This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/22581e-fe8c-4fb8-9585-9880f04db94a/1/HJtkjvlBva8uqcL0XUNpqigQG9s.roa File: HJtkjvlBva8uqcL0XUNpqigQG9s.roa (raw, json) Hash identifier: WkXmQkgs5y2TV+m/F6AQDR1j74heyCTTdW3y6tsfBHk= Subject key identifier: 1C:9B:64:8E:F9:41:BD:AF:2E:A9:C2:F4:5D:43:69:AA:28:10:1B:DB Certificate issuer: /CN=62beaa57c67aeb5bafd99793ab4846850a796c28 Certificate serial: 019B7D5AC27F8966DD43C5BBA913CC48F4FF Authority key identifier: 62:BE:AA:57:C6:7A:EB:5B:AF:D9:97:93:AB:48:46:85:0A:79:6C:28 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yr6qV8Z661uv2ZeTq0hGhQp5bCg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/22581e-fe8c-4fb8-9585-9880f04db94a/1/HJtkjvlBva8uqcL0XUNpqigQG9s.roa Signing time: Fri 02 Jan 2026 06:17:38 +0000 ROA not before: Fri 02 Jan 2026 06:17:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58192 IP address blocks: 91.239.189.0/24 maxlen: 24 2a13:d000::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/22581e-fe8c-4fb8-9585-9880f04db94a/1/Yr6qV8Z661uv2ZeTq0hGhQp5bCg.crl rsync://rpki.ripe.net/repository/DEFAULT/3c/22581e-fe8c-4fb8-9585-9880f04db94a/1/Yr6qV8Z661uv2ZeTq0hGhQp5bCg.mft rsync://rpki.ripe.net/repository/DEFAULT/Yr6qV8Z661uv2ZeTq0hGhQp5bCg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 12:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5a:c2:7f:89:66:dd:43:c5:bb:a9:13:cc:48:f4:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62beaa57c67aeb5bafd99793ab4846850a796c28 Validity Not Before: Jan 2 06:17:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1c9b648ef941bdaf2ea9c2f45d4369aa28101bdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:18:f8:e6:df:c9:53:e7:9a:18:32:f8:99:53: 2b:3b:8f:eb:b7:c8:ad:88:b9:a9:66:e8:82:7d:98: 54:e4:a1:55:a4:2f:22:7b:ce:cc:41:42:c7:a6:a5: fe:ff:97:5c:e0:8e:83:8f:ac:c1:35:33:52:34:8f: 80:73:1f:35:60:27:7c:75:42:90:f0:e2:a2:60:da: 4c:1f:48:fb:27:29:be:d7:a9:0b:61:92:3a:35:aa: c4:d4:a5:84:ee:d4:ef:ae:c8:58:d7:75:a8:ca:b5: e0:43:27:de:4a:e6:59:13:2b:2f:82:c4:23:3f:0f: d8:49:e3:25:28:06:40:b6:94:34:aa:af:e1:d2:00: 22:93:9d:4a:a4:eb:d0:c0:7d:bb:60:87:14:7d:27: da:63:5d:5d:85:87:d6:71:d7:44:df:38:bf:1b:b6: c7:ff:25:e1:cb:28:9c:cf:06:ab:bf:e8:e3:12:ac: dc:3e:a6:ae:40:f8:88:6c:ff:92:d0:08:39:ee:f0: 41:89:e3:8e:e2:4b:29:c8:bf:b8:5e:a2:36:f6:c9: 09:5c:bc:0c:7d:71:c0:b4:96:ff:d1:18:1a:0b:f9: 9f:72:ac:a2:4e:4b:d7:80:c7:18:f9:b1:8a:42:46: 25:45:a9:f5:06:a0:ef:5b:b0:2a:59:f5:aa:2b:a4: e0:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:9B:64:8E:F9:41:BD:AF:2E:A9:C2:F4:5D:43:69:AA:28:10:1B:DB X509v3 Authority Key Identifier: