This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/81ac71-0f2a-4861-959b-afa4fd3506d0/1/Hrj27dyCNZvY-lKB2ef8Mo4G6tA.roa File: Hrj27dyCNZvY-lKB2ef8Mo4G6tA.roa (raw, json) Hash identifier: ywCaGFxrJHREbSiyJrKj2GAkS5PQJLvo8VTO1MR9hlc= Subject key identifier: 1E:B8:F6:ED:DC:82:35:9B:D8:FA:52:81:D9:E7:FC:32:8E:06:EA:D0 Certificate issuer: /CN=4603c656c197461a49caa1ffd720d18beeac8076 Certificate serial: 019B7F810199F45D074E216D3A833B071718 Authority key identifier: 46:03:C6:56:C1:97:46:1A:49:CA:A1:FF:D7:20:D1:8B:EE:AC:80:76 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RgPGVsGXRhpJyqH_1yDRi-6sgHY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/81ac71-0f2a-4861-959b-afa4fd3506d0/1/Hrj27dyCNZvY-lKB2ef8Mo4G6tA.roa Signing time: Fri 02 Jan 2026 16:18:39 +0000 ROA not before: Fri 02 Jan 2026 16:18:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214457 IP address blocks: 2001:3200::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/81ac71-0f2a-4861-959b-afa4fd3506d0/1/RgPGVsGXRhpJyqH_1yDRi-6sgHY.crl rsync://rpki.ripe.net/repository/DEFAULT/37/81ac71-0f2a-4861-959b-afa4fd3506d0/1/RgPGVsGXRhpJyqH_1yDRi-6sgHY.mft rsync://rpki.ripe.net/repository/DEFAULT/RgPGVsGXRhpJyqH_1yDRi-6sgHY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:81:01:99:f4:5d:07:4e:21:6d:3a:83:3b:07:17:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4603c656c197461a49caa1ffd720d18beeac8076 Validity Not Before: Jan 2 16:18:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1eb8f6eddc82359bd8fa5281d9e7fc328e06ead0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f5:bc:d2:37:7b:8d:2d:ea:37:33:11:2b:4f: c9:1f:8b:93:b0:1b:91:b2:e5:84:ad:29:53:6a:f1: d0:92:04:c2:c3:24:bd:50:c5:10:9f:90:16:25:5b: 2b:ab:f4:ac:0a:68:82:6c:0c:e0:c1:f4:12:6c:ce: 89:e2:ab:a4:dd:38:92:90:ee:be:95:88:f5:1a:d1: d1:9f:0f:70:b4:04:bc:00:42:cf:57:6c:51:26:fd: 69:6f:c9:fd:06:f6:7e:79:32:46:a2:28:5d:c9:50: f1:b1:bc:e4:db:76:1c:73:d9:05:01:96:3d:0b:27: 7d:0f:85:a2:32:22:4a:c3:6d:79:e5:5d:c3:46:27: d7:72:a5:9c:d6:5b:4d:db:a8:30:11:e9:6e:30:0c: c0:c1:94:92:03:d8:09:6c:f9:b3:14:78:72:c3:2a: 3b:cc:85:b3:bf:0d:a8:4f:5e:80:ca:ca:36:bb:8e: 4c:7c:e0:91:99:9d:5a:f3:2c:bb:5a:79:9e:4e:c3: db:74:18:ec:14:bc:9d:d7:58:c8:9d:10:a5:d7:92: 78:a4:30:ad:3c:fc:43:8c:44:46:30:bc:5a:23:55: 4a:9d:de:45:9a:d9:c8:86:a2:8a:b2:45:86:08:15: 35:e5:54:99:2f:f3:02:03:c8:03:67:51:d1:cf:ae: f6:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:B8:F6:ED:DC:82:35:9B:D8:FA:52:81:D9:E7:FC:32:8E:06:EA:D0 X509v3 Authority Key Identifier: keyid:46:03:C6:56:C1:97:46:1A:49:CA:A1:FF:D7:20:D1:8B:EE:AC:80:76 