This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/22f1d5-f269-4f4f-bf8a-1fbc641b50b1/1/jSgAQSixmsG7ODbH67aXQELj5T0.roa File: jSgAQSixmsG7ODbH67aXQELj5T0.roa (raw, json) Hash identifier: XRna/gqCyon0m8/tAVG6ujQojaTWJhkXA+ptaGz1MyY= Subject key identifier: 8D:28:00:41:28:B1:9A:C1:BB:38:36:C7:EB:B6:97:40:42:E3:E5:3D Certificate issuer: /CN=70e5b30272e43053208978dbe44bfee10a5d007e Certificate serial: 019BDA2513F65CF2BC10A7CC117BEEFE5601 Authority key identifier: 70:E5:B3:02:72:E4:30:53:20:89:78:DB:E4:4B:FE:E1:0A:5D:00:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cOWzAnLkMFMgiXjb5Ev-4QpdAH4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/22f1d5-f269-4f4f-bf8a-1fbc641b50b1/1/jSgAQSixmsG7ODbH67aXQELj5T0.roa Signing time: Tue 20 Jan 2026 06:43:41 +0000 ROA not before: Tue 20 Jan 2026 06:43:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16003 IP address blocks: 31.172.74.0/24 maxlen: 24 31.172.78.0/24 maxlen: 24 79.132.137.0/24 maxlen: 24 79.132.139.0/24 maxlen: 24 81.85.76.0/24 maxlen: 24 103.75.125.0/24 maxlen: 24 103.75.126.0/24 maxlen: 24 162.248.161.0/24 maxlen: 24 185.18.52.0/22 maxlen: 22 185.18.52.0/24 maxlen: 24 185.21.9.0/24 maxlen: 24 217.194.148.0/24 maxlen: 24 2a02:6b40:8002::/48 maxlen: 48 2a02:6b40:8003::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/22f1d5-f269-4f4f-bf8a-1fbc641b50b1/1/cOWzAnLkMFMgiXjb5Ev-4QpdAH4.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/22f1d5-f269-4f4f-bf8a-1fbc641b50b1/1/cOWzAnLkMFMgiXjb5Ev-4QpdAH4.mft rsync://rpki.ripe.net/repository/DEFAULT/cOWzAnLkMFMgiXjb5Ev-4QpdAH4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 12:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:da:25:13:f6:5c:f2:bc:10:a7:cc:11:7b:ee:fe:56:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70e5b30272e43053208978dbe44bfee10a5d007e Validity Not Before: Jan 20 06:43:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8d28004128b19ac1bb3836c7ebb6974042e3e53d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:48:49:9e:72:79:16:65:0f:fd:3c:00:18:52: 67:5c:2d:70:09:21:c6:5a:b7:b7:e2:9b:90:25:ee: db:5a:2e:16:cd:a6:a4:9e:16:a9:87:1c:04:d9:8e: 95:1a:2d:19:a5:b9:54:6f:4d:f7:f3:1a:0c:cf:b3: 7f:59:13:28:e9:2a:c7:67:bb:60:97:d8:0d:15:94: 52:bb:a4:0c:b0:97:a3:10:35:69:64:ff:c4:a3:8d: 82:b9:ae:13:ab:dc:f7:e4:2f:b9:2b:73:43:40:50: bc:b3:0f:f4:50:2d:90:dd:e1:14:ba:2e:65:5e:65: c9:83:71:a8:bf:5c:2f:68:f5:97:7c:ce:d8:db:31: 12:a9:e0:bd:0b:e4:ed:01:de:4c:a8:86:e8:c9:7d: ac:0c:41:43:d0:47:b8:21:7d:ec:99:e2:39:f9:44: 2a:bc:1e:6e:be:1e:79:35:cc:e3:bc:54:c4:4f:af: c3:35:ea:ce:69:29:40:7f:06:5d:75:44:f0:4b:70: ba:5d:8a:cb:c5:89:b7:b5:45:fd:95:11:c9:f0:af: 0b:88:20:bf:db:da:31:20:ac:30:bf:15:b6:7f:9e: 78:0f:f8:bf:27:23:28:ab:94:58:36:f3:8e:ee:dd: 7c:10:76:47:73:bd:0f:c2:46:52:5f:dd:56:ae:a8: c6:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:28:00:41:28:B1:9A:C1:BB:38:36:C7:EB:B6:97:40:42:E3:E5:3D X509v3 Authority Key Identifier: