This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/J5hS-MwRa0Pp1Ax-eXmJXTFPUAI.roa File: J5hS-MwRa0Pp1Ax-eXmJXTFPUAI.roa (raw, json) Hash identifier: 0OShF4FaS2H4QHgvZ8CoH/llz34UbR5B713YVNSs1JE= Subject key identifier: 27:98:52:F8:CC:11:6B:43:E9:D4:0C:7E:79:79:89:5D:31:4F:50:02 Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2 Certificate serial: 019BE60560BDF2E9D0227747C3F7964009E9 Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/J5hS-MwRa0Pp1Ax-eXmJXTFPUAI.roa Signing time: Thu 22 Jan 2026 14:04:30 +0000 ROA not before: Thu 22 Jan 2026 14:04:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51248 IP address blocks: 192.145.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.mft rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e6:05:60:bd:f2:e9:d0:22:77:47:c3:f7:96:40:09:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2 Validity Not Before: Jan 22 14:04:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=279852f8cc116b43e9d40c7e7979895d314f5002 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ad:bd:d4:1a:15:da:1e:c3:54:ae:a6:24:73: 99:bb:9f:08:33:81:9c:43:b2:f6:fc:26:f2:73:9b: 02:92:12:69:ef:73:0e:98:96:b8:11:a0:1b:6a:8a: ae:f8:14:bb:a6:90:34:b8:59:8b:4e:c4:2c:5b:79: 09:5f:a3:d1:92:05:c9:ee:72:22:ed:d0:e8:f6:49: 7b:85:ec:cd:57:6e:b7:01:1b:80:7f:88:a9:42:5e: 32:b9:58:84:04:f2:5e:d4:55:e3:53:0d:90:4b:58: 2b:6d:57:60:d4:21:aa:49:be:ae:78:c7:f5:10:11: a4:9e:e1:c2:36:81:10:78:80:6f:37:db:8d:ac:4f: 25:e7:75:38:8f:ff:89:7c:07:62:09:17:e5:c6:84: 66:07:a3:c4:a3:9d:71:99:a7:2a:50:62:8c:5f:2d: 6b:50:81:c7:1c:66:1d:98:20:3e:e3:53:2a:77:38: 16:f1:08:bc:99:0c:7e:3f:82:5c:a6:b5:5d:a0:f5: 09:8e:36:fc:69:c2:ff:29:8f:0a:e2:2f:89:5d:53: be:6a:4a:08:1b:77:37:71:d3:29:1c:8c:36:60:db: c9:47:81:cf:7a:01:90:fe:1b:fd:b5:57:bf:99:d5: 60:a2:ee:96:9a:6c:46:b1:00:0d:5a:d1:da:cc:d0: 72:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:98:52:F8:CC:11:6B:43:E9:D4:0C:7E:79:79:89:5D:31:4F:50:02 X509v3 Authority Key Identifier: keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/J5hS-MwRa0Pp1Ax-eXmJXTFPUAI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.145.98.0/24 Signature Algorithm: sha256WithRSAEncryption 93:ea:38:ff:42:44:8f:91:78:ea:c6:4e:04:50:bb:ed:75:c5: 5b:cd:63:8e:5c:28:ab:76:4a:1a:0a:2d:3d:cd:fa:33:09:08: 6a:9e:3a:f1:f5:ed:c4:ad:31:6a:30:9c:2d:ba:6d:77:78:0e: da:31:31:31:70:d9:4d:03:f1:c8:d7:97:23:c7:90:2c:6c:b7: ea:0b:7e:25:dd:d9:71:2c:90:28:a4:ab:e7:15:b3:f6:e2:1a: 4a:7b:d4:dc:69:17:3f:86:94:7a:39:91:6d:44:24:49:26:70: f0:af:e2:a1:9a:b7:1d:4a:f0:e2:28:a5:c1:e3:3d:3d:f4:26: ef:dd:aa:2a:a4:b0:c6:78:65:c3:1d:4a:e9:8d:30:69:d0:6f: b7:64:d8:c2:8c:57:c8:5d:0f:6a:06:e1:5d:18:8f:2a:69:42: 25:f0:34:ad:1e:c1:f8:09:18:15:a1:bf:71:0a:ef:5a:f3:a8: d3:7c:13:f8:b0:19:7a:a8:1f:6e:f4:87:79:d4:29:d9:9e:04: 30:d8:68:ae:f9:6d:8a:d8:83:1e:5d:6a:51:2e:da:cd:4f:e7: 71:e5:99:0a:e9:c5:bf:42:0b:7a:40:20:34:b4:c4:64:d7:a5: 71:00:5c:85:31:f7:0c:2e:20:e2:44:7c:ca:8c:0a:9f:22:28: 30:15:96:c6 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZvmBWC98unQIndHw/eWQAnpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1MDg0NzVmZjBkOGVjOTYwMzM2MDE2ZTBlMDQyMjFhOThl NWVjZjIwHhcNMjYwMTIyMTQwNDMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNzk4NTJmOGNjMTE2YjQzZTlkNDBjN2U3OTc5ODk1ZDMxNGY1MDAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr6291BoV2h7DVK6mJHOZu58IM4Gc Q7L2/Cbyc5sCkhJp73MOmJa4EaAbaoqu+BS7ppA0uFmLTsQsW3kJX6PRkgXJ7nIi 7dDo9kl7hezNV263ARuAf4ipQl4yuViEBPJe1FXjUw2QS1grbVdg1CGqSb6ueMf1 EBGknuHCNoEQeIBvN9uNrE8l53U4j/+JfAdiCRflxoRmB6PEo51xmacqUGKMXy1r UIHHHGYdmCA+41MqdzgW8Qi8mQx+P4JcprVdoPUJjjb8acL/KY8K4i+JXVO+akoI G3c3cdMpHIw2YNvJR4HPegGQ/hv9tVe/mdVgou6WmmxGsQANWtHazNByUwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCeYUvjMEWtD6dQMfnl5iV0xT1ACMB8GA1UdIwQY MBaAFHUIR1/w2OyWAzYBbg4EIhqY5ezyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZFFoSFhfRFk3SllETmdGdURnUWlHcGpsN1BJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8xZmE2YTMtOGRjNS00YzM1LWE0OWIt MTcxYzM2N2JlNzgyLzEvSjVoUy1Nd1JhMFBwMUF4LWVYbUpYVEZQVUFJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS8xZmE2YTMtOGRjNS00YzM1LWE0OWItMTcxYzM2N2JlNzgy LzEvZFFoSFhfRFk3SllETmdGdURnUWlHcGpsN1BJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwJFiMA0G CSqGSIb3DQEBCwUAA4IBAQCT6jj/QkSPkXjqxk4EULvtdcVbzWOOXCirdkoaCi09 zfozCQhqnjrx9e3ErTFqMJwtum13eA7aMTExcNlNA/HI15cjx5AsbLfqC34l3dlx LJAopKvnFbP24hpKe9TcaRc/hpR6OZFtRCRJJnDwr+KhmrcdSvDiKKXB4z099Cbv 3aoqpLDGeGXDHUrpjTBp0G+3ZNjCjFfIXQ9qBuFdGI8qaUIl8DStHsH4CRgVob9x Cu9a86jTfBP4sBl6qB9u9Id51CnZngQw2Giu+W2K2IMeXWpRLtrNT+dx5ZkK6cW/ Qgt6QCA0tMRk16VxAFyFMfcMLiDiRHzKjAqfIigwFZbG -----END CERTIFICATE-----Generated at Sun Jan 25 19:18:23 2026 by rpki-client