This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/9639b2-a9da-4373-b651-8637abf731f3/1/HICvEHKXiwO8tUnXw2THhezIHTg.roa File: HICvEHKXiwO8tUnXw2THhezIHTg.roa (raw, json) Hash identifier: m259oPsH+iF/F010gAj+3VHPjH7EbopMEIXrwuwaC7A= Subject key identifier: 1C:80:AF:10:72:97:8B:03:BC:B5:49:D7:C3:64:C7:85:EC:C8:1D:38 Certificate issuer: /CN=e8965057f4aa099b0a919f3f0bd4a6488e30c348 Certificate serial: 019B7F15150A3633866A33FF25058A0A8194 Authority key identifier: E8:96:50:57:F4:AA:09:9B:0A:91:9F:3F:0B:D4:A6:48:8E:30:C3:48 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6JZQV_SqCZsKkZ8_C9SmSI4ww0g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/9639b2-a9da-4373-b651-8637abf731f3/1/HICvEHKXiwO8tUnXw2THhezIHTg.roa Signing time: Fri 02 Jan 2026 14:20:46 +0000 ROA not before: Fri 02 Jan 2026 14:20:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1103 IP address blocks: 2001:67c:262c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/9639b2-a9da-4373-b651-8637abf731f3/1/6JZQV_SqCZsKkZ8_C9SmSI4ww0g.crl rsync://rpki.ripe.net/repository/DEFAULT/39/9639b2-a9da-4373-b651-8637abf731f3/1/6JZQV_SqCZsKkZ8_C9SmSI4ww0g.mft rsync://rpki.ripe.net/repository/DEFAULT/6JZQV_SqCZsKkZ8_C9SmSI4ww0g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:15:0a:36:33:86:6a:33:ff:25:05:8a:0a:81:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e8965057f4aa099b0a919f3f0bd4a6488e30c348 Validity Not Before: Jan 2 14:20:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1c80af1072978b03bcb549d7c364c785ecc81d38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:9b:01:0b:d3:4e:6b:af:5d:68:a6:e7:95:49: 04:f1:0a:b0:7a:4a:82:80:1c:0b:86:1e:e9:8d:e1: 4c:a7:5b:74:be:19:e9:73:88:b7:5c:ba:15:cc:24: 45:36:3a:52:7d:4c:73:a5:a9:7a:9e:e6:d4:e0:0d: 81:2e:6d:00:50:e9:73:96:61:be:3b:dc:32:51:b8: ad:71:a0:f6:1e:24:74:fc:6d:67:4a:3f:79:40:b7: d8:20:7a:3b:80:46:e1:09:93:c5:00:a8:43:7a:86: d7:6e:ec:bc:bd:3f:af:a6:0b:19:9e:1f:36:df:25: db:15:b8:6f:d3:83:a1:4f:ec:9b:3e:24:9d:cf:7d: ff:c5:ea:71:82:f6:a3:7b:b0:bf:62:bb:d8:ba:b6: 1f:bf:53:49:f7:5f:34:94:2c:60:15:bb:73:2b:92: 73:a1:0e:d2:c7:20:f0:4d:e8:69:90:db:0c:3e:83: fa:cf:5f:9b:48:ec:41:0a:b7:db:e0:12:d1:de:55: 9e:4e:48:0f:b8:44:d4:cc:99:d0:07:88:07:d2:d3: 31:ff:e2:ed:11:ef:94:eb:34:9f:86:d9:52:0c:fb: 7f:d8:79:3a:c0:97:3f:d1:fd:db:16:3a:4c:71:20: f2:c6:62:b6:8e:3a:b6:d8:2a:a4:c2:f6:62:ff:39: af:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:80:AF:10:72:97:8B:03:BC:B5:49:D7:C3:64:C7:85:EC:C8:1D:38 X509v3 Authority Key Identifier: keyid:E8:96:50:57:F4:AA:09:9B:0A:91:9F:3F:0B:D4:A6:48:8E:30:C3:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6JZQV_SqCZsKkZ8_C9SmSI4ww0g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/9639b2-a9da-4373-b651-8637abf731f3/1/HICvEHKXiwO8tUnXw2THhezIHTg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/39/9639b2-a9da-4373-b651-8637abf731f3/1/6JZQV_SqCZsKkZ8_C9SmSI4ww0g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:262c::/48 