This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/1b4708-eef9-49de-b887-f32069ec4ee5/1/JHY0GDYKIt-9Vn4AUyhaDkdiW2w.roa File: JHY0GDYKIt-9Vn4AUyhaDkdiW2w.roa (raw, json) Hash identifier: it7x+UgEzab8l9txt69a/1I+wVvRxBXOQLBewnm6JCA= Subject key identifier: 24:76:34:18:36:0A:22:DF:BD:56:7E:00:53:28:5A:0E:47:62:5B:6C Certificate issuer: /CN=57c1fe8083646749816ad3fa64098345fb61e9f5 Certificate serial: 019B77591A4B4AB2BB6EE4FB9EBDF3F49321 Authority key identifier: 57:C1:FE:80:83:64:67:49:81:6A:D3:FA:64:09:83:45:FB:61:E9:F5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V8H-gINkZ0mBatP6ZAmDRfth6fU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/1b4708-eef9-49de-b887-f32069ec4ee5/1/JHY0GDYKIt-9Vn4AUyhaDkdiW2w.roa Signing time: Thu 01 Jan 2026 02:18:06 +0000 ROA not before: Thu 01 Jan 2026 02:18:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57099 IP address blocks: 91.229.222.0/23 maxlen: 24 146.255.104.0/21 maxlen: 24 164.138.80.0/21 maxlen: 24 185.16.224.0/22 maxlen: 24 185.47.216.0/22 maxlen: 24 185.56.40.0/22 maxlen: 24 2a04:3c0::/29 maxlen: 29 2a04:d840::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/1b4708-eef9-49de-b887-f32069ec4ee5/1/V8H-gINkZ0mBatP6ZAmDRfth6fU.crl rsync://rpki.ripe.net/repository/DEFAULT/b6/1b4708-eef9-49de-b887-f32069ec4ee5/1/V8H-gINkZ0mBatP6ZAmDRfth6fU.mft rsync://rpki.ripe.net/repository/DEFAULT/V8H-gINkZ0mBatP6ZAmDRfth6fU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 20:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:1a:4b:4a:b2:bb:6e:e4:fb:9e:bd:f3:f4:93:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57c1fe8083646749816ad3fa64098345fb61e9f5 Validity Not Before: Jan 1 02:18:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=24763418360a22dfbd567e0053285a0e47625b6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a3:2a:ca:77:01:ea:b6:7c:a8:ae:27:81:e0: 06:22:0e:90:ad:3b:d8:77:83:52:73:c5:ac:21:5d: 87:99:32:10:2e:9c:be:5d:cc:c6:2d:a6:f4:20:92: 5b:7f:1f:ae:c0:5a:cc:ab:03:83:96:fb:f8:c3:42: 68:a9:b6:c0:97:94:82:27:be:1c:4f:2e:59:93:2b: ff:0c:28:77:9d:79:e0:87:66:64:82:de:50:85:5a: 33:75:a8:72:d7:62:29:36:50:28:2f:10:d4:d6:37: 64:c4:a9:65:4c:3c:46:67:c7:11:e5:6c:82:fe:fe: 98:36:1a:ad:b0:93:5a:03:0d:7b:9b:0d:44:ef:f3: 22:2d:ac:2a:8b:ed:17:f7:33:85:c9:f9:8a:25:3d: 35:37:71:90:95:bc:71:e3:b9:fb:73:c3:e7:25:7b: bf:ba:89:ab:2c:b5:f4:21:74:e0:5e:5d:33:2c:b2: 9c:6b:bc:69:0c:d6:3f:df:62:74:00:30:77:58:3d: 81:52:9d:5f:a0:d3:a3:2c:c7:dd:08:5e:f7:c7:3e: 0b:92:fe:67:84:80:ad:b9:c7:aa:36:36:67:fd:5d: c3:98:40:87:54:c5:9e:ca:06:44:17:1c:bb:de:26: c3:c0:5a:f7:a3:ad:9f:07:47:87:dc:7f:56:d8:fd: 4f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:76:34:18:36:0A:22:DF:BD:56:7E:00:53:28:5A:0E:47:62:5B:6C X509v3 Authority Key Identifier: keyid:57:C1:FE:80:83:64:67:49:81:6A:D3:FA:64:09:83:45:FB:61:E9:F5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V8H-gINkZ0mBatP6ZAmDRfth6fU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/1b4708-eef9-49de-b887-f32069ec4ee5/1/JHY0GDYKIt-9Vn4AUyhaDkdiW2w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/1b4708-eef9-49de-b887-f32069ec4ee5/1/V8H-gINkZ0mBatP6ZAmDRfth6fU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.229.222.0/23 