This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/JXFUH416zwkJgWarbpHaBu4OjrM.roa File: JXFUH416zwkJgWarbpHaBu4OjrM.roa (raw, json) Hash identifier: 4a95XnQ0KPTukf9VV0SjrYCDAkfbYBMqoLt/hvW2kls= Subject key identifier: 25:71:54:1F:8D:7A:CF:09:09:81:66:AB:6E:91:DA:06:EE:0E:8E:B3 Certificate issuer: /CN=4d23e2edb321e1a8a5ce9ee3e2d95aa40f0de8a0 Certificate serial: 019B7F8355D9C040F0DEF8B317CAE873C813 Authority key identifier: 4D:23:E2:ED:B3:21:E1:A8:A5:CE:9E:E3:E2:D9:5A:A4:0F:0D:E8:A0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TSPi7bMh4ailzp7j4tlapA8N6KA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/JXFUH416zwkJgWarbpHaBu4OjrM.roa Signing time: Fri 02 Jan 2026 16:21:12 +0000 ROA not before: Fri 02 Jan 2026 16:21:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213128 IP address blocks: 185.204.137.0/24 maxlen: 24 185.204.138.0/24 maxlen: 24 185.204.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.mft rsync://rpki.ripe.net/repository/DEFAULT/TSPi7bMh4ailzp7j4tlapA8N6KA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:55:d9:c0:40:f0:de:f8:b3:17:ca:e8:73:c8:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4d23e2edb321e1a8a5ce9ee3e2d95aa40f0de8a0 Validity Not Before: Jan 2 16:21:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2571541f8d7acf09098166ab6e91da06ee0e8eb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:85:23:f5:72:c7:eb:ed:18:30:be:65:10:98: 44:32:e2:6e:a7:9c:f3:8d:e2:da:ba:90:88:7c:b7: 82:b7:8a:45:fc:98:c8:21:d8:ed:ab:cf:06:df:7b: 8b:81:8f:22:5a:15:c1:3b:82:c0:11:3b:43:27:90: ee:d2:cb:ea:5b:23:37:c6:96:51:4d:4d:f7:94:23: 9e:df:73:14:97:c0:49:3b:21:1a:f0:7e:ce:0c:34: da:9a:5f:ee:98:f9:55:d4:09:1e:f0:57:ab:a7:ae: 0a:f2:12:56:8e:5b:95:53:46:5d:c7:93:ca:af:8d: ba:e9:1a:bb:57:88:ca:56:9a:b7:e6:2b:3b:f2:73: 98:1b:43:8c:ba:78:01:0b:89:d2:41:85:01:4a:06: ee:69:0a:cf:d3:9c:99:9d:8f:c7:12:48:e8:f3:26: 2c:1b:45:27:ea:7f:3b:7b:b9:a0:ad:ed:60:a5:0a: 62:c7:b9:b3:f7:39:8d:c7:5b:11:a8:02:41:ce:05: df:d1:89:4b:bd:43:e8:5f:23:cf:5e:d3:70:8a:d3: 72:1b:9e:d4:09:37:8c:ba:91:be:22:12:24:f0:a8: fe:f0:44:4d:9e:b9:11:80:b8:47:07:32:ef:f8:e7: 2b:4b:b2:b6:63:f8:23:89:f5:29:c0:e5:21:f6:1b: cd:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:71:54:1F:8D:7A:CF:09:09:81:66:AB:6E:91:DA:06:EE:0E:8E:B3 X509v3 Authority Key Identifier: keyid:4D:23:E2:ED:B3:21:E1:A8:A5:CE:9E:E3:E2:D9:5A:A4:0F:0D:E8:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TSPi7bMh4ailzp7j4tlapA8N6KA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/JXFUH416zwkJgWarbpHaBu4OjrM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.204.137.0-185.204.139.255 