This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/HMy1wxSppt6a370WgOiNsXQlVPk.roa File: HMy1wxSppt6a370WgOiNsXQlVPk.roa (raw, json) Hash identifier: nDhnb6wdJq1bcejnMDwW0L0rGJF02QbJ2F6fT5r9zng= Subject key identifier: 1C:CC:B5:C3:14:A9:A6:DE:9A:DF:BD:16:80:E8:8D:B1:74:25:54:F9 Certificate issuer: /CN=67ce179cbe13ddb14012985a067100ef98a55601 Certificate serial: 019B797EAA809CA46F7D46E767AABF44FFB7 Authority key identifier: 67:CE:17:9C:BE:13:DD:B1:40:12:98:5A:06:71:00:EF:98:A5:56:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z84XnL4T3bFAEphaBnEA75ilVgE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/HMy1wxSppt6a370WgOiNsXQlVPk.roa Signing time: Thu 01 Jan 2026 12:18:22 +0000 ROA not before: Thu 01 Jan 2026 12:18:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213045 IP address blocks: 2a13:1c47:ffd0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/Z84XnL4T3bFAEphaBnEA75ilVgE.crl rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/Z84XnL4T3bFAEphaBnEA75ilVgE.mft rsync://rpki.ripe.net/repository/DEFAULT/Z84XnL4T3bFAEphaBnEA75ilVgE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:aa:80:9c:a4:6f:7d:46:e7:67:aa:bf:44:ff:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67ce179cbe13ddb14012985a067100ef98a55601 Validity Not Before: Jan 1 12:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1cccb5c314a9a6de9adfbd1680e88db1742554f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:fa:72:a7:a4:13:03:d2:dc:0b:92:5c:ad:7e: 9e:0c:e6:33:a2:6c:8a:c2:11:81:1a:4d:55:2a:97: e2:12:a1:38:e2:03:0b:2b:17:ed:ef:40:6c:27:8c: 86:c6:0c:be:20:47:5d:c1:91:ef:0b:d1:d9:f4:6a: 2b:b2:34:49:a6:b3:0b:85:d7:f2:db:bd:d0:cf:72: 05:a1:22:fb:17:9f:7e:a9:d7:cd:aa:35:37:16:20: 1e:26:dd:a8:4f:67:e8:64:3e:1e:b0:bb:b8:7b:d1: dd:70:a9:9a:2e:60:c7:f4:ad:85:34:56:4c:f7:2e: dd:cb:c5:ca:f7:5f:6c:b9:b7:55:57:b5:d2:bc:62: 0d:f1:30:bb:37:55:2e:fd:9a:8d:cd:d4:58:79:5a: 45:19:a2:53:32:2a:9f:63:52:f3:af:85:6d:16:12: 09:05:c5:eb:12:59:3b:84:73:f0:3b:5a:40:f9:77: a7:c3:db:11:ce:f7:72:6f:40:21:c5:46:37:9b:9e: 95:d8:68:4f:e4:39:c7:aa:d8:29:fa:22:24:f1:1d: b7:8d:b7:9c:8c:a4:09:10:9f:f3:0c:fc:1f:07:e7: bb:08:0c:59:18:c5:a3:d9:6a:a8:12:60:c3:53:e6: ea:35:b8:6e:26:53:e2:b3:4f:82:c9:a5:a4:7b:ab: 40:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:CC:B5:C3:14:A9:A6:DE:9A:DF:BD:16:80:E8:8D:B1:74:25:54:F9 X509v3 Authority Key Identifier: keyid:67:CE:17:9C:BE:13:DD:B1:40:12:98:5A:06:71:00:EF:98:A5:56:01 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z84XnL4T3bFAEphaBnEA75ilVgE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/HMy1wxSppt6a370WgOiNsXQlVPk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/Z84XnL4T3bFAEphaBnEA75ilVgE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a13:1c47:ffd0::/44 