This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/943d5d-560c-4314-af82-8b8a01bd7414/1/iyhjc5phndkfHPAS-mJffX2oKQ8.roa File: iyhjc5phndkfHPAS-mJffX2oKQ8.roa (raw, json) Hash identifier: An3uftXXHdR16RwQ6iTIEtnf1eCcuaLyKpysOrsvtMU= Subject key identifier: 8B:28:63:73:9A:61:9D:D9:1F:1C:F0:12:FA:62:5F:7D:7D:A8:29:0F Certificate issuer: /CN=1fc4927ab194ae1237fde2d3bef69038893f0dc5 Certificate serial: 019B7EA6A614A33389549D91644EAECA3834 Authority key identifier: 1F:C4:92:7A:B1:94:AE:12:37:FD:E2:D3:BE:F6:90:38:89:3F:0D:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H8SSerGUrhI3_eLTvvaQOIk_DcU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/943d5d-560c-4314-af82-8b8a01bd7414/1/iyhjc5phndkfHPAS-mJffX2oKQ8.roa Signing time: Fri 02 Jan 2026 12:20:09 +0000 ROA not before: Fri 02 Jan 2026 12:20:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3269 IP address blocks: 62.100.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/943d5d-560c-4314-af82-8b8a01bd7414/1/H8SSerGUrhI3_eLTvvaQOIk_DcU.crl rsync://rpki.ripe.net/repository/DEFAULT/59/943d5d-560c-4314-af82-8b8a01bd7414/1/H8SSerGUrhI3_eLTvvaQOIk_DcU.mft rsync://rpki.ripe.net/repository/DEFAULT/H8SSerGUrhI3_eLTvvaQOIk_DcU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:a6:14:a3:33:89:54:9d:91:64:4e:ae:ca:38:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1fc4927ab194ae1237fde2d3bef69038893f0dc5 Validity Not Before: Jan 2 12:20:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8b2863739a619dd91f1cf012fa625f7d7da8290f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:89:fd:5e:3a:86:fe:5c:c7:64:97:f6:07:65: 75:f6:bf:68:e5:1a:9d:b2:41:e4:5f:fb:56:61:34: 98:d3:65:dc:d1:89:52:35:86:77:14:23:db:9a:9e: 2f:8c:c8:14:9c:77:ed:1a:88:b3:5b:d8:50:4f:00: 46:90:39:c4:4e:9a:17:cc:9d:79:fc:28:a2:7e:5b: f1:30:e8:23:cb:ff:17:68:76:15:93:64:99:b6:b9: ad:0f:36:90:bd:2a:a3:45:57:fd:77:2a:6d:c4:f5: 3a:79:1f:05:87:38:78:4f:8d:d2:36:14:f2:56:83: e5:96:35:34:ee:34:18:c6:dc:ab:c2:d7:e4:3a:e7: 5e:16:35:99:2f:7b:21:bb:0c:cf:59:12:7e:76:a6: bd:49:38:96:f1:7e:03:e4:2a:1c:03:1d:5a:bd:84: 58:7d:90:7d:b7:33:ca:7a:92:10:c5:33:88:14:55: ab:4b:bd:59:72:aa:bf:d8:54:af:57:ca:13:6f:cc: 1f:81:35:c1:35:78:88:16:25:0c:80:14:1f:3a:3f: 79:95:d6:b0:c6:ab:29:c8:2a:d8:9b:81:ac:60:ca: 7a:05:47:b9:44:67:06:04:bf:f7:f1:a5:10:3d:c2: c9:39:71:93:92:72:d3:60:f5:34:80:02:69:76:54: 85:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:28:63:73:9A:61:9D:D9:1F:1C:F0:12:FA:62:5F:7D:7D:A8:29:0F X509v3 Authority Key Identifier: keyid:1F:C4:92:7A:B1:94:AE:12:37:FD:E2:D3:BE:F6:90:38:89:3F:0D:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H8SSerGUrhI3_eLTvvaQOIk_DcU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/943d5d-560c-4314-af82-8b8a01bd7414/1/iyhjc5phndkfHPAS-mJffX2oKQ8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/943d5d-560c-4314-af82-8b8a01bd7414/1/H8SSerGUrhI3_eLTvvaQOIk_DcU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.100.90.0/24 