This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f2ab0f-be43-4665-bbaa-1cd3cb07ef5d/1/JeNUkUBnpSW-vlRNGpNwNRUA7lY.roa File: JeNUkUBnpSW-vlRNGpNwNRUA7lY.roa (raw, json) Hash identifier: BiO9H+K+d0OkI09wy+9OSVdZztlHwZneYZ1DCzlG8SU= Subject key identifier: 25:E3:54:91:40:67:A5:25:BE:BE:54:4D:1A:93:70:35:15:00:EE:56 Certificate issuer: /CN=e43bac4a1bbba56cc434861a4c769ff9ce2d15ec Certificate serial: 019B8DB5253E8BB887AEE4C954C85B39CB68 Authority key identifier: E4:3B:AC:4A:1B:BB:A5:6C:C4:34:86:1A:4C:76:9F:F9:CE:2D:15:EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5DusShu7pWzENIYaTHaf-c4tFew.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f2ab0f-be43-4665-bbaa-1cd3cb07ef5d/1/JeNUkUBnpSW-vlRNGpNwNRUA7lY.roa Signing time: Mon 05 Jan 2026 10:30:17 +0000 ROA not before: Mon 05 Jan 2026 10:30:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197099 IP address blocks: 91.216.149.0/24 maxlen: 24 178.217.136.0/21 maxlen: 21 185.81.106.0/24 maxlen: 24 185.81.107.0/24 maxlen: 24 193.105.83.0/24 maxlen: 24 195.43.84.0/23 maxlen: 23 195.95.185.0/24 maxlen: 24 217.30.4.0/22 maxlen: 22 2a03:63e0::/29 maxlen: 29 2a03:63e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/f2ab0f-be43-4665-bbaa-1cd3cb07ef5d/1/5DusShu7pWzENIYaTHaf-c4tFew.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/f2ab0f-be43-4665-bbaa-1cd3cb07ef5d/1/5DusShu7pWzENIYaTHaf-c4tFew.mft rsync://rpki.ripe.net/repository/DEFAULT/5DusShu7pWzENIYaTHaf-c4tFew.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:8d:b5:25:3e:8b:b8:87:ae:e4:c9:54:c8:5b:39:cb:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e43bac4a1bbba56cc434861a4c769ff9ce2d15ec Validity Not Before: Jan 5 10:30:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=25e354914067a525bebe544d1a9370351500ee56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ff:bb:0c:f5:7e:96:5a:81:c6:e8:c0:ea:57: 67:dd:ae:f1:6b:84:d0:45:7d:53:84:29:48:9b:99: 03:75:20:08:9d:f5:ff:e2:ea:d1:f5:ab:fe:58:87: 10:f5:6c:9c:a5:e2:19:eb:43:02:0a:66:e5:55:af: 32:56:5f:b1:42:22:9e:9e:9f:75:b3:b7:db:0b:fd: ee:88:eb:a7:8b:68:96:7e:17:b8:47:68:d8:00:38: 88:6d:4e:2c:23:6c:98:4a:dc:fd:ed:cc:e2:b9:79: ab:19:b5:e7:15:56:be:83:3f:69:af:24:89:97:56: 23:be:93:d8:fc:3d:15:08:d2:c4:ad:c4:8e:12:ce: 00:aa:6f:8e:03:2c:a3:fc:ab:c6:6e:1e:fa:f4:17: e6:b3:4c:f4:1c:0c:ad:a9:43:6c:f0:4f:a2:65:bb: b5:5d:f9:87:06:37:ed:29:04:ff:74:35:7d:82:76: 42:d1:28:f2:3f:9b:f4:2a:79:f8:ec:25:39:1f:87: 39:a8:88:c0:bf:02:83:92:a5:aa:e0:6b:a0:21:6f: b1:62:68:95:ff:60:61:64:a2:2d:ee:54:8a:7d:11: 16:ec:35:a0:5f:16:9f:b2:23:64:1e:2e:05:c3:f3: 5f:a8:a2:23:ee:e6:1a:18:25:5f:7a:37:3e:3b:a1: 79:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:E3:54:91:40:67:A5:25:BE:BE:54:4D:1A:93:70:35:15:00:EE:56 X509v3 Authority Key Identifier: keyid:E4:3B:AC:4A:1B:BB:A5:6C:C4:34:86:1A:4C:76:9F:F9:CE:2D:15:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5DusShu7pWzENIYaTHaf-c4tFew.