This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/jXuAqsPHXvSfZGYgxhNksOYSF5U.roa File: jXuAqsPHXvSfZGYgxhNksOYSF5U.roa (raw, json) Hash identifier: yaNveVmpBlc0ed50geLDpHfxvb9X4WQOsQ1rbbUocCI= Subject key identifier: 8D:7B:80:AA:C3:C7:5E:F4:9F:64:66:20:C6:13:64:B0:E6:12:17:95 Certificate issuer: /CN=4d0ade54c27e6fcddace262c4fdf790f320fed9c Certificate serial: 019B7DC9571CC416E6F887090FEA8401F826 Authority key identifier: 4D:0A:DE:54:C2:7E:6F:CD:DA:CE:26:2C:4F:DF:79:0F:32:0F:ED:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TQreVMJ-b83aziYsT995DzIP7Zw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/jXuAqsPHXvSfZGYgxhNksOYSF5U.roa Signing time: Fri 02 Jan 2026 08:18:25 +0000 ROA not before: Fri 02 Jan 2026 08:18:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60130 IP address blocks: 185.56.184.0/22 maxlen: 24 2a02:5560::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/TQreVMJ-b83aziYsT995DzIP7Zw.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/TQreVMJ-b83aziYsT995DzIP7Zw.mft rsync://rpki.ripe.net/repository/DEFAULT/TQreVMJ-b83aziYsT995DzIP7Zw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c9:57:1c:c4:16:e6:f8:87:09:0f:ea:84:01:f8:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4d0ade54c27e6fcddace262c4fdf790f320fed9c Validity Not Before: Jan 2 08:18:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8d7b80aac3c75ef49f646620c61364b0e6121795 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f7:5c:44:1d:46:7c:73:74:88:12:ac:80:f1: dd:3f:fe:06:bd:b4:d7:84:38:7b:d1:55:dc:23:70: 84:93:5f:3e:55:ac:dd:52:65:09:52:1f:27:e3:f9: 3b:c4:8f:47:ad:b7:ed:20:fe:10:33:a0:8c:a0:11: fd:fb:c9:ef:d9:3d:ed:71:9e:0e:9b:62:96:a2:d6: 33:e8:be:3f:84:c5:bf:db:31:a2:01:cb:03:05:be: c3:e0:bd:c1:51:97:1b:6d:7e:ca:1b:8a:a4:dc:fd: 8b:54:bf:9e:75:b9:2c:4d:0e:59:a7:ed:bd:75:b2: 53:38:14:c8:87:3b:27:6f:69:80:7a:69:67:71:69: 97:c8:d7:7c:a9:dd:7b:e3:b7:10:0d:a7:93:7a:30: 2d:40:82:a3:08:7a:0d:2a:64:a8:03:0b:fa:1a:72: 2b:14:cc:67:1d:1c:df:59:80:c3:b5:22:39:77:83: 43:61:bc:53:0d:0e:a4:98:7f:5b:b3:db:0d:a1:0f: d1:25:49:b8:c3:cb:fb:55:f7:56:b9:9c:3a:19:b0: f1:11:3b:84:a9:a1:da:86:72:8d:88:eb:b0:b6:cd: f7:73:97:d1:47:e3:53:29:ff:75:71:99:33:da:24: 87:ca:5a:7c:48:88:5f:c2:af:9b:45:1e:6e:c3:ce: 6e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:7B:80:AA:C3:C7:5E:F4:9F:64:66:20:C6:13:64:B0:E6:12:17:95 X509v3 Authority Key Identifier: keyid:4D:0A:DE:54:C2:7E:6F:CD:DA:CE:26:2C:4F:DF:79:0F:32:0F:ED:9C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TQreVMJ-b83aziYsT995DzIP7Zw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/jXuAqsPHXvSfZGYgxhNksOYSF5U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/TQreVMJ-b83aziYsT995DzIP7Zw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.56.184.0/22 