This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/3389eb-1857-49d2-841c-6a18dc8816db/1/AhjWgQe5daBXqh1dc2blAO0Ic2w.roa File: AhjWgQe5daBXqh1dc2blAO0Ic2w.roa (raw, json) Hash identifier: a7wxAC+oIB/6gPef5eFXwJM4UM8yzMuA8+Ys7Te3ao0= Subject key identifier: 02:18:D6:81:07:B9:75:A0:57:AA:1D:5D:73:66:E5:00:ED:08:73:6C Certificate issuer: /CN=2415bf9c61c85db7c99ac4cdf79257e7997ab77c Certificate serial: 019B76EB0F46BC631E1E76678D8B3D846A0A Authority key identifier: 24:15:BF:9C:61:C8:5D:B7:C9:9A:C4:CD:F7:92:57:E7:99:7A:B7:7C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JBW_nGHIXbfJmsTN95JX55l6t3w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/3389eb-1857-49d2-841c-6a18dc8816db/1/AhjWgQe5daBXqh1dc2blAO0Ic2w.roa Signing time: Thu 01 Jan 2026 00:17:54 +0000 ROA not before: Thu 01 Jan 2026 00:17:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 4637 IP address blocks: 37.153.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/3389eb-1857-49d2-841c-6a18dc8816db/1/JBW_nGHIXbfJmsTN95JX55l6t3w.crl rsync://rpki.ripe.net/repository/DEFAULT/9d/3389eb-1857-49d2-841c-6a18dc8816db/1/JBW_nGHIXbfJmsTN95JX55l6t3w.mft rsync://rpki.ripe.net/repository/DEFAULT/JBW_nGHIXbfJmsTN95JX55l6t3w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:0f:46:bc:63:1e:1e:76:67:8d:8b:3d:84:6a:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2415bf9c61c85db7c99ac4cdf79257e7997ab77c Validity Not Before: Jan 1 00:17:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0218d68107b975a057aa1d5d7366e500ed08736c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:3e:52:eb:50:3f:93:bb:a1:cb:a0:e2:06:87: a1:88:cb:2a:d1:5b:54:09:d1:92:f2:a9:b0:cf:e8: 3c:60:ca:fd:99:94:c4:37:6f:8a:8c:b5:d4:fb:e9: f3:3b:37:df:fc:a3:f3:96:bb:90:a3:95:d3:c3:f9: 95:2c:f5:9e:0c:82:eb:56:41:b7:e2:82:c0:9b:1b: 09:05:bc:be:08:95:18:52:cd:b5:f8:21:a9:ba:0b: cc:34:59:72:30:59:05:40:f2:fc:88:22:bc:5d:ff: cf:c2:cf:4b:b5:6d:3a:33:de:86:87:42:6f:2e:bc: 06:d1:58:b8:e1:16:2b:7a:44:cf:41:bd:66:bc:b3: 13:90:38:d9:a0:23:48:32:3f:c6:84:5c:f0:06:71: ce:a7:0f:a7:66:84:ed:ed:9e:f1:4f:58:72:21:60: 8e:17:6a:eb:07:fe:5c:e8:5d:e7:fc:e1:f3:fb:f5: 05:0a:89:67:28:ad:f2:93:54:73:37:ef:66:98:d5: 14:06:5b:bf:3f:12:65:46:fe:41:2c:25:df:03:36: ea:71:72:20:b4:5b:8d:e1:13:e6:da:6a:09:31:29: ad:c9:05:75:d8:8c:f5:ed:05:70:c2:08:f0:64:e8: d4:30:17:84:b2:67:9b:db:b0:46:6a:f6:be:5c:33: 21:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:18:D6:81:07:B9:75:A0:57:AA:1D:5D:73:66:E5:00:ED:08:73:6C X509v3 Authority Key Identifier: keyid:24:15:BF:9C:61:C8:5D:B7:C9:9A:C4:CD:F7:92:57:E7:99:7A:B7:7C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JBW_nGHIXbfJmsTN95JX55l6t3w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/3389eb-1857-49d2-841c-6a18dc8816db/1/AhjWgQe5daBXqh1dc2blAO0Ic2w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/3389eb-1857-49d2-841c-6a18dc8816db/1/JBW_nGHIXbfJmsTN95JX55l6t3w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.153.152.0/24 