This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/0JPqCz5cVo8rTb1eJx0gidaWu88.roa File: 0JPqCz5cVo8rTb1eJx0gidaWu88.roa (raw, json) Hash identifier: SDGEZvOiOT/nixCGJaFSNPktvCrQB07+Pf6zV5KlOY4= Subject key identifier: D0:93:EA:0B:3E:5C:56:8F:2B:4D:BD:5E:27:1D:20:89:D6:96:BB:CF Certificate issuer: /CN=05899f3976487038a3fa6343952b14b4d072b33d Certificate serial: 019B7F15E61B8DB1F5C20B2E57FF235643C9 Authority key identifier: 05:89:9F:39:76:48:70:38:A3:FA:63:43:95:2B:14:B4:D0:72:B3:3D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BYmfOXZIcDij-mNDlSsUtNBysz0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/0JPqCz5cVo8rTb1eJx0gidaWu88.roa Signing time: Fri 02 Jan 2026 14:21:40 +0000 ROA not before: Fri 02 Jan 2026 14:21:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44090 IP address blocks: 109.70.237.0/24 maxlen: 24 185.179.168.0/22 maxlen: 22 2a0a:74c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.mft rsync://rpki.ripe.net/repository/DEFAULT/BYmfOXZIcDij-mNDlSsUtNBysz0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:e6:1b:8d:b1:f5:c2:0b:2e:57:ff:23:56:43:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05899f3976487038a3fa6343952b14b4d072b33d Validity Not Before: Jan 2 14:21:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d093ea0b3e5c568f2b4dbd5e271d2089d696bbcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:76:bd:a2:2f:32:da:5d:a1:7a:fa:b0:4d:5f: 0b:dd:40:7d:88:13:ab:6e:c3:e6:59:de:58:c2:78: 7e:34:67:17:78:47:68:13:37:09:38:14:79:cf:04: af:f9:9f:0b:14:ae:ff:a6:10:8e:ef:db:49:58:77: 59:05:6f:cc:ce:ce:43:53:9d:3c:9f:5a:1c:cb:54: 4e:a4:51:a1:9d:eb:07:84:6d:62:d8:f4:6e:7d:0a: 1f:01:e1:a5:e0:75:9d:bd:3c:24:a3:c9:cf:ad:97: 25:a4:e8:96:96:46:d8:1f:0d:1a:79:16:e1:a1:53: 36:b3:09:b8:37:11:2a:c0:e9:31:7d:cc:58:a6:ff: 14:f9:16:1e:af:1d:42:7c:61:b5:d1:d5:f8:df:a0: 8b:8a:77:3b:7e:5e:3e:30:2e:90:31:26:b3:71:70: a6:63:7c:cb:09:4f:7e:60:f7:81:bf:d1:6c:b7:e7: 7c:7c:9b:4e:15:6e:0f:d6:ee:c8:7a:c9:66:94:ad: 21:1c:73:09:c4:45:7e:0b:b6:6b:5f:a4:61:0f:96: 06:c3:a5:2d:b2:e5:5c:cc:49:06:c8:05:44:a3:81: e5:9e:d9:46:98:e0:40:ff:0d:61:4b:9e:8b:bf:3f: e5:d5:1b:41:59:81:84:a8:6c:c7:79:41:31:a1:ee: 52:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:93:EA:0B:3E:5C:56:8F:2B:4D:BD:5E:27:1D:20:89:D6:96:BB:CF X509v3 Authority Key Identifier: keyid:05:89:9F:39:76:48:70:38:A3:FA:63:43:95:2B:14:B4:D0:72:B3:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BYmfOXZIcDij-mNDlSsUtNBysz0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/0JPqCz5cVo8rTb1eJx0gidaWu88.