keyid:70:E5:B3:02:72:E4:30:53:20:89:78:DB:E4:4B:FE:E1:0A:5D:00:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cOWzAnLkMFMgiXjb5Ev-4QpdAH4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/22f1d5-f269-4f4f-bf8a-1fbc641b50b1/1/jSgAQSixmsG7ODbH67aXQELj5T0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/22f1d5-f269-4f4f-bf8a-1fbc641b50b1/1/cOWzAnLkMFMgiXjb5Ev-4QpdAH4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.172.74.0/24 31.172.78.0/24 79.132.137.0/24 79.132.139.0/24 81.85.76.0/24 103.75.125.0-103.75.126.255 162.248.161.0/24 185.18.52.0/22 185.21.9.0/24 217.194.148.0/24 IPv6: 2a02:6b40:8002::/47 Signature Algorithm: sha256WithRSAEncryption 5d:3f:35:53:0d:f3:21:cd:4b:74:c3:ee:be:a3:ed:05:4d:da: b6:9a:3e:8c:70:2f:15:b4:f9:d1:de:4d:cf:de:f8:d5:d2:9f: 53:ad:0b:d6:8c:8f:e1:e9:71:9b:ce:ea:8e:4c:e9:b6:cf:ed: e6:55:68:cf:f9:3b:71:5e:42:e3:75:07:f8:03:e2:34:79:b3: 7c:07:9c:93:e2:d6:9c:fe:00:30:e7:4c:3a:c3:2f:f7:eb:f8: f4:a2:db:a1:75:af:30:71:05:be:28:29:fd:5d:d7:65:66:ce: b3:49:11:4b:c1:37:2d:2b:2d:18:46:b5:b0:e7:a2:1d:82:9b: 4c:fa:01:c3:97:a1:2c:85:18:25:36:d9:75:dd:83:d1:28:92: b2:03:eb:a9:11:42:20:b9:0f:98:6f:85:5c:28:5e:a4:d4:5d: 0f:6c:6b:c5:0a:9b:f9:16:63:46:b2:c2:06:a6:9c:23:df:6a: a8:22:f4:49:29:fd:a0:45:dd:ed:e0:0a:45:4a:3c:e1:dc:28: 16:b3:fd:34:f6:53:80:47:5c:74:49:78:10:a8:f5:2f:34:64: 7e:4f:c9:72:6c:57:60:d2:67:8e:28:5b:b5:15:60:35:2d:eb: 19:99:7a:dc:cc:dd:69:14:45:e4:bb:10:64:3c:54:8f:ce:2a: 10:9a:e4:1f -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgISAZvaJRP2XPK8EKfMEXvu/lYBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwZTViMzAyNzJlNDMwNTMyMDg5NzhkYmU0NGJmZWUxMGE1 ZDAwN2UwHhcNMjYwMTIwMDY0MzQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZDI4MDA0MTI4YjE5YWMxYmIzODM2YzdlYmI2OTc0MDQyZTNlNTNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtUhJnnJ5FmUP/TwAGFJnXC1wCSHG Wre34puQJe7bWi4WzaaknhaphxwE2Y6VGi0ZpblUb0338xoMz7N/WRMo6SrHZ7tg l9gNFZRSu6QMsJejEDVpZP/Eo42Cua4Tq9z35C+5K3NDQFC8sw/0UC2Q3eEUui5l XmXJg3Gov1wvaPWXfM7Y2zESqeC9C+TtAd5MqIboyX2sDEFD0Ee4IX3smeI5+UQq vB5uvh55NczjvFTET6/DNerOaSlAfwZddUTwS3C6XYrLxYm3tUX9lRHJ8K8LiCC/ 29oxIKwwvxW2f554D/i/JyMoq5RYNvOO7t18EHZHc70PwkZSX91WrqjGeQIDAQAB o4ICWDCCAlQwHQYDVR0OBBYEFI0oAEEosZrBuzg2x+u2l0BC4+U9MB8GA1UdIwQY MBaAFHDlswJy5DBTIIl42+RL/uEKXQB+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY09XekFuTGtNRk1naVhqYjVFdi00UXBkQUg0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS8yMmYxZDUtZjI2OS00ZjRmLWJmOGEt MWZiYzY0MWI1MGIxLzEvalNnQVFTaXhtc0c3T0RiSDY3YVhRRUxqNVQwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS8yMmYxZDUtZjI2OS00ZjRmLWJmOGEtMWZiYzY0MWI1MGIx LzEvY09XekFuTGtNRk1naVhqYjVFdi00UXBkQUg0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMG4GCCsGAQUFBwEHAQH/BF8wXTBKBAIAATBEAwQAH6xKAwQA H6xOAwQAT4SJAwQAT4SLAwQAUVVMMAwDBABnS30DBABnS34DBACi+KEDBAK5EjQD BAC5FQkDBADZwpQwDwQCAAIwCQMHASoCa0CAAjANBgkqhkiG9w0BAQsFAAOCAQEA XT81Uw3zIc1LdMPuvqPtBU3atpo+jHAvFbT50d5Nz9741dKfU60L1oyP4elxm87q jkzpts/t5lVoz/k7cV5C43UH+APiNHmzfAeck+LWnP4AMOdMOsMv9+v49KLboXWv MHEFvigp/V3XZWbOs0kRS8E3LSstGEa1sOeiHYKbTPoBw5ehLIUYJTbZdd2D0SiS sgPrqRFCILkPmG+FXChepNRdD2xrxQqb+RZjRrLCBqacI99qqCL0SSn9oEXd7eAK RUo84dwoFrP9NPZTgEdcdEl4EKj1LzRkfk/JcmxXYNJnjihbtRVgNS3rGZl63Mzd aRRF5LsQZDxUj84qEJrkHw== -----END CERTIFICATE-----Generated at Sun Jan 25 22:14:35 2026 by rpki-client