This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/JcbFU1gEgzeOanis9y0OPE0q-0U.roa File: JcbFU1gEgzeOanis9y0OPE0q-0U.roa (raw, json) Hash identifier: QLtaoqwoqQOTWqTsC4ZtpjDBrhYzC/UNJTn+8LQHFmM= Subject key identifier: 25:C6:C5:53:58:04:83:37:8E:6A:78:AC:F7:2D:0E:3C:4D:2A:FB:45 Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464 Certificate serial: 019B8E54C64230E63C8320B1BE02823DF08D Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/JcbFU1gEgzeOanis9y0OPE0q-0U.roa Signing time: Mon 05 Jan 2026 13:24:38 +0000 ROA not before: Mon 05 Jan 2026 13:24:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204650 IP address blocks: 37.32.40.0/24 maxlen: 24 37.32.44.0/24 maxlen: 24 37.32.45.0/24 maxlen: 24 185.124.173.0/24 maxlen: 24 185.212.48.0/24 maxlen: 24 185.243.49.0/24 maxlen: 24 185.243.50.0/24 maxlen: 24 2a00:7040::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.mft rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:8e:54:c6:42:30:e6:3c:83:20:b1:be:02:82:3d:f0:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464 Validity Not Before: Jan 5 13:24:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=25c6c553580483378e6a78acf72d0e3c4d2afb45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0a:fc:fa:cb:20:a0:c1:1e:2b:8a:38:72:65: e6:49:29:40:3c:22:15:08:f6:20:03:56:e7:e4:87: d5:db:96:d1:1c:1a:51:71:50:65:0c:4c:09:df:dd: ac:45:42:58:ed:4c:8d:7d:8b:6c:b7:c5:74:7c:38: fe:1f:6c:37:d1:ce:e5:79:67:4f:07:60:a6:19:7b: 71:0a:bb:1a:8d:1b:ef:4d:f9:70:eb:41:fb:ed:87: e5:0f:9f:03:fc:9b:8d:07:0a:af:03:d1:59:22:50: f3:67:10:10:3e:0e:48:95:5a:60:48:73:a0:b3:fc: 0d:50:20:1f:7a:06:a0:12:23:8b:13:44:cd:be:57: dd:99:6f:11:c6:66:49:89:ae:52:e4:d2:87:a7:06: 36:10:49:aa:0e:ad:08:f1:5b:23:6d:04:ec:28:7d: 30:8c:24:89:7d:f0:d8:db:2c:9e:b6:00:98:74:68: a2:1f:1e:4b:9c:cb:07:f1:f3:2c:68:e2:ab:21:c2: dd:b9:6b:e0:33:31:9d:e0:36:73:51:5d:77:2d:e2: d8:a9:44:2c:c3:ca:08:31:4c:cd:28:ce:1d:31:25: f1:a8:c1:53:56:ce:25:57:e5:70:c1:7c:f1:03:87: ec:28:ba:64:02:d8:ad:28:45:27:fb:34:c1:c7:1a: 07:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:C6:C5:53:58:04:83:37:8E:6A:78:AC:F7:2D:0E:3C:4D:2A:FB:45 X509v3 Authority Key Identifier: keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/JcbFU1gEgzeOanis9y0OPE0q-0U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.32.40.0/24 37.32.44.0/23 185.124.173.0/24 185.212.48.0/24 185.243.49.0-185.243.50.255 IPv6: 2a00:7040::/32 Signature Algorithm: sha256WithRSAEncryption d0:1b:9f:eb:e9:bd:e5:ab:f4:c2:62:f2:d0:e5:8e:ac:33:ed: d0:89:8b:09:15:65:2f:17:38:06:1f:7a:18:5c:5d:cd:17:78: ff:18:2f:5d:43:c7:45:e0:d7:38:42:bf:33:3b:a0:23:b5:cc: b8:08:0a:f3:9c:91:90:43:96:4a:46:a3:c1:89:c9:50:f5:16: 9d:73:95:bd:c3:00:54:bd:53:10:35:ec:e9:31:da:96:42:45: 88:40:9b:71:78:31:65:a8:24:2f:22:80:c2:df:2f:f8:3e:8c: 48:68:d9:68:40:53:b3:1a:64:39:66:c3:d6:0e:a5:11:7f:b0: 55:31:78:35:55:1e:37:16:59:c4:39:b6:06:43:f4:05:89:14: 6e:4b:a1:10:ca:82:b9:c9:d6:6a:0d:44:c1:86:20:1f:b6:59: 8b:7c:ad:71:fd:57:07:2a:7e:20:6f:6a:ba:fe:59:84:b3:e6: 8a:bb:19:5f:e4:d5:3c:ea:d4:40:25:9b:c7:2c:ff:79:40:51: 13:91:e0:6f:8e:68:2d:5d:93:21:f9:58:2d:7c:6d:46:e8:10: 62:5a:e6:eb:92:a7:ce:51:dc:57:dd:77:c7:d3:c7:58:1d:c7: 5e:01:ea:95:d7:97:49:21:79:c7:51:11:58:56:d4:82:ef:a4: 9d:83:01:c7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgISAZuOVMZCMOY8gyCxvgKCPfCNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYxMzUzMzM5OWY1NWViNTJlNmIyMjAwYzdjYWU0MjcyYjc0 ZDY0NjQwHhcNMjYwMTA1MTMyNDM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNWM2YzU1MzU4MDQ4MzM3OGU2YTc4YWNmNzJkMGUzYzRkMmFmYjQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvwr8+ssgoMEeK4o4cmXmSSlAPCIV CPYgA1bn5IfV25bRHBpRcVBlDEwJ392sRUJY7UyNfYtst8V0fDj+H2w30c7leWdP B2CmGXtxCrsajRvvTflw60H77YflD58D/JuNBwqvA9FZIlDzZxAQPg5IlVpgSHOg s/wNUCAfegagEiOLE0TNvlfdmW8RxmZJia5S5NKHpwY2EEmqDq0I8VsjbQTsKH0w jCSJffDY2yyetgCYdGiiHx5LnMsH8fMsaOKrIcLduWvgMzGd4DZzUV13LeLYqUQs w8oIMUzNKM4dMSXxqMFTVs4lV+VwwXzxA4fsKLpkAtitKEUn+zTBxxoH1QIDAQAB o4ICODCCAjQwHQYDVR0OBBYEFCXGxVNYBIM3jmp4rPctDjxNKvtFMB8GA1UdIwQY MBaAFPE1MzmfVetS5rIgDHyuQnK3TWRkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOFRVek9aOVY2MUxtc2lBTWZLNUNjcmROWkdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi84NDRlZWItY2RmMS00N2YxLWJjZmEt OTg5MTY2ODgxOTY5LzEvSmNiRlUxZ0VnemVPYW5pczl5ME9QRTBxLTBVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi84NDRlZWItY2RmMS00N2YxLWJjZmEtOTg5MTY2ODgxOTY5 LzEvOFRVek9aOVY2MUxtc2lBTWZLNUNjcmROWkdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME4GCCsGAQUFBwEHAQH/BD8wPTAsBAIAATAmAwQAJSAoAwQB JSAsAwQAuXytAwQAudQwMAwDBAC58zEDBAC58zIwDQQCAAIwBwMFACoAcEAwDQYJ KoZIhvcNAQELBQADggEBANAbn+vpveWr9MJi8tDljqwz7dCJiwkVZS8XOAYfehhc Xc0XeP8YL11Dx0Xg1zhCvzM7oCO1zLgICvOckZBDlkpGo8GJyVD1Fp1zlb3DAFS9 UxA17Okx2pZCRYhAm3F4MWWoJC8igMLfL/g+jEho2WhAU7MaZDlmw9YOpRF/sFUx eDVVHjcWWcQ5tgZD9AWJFG5LoRDKgrnJ1moNRMGGIB+2WYt8rXH9VwcqfiBvarr+ WYSz5oq7GV/k1Tzq1EAlm8cs/3lAUROR4G+OaC1dkyH5WC18bUboEGJa5uuSp85R 3Ffdd8fTx1gdx14B6pXXl0khecdREVhW1ILvpJ2DAcc= -----END CERTIFICATE-----Generated at Sun Jan 25 17:47:45 2026 by rpki-client