This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/JzDXwgyNq3RwLA7tKi4-_-T8gdk.roa File: JzDXwgyNq3RwLA7tKi4-_-T8gdk.roa (raw, json) Hash identifier: 7tR3jHKaYMI4YerkPTTCvH1HxUUs2q6psxE9aCLDewY= Subject key identifier: 27:30:D7:C2:0C:8D:AB:74:70:2C:0E:ED:2A:2E:3E:FF:E4:FC:81:D9 Certificate issuer: /CN=3ee770f47fd903925d80ac58e05e076f3baa110b Certificate serial: 019B7910631C1F3354B6A43D7C1641AB0B75 Authority key identifier: 3E:E7:70:F4:7F:D9:03:92:5D:80:AC:58:E0:5E:07:6F:3B:AA:11:0B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/JzDXwgyNq3RwLA7tKi4-_-T8gdk.roa Signing time: Thu 01 Jan 2026 10:17:55 +0000 ROA not before: Thu 01 Jan 2026 10:17:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 62113 IP address blocks: 185.38.24.0/24 maxlen: 24 2a00:fbe0::/32 maxlen: 32 2a00:fbe1::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.crl rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.mft rsync://rpki.ripe.net/repository/DEFAULT/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:63:1c:1f:33:54:b6:a4:3d:7c:16:41:ab:0b:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ee770f47fd903925d80ac58e05e076f3baa110b Validity Not Before: Jan 1 10:17:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2730d7c20c8dab74702c0eed2a2e3effe4fc81d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:04:df:3d:6b:f7:ee:f9:dc:9a:58:24:ae:7c: b6:51:d9:62:46:5d:68:69:ce:c9:77:82:54:d2:1c: 44:5e:75:bd:ec:4e:e2:61:86:f4:44:f0:09:71:7b: e5:61:66:5d:6e:29:32:c9:e7:5f:95:b8:12:4c:2f: 65:a0:bf:20:1d:4f:07:18:13:f5:2a:60:d3:dd:e5: 04:1e:96:34:60:b2:90:9d:f8:a7:52:51:09:c9:5c: 9a:2c:76:c6:03:22:8b:e9:b1:af:d9:32:bc:44:c1: 9f:b4:13:59:d3:a9:ed:9d:44:d2:ee:91:9a:40:6c: 70:c9:06:9d:2e:30:19:01:c1:e5:9a:c6:dc:26:8d: 03:3f:00:ed:9e:5c:71:f6:da:8c:52:0c:ca:c3:87: e6:38:f8:75:8a:3e:77:66:76:43:d5:8e:38:86:97: 97:f3:0e:ef:80:b2:0a:e4:3f:4e:54:cb:35:d4:73: c0:d2:44:9f:cd:3d:cd:79:5b:31:16:41:56:7d:96: e6:ef:d6:91:40:97:32:98:b9:ca:99:5b:cc:33:54: 53:e7:37:9a:04:db:ec:f4:46:74:9a:8f:fe:69:a4: d1:9a:be:4a:b5:a0:55:47:4b:d1:41:77:2b:4d:d1: 0b:14:f8:61:98:d8:9b:d9:9f:df:2e:21:ff:ed:64: d4:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:30:D7:C2:0C:8D:AB:74:70:2C:0E:ED:2A:2E:3E:FF:E4:FC:81:D9 X509v3 Authority Key Identifier: keyid:3E:E7:70:F4:7F:D9:03:92:5D:80:AC:58:E0:5E:07:6F:3B:AA:11:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/JzDXwgyNq3RwLA7tKi4-_-T8gdk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.38.24.0/24 IPv6: 2a00:fbe0::/31 Signature Algorithm: sha256WithRSAEncryption