Signature Algorithm: sha256WithRSAEncryption 00:73:e3:00:ae:f6:04:b0:3e:6d:af:03:94:76:c9:c4:cb:30: 32:16:87:7b:df:34:0f:41:ce:08:f2:7a:39:54:76:d4:e8:21: 2d:39:a3:86:80:9d:9d:17:95:7d:63:7b:22:fb:de:12:53:49: 87:d1:c3:66:7d:b4:2e:1e:53:25:ec:ea:5a:ea:54:04:a3:b8: 08:3b:9a:77:f9:9a:f9:d4:7f:f4:8c:35:ad:4b:bd:ed:20:5d: 2c:f0:84:8f:90:47:73:0e:4f:a9:fb:37:cf:a6:92:3c:dc:6f: 3d:2a:89:2f:bd:e6:de:7c:f3:50:e2:a6:21:69:17:d2:ea:da: 2c:ef:ab:76:ee:0d:56:74:bc:d4:0a:d4:e6:d4:c1:17:56:3b: ac:8b:64:f8:60:94:a1:00:b3:59:ba:24:f3:e5:e2:be:ba:d6: d1:09:0e:2b:dd:8f:24:f6:11:1f:19:81:41:c4:a7:77:e3:29: cf:f7:bc:fb:bd:cf:fa:64:11:fc:47:f1:cc:2e:bc:ed:43:6b: 19:b9:a8:41:6f:57:8d:2e:a0:3d:d2:53:c3:dd:88:7d:68:15: 09:b9:bc:f2:b7:c6:7a:2b:39:20:a3:c2:c4:22:ec:32:6e:bb: 28:77:c2:52:a9:8a:7f:70:c4:4f:00:0f:15:c5:3d:8c:08:70: 72:a2:aa:81 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+pqYUozOJVJ2RZE6uyjg0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmYzQ5MjdhYjE5NGFlMTIzN2ZkZTJkM2JlZjY5MDM4ODkz ZjBkYzUwHhcNMjYwMTAyMTIyMDA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YjI4NjM3MzlhNjE5ZGQ5MWYxY2YwMTJmYTYyNWY3ZDdkYTgyOTBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA34n9XjqG/lzHZJf2B2V19r9o5Rqd skHkX/tWYTSY02Xc0YlSNYZ3FCPbmp4vjMgUnHftGoizW9hQTwBGkDnETpoXzJ15 /CiiflvxMOgjy/8XaHYVk2SZtrmtDzaQvSqjRVf9dyptxPU6eR8Fhzh4T43SNhTy VoPlljU07jQYxtyrwtfkOudeFjWZL3shuwzPWRJ+dqa9STiW8X4D5CocAx1avYRY fZB9tzPKepIQxTOIFFWrS71Zcqq/2FSvV8oTb8wfgTXBNXiIFiUMgBQfOj95ldaw xqspyCrYm4GsYMp6BUe5RGcGBL/38aUQPcLJOXGTknLTYPU0gAJpdlSFIQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIsoY3OaYZ3ZHxzwEvpiX319qCkPMB8GA1UdIwQY MBaAFB/EknqxlK4SN/3i0772kDiJPw3FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSDhTU2VyR1VyaEkzX2VMVHZ2YVFPSWtfRGNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS85NDNkNWQtNTYwYy00MzE0LWFmODIt OGI4YTAxYmQ3NDE0LzEvaXloamM1cGhuZGtmSFBBUy1tSmZmWDJvS1E4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS85NDNkNWQtNTYwYy00MzE0LWFmODItOGI4YTAxYmQ3NDE0 LzEvSDhTU2VyR1VyaEkzX2VMVHZ2YVFPSWtfRGNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPmRaMA0G CSqGSIb3DQEBCwUAA4IBAQAAc+MArvYEsD5trwOUdsnEyzAyFod73zQPQc4I8no5 VHbU6CEtOaOGgJ2dF5V9Y3si+94SU0mH0cNmfbQuHlMl7Opa6lQEo7gIO5p3+Zr5 1H/0jDWtS73tIF0s8ISPkEdzDk+p+zfPppI83G89KokvvebefPNQ4qYhaRfS6tos 76t27g1WdLzUCtTm1MEXVjusi2T4YJShALNZuiTz5eK+utbRCQ4r3Y8k9hEfGYFB xKd34ynP97z7vc/6ZBH8R/HMLrztQ2sZuahBb1eNLqA90lPD3Yh9aBUJubzyt8Z6 Kzkgo8LEIuwybrsod8JSqYp/cMRPAA8VxT2MCHByoqqB -----END CERTIFICATE-----Generated at Sun Jan 25 22:29:02 2026 by rpki-client