This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/XvJvaUc4gaJUToQ76MM1kHVGNGU.roa File: XvJvaUc4gaJUToQ76MM1kHVGNGU.roa (raw, json) Hash identifier: NE/4IfdQ6s0w4LuquGmioWt3Qf9HyX4cZ81awfNlomU= Subject key identifier: 5E:F2:6F:69:47:38:81:A2:54:4E:84:3B:E8:C3:35:90:75:46:34:65 Certificate issuer: /CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a Certificate serial: 019B7C800B287CDBFE55E301FF872168078D Authority key identifier: 1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/XvJvaUc4gaJUToQ76MM1kHVGNGU.roa Signing time: Fri 02 Jan 2026 02:18:44 +0000 ROA not before: Fri 02 Jan 2026 02:18:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3218 IP address blocks: 62.61.16.0/20 maxlen: 20 62.61.16.0/21 maxlen: 21 62.61.24.0/21 maxlen: 21 2a0c:6d00:61::/48 maxlen: 48 2a0c:6d00:85::/48 maxlen: 48 2a0c:6d00:232::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:0b:28:7c:db:fe:55:e3:01:ff:87:21:68:07:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a Validity Not Before: Jan 2 02:18:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5ef26f69473881a2544e843be8c3359075463465 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:17:6a:1a:c1:5f:f4:8a:e0:5c:dc:07:2c:e3: 22:9d:e5:c6:c9:7d:3d:fe:dd:4f:1a:f5:ec:74:11: 32:99:45:2b:04:8f:4c:15:8c:3c:04:ea:22:87:65: 7c:ba:37:47:1f:f6:d0:6b:e8:a8:4e:df:27:10:fa: 97:1f:8c:d4:f2:6f:bf:9b:d3:cc:55:41:51:54:75: 15:f0:26:1f:03:b2:3c:b0:56:cd:4f:2e:36:41:d6: 32:3f:d3:e6:b9:0c:95:62:21:c7:0b:2e:fd:90:fe: 68:c8:37:9f:54:46:c8:bd:76:6c:2c:97:0b:e5:65: 35:68:6a:2b:e4:d0:2b:ec:e2:3d:d6:70:81:23:f5: 4d:ad:1b:80:ec:d9:51:0d:c7:b4:88:91:38:41:9d: 80:ba:1e:de:a8:fd:30:56:03:0b:1f:5d:66:ac:c2: 80:d2:09:2e:4c:13:f7:33:77:ae:70:e4:f4:4c:94: 8f:57:8f:b3:b0:97:a2:a4:92:01:d9:07:58:4a:4b: da:dd:76:99:5e:dc:64:34:3c:c0:1f:f4:1f:18:95: bd:fd:0b:67:36:7b:ac:6c:3f:bb:50:42:a2:9b:9b: 2c:d1:2a:89:f8:48:1c:b9:89:ad:01:f9:5a:5c:f3: 78:f1:08:d7:a3:fd:9b:6d:24:7c:1c:e6:79:01:38: 5c:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:F2:6F:69:47:38:81:A2:54:4E:84:3B:E8:C3:35:90:75:46:34:65 X509v3 Authority Key Identifier: keyid:1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/XvJvaUc4gaJUToQ76MM1kHVGNGU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.61.16.0/20 IPv6: 2a0c:6d00:61::/48 2a0c:6d00:85::/48 2a0c:6d00:232::/48 Signature Algorithm: sha256WithRSAEncryption 26:ab:05:38:07:7b:ff:8e:6d:93:85:3b:8c:1a:03:aa:7e:40: 8c:b9:3b:1d:8d:7e:04:db:6c:d6:0e:90:21:68:f6:66:87:8d: b9:17:39:03:14:3c:db:06:fd:71:d9:57:31:32:b2:2d:f6:6f: 20:d8:40:84:5f:9d:d4:24:1a:77:bf:ed:dd:81:32:79:63:df: 40:86:5c:b6:f4:53:f7:e9:9e:3d:db:96:9d:95:7e:44:cd:00: 51:fd:68:33:3f:0d:59:4f:49:61:a4:41:19:13:e7:10:c7:00: fc:8e:c3:bd:c7:e3:4a:fc:97:06:17:f3:c1:ff:e4:7b:ee:c9: d6:b0:dd:23:2a:9d:bd:01:b2:2a:9b:9b:be:dd:4c:28:c4:dd: e7:3a:2c:0b:63:72:b8:b5:e7:f3:cf:44:0e:de:8e:a2:e7:c5: d5:44:bf:14:35:21:10:a6:dd:b4:0a:a2:89:39:c2:da:57:13: 82:5f:e7:b1:5f:91:5c:61:c0:68:0a:67:1f:17:fb:b0:68:b1: 14:28:47:7f:b5:9f:1e:d7:47:1a:22:1c:65:7b:ec:04:c0:00: 58:49:6e:d1:07:5b:16:e2:3f:6a:eb:c9:ab:ba:17:87:14:ff: 19:ea:77:23:ba:ba:2a:40:dd:43:49:0a:00:7a:4d:df:2b:15: 98:0a:41:63 -----BEGIN CERTIFICATE----- MIIFIDCCBAigAwIBAgISAZt8gAsofNv+VeMB/4chaAeNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkOGU4ZGY1YzAzMTEwNzExOGRhNjFmMjlhYjRmNDE5ZDI5 ZDVhOGEwHhcNMjYwMTAyMDIxODQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZWYyNmY2OTQ3Mzg4MWEyNTQ0ZTg0M2JlOGMzMzU5MDc1NDYzNDY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqRdqGsFf9IrgXNwHLOMineXGyX09 /t1PGvXsdBEymUUrBI9MFYw8BOoih2V8ujdHH/bQa+ioTt8nEPqXH4zU8m+/m9PM VUFRVHUV8CYfA7I8sFbNTy42QdYyP9PmuQyVYiHHCy79kP5oyDefVEbIvXZsLJcL 5WU1aGor5NAr7OI91nCBI/VNrRuA7NlRDce0iJE4QZ2Auh7eqP0wVgMLH11mrMKA 0gkuTBP3M3eucOT0TJSPV4+zsJeipJIB2QdYSkva3XaZXtxkNDzAH/QfGJW9/Qtn NnusbD+7UEKim5ss0SqJ+EgcuYmtAflaXPN48QjXo/2bbSR8HOZ5AThcWwIDAQAB o4ICLDCCAigwHQYDVR0OBBYEFF7yb2lHOIGiVE6EO+jDNZB1RjRlMB8GA1UdIwQY MBaAFB2OjfXAMRBxGNph8pq09BnSnVqKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFk2TjljQXhFSEVZMm1IeW1yVDBHZEtkV29vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS81NWFjNjctOWM3Ni00ODkzLTg5YTUt YjFkMzhiMTNmZGE5LzEvWHZKdmFVYzRnYUpVVG9RNzZNTTFrSFZHTkdVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS81NWFjNjctOWM3Ni00ODkzLTg5YTUtYjFkMzhiMTNmZGE5 LzEvSFk2TjljQXhFSEVZMm1IeW1yVDBHZEtkV29vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEIGCCsGAQUFBwEHAQH/BDMwMTAMBAIAATAGAwQEPj0QMCEE AgACMBsDBwAqDG0AAGEDBwAqDG0AAIUDBwAqDG0AAjIwDQYJKoZIhvcNAQELBQAD ggEBACarBTgHe/+ObZOFO4waA6p+QIy5Ox2NfgTbbNYOkCFo9maHjbkXOQMUPNsG /XHZVzEysi32byDYQIRfndQkGne/7d2BMnlj30CGXLb0U/fpnj3blp2VfkTNAFH9 aDM/DVlPSWGkQRkT5xDHAPyOw73H40r8lwYX88H/5Hvuydaw3SMqnb0Bsiqbm77d TCjE3ec6LAtjcri15/PPRA7ejqLnxdVEvxQ1IRCm3bQKook5wtpXE4Jf57FfkVxh wGgKZx8X+7BosRQoR3+1nx7XRxoiHGV77ATAAFhJbtEHWxbiP2rryau6F4cU/xnq dyO6uipA3UNJCgB6Td8rFZgKQWM= -----END CERTIFICATE-----Generated at Sun Jan 25 23:48:34 2026 by rpki-client