146.255.104.0/21 164.138.80.0/21 185.16.224.0/22 185.47.216.0/22 185.56.40.0/22 IPv6: 2a04:3c0::/29 2a04:d840::/29 Signature Algorithm: sha256WithRSAEncryption 19:67:1b:9b:22:40:e8:5f:24:9e:34:d7:7b:d5:d5:2d:5c:cd: ab:3c:70:84:4d:ec:86:7f:8f:48:c1:80:a9:28:7a:0d:84:9b: 66:33:f7:37:4d:91:4d:15:a9:46:ee:7f:21:3c:60:52:e5:62: 39:e0:04:16:f6:20:17:d3:22:dc:12:55:b8:31:76:1c:48:b5: 1f:c0:f9:20:da:5f:70:76:dc:48:7a:a4:7a:ab:41:0e:3d:d5: 7e:cd:67:44:df:8e:58:16:d1:49:3c:33:7d:84:17:5d:ca:59: d8:80:5a:e0:c1:b1:48:63:e4:4b:04:79:05:f7:42:3e:b4:49: a6:0c:8d:0a:ff:83:98:41:e7:5e:cc:2f:e9:dc:96:df:7f:96: b0:a0:b0:ae:fe:c0:1d:92:ef:93:eb:7d:19:8b:6a:4b:b3:51: 6c:4e:b0:78:4c:4b:a3:23:57:d6:f0:7f:b1:a1:eb:a9:2a:52: 8b:a5:d0:e4:6d:ef:eb:90:cf:64:62:b3:7f:30:02:dc:0a:6c: fe:4a:94:9b:3d:f0:6a:63:a6:5b:80:7c:30:98:d9:01:41:e2: e9:9c:50:f5:fb:73:69:69:37:00:bd:6f:43:e4:55:78:ad:24: ef:e1:92:99:79:81:8f:cf:90:4f:05:21:53:b4:4e:bb:8e:03: 9d:ad:1f:40 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgISAZt3WRpLSrK7buT7nr3z9JMhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU3YzFmZTgwODM2NDY3NDk4MTZhZDNmYTY0MDk4MzQ1ZmI2 MWU5ZjUwHhcNMjYwMTAxMDIxODA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNDc2MzQxODM2MGEyMmRmYmQ1NjdlMDA1MzI4NWEwZTQ3NjI1YjZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuqMqyncB6rZ8qK4ngeAGIg6QrTvY d4NSc8WsIV2HmTIQLpy+XczGLab0IJJbfx+uwFrMqwODlvv4w0JoqbbAl5SCJ74c Ty5Zkyv/DCh3nXngh2Zkgt5QhVozdahy12IpNlAoLxDU1jdkxKllTDxGZ8cR5WyC /v6YNhqtsJNaAw17mw1E7/MiLawqi+0X9zOFyfmKJT01N3GQlbxx47n7c8PnJXu/ uomrLLX0IXTgXl0zLLKca7xpDNY/32J0ADB3WD2BUp1foNOjLMfdCF73xz4Lkv5n hICtuceqNjZn/V3DmECHVMWeygZEFxy73ibDwFr3o62fB0eH3H9W2P1PEQIDAQAB o4ICPTCCAjkwHQYDVR0OBBYEFCR2NBg2CiLfvVZ+AFMoWg5HYltsMB8GA1UdIwQY MBaAFFfB/oCDZGdJgWrT+mQJg0X7Yen1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVjhILWdJTmtaMG1CYXRQNlpBbURSZnRoNmZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi8xYjQ3MDgtZWVmOS00OWRlLWI4ODct ZjMyMDY5ZWM0ZWU1LzEvSkhZMEdEWUtJdC05Vm40QVV5aGFEa2RpVzJ3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNi8xYjQ3MDgtZWVmOS00OWRlLWI4ODctZjMyMDY5ZWM0ZWU1 LzEvVjhILWdJTmtaMG1CYXRQNlpBbURSZnRoNmZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFMGCCsGAQUFBwEHAQH/BEQwQjAqBAIAATAkAwQBW+XeAwQD kv9oAwQDpIpQAwQCuRDgAwQCuS/YAwQCuTgoMBQEAgACMA4DBQMqBAPAAwUDKgTY QDANBgkqhkiG9w0BAQsFAAOCAQEAGWcbmyJA6F8knjTXe9XVLVzNqzxwhE3shn+P SMGAqSh6DYSbZjP3N02RTRWpRu5/ITxgUuViOeAEFvYgF9Mi3BJVuDF2HEi1H8D5 INpfcHbcSHqkeqtBDj3Vfs1nRN+OWBbRSTwzfYQXXcpZ2IBa4MGxSGPkSwR5BfdC PrRJpgyNCv+DmEHnXswv6dyW33+WsKCwrv7AHZLvk+t9GYtqS7NRbE6weExLoyNX 1vB/saHrqSpSi6XQ5G3v65DPZGKzfzAC3Aps/kqUmz3wamOmW4B8MJjZAUHi6ZxQ 9ftzaWk3AL1vQ+RVeK0k7+GSmXmBj8+QTwUhU7ROu44Dna0fQA== -----END CERTIFICATE-----Generated at Mon Jan 26 02:43:42 2026 by rpki-client