This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/3b9215-9807-481e-9a1e-732272023ec2/1/ICH7QlH8-My8EF2NHU5TQA04o8k.roa File: ICH7QlH8-My8EF2NHU5TQA04o8k.roa (raw, json) Hash identifier: tNyfEnCLQhnnGR56E80TEWwMugIJUGjzMZjCruGv2JM= Subject key identifier: 20:21:FB:42:51:FC:F8:CC:BC:10:5D:8D:1D:4E:53:40:0D:38:A3:C9 Certificate issuer: /CN=62d18b312e353e78fa8ee5f80d36f741cdcde3aa Certificate serial: 019B7E38496801D3430F4F00371EFCAA68BC Authority key identifier: 62:D1:8B:31:2E:35:3E:78:FA:8E:E5:F8:0D:36:F7:41:CD:CD:E3:AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YtGLMS41Pnj6juX4DTb3Qc3N46o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/3b9215-9807-481e-9a1e-732272023ec2/1/ICH7QlH8-My8EF2NHU5TQA04o8k.roa Signing time: Fri 02 Jan 2026 10:19:36 +0000 ROA not before: Fri 02 Jan 2026 10:19:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 64286 IP address blocks: 2a01:e100::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/3b9215-9807-481e-9a1e-732272023ec2/1/YtGLMS41Pnj6juX4DTb3Qc3N46o.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/3b9215-9807-481e-9a1e-732272023ec2/1/YtGLMS41Pnj6juX4DTb3Qc3N46o.mft rsync://rpki.ripe.net/repository/DEFAULT/YtGLMS41Pnj6juX4DTb3Qc3N46o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:49:68:01:d3:43:0f:4f:00:37:1e:fc:aa:68:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62d18b312e353e78fa8ee5f80d36f741cdcde3aa Validity Not Before: Jan 2 10:19:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2021fb4251fcf8ccbc105d8d1d4e53400d38a3c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:3f:8e:19:32:13:f6:ec:c3:82:bf:cf:78:eb: 14:ea:63:f6:e5:5c:ff:d6:81:67:75:12:43:7c:f0: 15:9d:f5:18:98:2e:ca:99:25:4b:bd:20:42:17:30: 62:ce:16:ea:e8:72:5b:5e:fe:2d:35:e2:41:36:13: a1:83:7a:92:88:64:02:47:d0:a7:04:77:a8:20:a9: c7:83:1f:cc:6f:c2:df:41:5b:75:d1:8f:2d:a9:12: cd:26:06:7a:a8:21:8c:e6:d1:41:4f:0a:5c:a3:91: 6c:86:4f:e7:2d:d8:a7:ed:d3:d0:ff:90:76:55:47: e3:14:10:9a:cf:a7:b7:ab:b2:7d:a2:b5:89:fd:b5: 90:5c:61:fd:59:73:c7:36:06:17:c9:ef:ca:63:6d: 97:86:58:f9:36:b2:c2:10:ed:aa:9f:91:1e:1b:3f: 2a:47:2e:3d:56:20:cc:02:cf:54:3c:d8:5b:91:65: bb:66:87:e9:ea:3e:4c:ed:d5:6d:68:71:f1:b1:a7: 07:36:79:4c:fe:c5:fd:0b:82:e6:a8:0d:2d:80:09: 7f:d9:60:b6:da:3b:f3:27:5f:9a:87:c2:ce:9e:f7: 2d:29:04:81:b5:b1:2e:84:44:a1:56:1e:60:89:78: bb:cb:84:70:7e:da:70:d9:f6:75:e7:85:21:c0:9a: 34:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:21:FB:42:51:FC:F8:CC:BC:10:5D:8D:1D:4E:53:40:0D:38:A3:C9 X509v3 Authority Key Identifier: keyid:62:D1:8B:31:2E:35:3E:78:FA:8E:E5:F8:0D:36:F7:41:CD:CD:E3:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YtGLMS41Pnj6juX4DTb3Qc3N46o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/3b9215-9807-481e-9a1e-732272023ec2/1/ICH7QlH8-My8EF2NHU5TQA04o8k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/3b9215-9807-481e-9a1e-732272023ec2/1/YtGLMS41Pnj6juX4DTb3Qc3N46o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:e100::/29 