Signature Algorithm: sha256WithRSAEncryption af:2e:90:5c:95:cd:86:f6:01:fe:b0:3e:3d:b7:12:de:e6:2e: d5:e3:4d:c6:04:47:ac:2d:f6:82:68:3d:70:7d:8c:9c:73:ad: 27:b7:2f:b1:72:2a:22:7f:88:37:52:76:f0:15:0a:70:69:0a: 5b:44:f7:ce:9b:26:b7:d5:b6:05:fc:f7:ec:a2:a8:25:61:87: c5:43:02:dc:e4:55:37:cd:65:68:a6:23:89:9a:33:9c:c7:71: bb:37:49:a1:92:90:05:2a:c6:ba:43:e2:f6:64:bd:7b:bf:1f: 76:a7:d9:0a:1c:d2:9e:a0:6a:7a:45:35:ef:84:97:d7:41:76: 1d:00:35:45:88:83:81:b6:97:2e:10:d2:00:cd:29:5c:fa:69: e9:46:e4:31:99:db:a7:1b:58:62:89:df:c7:29:06:8a:d1:9b: c5:bf:2f:2b:72:6b:09:05:74:a7:99:5a:1f:23:53:ed:64:8a: 8c:96:0c:8a:2c:eb:be:bc:78:ad:20:e9:9f:82:f9:fe:3d:33: 00:b9:b6:c0:2e:9c:ba:89:28:27:6c:25:ca:79:af:7d:f2:ce: 9b:6d:53:09:cf:25:5f:9f:d5:b4:c2:60:d4:f7:e3:c8:9c:7c: 0e:a2:4e:6b:cd:a3:47:b5:49:e3:b1:59:cd:4f:b1:c9:a6:1a: 4c:8a:bd:3d -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5fqqAnKRvfUbnZ6q/RP+3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3Y2UxNzljYmUxM2RkYjE0MDEyOTg1YTA2NzEwMGVmOThh NTU2MDEwHhcNMjYwMTAxMTIxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxY2NjYjVjMzE0YTlhNmRlOWFkZmJkMTY4MGU4OGRiMTc0MjU1NGY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Ppyp6QTA9LcC5JcrX6eDOYzomyK whGBGk1VKpfiEqE44gMLKxft70BsJ4yGxgy+IEddwZHvC9HZ9GorsjRJprMLhdfy 273Qz3IFoSL7F59+qdfNqjU3FiAeJt2oT2foZD4esLu4e9HdcKmaLmDH9K2FNFZM 9y7dy8XK919subdVV7XSvGIN8TC7N1Uu/ZqNzdRYeVpFGaJTMiqfY1Lzr4VtFhIJ BcXrElk7hHPwO1pA+Xenw9sRzvdyb0AhxUY3m56V2GhP5DnHqtgp+iIk8R23jbec jKQJEJ/zDPwfB+e7CAxZGMWj2WqoEmDDU+bqNbhuJlPis0+CyaWke6tArQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFBzMtcMUqabemt+9FoDojbF0JVT5MB8GA1UdIwQY MBaAFGfOF5y+E92xQBKYWgZxAO+YpVYBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWjg0WG5MNFQzYkZBRXBoYUJuRUE3NWlsVmdFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS81ZDcxOTItYTcxOS00Y2Q3LTk5NGEt NjJjMDFkYzY5Y2NhLzEvSE15MXd4U3BwdDZhMzcwV2dPaU5zWFFsVlBrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82YS81ZDcxOTItYTcxOS00Y2Q3LTk5NGEtNjJjMDFkYzY5Y2Nh LzEvWjg0WG5MNFQzYkZBRXBoYUJuRUE3NWlsVmdFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhMcR//Q MA0GCSqGSIb3DQEBCwUAA4IBAQCvLpBclc2G9gH+sD49txLe5i7V403GBEesLfaC aD1wfYycc60nty+xcioif4g3UnbwFQpwaQpbRPfOmya31bYF/PfsoqglYYfFQwLc 5FU3zWVopiOJmjOcx3G7N0mhkpAFKsa6Q+L2ZL17vx92p9kKHNKeoGp6RTXvhJfX QXYdADVFiIOBtpcuENIAzSlc+mnpRuQxmdunG1hiid/HKQaK0ZvFvy8rcmsJBXSn mVofI1PtZIqMlgyKLOu+vHitIOmfgvn+PTMAubbALpy6iSgnbCXKea998s6bbVMJ zyVfn9W0wmDU9+PInHwOok5rzaNHtUnjsVnNT7HJphpMir09 -----END CERTIFICATE-----Generated at Sun Jan 25 17:40:26 2026 by rpki-client