This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/kNjghO3oJWH4KEDSkEyBaXoWZ2M.roa File: kNjghO3oJWH4KEDSkEyBaXoWZ2M.roa (raw, json) Hash identifier: L6upjCHITuiwU/yUnphDyn6e0jvZ3yyN70H58VBgJto= Subject key identifier: 90:D8:E0:84:ED:E8:25:61:F8:28:40:D2:90:4C:81:69:7A:16:67:63 Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003 Certificate serial: 019B79EC68C83AC137E121FA99A4FB94220B Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/kNjghO3oJWH4KEDSkEyBaXoWZ2M.roa Signing time: Thu 01 Jan 2026 14:18:15 +0000 ROA not before: Thu 01 Jan 2026 14:18:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202610 IP address blocks: 144.31.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.mft rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:68:c8:3a:c1:37:e1:21:fa:99:a4:fb:94:22:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003 Validity Not Before: Jan 1 14:18:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=90d8e084ede82561f82840d2904c81697a166763 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:3b:ab:a2:fe:4d:c8:55:8b:2e:8d:29:ed:51: 8f:ac:8d:bf:aa:86:2a:77:bd:9e:3b:a6:5a:c7:c3: f3:b3:32:45:cb:25:dd:e9:0d:d4:0d:71:26:24:d6: a9:02:22:a7:04:1b:67:71:7e:38:62:d8:3a:57:61: 2c:eb:c8:42:7a:ad:be:0f:18:d8:c9:74:37:e1:67: 61:14:3b:7d:4c:fb:39:d4:63:a0:8a:da:a4:43:eb: e7:cb:2c:58:4d:22:c2:1f:ed:ee:9c:87:77:df:cd: d3:dc:5d:a6:ea:00:92:40:50:5a:48:ee:58:46:d9: 59:eb:38:b1:c2:3d:24:f6:36:b7:80:77:24:b8:86: b6:96:f3:bb:6f:f2:c8:29:65:3e:74:6f:03:45:b2: a3:54:ab:b1:73:54:92:6e:86:37:af:a3:13:94:57: 84:b8:92:6c:28:b7:88:17:d5:8d:8f:07:b7:84:fb: 5b:b5:3c:34:9e:b0:55:61:20:4e:db:55:ad:94:d0: b5:7d:31:aa:da:d0:77:72:81:52:e3:aa:a2:09:dd: 4a:7c:77:7a:4c:78:92:32:43:30:ef:c7:b9:55:81: da:58:bc:72:26:17:23:f2:7a:cd:5e:c8:5e:c2:6f: e4:4e:01:5d:6e:47:5c:e6:21:d5:ff:e5:f8:b6:71: 0d:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:D8:E0:84:ED:E8:25:61:F8:28:40:D2:90:4C:81:69:7A:16:67:63 X509v3 Authority Key Identifier: keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/kNjghO3oJWH4KEDSkEyBaXoWZ2M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.31.231.0/24 Signature Algorithm: sha256WithRSAEncryption 43:01:36:18:ca:30:5f:60:0a:0d:21:b4:c6:8b:a0:4e:a8:d3: c7:62:8b:a0:cc:36:ba:94:6d:ec:56:7c:08:e2:8b:be:2b:27: 1a:70:f8:b2:a8:00:80:6b:27:2f:df:7a:5a:15:22:6f:e6:c6: 29:16:93:ad:c9:fb:b5:84:bd:4b:21:c3:1c:26:bc:f7:df:c8: c1:32:48:1b:1d:13:99:73:83:ab:30:ea:1f:40:4d:b0:69:13: 43:17:64:a7:75:0a:15:05:3c:31:ae:e7:77:61:8e:05:b3:b7: 6d:3f:5b:6f:34:31:a3:8d:ce:04:8a:38:45:8e:10:54:be:cd: 11:d0:86:64:b0:70:09:6e:00:18:60:be:a7:06:88:a4:6b:0d: a9:ef:8b:05:2c:1e:30:29:b5:0c:c6:b4:3b:cd:0b:73:fb:36: 38:91:df:a6:a2:e4:22:d4:47:15:02:f3:3b:ae:7c:fd:91:8f: 6c:53:53:1a:c8:86:cf:0f:57:8c:3b:11:f7:9c:da:ac:13:16: fe:d9:03:cd:51:d8:95:32:88:8e:20:5e:ab:9d:d6:7f:e2:4d: d8:f2:3c:e2:10:2b:ac:fc:72:80:91:37:d5:aa:b2:7e:43:87: 9a:d9:c5:23:6b:68:86:a0:15:51:3b:57:6c:25:97:08:e3:9d: 08:bd:34:13 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57GjIOsE34SH6maT7lCILMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjOTYzZTNkMjI4NDdkNDY2YzI2MmMyMDg3OGMyNzgwZDg4 NDAwMDMwHhcNMjYwMTAxMTQxODE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MGQ4ZTA4NGVkZTgyNTYxZjgyODQwZDI5MDRjODE2OTdhMTY2NzYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnDurov5NyFWLLo0p7VGPrI2/qoYq d72eO6Zax8PzszJFyyXd6Q3UDXEmJNapAiKnBBtncX44Ytg6V2Es68hCeq2+DxjY yXQ34WdhFDt9TPs51GOgitqkQ+vnyyxYTSLCH+3unId3383T3F2m6gCSQFBaSO5Y RtlZ6zixwj0k9ja3gHckuIa2lvO7b/LIKWU+dG8DRbKjVKuxc1SSboY3r6MTlFeE uJJsKLeIF9WNjwe3hPtbtTw0nrBVYSBO21WtlNC1fTGq2tB3coFS46qiCd1KfHd6 THiSMkMw78e5VYHaWLxyJhcj8nrNXshewm/kTgFdbkdc5iHV/+X4tnENbwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJDY4ITt6CVh+ChA0pBMgWl6FmdjMB8GA1UdIwQY MBaAFByWPj0ihH1GbCYsIIeMJ4DYhAADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQt MTQzOTY3YThmZTA4LzEva05qZ2hPM29KV0g0S0VEU2tFeUJhWG9XWjJNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQtMTQzOTY3YThmZTA4 LzEvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkB/nMA0G CSqGSIb3DQEBCwUAA4IBAQBDATYYyjBfYAoNIbTGi6BOqNPHYougzDa6lG3sVnwI 4ou+KycacPiyqACAaycv33paFSJv5sYpFpOtyfu1hL1LIcMcJrz338jBMkgbHROZ c4OrMOofQE2waRNDF2SndQoVBTwxrud3YY4Fs7dtP1tvNDGjjc4EijhFjhBUvs0R 0IZksHAJbgAYYL6nBoikaw2p74sFLB4wKbUMxrQ7zQtz+zY4kd+mouQi1EcVAvM7 rnz9kY9sU1MayIbPD1eMOxH3nNqsExb+2QPNUdiVMoiOIF6rndZ/4k3Y8jziECus /HKAkTfVqrJ+Q4ea2cUja2iGoBVRO1dsJZcI450IvTQT -----END CERTIFICATE-----Generated at Sun Jan 25 07:36:34 2026 by rpki-client