This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/8a8487-931a-42fb-b664-c52df4aa521d/1/JWBtzeLFUDlhmERoUCTbc_uAex0.roa File: JWBtzeLFUDlhmERoUCTbc_uAex0.roa (raw, json) Hash identifier: kxreH6y2E+SNRj6sI1npU33Oy4JXyeQw/3NaAYiK4Gk= Subject key identifier: 25:60:6D:CD:E2:C5:50:39:61:98:44:68:50:24:DB:73:FB:80:7B:1D Certificate issuer: /CN=b55800300fa4017f970c95d767d812fd10d0dcbc Certificate serial: 019B78A25F73B2BD05D127E8A46C96A784EE Authority key identifier: B5:58:00:30:0F:A4:01:7F:97:0C:95:D7:67:D8:12:FD:10:D0:DC:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVgAMA-kAX-XDJXXZ9gS_RDQ3Lw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/8a8487-931a-42fb-b664-c52df4aa521d/1/JWBtzeLFUDlhmERoUCTbc_uAex0.roa Signing time: Thu 01 Jan 2026 08:17:45 +0000 ROA not before: Thu 01 Jan 2026 08:17:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48967 IP address blocks: 95.130.110.0/24 maxlen: 24 195.93.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/8a8487-931a-42fb-b664-c52df4aa521d/1/tVgAMA-kAX-XDJXXZ9gS_RDQ3Lw.crl rsync://rpki.ripe.net/repository/DEFAULT/e4/8a8487-931a-42fb-b664-c52df4aa521d/1/tVgAMA-kAX-XDJXXZ9gS_RDQ3Lw.mft rsync://rpki.ripe.net/repository/DEFAULT/tVgAMA-kAX-XDJXXZ9gS_RDQ3Lw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:5f:73:b2:bd:05:d1:27:e8:a4:6c:96:a7:84:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b55800300fa4017f970c95d767d812fd10d0dcbc Validity Not Before: Jan 1 08:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=25606dcde2c55039619844685024db73fb807b1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:d3:94:2b:50:a6:a6:ed:68:60:c4:6c:41:d3: 76:2d:4a:9c:d4:9b:96:50:d1:df:aa:a7:d3:24:ae: 53:83:a1:c3:7f:91:b6:9f:68:6a:2a:4d:5d:79:89: 72:0d:d4:04:e9:74:0f:17:66:c7:f5:15:4f:f6:18: 62:fc:bb:24:68:45:c6:e8:92:37:7f:73:47:b5:e4: 44:19:8f:c1:81:61:da:ff:c7:67:72:0c:48:5f:e7: a7:d0:09:84:52:7a:50:05:89:c1:a1:ad:c8:ca:83: af:d3:a7:b9:59:a1:91:a0:8d:d3:6b:eb:66:bb:82: 5a:6e:ec:c1:eb:a9:0d:56:ae:0f:0e:4a:9a:23:e1: b6:07:9b:e6:78:5f:8f:1d:23:74:d4:bf:e7:5e:72: b4:5e:b7:7b:80:a8:d8:f6:8d:f8:9c:54:dd:5b:5d: b3:62:70:64:63:26:d4:e1:23:01:7d:16:0b:6c:46: 37:c9:76:57:30:71:bc:03:1b:29:19:ef:ae:44:1a: a9:70:2b:88:86:f4:a3:21:f7:ec:ab:cd:17:7f:ca: 99:73:66:d6:83:c0:0c:10:27:92:cb:6c:e6:65:76: ec:02:b1:5a:4c:51:72:ad:ae:6e:2e:d3:38:80:a9: 7f:0c:60:20:96:6b:43:c0:9e:03:b4:2e:e9:95:4d: d8:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:60:6D:CD:E2:C5:50:39:61:98:44:68:50:24:DB:73:FB:80:7B:1D X509v3 Authority Key Identifier: keyid:B5:58:00:30:0F:A4:01:7F:97:0C:95:D7:67:D8:12:FD:10:D0:DC:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVgAMA-kAX-XDJXXZ9gS_RDQ3Lw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/8a8487-931a-42fb-b664-c52df4aa521d/1/JWBtzeLFUDlhmERoUCTbc_uAex0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/8a8487-931a-42fb-b664-c52df4aa521d/1/tVgAMA-kAX-XDJXXZ9gS_RDQ3Lw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.130.110.0/24 