This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/1813ba-506e-444e-9ca4-f093e17b27ef/1/jBH-v3-X3v7RfFgWsNo2M_eSSNQ.roa File: jBH-v3-X3v7RfFgWsNo2M_eSSNQ.roa (raw, json) Hash identifier: pfJ9Bw5t7xlaIi72dAOVKIwZo35zjWk05kKgh9K9GuI= Subject key identifier: 8C:11:FE:BF:7F:97:DE:FE:D1:7C:58:16:B0:DA:36:33:F7:92:48:D4 Certificate issuer: /CN=9367965e2834f1893cfa8631a484071e6a2d45b7 Certificate serial: 019B7FF187C03995005C0592656F26B8D9C2 Authority key identifier: 93:67:96:5E:28:34:F1:89:3C:FA:86:31:A4:84:07:1E:6A:2D:45:B7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2eWXig08Yk8-oYxpIQHHmotRbc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/1813ba-506e-444e-9ca4-f093e17b27ef/1/jBH-v3-X3v7RfFgWsNo2M_eSSNQ.roa Signing time: Fri 02 Jan 2026 18:21:33 +0000 ROA not before: Fri 02 Jan 2026 18:21:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207581 IP address blocks: 79.137.132.0/24 maxlen: 24 79.137.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/1813ba-506e-444e-9ca4-f093e17b27ef/1/k2eWXig08Yk8-oYxpIQHHmotRbc.crl rsync://rpki.ripe.net/repository/DEFAULT/9f/1813ba-506e-444e-9ca4-f093e17b27ef/1/k2eWXig08Yk8-oYxpIQHHmotRbc.mft rsync://rpki.ripe.net/repository/DEFAULT/k2eWXig08Yk8-oYxpIQHHmotRbc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 09:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f1:87:c0:39:95:00:5c:05:92:65:6f:26:b8:d9:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9367965e2834f1893cfa8631a484071e6a2d45b7 Validity Not Before: Jan 2 18:21:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8c11febf7f97defed17c5816b0da3633f79248d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:be:47:49:82:87:71:b5:1d:5f:6d:d5:42:d4: 91:e7:ff:0c:7c:76:c2:73:5e:c5:5e:fa:5e:fd:c0: 60:fa:fc:46:0d:ba:28:71:df:01:09:f4:1e:a5:af: 51:97:7e:48:e0:a4:bf:c6:e9:4e:83:12:62:b3:99: de:48:3d:b2:95:21:0a:0d:ed:12:2f:4c:79:db:6a: 19:50:ff:7e:56:6e:3c:62:22:00:e9:b9:b6:2a:dd: e8:35:d5:20:62:49:29:82:34:32:cc:c5:26:0a:87: cb:3a:d4:10:13:a8:c8:5b:15:1f:19:ce:bf:79:d8: cd:06:43:f3:76:23:b0:36:91:8e:8a:6b:2f:07:63: c8:92:bc:d9:7c:3f:eb:22:54:88:dd:b6:fa:b6:d0: 86:15:db:a3:b5:bf:9e:cd:19:70:5f:64:f2:fd:d9: c5:37:de:ba:65:36:a1:ef:4a:27:30:43:e0:5c:8b: f5:1e:96:78:b1:1c:71:21:30:87:fc:e2:0f:5d:8b: 1a:c3:01:6f:52:4c:ff:f5:1e:25:69:d6:95:d6:34: 7c:6f:fe:4d:63:93:55:70:6a:d0:23:4e:d8:d4:17: 95:bc:d9:e1:b2:c7:72:2f:99:3a:e7:6d:b0:3a:45: e4:79:b7:cc:c8:3f:5f:0d:90:90:98:f6:de:4a:95: 85:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:11:FE:BF:7F:97:DE:FE:D1:7C:58:16:B0:DA:36:33:F7:92:48:D4 X509v3 Authority Key Identifier: keyid:93:67:96:5E:28:34:F1:89:3C:FA:86:31:A4:84:07:1E:6A:2D:45:B7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2eWXig08Yk8-oYxpIQHHmotRbc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/1813ba-506e-444e-9ca4-f093e17b27ef/1/jBH-v3-X3v7RfFgWsNo2M_eSSNQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/1813ba-506e-444e-9ca4-f093e17b27ef/1/k2eWXig08Yk8-oYxpIQHHmotRbc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.137.132.0/24 79.137.167.0/24 Signature Algorithm: sha256WithRSAEncryption 72:06:e6:58:c4:89:89:a7:0b:07:b5:e3:8e:3d:9d:ef:74:8f: c2:05:cd:09:31:28:99:a7:33:c2:98:2a:26:7b:6a:b3:42:f9: 67:65:cb:0b:0e:64:75:d5:23:b8:51:9a:2e:7b:f7:04:b6:f3: b7:ae:fc:af:66:76:83:9e:b0:f3:47:43:2c:fa:8f:93:68:39: 4c:e5:15:8e:bf:27:c8:40:f9:db:af:2f:45:52:94:39:73:ad: 93:fd:63:ae:9d:12:45:db:a8:f9:e1:54:87:66:11:76:4b:08: 8e:87:9f:8d:d5:fa:0b:a9:54:d8:58:d7:db:c6:10:e3:4a:86: 86:51:27:47:b5:79:48:24:e1:26:67:01:51:4a:15:a9:0b:5e: 68:14:64:57:3f:f7:95:ed:01:ae:40:2e:92:99:3b:7b:f7:17: ce:d8:b9:17:61:18:ac:16:7a:51:ab:f2:7c:9b:76:f0:0e:89: 46:50:34:1b:e9:ff:a9:c6:c1:6d:fa:cc:3c:53:68:f6:7f:67: 3d:2c:ea:82:1e:82:f7:d6:17:aa:8d:ec:c9:cb:ca:7e:db:c0: ec:ea:f1:d7:10:50:d9:cf:9e:d0:f5:a1:62:a8:78:19:10:40: 4c:95:7d:0e:4e:3b:69:1f:5a:53:e5:84:9e:53:9c:47:c9:42: 43:93:bc:f2 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/8YfAOZUAXAWSZW8muNnCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzNjc5NjVlMjgzNGYxODkzY2ZhODYzMWE0ODQwNzFlNmEy ZDQ1YjcwHhcNMjYwMTAyMTgyMTMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YzExZmViZjdmOTdkZWZlZDE3YzU4MTZiMGRhMzYzM2Y3OTI0OGQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq75HSYKHcbUdX23VQtSR5/8MfHbC c17FXvpe/cBg+vxGDboocd8BCfQepa9Rl35I4KS/xulOgxJis5neSD2ylSEKDe0S L0x522oZUP9+Vm48YiIA6bm2Kt3oNdUgYkkpgjQyzMUmCofLOtQQE6jIWxUfGc6/ edjNBkPzdiOwNpGOimsvB2PIkrzZfD/rIlSI3bb6ttCGFdujtb+ezRlwX2Ty/dnF N966ZTah70onMEPgXIv1HpZ4sRxxITCH/OIPXYsawwFvUkz/9R4ladaV1jR8b/5N Y5NVcGrQI07Y1BeVvNnhssdyL5k6522wOkXkebfMyD9fDZCQmPbeSpWFtwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFIwR/r9/l97+0XxYFrDaNjP3kkjUMB8GA1UdIwQY MBaAFJNnll4oNPGJPPqGMaSEBx5qLUW3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvazJlV1hpZzA4WWs4LW9ZeHBJUUhIbW90UmJjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi8xODEzYmEtNTA2ZS00NDRlLTljYTQt ZjA5M2UxN2IyN2VmLzEvakJILXYzLVgzdjdSZkZnV3NObzJNX2VTU05RLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Zi8xODEzYmEtNTA2ZS00NDRlLTljYTQtZjA5M2UxN2IyN2Vm LzEvazJlV1hpZzA4WWs4LW9ZeHBJUUhIbW90UmJjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAT4mEAwQA T4mnMA0GCSqGSIb3DQEBCwUAA4IBAQByBuZYxImJpwsHteOOPZ3vdI/CBc0JMSiZ pzPCmCome2qzQvlnZcsLDmR11SO4UZoue/cEtvO3rvyvZnaDnrDzR0Ms+o+TaDlM 5RWOvyfIQPnbry9FUpQ5c62T/WOunRJF26j54VSHZhF2SwiOh5+N1foLqVTYWNfb xhDjSoaGUSdHtXlIJOEmZwFRShWpC15oFGRXP/eV7QGuQC6SmTt79xfO2LkXYRis FnpRq/J8m3bwDolGUDQb6f+pxsFt+sw8U2j2f2c9LOqCHoL31heqjezJy8p+28Ds 6vHXEFDZz57Q9aFiqHgZEEBMlX0OTjtpH1pT5YSeU5xHyUJDk7zy -----END CERTIFICATE-----Generated at Mon Jan 26 18:47:06 2026 by rpki-client