IPv6: 2a02:5560::/32 Signature Algorithm: sha256WithRSAEncryption 1b:52:56:e7:68:59:fe:12:0a:1d:34:e3:49:2d:fa:f9:a7:45: 5f:62:0c:11:aa:dd:57:a4:ab:f3:85:2f:be:34:dd:1a:11:d0: 60:65:c1:c0:d9:fb:bd:ec:f0:20:5d:bd:b7:d3:e3:4a:6a:c7: be:de:66:07:e6:66:c9:46:75:41:be:9a:9a:49:ea:52:2f:36: 08:cc:f5:44:59:7b:77:1c:10:e0:73:e5:21:b6:7f:46:6d:22: 5f:71:c9:ac:b9:9d:e9:fa:f8:00:10:cf:d5:e7:97:28:0b:ee: 17:69:9a:a9:78:9b:94:1d:93:63:bb:d2:fe:e5:5b:d8:65:68: c3:77:a7:ea:04:07:7f:75:42:36:92:a2:ea:b4:db:b2:2f:9c: a9:2c:8e:3c:72:80:17:4b:52:ed:0b:70:c8:17:d1:17:41:fb: 71:c5:ef:ab:c6:1c:61:b3:b7:1f:cf:e9:37:21:b3:a9:8c:39: 0a:83:92:62:59:1e:41:58:5c:c2:24:98:6f:b6:8b:9d:8b:33: f5:33:60:ae:78:2a:8b:dc:e2:a6:56:56:3c:15:7f:3f:eb:6b: 6a:4c:8f:43:5c:b6:4b:58:29:a6:05:ea:32:4e:d7:be:d8:80: 96:3c:bf:6b:da:a0:9f:b3:05:9b:0d:84:05:15:ad:1b:81:2e: 53:19:62:01 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt9yVccxBbm+IcJD+qEAfgmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkMGFkZTU0YzI3ZTZmY2RkYWNlMjYyYzRmZGY3OTBmMzIw ZmVkOWMwHhcNMjYwMTAyMDgxODI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZDdiODBhYWMzYzc1ZWY0OWY2NDY2MjBjNjEzNjRiMGU2MTIxNzk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1vdcRB1GfHN0iBKsgPHdP/4GvbTX hDh70VXcI3CEk18+VazdUmUJUh8n4/k7xI9HrbftIP4QM6CMoBH9+8nv2T3tcZ4O m2KWotYz6L4/hMW/2zGiAcsDBb7D4L3BUZcbbX7KG4qk3P2LVL+edbksTQ5Zp+29 dbJTOBTIhzsnb2mAemlncWmXyNd8qd1747cQDaeTejAtQIKjCHoNKmSoAwv6GnIr FMxnHRzfWYDDtSI5d4NDYbxTDQ6kmH9bs9sNoQ/RJUm4w8v7VfdWuZw6GbDxETuE qaHahnKNiOuwts33c5fRR+NTKf91cZkz2iSHylp8SIhfwq+bRR5uw85utwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFI17gKrDx170n2RmIMYTZLDmEheVMB8GA1UdIwQY MBaAFE0K3lTCfm/N2s4mLE/feQ8yD+2cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFFyZVZNSi1iODNhemlZc1Q5OTVEeklQN1p3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC84ZWZkOGItZTUxNi00YzQ5LTkyY2It ODkyOTZjY2IzNWY1LzEvalh1QXFzUEhYdlNmWkdZZ3hoTmtzT1lTRjVVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC84ZWZkOGItZTUxNi00YzQ5LTkyY2ItODkyOTZjY2IzNWY1 LzEvVFFyZVZNSi1iODNhemlZc1Q5OTVEeklQN1p3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuTi4MA0E AgACMAcDBQAqAlVgMA0GCSqGSIb3DQEBCwUAA4IBAQAbUlbnaFn+EgodNONJLfr5 p0VfYgwRqt1XpKvzhS++NN0aEdBgZcHA2fu97PAgXb230+NKase+3mYH5mbJRnVB vpqaSepSLzYIzPVEWXt3HBDgc+Uhtn9GbSJfccmsuZ3p+vgAEM/V55coC+4XaZqp eJuUHZNju9L+5VvYZWjDd6fqBAd/dUI2kqLqtNuyL5ypLI48coAXS1LtC3DIF9EX Qftxxe+rxhxhs7cfz+k3IbOpjDkKg5JiWR5BWFzCJJhvtoudizP1M2CueCqL3OKm VlY8FX8/62tqTI9DXLZLWCmmBeoyTte+2ICWPL9r2qCfswWbDYQFFa0bgS5TGWIB -----END CERTIFICATE-----Generated at Mon Jan 26 10:53:00 2026 by rpki-client