keyid:62:BE:AA:57:C6:7A:EB:5B:AF:D9:97:93:AB:48:46:85:0A:79:6C:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yr6qV8Z661uv2ZeTq0hGhQp5bCg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/22581e-fe8c-4fb8-9585-9880f04db94a/1/HJtkjvlBva8uqcL0XUNpqigQG9s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/22581e-fe8c-4fb8-9585-9880f04db94a/1/Yr6qV8Z661uv2ZeTq0hGhQp5bCg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.239.189.0/24 IPv6: 2a13:d000::/29 Signature Algorithm: sha256WithRSAEncryption 0b:e2:53:71:a5:18:f6:60:5a:55:cf:e6:f3:2d:82:96:24:dd: 1d:c6:4b:a4:d3:e1:8c:ca:8b:33:bd:9e:0c:20:0c:31:f3:13: 74:df:b2:1a:94:e4:96:b2:8a:e9:13:45:54:66:91:ca:48:39: 00:fc:24:3f:8e:d8:2e:02:18:38:da:cf:65:5f:3d:ff:05:60: 34:e2:19:fd:3e:3d:ac:3a:f7:3a:8a:06:14:27:31:4f:fa:5d: d9:76:43:50:69:07:8c:b5:b7:5d:a6:85:26:80:58:c0:15:c4: 23:a7:d4:4e:99:26:9e:a5:61:95:87:94:d2:f9:2d:53:80:6b: a0:34:76:89:78:6c:08:2c:84:fa:2c:76:bc:cb:3b:9b:55:35: 63:2b:a4:d6:ee:af:bf:b1:71:f0:85:13:56:7b:77:f1:c2:a1: 87:70:0d:f9:47:6b:f8:9f:54:e2:d4:74:94:dd:0f:eb:b4:68: 49:eb:3e:83:e5:70:e3:4a:66:af:f8:38:95:bc:95:b8:68:5f: 80:5e:62:6c:f0:61:e0:9a:f1:f1:1e:0a:fc:3c:8b:d5:1f:8f: 28:2d:8e:75:57:68:ff:9c:e8:44:bd:1a:60:d1:cc:8a:db:c6: d6:bc:5d:a8:cb:84:26:ff:40:e1:1d:cd:89:a6:63:5f:97:60: 20:ca:8f:3d -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt9WsJ/iWbdQ8W7qRPMSPT/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyYmVhYTU3YzY3YWViNWJhZmQ5OTc5M2FiNDg0Njg1MGE3 OTZjMjgwHhcNMjYwMTAyMDYxNzM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYzliNjQ4ZWY5NDFiZGFmMmVhOWMyZjQ1ZDQzNjlhYTI4MTAxYmRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwBj45t/JU+eaGDL4mVMrO4/rt8it iLmpZuiCfZhU5KFVpC8ie87MQULHpqX+/5dc4I6Dj6zBNTNSNI+Acx81YCd8dUKQ 8OKiYNpMH0j7Jym+16kLYZI6NarE1KWE7tTvrshY13WoyrXgQyfeSuZZEysvgsQj Pw/YSeMlKAZAtpQ0qq/h0gAik51KpOvQwH27YIcUfSfaY11dhYfWcddE3zi/G7bH /yXhyyiczwarv+jjEqzcPqauQPiIbP+S0Ag57vBBieOO4kspyL+4XqI29skJXLwM fXHAtJb/0RgaC/mfcqyiTkvXgMcY+bGKQkYlRan1BqDvW7AqWfWqK6TgNwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFBybZI75Qb2vLqnC9F1DaaooEBvbMB8GA1UdIwQY MBaAFGK+qlfGeutbr9mXk6tIRoUKeWwoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWXI2cVY4WjY2MXV2MlplVHEwaEdoUXA1YkNnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy8yMjU4MWUtZmU4Yy00ZmI4LTk1ODUt OTg4MGYwNGRiOTRhLzEvSEp0a2p2bEJ2YTh1cWNMMFhVTnBxaWdRRzlzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYy8yMjU4MWUtZmU4Yy00ZmI4LTk1ODUtOTg4MGYwNGRiOTRh LzEvWXI2cVY4WjY2MXV2MlplVHEwaEdoUXA1YkNnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAW++9MA0E AgACMAcDBQMqE9AAMA0GCSqGSIb3DQEBCwUAA4IBAQAL4lNxpRj2YFpVz+bzLYKW JN0dxkuk0+GMyoszvZ4MIAwx8xN037IalOSWsorpE0VUZpHKSDkA/CQ/jtguAhg4 2s9lXz3/BWA04hn9Pj2sOvc6igYUJzFP+l3ZdkNQaQeMtbddpoUmgFjAFcQjp9RO mSaepWGVh5TS+S1TgGugNHaJeGwILIT6LHa8yzubVTVjK6TW7q+/sXHwhRNWe3fx wqGHcA35R2v4n1Ti1HSU3Q/rtGhJ6z6D5XDjSmav+DiVvJW4aF+AXmJs8GHgmvHx Hgr8PIvVH48oLY51V2j/nOhEvRpg0cyK28bWvF2oy4Qm/0DhHc2JpmNfl2Agyo89 -----END CERTIFICATE-----Generated at Sun Jan 25 21:39:39 2026 by rpki-client