Signature Algorithm: sha256WithRSAEncryption aa:ae:e5:9a:a9:15:42:7b:33:4d:4e:a1:73:21:df:de:a1:df: 52:b7:4e:6c:8c:bb:c2:01:3d:59:01:cd:63:39:39:52:98:6b: 0a:08:b9:73:83:16:f2:f6:71:cb:6e:17:f4:b3:4b:d8:42:46: d5:83:6a:30:70:cc:70:f5:ef:9c:1f:d4:37:ac:46:e4:7e:f1: 17:b6:a6:22:f9:ca:ca:15:04:48:28:c7:72:96:13:ac:5d:6b: 73:16:ba:13:40:ef:f5:eb:ae:37:a6:8b:f9:76:6f:a5:c5:cb: 86:a7:8d:74:30:db:ac:71:1a:5b:a3:8a:fc:29:70:2d:40:7f: 9a:93:89:46:fc:d9:62:e7:79:80:8f:53:f5:d9:db:f4:13:75: 71:59:fb:b2:52:03:c9:82:62:df:37:d1:4b:df:35:e0:91:f8: 01:d7:f6:59:53:bd:fc:a9:ca:65:b9:36:10:9d:69:8a:4b:e3: fb:4a:60:88:34:89:19:af:d7:2b:49:5e:f7:e4:5e:64:5c:25: 11:27:5c:ea:e4:17:e2:b8:35:98:bd:a3:2c:c2:49:63:38:ab: bf:f8:e5:60:8a:b4:37:22:af:ba:85:34:e7:14:cf:94:b8:44: e9:d4:c7:e3:c5:0b:b5:75:49:42:cf:96:22:41:7d:e4:c9:50: 8e:0e:ba:79 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/FRUKNjOGajP/JQWKCoGUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU4OTY1MDU3ZjRhYTA5OWIwYTkxOWYzZjBiZDRhNjQ4OGUz MGMzNDgwHhcNMjYwMTAyMTQyMDQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYzgwYWYxMDcyOTc4YjAzYmNiNTQ5ZDdjMzY0Yzc4NWVjYzgxZDM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyZsBC9NOa69daKbnlUkE8QqwekqC gBwLhh7pjeFMp1t0vhnpc4i3XLoVzCRFNjpSfUxzpal6nubU4A2BLm0AUOlzlmG+ O9wyUbitcaD2HiR0/G1nSj95QLfYIHo7gEbhCZPFAKhDeobXbuy8vT+vpgsZnh82 3yXbFbhv04OhT+ybPiSdz33/xepxgvaje7C/YrvYurYfv1NJ9180lCxgFbtzK5Jz oQ7SxyDwTehpkNsMPoP6z1+bSOxBCrfb4BLR3lWeTkgPuETUzJnQB4gH0tMx/+Lt Ee+U6zSfhtlSDPt/2Hk6wJc/0f3bFjpMcSDyxmK2jjq22CqkwvZi/zmvMQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFByArxByl4sDvLVJ18Nkx4XsyB04MB8GA1UdIwQY MBaAFOiWUFf0qgmbCpGfPwvUpkiOMMNIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNkpaUVZfU3FDWnNLa1o4X0M5U21TSTR3dzBnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS85NjM5YjItYTlkYS00MzczLWI2NTEt ODYzN2FiZjczMWYzLzEvSElDdkVIS1hpd084dFVuWHcyVEhoZXpJSFRnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOS85NjM5YjItYTlkYS00MzczLWI2NTEtODYzN2FiZjczMWYz LzEvNkpaUVZfU3FDWnNLa1o4X0M5U21TSTR3dzBnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfCYs MA0GCSqGSIb3DQEBCwUAA4IBAQCqruWaqRVCezNNTqFzId/eod9St05sjLvCAT1Z Ac1jOTlSmGsKCLlzgxby9nHLbhf0s0vYQkbVg2owcMxw9e+cH9Q3rEbkfvEXtqYi +crKFQRIKMdylhOsXWtzFroTQO/16643pov5dm+lxcuGp410MNuscRpbo4r8KXAt QH+ak4lG/Nli53mAj1P12dv0E3VxWfuyUgPJgmLfN9FL3zXgkfgB1/ZZU738qcpl uTYQnWmKS+P7SmCINIkZr9crSV735F5kXCURJ1zq5BfiuDWYvaMswkljOKu/+OVg irQ3Iq+6hTTnFM+UuETp1MfjxQu1dUlCz5YiQX3kyVCODrp5 -----END CERTIFICATE-----Generated at Sun Jan 25 22:28:46 2026 by rpki-client