This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/cef27e-9903-4c3f-807c-128e0053dccf/1/jIIHIKwEzlntc0Vy_0Y1xdxljqM.roa File: jIIHIKwEzlntc0Vy_0Y1xdxljqM.roa (raw, json) Hash identifier: RKwW62ZY+qUagcWd9OQWWCF2AiuU+GfnzsEEdx/g/7w= Subject key identifier: 8C:82:07:20:AC:04:CE:59:ED:73:45:72:FF:46:35:C5:DC:65:8E:A3 Certificate issuer: /CN=1ccf33cf78477313c7382e89b17573ed68588b93 Certificate serial: 019B7758892B6CD5D47B22DBC6F48E950A70 Authority key identifier: 1C:CF:33:CF:78:47:73:13:C7:38:2E:89:B1:75:73:ED:68:58:8B:93 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HM8zz3hHcxPHOC6JsXVz7WhYi5M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/cef27e-9903-4c3f-807c-128e0053dccf/1/jIIHIKwEzlntc0Vy_0Y1xdxljqM.roa Signing time: Thu 01 Jan 2026 02:17:29 +0000 ROA not before: Thu 01 Jan 2026 02:17:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213727 IP address blocks: 2a14:ec00::/48 maxlen: 48 2a14:ec00:1::/48 maxlen: 48 2a14:ec00:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/cef27e-9903-4c3f-807c-128e0053dccf/1/HM8zz3hHcxPHOC6JsXVz7WhYi5M.crl rsync://rpki.ripe.net/repository/DEFAULT/78/cef27e-9903-4c3f-807c-128e0053dccf/1/HM8zz3hHcxPHOC6JsXVz7WhYi5M.mft rsync://rpki.ripe.net/repository/DEFAULT/HM8zz3hHcxPHOC6JsXVz7WhYi5M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 05:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:89:2b:6c:d5:d4:7b:22:db:c6:f4:8e:95:0a:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1ccf33cf78477313c7382e89b17573ed68588b93 Validity Not Before: Jan 1 02:17:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8c820720ac04ce59ed734572ff4635c5dc658ea3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:cd:ff:d1:a3:bd:16:a3:7d:34:c1:cc:4c:47: e6:32:34:7b:53:e4:d0:7f:39:72:37:8a:f1:b4:60: 42:95:e4:b0:1d:8e:75:c2:53:34:d3:82:79:5f:0b: 25:80:37:b3:f8:79:25:3d:58:70:13:ad:5d:b1:a5: fa:40:b2:28:75:05:ca:aa:76:fe:fa:56:25:2f:27: c1:f3:35:53:30:31:b3:af:41:80:9e:c0:b7:74:3a: a9:e1:2e:3a:42:8a:9d:dc:59:1e:cb:0e:be:ab:62: ad:83:e5:c8:70:ef:b5:22:f6:ed:7b:88:32:8c:e2: 1e:d7:9b:08:3a:01:19:2d:0e:dc:fb:36:4f:4c:fe: d8:05:3b:1c:c3:7c:3a:36:2a:e5:ee:df:ae:56:14: 5e:4d:4b:0f:2b:82:78:34:7e:17:82:41:5a:1c:a9: 2d:f5:f0:37:00:50:55:bc:09:dc:48:c0:7e:36:33: f7:31:00:e4:af:50:65:69:18:49:97:1f:ba:8f:38: 87:d2:10:ef:34:ab:dd:34:03:84:78:fe:e1:f9:6d: 36:33:d2:9a:37:06:a6:e7:15:4a:de:41:20:c2:4f: 76:56:47:74:e7:ff:d3:42:b1:e6:9c:43:62:42:69: 4f:e5:52:34:8f:35:98:5c:16:df:50:60:8b:df:09: 67:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:82:07:20:AC:04:CE:59:ED:73:45:72:FF:46:35:C5:DC:65:8E:A3 X509v3 Authority Key Identifier: keyid:1C:CF:33:CF:78:47:73:13:C7:38:2E:89:B1:75:73:ED:68:58:8B:93 