This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/500150-1551-47de-b504-d64683cee16f/1/1jh-7uha-4k_yznOuFtMZfFjuVs.roa File: 1jh-7uha-4k_yznOuFtMZfFjuVs.roa (raw, json) Hash identifier: AizGw3X7tT6ekzOxf8TOv3axo6nylx0oByvDgVQolps= Subject key identifier: D6:38:7E:EE:E8:5A:FB:89:3F:CB:39:CE:B8:5B:4C:65:F1:63:B9:5B Certificate issuer: /CN=a608db43964b6986ec740f0b5e33f627589ac560 Certificate serial: 019B7C1268D4A2DBCC2E0953351E3B260FBD Authority key identifier: A6:08:DB:43:96:4B:69:86:EC:74:0F:0B:5E:33:F6:27:58:9A:C5:60 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pgjbQ5ZLaYbsdA8LXjP2J1iaxWA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/500150-1551-47de-b504-d64683cee16f/1/1jh-7uha-4k_yznOuFtMZfFjuVs.roa Signing time: Fri 02 Jan 2026 00:18:59 +0000 ROA not before: Fri 02 Jan 2026 00:18:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207952 IP address blocks: 176.96.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/500150-1551-47de-b504-d64683cee16f/1/pgjbQ5ZLaYbsdA8LXjP2J1iaxWA.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/500150-1551-47de-b504-d64683cee16f/1/pgjbQ5ZLaYbsdA8LXjP2J1iaxWA.mft rsync://rpki.ripe.net/repository/DEFAULT/pgjbQ5ZLaYbsdA8LXjP2J1iaxWA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 15:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:68:d4:a2:db:cc:2e:09:53:35:1e:3b:26:0f:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a608db43964b6986ec740f0b5e33f627589ac560 Validity Not Before: Jan 2 00:18:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d6387eeee85afb893fcb39ceb85b4c65f163b95b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ae:46:38:7f:6a:22:b4:65:56:c4:d6:eb:45: 47:b1:4a:bd:e4:dc:99:6c:2c:3a:49:de:53:76:65: fa:85:87:98:9d:84:a0:76:58:cb:b9:7e:5d:68:17: b0:77:72:92:f7:10:96:82:73:95:ce:68:ee:b6:61: 76:5b:09:09:fa:23:f4:c5:d2:88:9d:e2:25:0b:a7: af:4d:e7:62:1e:50:79:f7:1f:63:da:e4:5e:d8:6b: 8c:87:81:95:b2:0a:52:c4:40:09:61:f4:9a:6a:22: 71:78:b1:7e:23:5a:e3:0d:cf:ea:58:62:af:26:89: 43:4b:8c:fe:b1:b3:17:7b:eb:73:01:90:9b:b7:cf: 96:50:03:63:df:91:d8:ec:e9:d0:6e:d8:d8:a3:83: 0a:ad:ba:17:88:27:6c:1f:63:62:03:65:d3:a9:7e: 35:42:6d:a9:a0:7f:50:40:9b:c0:c3:2b:95:e3:ca: a0:8b:98:b4:0a:26:ea:4d:b7:8d:4d:44:84:3b:89: 46:1c:bd:9b:66:0e:0a:58:fc:eb:6e:4e:ce:95:84: c1:0e:5b:98:9d:85:78:61:5b:9c:f4:12:f4:c7:2e: 77:bd:2b:b9:5d:6a:51:6d:b8:aa:53:ad:80:76:30: af:10:89:05:c7:fb:49:a2:e7:d1:0e:d4:ca:81:2f: 89:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:38:7E:EE:E8:5A:FB:89:3F:CB:39:CE:B8:5B:4C:65:F1:63:B9:5B X509v3 Authority Key Identifier: keyid:A6:08:DB:43:96:4B:69:86:EC:74:0F:0B:5E:33:F6:27:58:9A:C5:60 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pgjbQ5ZLaYbsdA8LXjP2J1iaxWA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/500150-1551-47de-b504-d64683cee16f/1/1jh-7uha-4k_yznOuFtMZfFjuVs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/500150-1551-47de-b504-d64683cee16f/1/pgjbQ5ZLaYbsdA8LXjP2J1iaxWA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.96.228.