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f2ab0f-be43-4665-bbaa-1cd3cb07ef5d/1/JeNUkUBnpSW-vlRNGpNwNRUA7lY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f2ab0f-be43-4665-bbaa-1cd3cb07ef5d/1/5DusShu7pWzENIYaTHaf-c4tFew.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.216.149.0/24 178.217.136.0/21 185.81.106.0/23 193.105.83.0/24 195.43.84.0/23 195.95.185.0/24 217.30.4.0/22 IPv6: 2a03:63e0::/29 Signature Algorithm: sha256WithRSAEncryption 20:59:5f:c8:67:47:41:91:5e:66:06:99:64:47:a2:11:28:53: 32:f9:03:b5:47:3e:0a:62:63:cb:bf:da:94:7d:e0:58:ca:4b: ca:cc:f2:3c:9b:2d:8f:ab:70:62:df:9d:ed:ed:bc:98:67:ed: 98:2e:8f:e6:7a:fd:dd:92:4e:bd:22:98:88:94:b3:ab:40:87: de:36:69:ef:7b:61:83:23:00:03:59:b4:a1:d9:21:8a:26:a4: af:8b:3d:0d:1f:f9:d8:e4:29:83:77:bd:a8:38:f2:28:f7:b7: d9:60:35:55:8f:0c:68:01:71:eb:5a:87:55:2a:92:66:66:d5: 35:e6:e7:f7:f2:b0:03:b5:90:3f:b0:e3:c5:a5:53:51:4d:91: 7d:1b:be:a9:8d:f6:67:6f:04:9e:40:8c:4c:86:8b:cb:1c:96: 8f:96:b7:69:c9:60:8d:36:3f:91:93:47:b0:ab:e8:90:0c:c6: 6d:4c:76:4e:e8:80:91:21:8e:01:40:09:19:2b:6e:80:df:8b: a1:dc:ca:13:99:d5:cb:81:7c:6e:82:7a:a7:6e:a7:77:fb:0a: bc:d0:69:5e:aa:f5:4a:64:f0:d9:e1:f4:95:bd:fd:fd:5a:9b: b3:b7:c4:72:f1:07:89:1e:89:d3:49:79:22:9d:21:7f:ff:6b: bc:0d:ba:59 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgISAZuNtSU+i7iHruTJVMhbOctoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU0M2JhYzRhMWJiYmE1NmNjNDM0ODYxYTRjNzY5ZmY5Y2Uy ZDE1ZWMwHhcNMjYwMTA1MTAzMDE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNWUzNTQ5MTQwNjdhNTI1YmViZTU0NGQxYTkzNzAzNTE1MDBlZTU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0/+7DPV+llqBxujA6ldn3a7xa4TQ RX1ThClIm5kDdSAInfX/4urR9av+WIcQ9WycpeIZ60MCCmblVa8yVl+xQiKenp91 s7fbC/3uiOuni2iWfhe4R2jYADiIbU4sI2yYStz97cziuXmrGbXnFVa+gz9prySJ l1YjvpPY/D0VCNLErcSOEs4Aqm+OAyyj/KvGbh769Bfms0z0HAytqUNs8E+iZbu1 XfmHBjftKQT/dDV9gnZC0SjyP5v0Knn47CU5H4c5qIjAvwKDkqWq4GugIW+xYmiV /2BhZKIt7lSKfREW7DWgXxafsiNkHi4Fw/NfqKIj7uYaGCVfejc+O6F5dwIDAQAB o4ICPDCCAjgwHQYDVR0OBBYEFCXjVJFAZ6Ulvr5UTRqTcDUVAO5WMB8GA1UdIwQY MBaAFOQ7rEobu6VsxDSGGkx2n/nOLRXsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNUR1c1NodTdwV3pFTklZYVRIYWYtYzR0RmV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy9mMmFiMGYtYmU0My00NjY1LWJiYWEt MWNkM2NiMDdlZjVkLzEvSmVOVWtVQm5wU1ctdmxSTkdwTndOUlVBN2xZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy9mMmFiMGYtYmU0My00NjY1LWJiYWEtMWNkM2NiMDdlZjVk LzEvNUR1c1NodTdwV3pFTklZYVRIYWYtYzR0RmV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFIGCCsGAQUFBwEHAQH/BEMwQTAwBAIAATAqAwQAW9iVAwQD stmIAwQBuVFqAwQAwWlTAwQBwytUAwQAw1+5AwQC2R4EMA0EAgACMAcDBQMqA2Pg MA0GCSqGSIb3DQEBCwUAA4IBAQAgWV/IZ0dBkV5mBplkR6IRKFMy+QO1Rz4KYmPL v9qUfeBYykvKzPI8my2Pq3Bi353t7byYZ+2YLo/mev3dkk69IpiIlLOrQIfeNmnv e2GDIwADWbSh2SGKJqSviz0NH/nY5CmDd72oOPIo97fZYDVVjwxoAXHrWodVKpJm ZtU15uf38rADtZA/sOPFpVNRTZF9G76pjfZnbwSeQIxMhovLHJaPlrdpyWCNNj+R k0ewq+iQDMZtTHZO6ICRIY4BQAkZK26A34uh3MoTmdXLgXxugnqnbqd3+wq80Gle qvVKZPDZ4fSVvf39Wpuzt8Ry8QeJHonTSXkinSF//2u8DbpZ -----END CERTIFICATE-----Generated at Sun Jan 25 21:03:11 2026 by rpki-client