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HM8zz3hHcxPHOC6JsXVz7WhYi5M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/cef27e-9903-4c3f-807c-128e0053dccf/1/jIIHIKwEzlntc0Vy_0Y1xdxljqM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/78/cef27e-9903-4c3f-807c-128e0053dccf/1/HM8zz3hHcxPHOC6JsXVz7WhYi5M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:ec00::-2a14:ec00:2:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption b4:ff:b2:a5:fe:45:10:f0:f8:9a:f1:d5:6e:b4:87:e0:c7:17: 85:17:47:6d:f5:1c:d4:8a:3f:48:b8:dc:c7:5a:77:a7:36:d9: 22:2b:db:03:16:c9:c2:20:3e:35:69:9f:96:5a:de:4d:01:d9: b9:92:c5:37:3c:48:ae:db:8c:79:18:e1:fb:76:55:56:e3:be: 5e:d4:b4:03:27:e4:ae:d9:9d:95:10:93:32:94:e0:3d:26:66: 24:8f:e6:dc:82:d4:08:f6:52:5f:c6:31:ab:67:b4:61:3e:86: 27:72:bb:d0:a3:3b:19:5d:37:b7:8f:ed:8b:fc:6e:0c:06:93: 04:10:72:d6:86:e7:f0:4e:78:53:6e:e1:fb:fa:74:f1:c7:fd: 39:bd:a8:a9:37:03:89:db:1e:da:25:5a:b0:6c:ef:0f:2c:2c: ea:e2:da:c3:97:eb:a0:20:b0:e9:7d:6a:4b:c1:61:76:91:53: de:4b:13:e4:e1:bb:ae:6b:72:f0:34:a3:25:d9:95:d4:41:c6: 2b:5f:92:00:4d:6f:b3:4f:db:91:bd:2d:fe:25:27:8e:3a:98: 5f:24:0f:b1:af:78:35:41:78:77:c6:a3:eb:a0:22:9d:d4:94: 4f:c9:8c:fd:4e:3c:ac:2e:91:17:3c:06:26:e0:38:dd:44:75: 89:7c:e1:a4 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgISAZt3WIkrbNXUeyLbxvSOlQpwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjY2YzM2NmNzg0NzczMTNjNzM4MmU4OWIxNzU3M2VkNjg1 ODhiOTMwHhcNMjYwMTAxMDIxNzI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YzgyMDcyMGFjMDRjZTU5ZWQ3MzQ1NzJmZjQ2MzVjNWRjNjU4ZWEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvc3/0aO9FqN9NMHMTEfmMjR7U+TQ fzlyN4rxtGBCleSwHY51wlM004J5XwslgDez+HklPVhwE61dsaX6QLIodQXKqnb+ +lYlLyfB8zVTMDGzr0GAnsC3dDqp4S46Qoqd3Fkeyw6+q2Ktg+XIcO+1Ivbte4gy jOIe15sIOgEZLQ7c+zZPTP7YBTscw3w6Nirl7t+uVhReTUsPK4J4NH4XgkFaHKkt 9fA3AFBVvAncSMB+NjP3MQDkr1BlaRhJlx+6jziH0hDvNKvdNAOEeP7h+W02M9Ka Nwam5xVK3kEgwk92Vkd05//TQrHmnENiQmlP5VI0jzWYXBbfUGCL3wlnRwIDAQAB o4ICFDCCAhAwHQYDVR0OBBYEFIyCByCsBM5Z7XNFcv9GNcXcZY6jMB8GA1UdIwQY MBaAFBzPM894R3MTxzguibF1c+1oWIuTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSE04enozaEhjeFBIT0M2SnNYVno3V2hZaTVNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC9jZWYyN2UtOTkwMy00YzNmLTgwN2Mt MTI4ZTAwNTNkY2NmLzEvaklJSElLd0V6bG50YzBWeV8wWTF4ZHhsanFNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OC9jZWYyN2UtOTkwMy00YzNmLTgwN2MtMTI4ZTAwNTNkY2Nm LzEvSE04enozaEhjeFBIT0M2SnNYVno3V2hZaTVNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCoGCCsGAQUFBwEHAQH/BBswGTAXBAIAAjARMA8DBAIqFOwD BwAqFOwAAAIwDQYJKoZIhvcNAQELBQADggEBALT/sqX+RRDw+Jrx1W60h+DHF4UX R231HNSKP0i43Mdad6c22SIr2wMWycIgPjVpn5Za3k0B2bmSxTc8SK7bjHkY4ft2 VVbjvl7UtAMn5K7ZnZUQkzKU4D0mZiSP5tyC1Aj2Ul/GMatntGE+hidyu9CjOxld N7eP7Yv8bgwGkwQQctaG5/BOeFNu4fv6dPHH/Tm9qKk3A4nbHtolWrBs7w8sLOri 2sOX66AgsOl9akvBYXaRU95LE+Thu65rcvA0oyXZldRBxitfkgBNb7NP25G9Lf4l J446mF8kD7GveDVBeHfGo+ugIp3UlE/JjP1OPKwukRc8BibgON1EdYl84aQ= -----END CERTIFICATE-----Generated at Mon Jan 26 15:35:27 2026 by rpki-client