Signature Algorithm: sha256WithRSAEncryption 38:c9:e4:59:60:f3:d2:ff:01:6e:ec:01:76:6b:28:0c:da:d3: ff:c6:7b:12:54:6c:c2:49:05:0a:b8:4e:ca:a4:65:1b:55:11: 2f:f3:43:1f:5b:c2:63:86:1f:4f:76:d9:5a:b5:2a:f5:22:c8: fe:46:d0:14:9f:e9:c9:ce:63:28:16:a4:2e:9d:b2:f0:39:ac: 48:8c:b6:ff:50:61:a3:08:6d:2f:2e:a5:52:b6:ae:81:b5:3e: cc:4e:28:82:3e:73:fd:d3:e6:76:4b:96:dc:ec:b5:8b:98:98: e7:ed:2d:56:82:4f:70:58:a9:5b:0b:02:35:ab:75:46:fd:6d: 03:0a:3a:e4:ca:b7:8b:a5:ce:06:ab:6d:78:ed:c8:23:43:e2: 53:58:a5:78:23:57:bf:d4:49:13:c5:e4:cd:5b:e6:e0:47:4e: f8:ab:bc:7d:36:b4:18:f5:d0:33:b0:e0:88:f0:19:41:59:bf: 2a:01:dd:09:95:cc:d5:68:f3:72:63:37:d6:ee:cd:e6:8c:66: 55:ce:da:47:97:91:b0:4a:d2:7f:92:24:e0:5b:97:38:f2:6b: 3f:c9:f4:80:c9:32:aa:97:25:93:fc:9b:52:58:be:b8:d4:78: c5:ac:ba:ff:45:e5:77:3c:ac:33:a1:3d:56:28:c0:f4:8c:e7: ee:24:bc:72 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt+OEloAdNDD08ANx78qmi8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyZDE4YjMxMmUzNTNlNzhmYThlZTVmODBkMzZmNzQxY2Rj ZGUzYWEwHhcNMjYwMTAyMTAxOTM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMDIxZmI0MjUxZmNmOGNjYmMxMDVkOGQxZDRlNTM0MDBkMzhhM2M5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlT+OGTIT9uzDgr/PeOsU6mP25Vz/ 1oFndRJDfPAVnfUYmC7KmSVLvSBCFzBizhbq6HJbXv4tNeJBNhOhg3qSiGQCR9Cn BHeoIKnHgx/Mb8LfQVt10Y8tqRLNJgZ6qCGM5tFBTwpco5Fshk/nLdin7dPQ/5B2 VUfjFBCaz6e3q7J9orWJ/bWQXGH9WXPHNgYXye/KY22Xhlj5NrLCEO2qn5EeGz8q Ry49ViDMAs9UPNhbkWW7Zofp6j5M7dVtaHHxsacHNnlM/sX9C4LmqA0tgAl/2WC2 2jvzJ1+ah8LOnvctKQSBtbEuhEShVh5giXi7y4Rwftpw2fZ154UhwJo0ywIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFCAh+0JR/PjMvBBdjR1OU0ANOKPJMB8GA1UdIwQY MBaAFGLRizEuNT54+o7l+A0290HNzeOqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWXRHTE1TNDFQbmo2anVYNERUYjNRYzNONDZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS8zYjkyMTUtOTgwNy00ODFlLTlhMWUt NzMyMjcyMDIzZWMyLzEvSUNIN1FsSDgtTXk4RUYyTkhVNVRRQTA0bzhrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS8zYjkyMTUtOTgwNy00ODFlLTlhMWUtNzMyMjcyMDIzZWMy LzEvWXRHTE1TNDFQbmo2anVYNERUYjNRYzNONDZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgHhADAN BgkqhkiG9w0BAQsFAAOCAQEAOMnkWWDz0v8BbuwBdmsoDNrT/8Z7ElRswkkFCrhO yqRlG1URL/NDH1vCY4YfT3bZWrUq9SLI/kbQFJ/pyc5jKBakLp2y8DmsSIy2/1Bh owhtLy6lUraugbU+zE4ogj5z/dPmdkuW3Oy1i5iY5+0tVoJPcFipWwsCNat1Rv1t Awo65Mq3i6XOBqtteO3II0PiU1ileCNXv9RJE8XkzVvm4EdO+Ku8fTa0GPXQM7Dg iPAZQVm/KgHdCZXM1WjzcmM31u7N5oxmVc7aR5eRsErSf5Ik4FuXOPJrP8n0gMky qpclk/ybUli+uNR4xay6/0XldzysM6E9VijA9Izn7iS8cg== -----END CERTIFICATE-----Generated at Sun Jan 25 15:14:29 2026 by rpki-client