Signature Algorithm: sha256WithRSAEncryption 08:c3:88:1b:a4:99:f1:09:ac:c1:0b:c8:c6:19:34:f2:89:fb: 46:10:4c:1c:3c:49:7e:72:68:dc:c4:ca:bb:59:f8:8d:3b:53: ca:57:78:36:34:03:9a:25:32:3d:fb:a4:ab:e2:57:80:6b:fa: de:19:67:53:26:2a:08:01:19:2d:7a:49:ed:2d:a2:58:7f:79: f9:7d:af:1d:a2:b9:3b:40:ea:28:3e:c2:f8:5e:cc:61:f6:22: 72:6b:cd:57:c9:ba:5f:60:87:c5:fe:3b:14:b9:b9:37:8e:2e: 7a:a4:f5:6b:b3:8c:74:c9:fe:3f:82:a4:bd:aa:7d:43:08:58: 2b:2b:b7:46:7c:8e:c1:1b:1c:77:3d:25:1d:7d:f8:8a:37:1f: b2:89:2e:ba:99:be:ae:62:c3:42:67:0d:fd:d8:5d:86:1a:de: 4b:e9:94:55:31:49:ad:5c:22:c8:ff:b1:b1:fc:e6:b7:be:11: aa:a2:56:68:ce:79:5c:8f:25:3d:51:7d:cb:7b:2b:16:80:c3: e0:fe:6f:72:a9:f8:68:95:40:a3:47:45:40:be:f1:ef:d4:4e: 71:b1:09:fa:4b:6f:51:ad:c8:c0:39:a6:89:19:53:18:4d:48: 48:53:c9:9e:77:65:f0:88:af:ea:c9:d6:3c:97:b1:c4:9d:58: 23:b9:86:a5 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt26w9GvGMeHnZnjYs9hGoKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI0MTViZjljNjFjODVkYjdjOTlhYzRjZGY3OTI1N2U3OTk3 YWI3N2MwHhcNMjYwMTAxMDAxNzU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMjE4ZDY4MTA3Yjk3NWEwNTdhYTFkNWQ3MzY2ZTUwMGVkMDg3MzZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvj5S61A/k7uhy6DiBoehiMsq0VtU CdGS8qmwz+g8YMr9mZTEN2+KjLXU++nzOzff/KPzlruQo5XTw/mVLPWeDILrVkG3 4oLAmxsJBby+CJUYUs21+CGpugvMNFlyMFkFQPL8iCK8Xf/Pws9LtW06M96Gh0Jv LrwG0Vi44RYrekTPQb1mvLMTkDjZoCNIMj/GhFzwBnHOpw+nZoTt7Z7xT1hyIWCO F2rrB/5c6F3n/OHz+/UFColnKK3yk1RzN+9mmNUUBlu/PxJlRv5BLCXfAzbqcXIg tFuN4RPm2moJMSmtyQV12Iz17QVwwgjwZOjUMBeEsmeb27BGava+XDMhHQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAIY1oEHuXWgV6odXXNm5QDtCHNsMB8GA1UdIwQY MBaAFCQVv5xhyF23yZrEzfeSV+eZerd8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSkJXX25HSElYYmZKbXNUTjk1Slg1NWw2dDN3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC8zMzg5ZWItMTg1Ny00OWQyLTg0MWMt NmExOGRjODgxNmRiLzEvQWhqV2dRZTVkYUJYcWgxZGMyYmxBTzBJYzJ3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZC8zMzg5ZWItMTg1Ny00OWQyLTg0MWMtNmExOGRjODgxNmRi LzEvSkJXX25HSElYYmZKbXNUTjk1Slg1NWw2dDN3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJZmYMA0G CSqGSIb3DQEBCwUAA4IBAQAIw4gbpJnxCazBC8jGGTTyiftGEEwcPEl+cmjcxMq7 WfiNO1PKV3g2NAOaJTI9+6Sr4leAa/reGWdTJioIARktekntLaJYf3n5fa8dork7 QOooPsL4Xsxh9iJya81XybpfYIfF/jsUubk3ji56pPVrs4x0yf4/gqS9qn1DCFgr K7dGfI7BGxx3PSUdffiKNx+yiS66mb6uYsNCZw392F2GGt5L6ZRVMUmtXCLI/7Gx /Oa3vhGqolZoznlcjyU9UX3LeysWgMPg/m9yqfholUCjR0VAvvHv1E5xsQn6S29R rcjAOaaJGVMYTUhIU8med2XwiK/qydY8l7HEnVgjuYal -----END CERTIFICATE-----Generated at Sun Jan 25 13:02:19 2026 by rpki-client