This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/JlERsOGpN9Jutvxh9cBCd5WIDhQ.roa File: JlERsOGpN9Jutvxh9cBCd5WIDhQ.roa (raw, json) Hash identifier: 0TAzyXpM7LaR9Wg7trsFQxzAH4r7+W5/vZ5ekplhpko= Subject key identifier: 26:51:11:B0:E1:A9:37:D2:6E:B6:FC:61:F5:C0:42:77:95:88:0E:14 Certificate issuer: /CN=fa1b2478dfe0f33a278b13f42dd319601d6378a8 Certificate serial: 019B7C119AC91F0EFE1FC2EFEAED4BA96674 Authority key identifier: FA:1B:24:78:DF:E0:F3:3A:27:8B:13:F4:2D:D3:19:60:1D:63:78:A8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-hskeN_g8zonixP0LdMZYB1jeKg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/JlERsOGpN9Jutvxh9cBCd5WIDhQ.roa Signing time: Fri 02 Jan 2026 00:18:07 +0000 ROA not before: Fri 02 Jan 2026 00:18:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34373 IP address blocks: 87.239.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.crl rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft rsync://rpki.ripe.net/repository/DEFAULT/1-hskeN_g8zonixP0LdMZYB1jeKg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:9a:c9:1f:0e:fe:1f:c2:ef:ea:ed:4b:a9:66:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fa1b2478dfe0f33a278b13f42dd319601d6378a8 Validity Not Before: Jan 2 00:18:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=265111b0e1a937d26eb6fc61f5c0427795880e14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:ba:42:2b:6b:6a:25:85:02:01:25:9d:cc:5f: 2c:77:83:d4:31:5b:4d:22:3e:b9:13:e9:60:f2:4f: 72:c8:db:d3:d5:e0:90:9a:60:15:a6:a9:05:ea:62: 66:c1:16:e7:4e:c6:0f:1b:bf:12:f0:e7:73:13:31: a7:18:9f:0b:bd:11:0d:de:32:2a:9f:30:7c:a8:6f: 6f:e0:2a:ea:6f:4f:61:61:b5:84:0c:aa:03:71:48: 67:1a:8f:35:42:84:6a:7c:79:0b:22:a7:c8:ae:22: 02:85:fe:bd:89:11:e6:eb:3b:00:0b:c4:b8:34:21: 32:ca:78:81:57:f0:43:13:a4:11:7c:55:0b:16:96: 36:02:c1:26:a6:4e:cc:3b:00:69:fe:68:e4:8a:bd: a8:aa:12:11:8d:a0:51:a3:52:9d:37:39:30:54:b6: 65:70:84:b6:ed:39:10:62:6e:04:76:15:10:b2:3e: 6c:d2:47:a2:b0:5b:ad:bc:aa:4f:2d:bb:96:0a:d3: 3e:c9:03:24:03:d2:64:e6:ff:da:7f:63:25:4c:d8: 8c:26:3f:28:f1:16:b2:27:09:da:9f:32:67:c8:38: 91:0b:fb:09:8e:aa:8f:5e:8c:46:b8:7a:fd:fd:18: d7:14:c9:76:d9:bf:1b:d2:29:f9:0c:85:a9:e8:2b: fa:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:51:11:B0:E1:A9:37:D2:6E:B6:FC:61:F5:C0:42:77:95:88:0E:14 X509v3 Authority Key Identifier: keyid:FA:1B:24:78:DF:E0:F3:3A:27:8B:13:F4:2D:D3:19:60:1D:63:78:A8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-hskeN_g8zonixP0LdMZYB1jeKg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/JlERsOGpN9Jutvxh9cBCd5WIDhQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 