195.93.197.0/24 Signature Algorithm: sha256WithRSAEncryption 75:f1:34:78:08:8a:85:5f:41:0f:0c:e1:a0:47:75:a1:28:85: ec:2f:44:7e:8c:91:a5:20:48:bc:ac:47:58:0f:94:fc:f9:00: 15:4f:1f:f6:26:61:30:2e:41:fc:51:b1:25:d1:aa:ab:33:1b: bb:ee:27:89:b4:20:2f:63:4d:f1:a4:68:cb:9d:05:f2:85:7e: 46:0f:ca:9e:f5:09:dd:3a:ca:87:60:e1:7e:a8:66:13:18:12: 2b:0f:6b:b3:e3:ea:04:7f:23:54:39:5b:dc:a6:bc:f7:09:a4: fa:d1:8f:7c:d8:e4:c5:8e:a5:c5:14:b9:87:a3:ee:9d:ef:3a: 57:04:4b:e2:12:4d:9c:5d:cc:7c:d9:f1:ac:00:60:b7:44:d5: 41:9c:18:1a:6b:2b:f5:60:de:23:ac:04:db:6d:26:51:6d:a8: 7d:9f:30:b0:0d:c7:18:9b:0d:39:b8:01:ee:ce:fd:47:97:1a: 8b:56:f7:5a:5d:bf:f7:4b:e2:02:c2:76:4b:9a:0b:cb:2c:dc: 5b:5e:6d:19:83:0c:a1:46:25:6d:29:6e:6f:59:74:cf:a1:35: a7:cf:3e:f9:0a:4a:62:8d:41:39:2b:3a:ef:0e:28:bd:0a:05: 97:6e:21:15:35:74:fb:dd:8e:49:28:7f:f9:fc:ef:bc:8d:05: f1:b8:3c:26 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt4ol9zsr0F0SfopGyWp4TuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1NTgwMDMwMGZhNDAxN2Y5NzBjOTVkNzY3ZDgxMmZkMTBk MGRjYmMwHhcNMjYwMTAxMDgxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNTYwNmRjZGUyYzU1MDM5NjE5ODQ0Njg1MDI0ZGI3M2ZiODA3YjFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAitOUK1Cmpu1oYMRsQdN2LUqc1JuW UNHfqqfTJK5Tg6HDf5G2n2hqKk1deYlyDdQE6XQPF2bH9RVP9hhi/LskaEXG6JI3 f3NHteREGY/BgWHa/8dncgxIX+en0AmEUnpQBYnBoa3IyoOv06e5WaGRoI3Ta+tm u4JabuzB66kNVq4PDkqaI+G2B5vmeF+PHSN01L/nXnK0Xrd7gKjY9o34nFTdW12z YnBkYybU4SMBfRYLbEY3yXZXMHG8AxspGe+uRBqpcCuIhvSjIffsq80Xf8qZc2bW g8AMECeSy2zmZXbsArFaTFFyra5uLtM4gKl/DGAglmtDwJ4DtC7plU3YVwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFCVgbc3ixVA5YZhEaFAk23P7gHsdMB8GA1UdIwQY MBaAFLVYADAPpAF/lwyV12fYEv0Q0Ny8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFZnQU1BLWtBWC1YREpYWFo5Z1NfUkRRM0x3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC84YTg0ODctOTMxYS00MmZiLWI2NjQt YzUyZGY0YWE1MjFkLzEvSldCdHplTEZVRGxobUVSb1VDVGJjX3VBZXgwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNC84YTg0ODctOTMxYS00MmZiLWI2NjQtYzUyZGY0YWE1MjFk LzEvdFZnQU1BLWtBWC1YREpYWFo5Z1NfUkRRM0x3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAX4JuAwQA w13FMA0GCSqGSIb3DQEBCwUAA4IBAQB18TR4CIqFX0EPDOGgR3WhKIXsL0R+jJGl IEi8rEdYD5T8+QAVTx/2JmEwLkH8UbEl0aqrMxu77ieJtCAvY03xpGjLnQXyhX5G D8qe9QndOsqHYOF+qGYTGBIrD2uz4+oEfyNUOVvcprz3CaT60Y982OTFjqXFFLmH o+6d7zpXBEviEk2cXcx82fGsAGC3RNVBnBgaayv1YN4jrATbbSZRbah9nzCwDccY mw05uAHuzv1HlxqLVvdaXb/3S+ICwnZLmgvLLNxbXm0ZgwyhRiVtKW5vWXTPoTWn zz75CkpijUE5KzrvDii9CgWXbiEVNXT73Y5JKH/5/O+8jQXxuDwm -----END CERTIFICATE-----Generated at Sun Jan 25 16:11:15 2026 by rpki-client