This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/AgaJPC4sjAVdmqHEBdDMAGIcbwE.roa File: AgaJPC4sjAVdmqHEBdDMAGIcbwE.roa (raw, json) Hash identifier: uFEU2StM8ghs6j5PflUci4jiCO91kOYrMP1vF+NI70M= Subject key identifier: 02:06:89:3C:2E:2C:8C:05:5D:9A:A1:C4:05:D0:CC:00:62:1C:6F:01 Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003 Certificate serial: 019BC321512784C253C00C71DAEF12557B7B Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/AgaJPC4sjAVdmqHEBdDMAGIcbwE.roa Signing time: Thu 15 Jan 2026 19:28:19 +0000 ROA not before: Thu 15 Jan 2026 19:28:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215590 IP address blocks: 77.239.108.0/22 maxlen: 24 144.31.202.0/24 maxlen: 24 150.241.88.0/23 maxlen: 24 150.241.106.0/23 maxlen: 24 150.241.115.0/24 maxlen: 24 150.241.116.0/24 maxlen: 24 150.241.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.mft rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:c3:21:51:27:84:c2:53:c0:0c:71:da:ef:12:55:7b:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003 Validity Not Before: Jan 15 19:28:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0206893c2e2c8c055d9aa1c405d0cc00621c6f01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:66:12:e8:48:c7:24:3e:ad:e0:64:a5:03:d7: 4f:c2:5a:d9:d2:d0:e5:8c:bd:1d:71:62:8c:25:e2: 74:da:4d:e6:eb:d1:d8:45:03:9d:29:91:7e:2a:b5: 93:48:43:cb:41:26:a8:f3:fd:c0:13:94:d7:ea:ae: 9f:de:9c:5a:1f:16:d2:6a:81:1e:97:02:d2:3f:d6: c4:60:f7:ac:22:e8:8f:4e:dd:a2:a6:e1:81:6d:5d: 49:62:11:75:d8:d9:56:79:a1:38:4d:05:b8:03:ca: 9f:8b:1f:2e:ab:db:07:e6:d0:76:d1:d3:94:fc:60: bb:2e:db:eb:4c:11:5a:f6:ff:26:c9:31:10:b6:a7: d0:25:54:be:75:e6:3d:88:5b:31:60:df:e0:4a:cf: 03:3c:9c:a1:50:a9:ec:b5:d4:95:8f:78:b3:02:6c: 0a:02:15:71:74:10:2f:b0:44:3a:2c:36:6c:1f:7c: 1b:63:dc:4b:55:88:a3:2a:bf:a0:6f:14:85:d1:c9: 07:70:a8:0a:c7:88:c8:95:50:bb:99:e7:a1:77:7e: 5d:e7:f0:49:2d:6d:3a:21:c4:f9:50:7a:f7:e4:0b: 1c:49:1f:ee:ce:2c:c5:3d:15:2d:68:1c:d4:d3:e8: d2:5c:bb:91:0d:dc:28:3f:b2:9c:3a:51:37:70:93: d8:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:06:89:3C:2E:2C:8C:05:5D:9A:A1:C4:05:D0:CC:00:62:1C:6F:01 X509v3 Authority Key Identifier: keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/AgaJPC4sjAVdmqHEBdDMAGIcbwE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.239.108.0/22 144.31.202.0/24 150.241.88.0/23 150.241.106.0/23 150.241.115.0-150.241.116.255 150.241.123.0/24 Signature Algorithm: sha256WithRSAEncryption 38:0b:34:88:65:ad:30:a9:27:a7:62:c6:c1:61:2a:6d:54:bb: 6f:59:9a:57:4e:bc:cf:9a:d0:f7:13:7d:3c:26:f5:40:ac:b3: 3c:7f:60:12:7f:db:5d:d0:38:d9:bb:85:f7:e5:86:e7:73:b6: fe:25:bf:26:ea:d4:43:e9:45:c0:86:fa:38:f1:61:9b:96:dc: e1:1c:21:1f:3f:31:21:86:db:9c:cc:14:78:70:64:59:0c:7b: e7:50:21:8f:58:77:e7:05:5e:5f:85:ba:11:58:e1:f8:de:41: 76:55:bb:31:ce:42:6a:81:fe:14:7d:2b:23:54:10:16:1e:64: cf:e5:d3:d8:37:c7:01:fc:ae:3f:58:c8:42:63:d4:14:1b:f3: c5:45:57:8e:21:c4:00:5a:c6:33:9d:50:b8:ac:37:a5:4d:aa: 69:aa:6d:b2:90:d3:57:37:14:74:d5:c3:43:06:c0:29:66:70: 5e:b8:63:f8:7b:b3:9c:0c:ab:cb:85:fd:e8:a9:31:fe:f7:ee: 82:52:31:d5:b5:0a:d1:03:2e:ac:1c:5f:3a:4b:58:94:d4:55: 31:6c:71:e6:16:26:49:36:81:ae:ba:23:32:70:ac:91:cc:a3: a5:09:c4:a4:99:b6:34:b1:7d:72:17:68:38:42:46:e3:38:68: e6:fe:b6:6f -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgISAZvDIVEnhMJTwAxx2u8SVXt7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjOTYzZTNkMjI4NDdkNDY2YzI2MmMyMDg3OGMyNzgwZDg4 NDAwMDMwHhcNMjYwMTE1MTkyODE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMjA2ODkzYzJlMmM4YzA1NWQ5YWExYzQwNWQwY2MwMDYyMWM2ZjAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtGYS6EjHJD6t4GSlA9dPwlrZ0tDl jL0dcWKMJeJ02k3m69HYRQOdKZF+KrWTSEPLQSao8/3AE5TX6q6f3pxaHxbSaoEe lwLSP9bEYPesIuiPTt2ipuGBbV1JYhF12NlWeaE4TQW4A8qfix8uq9sH5tB20dOU /GC7LtvrTBFa9v8myTEQtqfQJVS+deY9iFsxYN/gSs8DPJyhUKnstdSVj3izAmwK AhVxdBAvsEQ6LDZsH3wbY9xLVYijKr+gbxSF0ckHcKgKx4jIlVC7meehd35d5/BJ LW06IcT5UHr35AscSR/uzizFPRUtaBzU0+jSXLuRDdwoP7KcOlE3cJPYUwIDAQAB o4ICLzCCAiswHQYDVR0OBBYEFAIGiTwuLIwFXZqhxAXQzABiHG8BMB8GA1UdIwQY MBaAFByWPj0ihH1GbCYsIIeMJ4DYhAADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQt MTQzOTY3YThmZTA4LzEvQWdhSlBDNHNqQVZkbXFIRUJkRE1BR0ljYndFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQtMTQzOTY3YThmZTA4 LzEvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEUGCCsGAQUFBwEHAQH/BDYwNDAyBAIAATAsAwQCTe9sAwQA kB/KAwQBlvFYAwQBlvFqMAwDBACW8XMDBACW8XQDBACW8XswDQYJKoZIhvcNAQEL BQADggEBADgLNIhlrTCpJ6dixsFhKm1Uu29ZmldOvM+a0PcTfTwm9UCsszx/YBJ/ 213QONm7hfflhudztv4lvybq1EPpRcCG+jjxYZuW3OEcIR8/MSGG25zMFHhwZFkM e+dQIY9Yd+cFXl+FuhFY4fjeQXZVuzHOQmqB/hR9KyNUEBYeZM/l09g3xwH8rj9Y yEJj1BQb88VFV44hxABaxjOdULisN6VNqmmqbbKQ01c3FHTVw0MGwClmcF64Y/h7 s5wMq8uF/eipMf737oJSMdW1CtEDLqwcXzpLWJTUVTFsceYWJkk2ga66IzJwrJHM o6UJxKSZtjSxfXIXaDhCRuM4aOb+tm8= -----END CERTIFICATE-----Generated at Sun Jan 25 08:48:48 2026 by rpki-client