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.70.237.0/24 185.179.168.0/22 IPv6: 2a0a:74c0::/32 Signature Algorithm: sha256WithRSAEncryption 9f:b2:05:53:c8:0d:60:02:70:da:eb:b0:fb:af:ee:10:b1:af: 68:10:46:71:62:4d:c4:45:33:91:77:d2:90:93:fa:16:fc:55: ef:02:bc:76:ad:31:77:4a:1d:91:54:f1:ee:60:ae:60:77:db: 23:33:93:90:3f:6f:6d:fa:56:74:5b:92:66:c5:b3:57:3f:2a: 9a:bb:4b:fd:80:91:39:cf:e5:49:c6:59:9d:6d:34:59:68:99: 19:fe:b7:7a:f4:5e:10:73:93:91:d8:9c:ff:fc:e9:06:f2:03: be:bd:b9:5a:a7:ab:df:49:2b:5c:a0:3d:6c:47:d8:56:dd:d6: 22:1b:7b:23:d5:2b:72:c2:1c:dc:0b:70:50:1b:1c:b8:23:bb: fc:3f:76:98:03:b1:43:ef:ed:57:a2:7b:5d:ae:66:0e:6f:65: c7:e6:09:6a:b9:6a:26:b3:dc:33:ee:0a:30:8f:a5:30:6a:7a: f7:0e:0a:e5:fc:c9:20:ce:08:13:12:b6:0d:90:83:9c:eb:9d: d8:4e:37:b9:95:25:e7:ca:36:ad:4c:78:7f:4b:1c:3a:34:99: fd:c7:1e:d7:05:07:7e:3d:2f:a8:d3:57:d2:39:0d:19:cd:df: 87:18:97:7e:a5:52:7e:18:c3:c7:2b:7e:78:a0:f0:79:b5:0b: be:bf:f5:bf -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt/FeYbjbH1wgsuV/8jVkPJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1ODk5ZjM5NzY0ODcwMzhhM2ZhNjM0Mzk1MmIxNGI0ZDA3 MmIzM2QwHhcNMjYwMTAyMTQyMTQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMDkzZWEwYjNlNWM1NjhmMmI0ZGJkNWUyNzFkMjA4OWQ2OTZiYmNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Xa9oi8y2l2hevqwTV8L3UB9iBOr bsPmWd5Ywnh+NGcXeEdoEzcJOBR5zwSv+Z8LFK7/phCO79tJWHdZBW/Mzs5DU508 n1ocy1ROpFGhnesHhG1i2PRufQofAeGl4HWdvTwko8nPrZclpOiWlkbYHw0aeRbh oVM2swm4NxEqwOkxfcxYpv8U+RYerx1CfGG10dX436CLinc7fl4+MC6QMSazcXCm Y3zLCU9+YPeBv9Fst+d8fJtOFW4P1u7IeslmlK0hHHMJxEV+C7ZrX6RhD5YGw6Ut suVczEkGyAVEo4HlntlGmOBA/w1hS56Lvz/l1RtBWYGEqGzHeUExoe5SiwIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFNCT6gs+XFaPK029XicdIInWlrvPMB8GA1UdIwQY MBaAFAWJnzl2SHA4o/pjQ5UrFLTQcrM9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlltZk9YWkljRGlqLW1ORGxTc1V0TkJ5c3owLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS8xZmNlOTMtMDJlYS00Zjk5LTk5YzIt MDhjMjEyMzU4MGVkLzEvMEpQcUN6NWNWbzhyVGIxZUp4MGdpZGFXdTg4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS8xZmNlOTMtMDJlYS00Zjk5LTk5YzItMDhjMjEyMzU4MGVk LzEvQlltZk9YWkljRGlqLW1ORGxTc1V0TkJ5c3owLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQAbUbtAwQC ubOoMA0EAgACMAcDBQAqCnTAMA0GCSqGSIb3DQEBCwUAA4IBAQCfsgVTyA1gAnDa 67D7r+4Qsa9oEEZxYk3ERTORd9KQk/oW/FXvArx2rTF3Sh2RVPHuYK5gd9sjM5OQ P29t+lZ0W5JmxbNXPyqau0v9gJE5z+VJxlmdbTRZaJkZ/rd69F4Qc5OR2Jz//OkG 8gO+vblap6vfSStcoD1sR9hW3dYiG3sj1StywhzcC3BQGxy4I7v8P3aYA7FD7+1X ontdrmYOb2XH5glquWoms9wz7gowj6Uwanr3Dgrl/MkgzggTErYNkIOc653YTje5 lSXnyjatTHh/Sxw6NJn9xx7XBQd+PS+o01fSOQ0Zzd+HGJd+pVJ+GMPHK354oPB5 tQu+v/W/ -----END CERTIFICATE-----Generated at Sun Jan 25 19:37:50 2026 by rpki-client