This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/df3706-f347-4025-a7b3-1c8cd56c6174/1/Jl68zYVqXRal67PopoREeqdxbg8.roa File: Jl68zYVqXRal67PopoREeqdxbg8.roa (raw, json) Hash identifier: xD50qSlfLrwmHdVWTozHtqTpDA+X5IuU1okzXOkjlqM= Subject key identifier: 26:5E:BC:CD:85:6A:5D:16:A5:EB:B3:E8:A6:84:44:7A:A7:71:6E:0F Certificate issuer: /CN=72048641d8f7337fcea23ae5332bf6e11a11e22a Certificate serial: 019B797DDA3AF4FF47B5D392B4645BCD434E Authority key identifier: 72:04:86:41:D8:F7:33:7F:CE:A2:3A:E5:33:2B:F6:E1:1A:11:E2:2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgSGQdj3M3_OojrlMyv24RoR4io.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/df3706-f347-4025-a7b3-1c8cd56c6174/1/Jl68zYVqXRal67PopoREeqdxbg8.roa Signing time: Thu 01 Jan 2026 12:17:29 +0000 ROA not before: Thu 01 Jan 2026 12:17:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39686 IP address blocks: 193.104.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/df3706-f347-4025-a7b3-1c8cd56c6174/1/cgSGQdj3M3_OojrlMyv24RoR4io.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/df3706-f347-4025-a7b3-1c8cd56c6174/1/cgSGQdj3M3_OojrlMyv24RoR4io.mft rsync://rpki.ripe.net/repository/DEFAULT/cgSGQdj3M3_OojrlMyv24RoR4io.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7d:da:3a:f4:ff:47:b5:d3:92:b4:64:5b:cd:43:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72048641d8f7337fcea23ae5332bf6e11a11e22a Validity Not Before: Jan 1 12:17:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=265ebccd856a5d16a5ebb3e8a684447aa7716e0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:98:f3:ee:e6:a7:47:a6:17:83:9c:5f:67:51: af:91:4b:53:b1:00:c7:2b:de:a1:82:68:16:dd:ae: dd:e2:af:3f:43:a7:b2:bd:a7:47:a2:17:bb:6e:f3: 05:8a:27:9d:19:5a:87:59:b7:fc:88:2a:dd:3b:6e: 12:a8:52:fd:be:f0:ef:67:35:a8:23:a9:a6:be:41: 16:05:6e:78:74:26:03:fc:05:06:79:4a:9a:47:19: d6:9f:4b:d8:cb:24:cf:15:33:62:e3:5d:6f:de:c7: ff:b2:0c:06:9a:82:a4:29:f8:eb:d8:48:18:ff:cd: 8d:ad:18:6a:5f:60:15:c9:f2:65:92:32:33:bf:73: 78:62:15:5e:c6:65:6d:7d:0a:a8:93:d1:64:71:6e: 64:53:e3:6f:5e:05:63:e7:dc:3c:9c:a2:9e:ca:ff: d2:1e:ec:2a:da:c0:02:7a:63:69:f6:75:3c:39:42: 2b:ab:18:51:a2:13:9a:b0:79:1a:3a:b6:f6:f5:a3: 86:93:fa:05:97:cf:02:dc:2a:f9:aa:e5:6d:8a:4b: dd:0d:71:c3:c1:68:63:4c:6a:b6:d1:70:d1:fe:56: df:60:ec:33:b2:26:80:6a:d1:1c:1d:ba:1a:6e:cc: 74:60:1f:58:28:3f:3f:34:6a:74:df:42:50:40:03: 6c:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:5E:BC:CD:85:6A:5D:16:A5:EB:B3:E8:A6:84:44:7A:A7:71:6E:0F X509v3 Authority Key Identifier: keyid:72:04:86:41:D8:F7:33:7F:CE:A2:3A:E5:33:2B:F6:E1:1A:11:E2:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgSGQdj3M3_OojrlMyv24RoR4io.