b3:91:4f:af:7a:d9:5b:aa:cc:3e:ac:82:61:89:f9:ec:ff:6f: 96:f7:8b:f7:32:47:c2:3e:1d:ec:06:f6:d4:97:05:8d:9f:11: 8e:7b:6f:ee:2c:79:0d:bb:7d:17:ab:c2:d0:0b:c9:66:0a:a3: 83:70:f9:1b:47:60:29:00:13:30:a3:e1:a6:6a:66:67:7a:cb: 30:66:60:b4:ea:76:8d:ca:fa:5d:27:e6:bc:5a:50:36:c5:ad: 66:11:29:1a:47:3d:04:84:50:13:5b:db:4f:ba:98:4c:74:ab: d4:cf:0b:aa:c4:cc:57:2a:f2:a3:f9:be:84:b2:5f:ed:86:e8: b1:29:cc:81:6d:f9:49:c7:cd:92:4b:97:78:0e:83:37:c7:f8: f5:db:67:da:40:ae:24:3c:a1:60:6f:70:01:91:e5:db:78:66: 87:61:ed:7d:44:5f:fe:11:65:db:0c:e9:8e:03:4f:93:60:de: 2e:dc:83:28:aa:53:1b:78:3a:c1:d7:aa:71:7f:d5:62:ad:9a: 31:43:14:a9:76:0b:2e:52:42:08:de:fc:e6:86:2e:d6:ce:48: 3e:3e:18:19:0b:bd:ad:52:cb:48:7a:43:5f:a2:d0:d8:cc:43: c3:af:84:c4:1c:6a:87:98:4c:2c:ff:81:22:a8:b3:8d:33:f2: e9:dc:49:75 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5EGMcHzNUtqQ9fBZBqwt1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlZTc3MGY0N2ZkOTAzOTI1ZDgwYWM1OGUwNWUwNzZmM2Jh YTExMGIwHhcNMjYwMTAxMTAxNzU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNzMwZDdjMjBjOGRhYjc0NzAyYzBlZWQyYTJlM2VmZmU0ZmM4MWQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxwTfPWv37vncmlgkrny2UdliRl1o ac7Jd4JU0hxEXnW97E7iYYb0RPAJcXvlYWZdbikyyedflbgSTC9loL8gHU8HGBP1 KmDT3eUEHpY0YLKQnfinUlEJyVyaLHbGAyKL6bGv2TK8RMGftBNZ06ntnUTS7pGa QGxwyQadLjAZAcHlmsbcJo0DPwDtnlxx9tqMUgzKw4fmOPh1ij53ZnZD1Y44hpeX 8w7vgLIK5D9OVMs11HPA0kSfzT3NeVsxFkFWfZbm79aRQJcymLnKmVvMM1RT5zea BNvs9EZ0mo/+aaTRmr5KtaBVR0vRQXcrTdELFPhhmNib2Z/fLiH/7WTUkQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFCcw18IMjat0cCwO7SouPv/k/IHZMB8GA1UdIwQY MBaAFD7ncPR/2QOSXYCsWOBeB287qhELMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUHVkdzlIX1pBNUpkZ0t4WTRGNEhienVxRVFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi80MzQzNDQtMzIzZS00OGY4LWFkZTIt NjI0ZjgzNjgyMTY5LzEvSnpEWHdneU5xM1J3TEE3dEtpNC1fLVQ4Z2RrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi80MzQzNDQtMzIzZS00OGY4LWFkZTItNjI0ZjgzNjgyMTY5 LzEvUHVkdzlIX1pBNUpkZ0t4WTRGNEhienVxRVFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuSYYMA0E AgACMAcDBQEqAPvgMA0GCSqGSIb3DQEBCwUAA4IBAQCzkU+vetlbqsw+rIJhifns /2+W94v3MkfCPh3sBvbUlwWNnxGOe2/uLHkNu30Xq8LQC8lmCqODcPkbR2ApABMw o+GmamZnesswZmC06naNyvpdJ+a8WlA2xa1mESkaRz0EhFATW9tPuphMdKvUzwuq xMxXKvKj+b6Esl/thuixKcyBbflJx82SS5d4DoM3x/j122faQK4kPKFgb3ABkeXb eGaHYe19RF/+EWXbDOmOA0+TYN4u3IMoqlMbeDrB16pxf9VirZoxQxSpdgsuUkII 3vzmhi7Wzkg+PhgZC72tUstIekNfotDYzEPDr4TEHGqHmEws/4EiqLONM/Lp3El1 -----END CERTIFICATE-----Generated at Mon Jan 12 01:22:18 2026 by rpki-client