87.239.15.0/24 Signature Algorithm: sha256WithRSAEncryption 33:bf:08:7a:41:08:44:a9:a5:9d:3c:0d:af:6d:b3:27:b5:ef: ec:6e:53:33:47:77:29:80:0a:e1:74:4a:15:08:37:a5:c6:0f: 05:52:b0:03:04:5c:6b:f3:18:05:01:e9:99:1b:90:f0:da:b2: fd:61:f9:21:7a:d8:9b:93:5a:d9:0f:f0:86:56:68:5f:6c:8e: 53:fb:2a:26:68:ec:ab:67:07:9c:02:2c:0a:9a:b0:76:fe:d9: 47:95:bd:b1:52:42:77:03:6d:35:19:c2:cb:74:7e:84:41:24: 42:3a:e0:35:71:7c:13:a2:29:cd:2b:15:2e:66:b5:b4:b5:38: 6a:66:70:bc:f4:aa:67:ca:0c:87:a9:dd:2d:a1:4d:c7:22:e4: 23:52:a5:83:07:4f:ee:07:94:cd:c6:bf:f0:96:66:6b:b7:0b: 20:82:9f:9f:ac:5e:32:21:89:16:a0:e9:da:7a:1f:13:6d:cd: 4b:93:4b:50:ca:ed:ad:b5:36:96:3c:fd:28:67:ce:2d:96:d1: c1:88:71:cd:b0:30:7f:c9:84:85:6c:bf:da:70:1d:e2:61:60: 53:dc:69:68:ec:d7:dd:44:33:19:84:9c:86:94:bd:d3:f9:72: b2:67:ed:6c:b4:c0:7c:60:24:26:ba:bb:41:d2:45:df:aa:a2: f6:42:6b:2c -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt8EZrJHw7+H8Lv6u1LqWZ0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZhMWIyNDc4ZGZlMGYzM2EyNzhiMTNmNDJkZDMxOTYwMWQ2 Mzc4YTgwHhcNMjYwMTAyMDAxODA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNjUxMTFiMGUxYTkzN2QyNmViNmZjNjFmNWMwNDI3Nzk1ODgwZTE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj7pCK2tqJYUCASWdzF8sd4PUMVtN Ij65E+lg8k9yyNvT1eCQmmAVpqkF6mJmwRbnTsYPG78S8OdzEzGnGJ8LvREN3jIq nzB8qG9v4Crqb09hYbWEDKoDcUhnGo81QoRqfHkLIqfIriIChf69iRHm6zsAC8S4 NCEyyniBV/BDE6QRfFULFpY2AsEmpk7MOwBp/mjkir2oqhIRjaBRo1KdNzkwVLZl cIS27TkQYm4EdhUQsj5s0keisFutvKpPLbuWCtM+yQMkA9Jk5v/af2MlTNiMJj8o 8RayJwnanzJnyDiRC/sJjqqPXoxGuHr9/RjXFMl22b8b0in5DIWp6Cv6ZQIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFCZREbDhqTfSbrb8YfXAQneViA4UMB8GA1UdIwQY MBaAFPobJHjf4PM6J4sT9C3TGWAdY3ioMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1oc2tlTl9nOHpvbml4UDBMZE1aWUIxamVLZy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWYvMDhhOWM4LTRiZTMtNDY4Mi1hZjgy LTJhMWNjZTdkMmM2NS8xL0psRVJzT0dwTjlKdXR2eGg5Y0JDZDVXSURoUS5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvYWYvMDhhOWM4LTRiZTMtNDY4Mi1hZjgyLTJhMWNjZTdkMmM2 NS8xLzEtaHNrZU5fZzh6b25peFAwTGRNWllCMWplS2cuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABX7w8w DQYJKoZIhvcNAQELBQADggEBADO/CHpBCESppZ08Da9tsye17+xuUzNHdymACuF0 ShUIN6XGDwVSsAMEXGvzGAUB6ZkbkPDasv1h+SF62JuTWtkP8IZWaF9sjlP7KiZo 7KtnB5wCLAqasHb+2UeVvbFSQncDbTUZwst0foRBJEI64DVxfBOiKc0rFS5mtbS1 OGpmcLz0qmfKDIep3S2hTcci5CNSpYMHT+4HlM3Gv/CWZmu3CyCCn5+sXjIhiRag 6dp6HxNtzUuTS1DK7a21NpY8/Shnzi2W0cGIcc2wMH/JhIVsv9pwHeJhYFPcaWjs 191EMxmEnIaUvdP5crJn7Wy0wHxgJCa6u0HSRd+qovZCayw= -----END CERTIFICATE-----Generated at Sun Jan 25 17:22:40 2026 by rpki-client