Signature Algorithm: sha256WithRSAEncryption 35:ab:7f:13:d7:0a:b6:18:0b:0b:4b:09:53:e1:1a:8a:d2:b0: d4:56:39:d6:7d:b5:7c:6e:69:a7:35:16:a9:e8:d4:6c:06:70: b6:3b:07:d1:b6:68:ca:22:9a:37:ae:b4:07:38:aa:0d:61:7b: 5f:ad:3d:f6:b6:cf:03:57:56:6c:7f:c6:3e:f7:33:d0:a7:b4: 17:e1:37:10:6b:56:fd:ea:81:43:70:01:d6:b2:e5:75:97:2d: d9:f8:79:0f:56:c9:25:a9:ff:8e:af:48:94:cf:2d:93:e7:c0: dc:4c:08:ab:38:91:19:d0:13:13:ac:7a:81:c2:59:f4:25:e5: 42:c3:da:91:cd:06:14:f8:31:25:2d:dd:24:d1:90:23:c1:ab: f7:87:92:27:11:34:9e:19:b3:d0:08:8a:47:59:ca:17:6b:8c: b8:5d:86:64:4e:98:b5:3b:dd:09:29:a4:5f:24:5e:a4:6a:e9: 49:4d:98:4a:e9:59:fd:b1:77:bd:d0:fc:c6:48:6b:4e:8d:35: 3b:0c:d6:b1:6d:95:db:3a:f8:21:c1:90:0f:18:77:69:7a:9f: 6e:80:bc:ff:4c:c5:5e:31:4d:5d:c9:a0:de:10:1c:2b:d5:e9: b7:51:9a:f5:87:fc:9a:fc:27:58:03:30:e4:10:02:0f:eb:ae: 02:d7:13:a5 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt/g1XZwEDw3vizF8roc8gTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkMjNlMmVkYjMyMWUxYThhNWNlOWVlM2UyZDk1YWE0MGYw ZGU4YTAwHhcNMjYwMTAyMTYyMTEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNTcxNTQxZjhkN2FjZjA5MDk4MTY2YWI2ZTkxZGEwNmVlMGU4ZWIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsIUj9XLH6+0YML5lEJhEMuJup5zz jeLaupCIfLeCt4pF/JjIIdjtq88G33uLgY8iWhXBO4LAETtDJ5Du0svqWyM3xpZR TU33lCOe33MUl8BJOyEa8H7ODDTaml/umPlV1Ake8Ferp64K8hJWjluVU0Zdx5PK r4266Rq7V4jKVpq35is78nOYG0OMungBC4nSQYUBSgbuaQrP05yZnY/HEkjo8yYs G0Un6n87e7mgre1gpQpix7mz9zmNx1sRqAJBzgXf0YlLvUPoXyPPXtNwitNyG57U CTeMupG+IhIk8Kj+8ERNnrkRgLhHBzLv+OcrS7K2Y/gjifUpwOUh9hvNAQIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFCVxVB+Nes8JCYFmq26R2gbuDo6zMB8GA1UdIwQY MBaAFE0j4u2zIeGopc6e4+LZWqQPDeigMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFNQaTdiTWg0YWlsenA3ajR0bGFwQThONktBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC9lNGUwN2UtMTVmYy00OTQyLTg0MmEt NTM4NTA5ZjNhNzg5LzEvSlhGVUg0MTZ6d2tKZ1dhcmJwSGFCdTRPanJNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC9lNGUwN2UtMTVmYy00OTQyLTg0MmEtNTM4NTA5ZjNhNzg5 LzEvVFNQaTdiTWg0YWlsenA3ajR0bGFwQThONktBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAC5zIkD BAK5zIgwDQYJKoZIhvcNAQELBQADggEBADWrfxPXCrYYCwtLCVPhGorSsNRWOdZ9 tXxuaac1Fqno1GwGcLY7B9G2aMoimjeutAc4qg1he1+tPfa2zwNXVmx/xj73M9Cn tBfhNxBrVv3qgUNwAday5XWXLdn4eQ9WySWp/46vSJTPLZPnwNxMCKs4kRnQExOs eoHCWfQl5ULD2pHNBhT4MSUt3STRkCPBq/eHkicRNJ4Zs9AIikdZyhdrjLhdhmRO mLU73QkppF8kXqRq6UlNmErpWf2xd73Q/MZIa06NNTsM1rFtlds6+CHBkA8Yd2l6 n26AvP9MxV4xTV3JoN4QHCvV6bdRmvWH/Jr8J1gDMOQQAg/rrgLXE6U= -----END CERTIFICATE-----Generated at Mon Jan 26 03:40:52 2026 by rpki-client