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:53:2e:f5:b9:99:4e:46:5a:54:a2:8f:2d:de:6e:b8:d7:01: 64:6e:aa:1c:cf:f1:50:17:ae:29:48:b4:9f:18:6f:f8:9b:04: c8:a7:ab:68:29:53:0a:62:52:97:a4:97:a5:3e:44:27:f1:d8: 9d:93:ad:d6:d3:2d:ef:b5:65:f0:28:03:64:ec:e6:24:9c:42: 11:4c:fa:41:1b:1e:bf:73:2b:e5:1a:6c:b6:8b:1d:25:19:4e: 60:de:0a:3e:13:55:2f:de:c4:e1:f2:dd:69:67:45:5a:b6:d9: ca:01:3c:0d:80:53:1b:ba:27:26:50:eb:1a:12:6a:cd:79:d8: 73:25:b3:dc:2f:7b:1a:74:7c:2b:65:bc:4a:ab:60:53:67:1d: 80:c2:74:11:90:d5:2b:31:fa:97:7a:45:c2:84:b1:13:04:22: 8b:99:38:9c:61:41:dd:51:0e:57:7b:7e:00:1f:6c:0a:e9:88: 05:ad:c7:d3:6d:75:16:ad:32:29:df:84:e9:32:48:70:bd:9f: d8:e1:a1:b3:f5:c8:44:bc:78:9b:7f:c8:bc:e7:ae:8a:48:29: a3:0f:e9:aa:80:fc:a1:20:35:40:8d:da:db:6a:cd:e2:2f:56: e2:af:74:c2:8d:80:c4:ec:27:fc:bf:d2:39:40:ea:a3:9f:ae: c2:20:c3:0f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EmjUotvMLglTNR47Jg+9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2MDhkYjQzOTY0YjY5ODZlYzc0MGYwYjVlMzNmNjI3NTg5 YWM1NjAwHhcNMjYwMTAyMDAxODU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNjM4N2VlZWU4NWFmYjg5M2ZjYjM5Y2ViODViNGM2NWYxNjNiOTViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0K5GOH9qIrRlVsTW60VHsUq95NyZ bCw6Sd5TdmX6hYeYnYSgdljLuX5daBewd3KS9xCWgnOVzmjutmF2WwkJ+iP0xdKI neIlC6evTediHlB59x9j2uRe2GuMh4GVsgpSxEAJYfSaaiJxeLF+I1rjDc/qWGKv JolDS4z+sbMXe+tzAZCbt8+WUANj35HY7OnQbtjYo4MKrboXiCdsH2NiA2XTqX41 Qm2poH9QQJvAwyuV48qgi5i0CibqTbeNTUSEO4lGHL2bZg4KWPzrbk7OlYTBDluY nYV4YVuc9BL0xy53vSu5XWpRbbiqU62AdjCvEIkFx/tJoufRDtTKgS+J+wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNY4fu7oWvuJP8s5zrhbTGXxY7lbMB8GA1UdIwQY MBaAFKYI20OWS2mG7HQPC14z9idYmsVgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcGdqYlE1WkxhWWJzZEE4TFhqUDJKMWlheFdBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi81MDAxNTAtMTU1MS00N2RlLWI1MDQt ZDY0NjgzY2VlMTZmLzEvMWpoLTd1aGEtNGtfeXpuT3VGdE1aZkZqdVZzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi81MDAxNTAtMTU1MS00N2RlLWI1MDQtZDY0NjgzY2VlMTZm LzEvcGdqYlE1WkxhWWJzZEE4TFhqUDJKMWlheFdBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsGDkMA0G CSqGSIb3DQEBCwUAA4IBAQCKUy71uZlORlpUoo8t3m641wFkbqocz/FQF64pSLSf GG/4mwTIp6toKVMKYlKXpJelPkQn8didk63W0y3vtWXwKANk7OYknEIRTPpBGx6/ cyvlGmy2ix0lGU5g3go+E1Uv3sTh8t1pZ0VattnKATwNgFMbuicmUOsaEmrNedhz JbPcL3sadHwrZbxKq2BTZx2AwnQRkNUrMfqXekXChLETBCKLmTicYUHdUQ5Xe34A H2wK6YgFrcfTbXUWrTIp34TpMkhwvZ/Y4aGz9chEvHibf8i8566KSCmjD+mqgPyh IDVAjdrbas3iL1bir3TCjYDE7Cf8v9I5QOqjn67CIMMP -----END CERTIFICATE-----Generated at Mon Jan 26 00:15:35 2026 by rpki-client