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RgPGVsGXRhpJyqH_1yDRi-6sgHY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/81ac71-0f2a-4861-959b-afa4fd3506d0/1/Hrj27dyCNZvY-lKB2ef8Mo4G6tA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/81ac71-0f2a-4861-959b-afa4fd3506d0/1/RgPGVsGXRhpJyqH_1yDRi-6sgHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:3200::/29 Signature Algorithm: sha256WithRSAEncryption 4c:90:b6:b2:1f:50:6f:b5:a7:e6:40:ab:2a:57:6a:7e:1e:50: 36:95:12:c7:62:a4:3f:77:ec:ec:1d:77:99:5e:4c:2f:44:a4: 77:24:7d:31:9c:20:c5:de:c2:5a:ef:06:ea:83:f4:01:ce:fd: 2f:0e:03:d1:00:d4:51:37:13:e3:44:70:91:bb:59:70:ce:38: f9:fb:86:81:91:b4:ce:ea:c9:99:da:8b:cc:e5:76:50:9d:c6: 75:e3:cd:06:19:60:9e:0a:fe:0b:ea:fc:07:7f:77:eb:0e:13: bd:8b:71:83:60:75:16:68:87:45:90:fd:71:b3:69:1a:82:fc: aa:d9:88:f6:d7:49:44:cf:09:9c:f8:b5:09:c5:9e:21:74:62: ed:e2:2f:73:26:70:97:ee:88:93:61:71:42:72:65:af:f1:9c: 74:b1:16:37:e2:c8:11:cf:d9:9a:71:ab:45:f9:3c:fc:f0:d3: 4c:51:72:e2:83:18:0e:4d:7a:f4:56:ad:9b:fd:fb:a7:8b:1f: 19:8a:2d:4d:9c:38:33:4b:98:b1:68:5b:c7:34:1c:00:90:ad: 41:f5:24:38:00:0f:ba:e9:0e:b7:f2:eb:94:bb:39:3a:c3:d2: 7a:2d:2a:3b:e6:c9:ff:d5:cd:41:03:84:1d:f2:44:c3:51:51: 4c:cc:b9:69 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt/gQGZ9F0HTiFtOoM7BxcYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ2MDNjNjU2YzE5NzQ2MWE0OWNhYTFmZmQ3MjBkMThiZWVh YzgwNzYwHhcNMjYwMTAyMTYxODM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZWI4ZjZlZGRjODIzNTliZDhmYTUyODFkOWU3ZmMzMjhlMDZlYWQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwvW80jd7jS3qNzMRK0/JH4uTsBuR suWErSlTavHQkgTCwyS9UMUQn5AWJVsrq/SsCmiCbAzgwfQSbM6J4quk3TiSkO6+ lYj1GtHRnw9wtAS8AELPV2xRJv1pb8n9BvZ+eTJGoihdyVDxsbzk23Ycc9kFAZY9 Cyd9D4WiMiJKw2155V3DRifXcqWc1ltN26gwEeluMAzAwZSSA9gJbPmzFHhywyo7 zIWzvw2oT16Ayso2u45MfOCRmZ1a8yy7WnmeTsPbdBjsFLyd11jInRCl15J4pDCt PPxDjERGMLxaI1VKnd5FmtnIhqKKskWGCBU15VSZL/MCA8gDZ1HRz672XQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFB649u3cgjWb2PpSgdnn/DKOBurQMB8GA1UdIwQY MBaAFEYDxlbBl0YaScqh/9cg0YvurIB2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUmdQR1ZzR1hSaHBKeXFIXzF5RFJpLTZzZ0hZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy84MWFjNzEtMGYyYS00ODYxLTk1OWIt YWZhNGZkMzUwNmQwLzEvSHJqMjdkeUNOWnZZLWxLQjJlZjhNbzRHNnRBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy84MWFjNzEtMGYyYS00ODYxLTk1OWItYWZhNGZkMzUwNmQw LzEvUmdQR1ZzR1hSaHBKeXFIXzF5RFJpLTZzZ0hZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDIAEyADAN BgkqhkiG9w0BAQsFAAOCAQEATJC2sh9Qb7Wn5kCrKldqfh5QNpUSx2KkP3fs7B13 mV5ML0SkdyR9MZwgxd7CWu8G6oP0Ac79Lw4D0QDUUTcT40RwkbtZcM44+fuGgZG0 zurJmdqLzOV2UJ3GdePNBhlgngr+C+r8B3936w4TvYtxg2B1FmiHRZD9cbNpGoL8 qtmI9tdJRM8JnPi1CcWeIXRi7eIvcyZwl+6Ik2FxQnJlr/GcdLEWN+LIEc/ZmnGr Rfk8/PDTTFFy4oMYDk169Fatm/37p4sfGYotTZw4M0uYsWhbxzQcAJCtQfUkOAAP uukOt/LrlLs5OsPSei0qO+bJ/9XNQQOEHfJEw1FRTMy5aQ== -----END CERTIFICATE-----Generated at Mon Jan 26 02:08:04 2026 by rpki-client