This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/9e22a2-9365-4956-8e66-ce4f25ace252/1/jBgP0ZxKjo0YSzqd_TK2OMNM1yA.roa File: jBgP0ZxKjo0YSzqd_TK2OMNM1yA.roa (raw, json) Hash identifier: NPXmvQHxJlW40kzBTMvnmr6Di/9Jvg0kb9ABW5Mzs2U= Subject key identifier: 8C:18:0F:D1:9C:4A:8E:8D:18:4B:3A:9D:FD:32:B6:38:C3:4C:D7:20 Certificate issuer: /CN=27ce1e9a6522616ab30b0f123e09d305a82304af Certificate serial: 019B7A5A984A24E50454CF3AB72A9A7B4A71 Authority key identifier: 27:CE:1E:9A:65:22:61:6A:B3:0B:0F:12:3E:09:D3:05:A8:23:04:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J84emmUiYWqzCw8SPgnTBagjBK8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/9e22a2-9365-4956-8e66-ce4f25ace252/1/jBgP0ZxKjo0YSzqd_TK2OMNM1yA.roa Signing time: Thu 01 Jan 2026 16:18:36 +0000 ROA not before: Thu 01 Jan 2026 16:18:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39739 IP address blocks: 37.77.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/9e22a2-9365-4956-8e66-ce4f25ace252/1/J84emmUiYWqzCw8SPgnTBagjBK8.crl rsync://rpki.ripe.net/repository/DEFAULT/f0/9e22a2-9365-4956-8e66-ce4f25ace252/1/J84emmUiYWqzCw8SPgnTBagjBK8.mft rsync://rpki.ripe.net/repository/DEFAULT/J84emmUiYWqzCw8SPgnTBagjBK8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 19:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:98:4a:24:e5:04:54:cf:3a:b7:2a:9a:7b:4a:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27ce1e9a6522616ab30b0f123e09d305a82304af Validity Not Before: Jan 1 16:18:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8c180fd19c4a8e8d184b3a9dfd32b638c34cd720 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:70:28:5f:e3:c0:eb:de:a5:9a:f5:02:e9:a4: c6:a6:6d:4a:84:7e:72:65:dc:fd:c7:9a:8a:dc:37: 6d:01:4a:b7:c2:72:55:1d:03:14:6b:3e:6b:af:03: 07:89:12:b7:bc:08:c6:af:38:0c:9f:3f:48:20:61: 51:ea:8f:d8:b2:c2:34:e8:a1:2d:dd:5a:7a:ea:e3: f9:28:83:2c:5a:17:fc:2e:a5:b4:2a:79:99:6c:f9: 88:1d:62:02:04:fe:db:ff:0d:73:88:41:d2:d1:65: 68:4b:5f:aa:4f:1d:f9:24:eb:fe:66:73:6f:95:57: a3:84:03:84:c8:ad:55:f5:d0:e9:77:df:b2:e1:e4: db:64:dc:45:91:4c:49:c0:44:84:c3:a3:cb:3b:6b: d0:6c:09:73:43:f1:02:10:77:9e:e5:a8:24:92:fb: 48:ee:35:32:87:83:a7:16:12:8a:4b:56:c4:c7:b2: cc:7d:56:52:ab:1e:99:47:81:9c:7b:8a:3b:13:bf: 45:b9:32:ae:d9:4b:53:28:aa:8f:79:e1:1f:b9:b8: de:4d:b6:df:ee:90:52:73:85:40:e5:b9:47:bd:2f: 16:37:68:db:64:dd:ca:97:7d:88:10:3d:98:90:df: 01:a4:16:4b:12:e2:dd:4b:9a:8b:bc:e9:03:aa:8b: c7:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:18:0F:D1:9C:4A:8E:8D:18:4B:3A:9D:FD:32:B6:38:C3:4C:D7:20 X509v3 Authority Key Identifier: keyid:27:CE:1E:9A:65:22:61:6A:B3:0B:0F:12:3E:09:D3:05:A8:23:04:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J84emmUiYWqzCw8SPgnTBagjBK8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/9e22a2-9365-4956-8e66-ce4f25ace252/1/jBgP0ZxKjo0YSzqd_TK2OMNM1yA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/9e22a2-9365-4956-8e66-ce4f25ace252/1/J84emmUiYWqzCw8SPgnTBagjBK8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.77.103.0/24 Signature Algorithm: sha256WithRSAEncryption 25:7e:ac:10:dc:8e:4c:96:25:bb:d6:8a:93:75:b5:28:0a:bb: 67:96:61:36:9b:e3:e9:c3:57:00:56:af:41:18:c8:9d:19:54: d9:1f:29:f3:f9:21:0c:f0:a4:e6:fc:07:a7:51:20:5f:87:31: fb:06:fa:14:04:a5:d1:23:6b:f3:52:3f:b2:9a:3f:75:3e:3f: 5e:81:f7:93:16:0c:99:9b:dc:67:ac:f4:39:08:4e:df:07:5d: c0:63:02:0a:57:53:d5:81:28:8f:2e:b4:02:ad:e4:be:5c:74: 6c:f4:2a:f0:a3:7b:82:fb:19:70:9b:e3:80:94:77:f7:64:5c: eb:e5:36:33:8c:ca:01:39:5d:a1:89:a6:32:d0:cd:88:04:f9: 78:99:d6:03:1a:41:fe:5a:17:c7:18:52:31:e6:f9:7f:a0:54: 90:65:97:f6:c8:f1:8a:01:8f:74:37:c9:e9:5c:ae:4c:46:21: 76:74:05:b1:99:02:9b:4b:48:a9:90:a1:c4:8b:3b:8c:42:aa: 28:db:2d:53:33:1d:69:1f:aa:05:9f:e7:be:c8:59:1d:35:54: 59:7f:b5:a3:37:64:83:0c:46:5b:a0:08:e3:2e:c7:4f:f9:e1: 67:3a:03:cf:12:a5:a4:e1:27:6e:96:68:e9:81:a5:90:81:e7: dc:a6:18:f2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6WphKJOUEVM86tyqae0pxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI3Y2UxZTlhNjUyMjYxNmFiMzBiMGYxMjNlMDlkMzA1YTgy MzA0YWYwHhcNMjYwMTAxMTYxODM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YzE4MGZkMTljNGE4ZThkMTg0YjNhOWRmZDMyYjYzOGMzNGNkNzIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0HAoX+PA696lmvUC6aTGpm1KhH5y Zdz9x5qK3DdtAUq3wnJVHQMUaz5rrwMHiRK3vAjGrzgMnz9IIGFR6o/YssI06KEt 3Vp66uP5KIMsWhf8LqW0KnmZbPmIHWICBP7b/w1ziEHS0WVoS1+qTx35JOv+ZnNv lVejhAOEyK1V9dDpd9+y4eTbZNxFkUxJwESEw6PLO2vQbAlzQ/ECEHee5agkkvtI 7jUyh4OnFhKKS1bEx7LMfVZSqx6ZR4Gce4o7E79FuTKu2UtTKKqPeeEfubjeTbbf 7pBSc4VA5blHvS8WN2jbZN3Kl32IED2YkN8BpBZLEuLdS5qLvOkDqovH+wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIwYD9GcSo6NGEs6nf0ytjjDTNcgMB8GA1UdIwQY MBaAFCfOHpplImFqswsPEj4J0wWoIwSvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSjg0ZW1tVWlZV3F6Q3c4U1BnblRCYWdqQks4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC85ZTIyYTItOTM2NS00OTU2LThlNjYt Y2U0ZjI1YWNlMjUyLzEvakJnUDBaeEtqbzBZU3pxZF9USzJPTU5NMXlBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMC85ZTIyYTItOTM2NS00OTU2LThlNjYtY2U0ZjI1YWNlMjUy LzEvSjg0ZW1tVWlZV3F6Q3c4U1BnblRCYWdqQks4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJU1nMA0G CSqGSIb3DQEBCwUAA4IBAQAlfqwQ3I5MliW71oqTdbUoCrtnlmE2m+Ppw1cAVq9B GMidGVTZHynz+SEM8KTm/AenUSBfhzH7BvoUBKXRI2vzUj+ymj91Pj9egfeTFgyZ m9xnrPQ5CE7fB13AYwIKV1PVgSiPLrQCreS+XHRs9Crwo3uC+xlwm+OAlHf3ZFzr 5TYzjMoBOV2hiaYy0M2IBPl4mdYDGkH+WhfHGFIx5vl/oFSQZZf2yPGKAY90N8np XK5MRiF2dAWxmQKbS0ipkKHEizuMQqoo2y1TMx1pH6oFn+e+yFkdNVRZf7WjN2SD DEZboAjjLsdP+eFnOgPPEqWk4SdulmjpgaWQgefcphjy -----END CERTIFICATE-----Generated at Sat Jan 3 02:31:04 2026 by rpki-client