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/df3706-f347-4025-a7b3-1c8cd56c6174/1/Jl68zYVqXRal67PopoREeqdxbg8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/df3706-f347-4025-a7b3-1c8cd56c6174/1/cgSGQdj3M3_OojrlMyv24RoR4io.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.104.129.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:74:63:30:e1:d2:bb:41:77:ca:3f:29:3d:06:47:93:98:94: 32:8f:95:a4:78:7e:de:05:f3:b8:87:49:ff:fa:c9:94:09:9b: 49:34:ba:2f:e9:12:ff:79:3d:2d:78:ac:de:e2:2c:f4:a4:02: a1:4d:f8:1b:80:03:7e:bf:fe:17:23:05:67:41:f8:dc:05:f9: 69:35:d4:b3:3e:d4:eb:22:19:d0:06:af:a5:1e:af:76:bc:b5: 49:d1:8a:b9:a0:0e:03:38:00:f6:f7:36:f1:26:49:67:5e:08: 8f:64:fc:36:42:da:c0:0a:64:0b:c4:2a:a3:81:a3:8d:ca:9c: 45:14:19:c8:c8:51:fc:51:fc:b9:b5:35:6b:3f:aa:31:7f:83: 3d:ae:db:9f:7f:a5:f8:cb:57:3d:c1:89:0b:6a:70:be:73:40: 63:e6:14:98:32:d5:6e:09:89:7a:69:1e:3a:30:41:f8:2b:c9: b6:dc:88:03:f9:a5:7a:6a:9f:22:51:b2:a6:ac:cb:f6:bd:d7: b7:86:a2:e5:0f:07:2d:e5:3f:db:fb:df:0f:f3:ee:f7:64:91: 73:9f:5c:65:ce:e8:d4:16:b6:d5:a9:da:63:db:df:74:6c:5a: f9:44:93:87:39:fd:9f:f5:69:89:12:8b:46:34:08:32:10:60: b6:be:53:22 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fdo69P9HtdOStGRbzUNOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyMDQ4NjQxZDhmNzMzN2ZjZWEyM2FlNTMzMmJmNmUxMWEx MWUyMmEwHhcNMjYwMTAxMTIxNzI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNjVlYmNjZDg1NmE1ZDE2YTVlYmIzZThhNjg0NDQ3YWE3NzE2ZTBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6Jjz7uanR6YXg5xfZ1GvkUtTsQDH K96hgmgW3a7d4q8/Q6eyvadHohe7bvMFiiedGVqHWbf8iCrdO24SqFL9vvDvZzWo I6mmvkEWBW54dCYD/AUGeUqaRxnWn0vYyyTPFTNi411v3sf/sgwGmoKkKfjr2EgY /82NrRhqX2AVyfJlkjIzv3N4YhVexmVtfQqok9FkcW5kU+NvXgVj59w8nKKeyv/S Huwq2sACemNp9nU8OUIrqxhRohOasHkaOrb29aOGk/oFl88C3Cr5quVtikvdDXHD wWhjTGq20XDR/lbfYOwzsiaAatEcHboabsx0YB9YKD8/NGp030JQQANsUQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCZevM2Fal0Wpeuz6KaERHqncW4PMB8GA1UdIwQY MBaAFHIEhkHY9zN/zqI65TMr9uEaEeIqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2dTR1FkajNNM19Pb2pybE15djI0Um9SNGlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9kZjM3MDYtZjM0Ny00MDI1LWE3YjMt MWM4Y2Q1NmM2MTc0LzEvSmw2OHpZVnFYUmFsNjdQb3BvUkVlcWR4Ymc4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC9kZjM3MDYtZjM0Ny00MDI1LWE3YjMtMWM4Y2Q1NmM2MTc0 LzEvY2dTR1FkajNNM19Pb2pybE15djI0Um9SNGlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwWiBMA0G CSqGSIb3DQEBCwUAA4IBAQB/dGMw4dK7QXfKPyk9BkeTmJQyj5WkeH7eBfO4h0n/ +smUCZtJNLov6RL/eT0teKze4iz0pAKhTfgbgAN+v/4XIwVnQfjcBflpNdSzPtTr IhnQBq+lHq92vLVJ0Yq5oA4DOAD29zbxJklnXgiPZPw2QtrACmQLxCqjgaONypxF FBnIyFH8Ufy5tTVrP6oxf4M9rtuff6X4y1c9wYkLanC+c0Bj5hSYMtVuCYl6aR46 MEH4K8m23IgD+aV6ap8iUbKmrMv2vde3hqLlDwct5T/b+98P8+73ZJFzn1xlzujU FrbVqdpj2990bFr5RJOHOf2f9WmJEotGNAgyEGC2vlMi -----END CERTIFICATE-----Generated at Sun Jan 25 17:22:12 2026 by rpki-client