs -----END CERTIFICATE-----Generated at Sun Jan 25 20:58:32 2026 by rpki-client