This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/r1CgQHbJ0baxHoWsJgVtoWmLnsg.roa File: r1CgQHbJ0baxHoWsJgVtoWmLnsg.roa (raw, json) Hash identifier: +GgCXwZvDmUJmEUaJ0P10QXMnD6rvegdW+Ws6xMmDGI= Subject key identifier: AF:50:A0:40:76:C9:D1:B6:B1:1E:85:AC:26:05:6D:A1:69:8B:9E:C8 Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003 Certificate serial: 019B79EC7564A9DDC4808EF20AB511DF4F0C Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/r1CgQHbJ0baxHoWsJgVtoWmLnsg.roa Signing time: Thu 01 Jan 2026 14:18:18 +0000 ROA not before: Thu 01 Jan 2026 14:18:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213673 IP address blocks: 64.188.98.0/24 maxlen: 24 77.239.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.mft rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:75:64:a9:dd:c4:80:8e:f2:0a:b5:11:df:4f:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003 Validity Not Before: Jan 1 14:18:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=af50a04076c9d1b6b11e85ac26056da1698b9ec8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:36:b8:ed:68:79:93:07:b2:54:36:3e:0e:e6: 9c:8a:44:63:0b:68:3c:61:d0:d5:c4:93:ac:74:9b: 5a:7b:3b:28:6f:a9:03:7b:9d:94:c9:e9:f6:c6:90: ec:22:15:a5:6e:f5:9b:bb:16:2d:67:27:eb:25:b5: a9:61:fd:03:3b:a9:b6:8a:19:9a:5b:d5:f5:81:45: 2b:32:b4:e0:1b:cf:6b:79:66:92:68:6c:41:8e:ea: 8f:03:f4:2b:30:63:bf:b2:cf:87:17:af:63:c4:cb: 26:60:a7:e0:9a:d8:9e:12:ec:5c:c5:ee:82:63:c3: 98:72:83:e8:4a:b6:93:85:ef:6a:e3:fb:cc:53:9c: c1:e4:92:56:42:b1:9f:dc:32:88:b5:24:7f:2d:52: 68:97:2e:f6:69:d1:40:98:35:bb:22:cf:b1:af:da: 4e:7b:83:e6:7b:b9:58:97:8d:8a:fd:bc:11:9a:35: 2d:b0:51:a5:ff:06:b4:05:aa:72:e5:63:e2:45:94: 5f:cf:f2:fd:3c:8c:4f:b6:53:17:ae:f5:9c:20:b2: 01:58:67:34:bc:3b:d8:54:32:cb:67:a3:06:85:c1: 61:a5:a8:3f:eb:c2:71:f8:cd:39:4f:9f:c8:77:df: 92:1c:d8:bb:8f:be:1b:4d:70:75:98:1b:6f:a4:ed: 63:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:50:A0:40:76:C9:D1:B6:B1:1E:85:AC:26:05:6D:A1:69:8B:9E:C8 X509v3 Authority Key Identifier: keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/r1CgQHbJ0baxHoWsJgVtoWmLnsg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.188.98.0/24 77.239.107.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:f0:b7:7e:66:f1:cd:a1:bc:1e:2d:c2:32:7d:d5:0e:22:80: af:8e:c1:a0:bb:59:7d:4b:6b:e8:59:63:74:20:ab:d6:87:47: e9:c0:80:f9:81:e7:d4:00:2d:8c:92:92:97:75:30:5e:e5:15: 2c:92:c6:4f:bc:7c:f2:4a:82:a8:c1:91:5e:ea:a9:00:19:d0: bc:b0:28:16:98:da:32:7c:f6:a7:83:70:1e:d0:f4:b8:6e:aa: 43:0c:f2:5e:34:3a:97:cd:31:a5:5b:03:49:2a:3c:e9:cf:ee: da:3d:d5:e1:a4:2c:71:ab:5f:4c:4d:35:42:45:0e:f9:49:29: 56:c2:22:4c:40:d1:83:8a:39:02:8b:92:e1:8a:aa:2a:32:75: ca:72:da:3a:29:c9:2d:17:fa:10:d5:ef:dd:14:d9:c1:4d:2f: af:d9:4c:1a:52:1b:4e:10:d6:d7:92:3b:17:49:15:60:91:e4: f7:9a:b5:2f:8f:77:9c:dc:ee:f4:79:b6:8c:7c:99:b1:fb:cc: 7b:71:67:d8:74:55:95:3a:d0:60:0c:48:bd:6c:a9:ed:7f:8c: 97:8c:d6:18:ef:72:24:52:42:5e:71:f1:7f:d1:d2:87:88:31: 57:92:05:ce:cb:2a:17:85:06:52:d0:48:f0:41:cd:3d:c6:ed: 40:b9:74:4c -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt57HVkqd3EgI7yCrUR308MMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjOTYzZTNkMjI4NDdkNDY2YzI2MmMyMDg3OGMyNzgwZDg4 NDAwMDMwHhcNMjYwMTAxMTQxODE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZjUwYTA0MDc2YzlkMWI2YjExZTg1YWMyNjA1NmRhMTY5OGI5ZWM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyDa47Wh5kweyVDY+DuacikRjC2g8 YdDVxJOsdJtaezsob6kDe52Uyen2xpDsIhWlbvWbuxYtZyfrJbWpYf0DO6m2ihma W9X1gUUrMrTgG89reWaSaGxBjuqPA/QrMGO/ss+HF69jxMsmYKfgmtieEuxcxe6C Y8OYcoPoSraThe9q4/vMU5zB5JJWQrGf3DKItSR/LVJoly72adFAmDW7Is+xr9pO e4Pme7lYl42K/bwRmjUtsFGl/wa0Bapy5WPiRZRfz/L9PIxPtlMXrvWcILIBWGc0 vDvYVDLLZ6MGhcFhpag/68Jx+M05T5/Id9+SHNi7j74bTXB1mBtvpO1jRQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFK9QoEB2ydG2sR6FrCYFbaFpi57IMB8GA1UdIwQY MBaAFByWPj0ihH1GbCYsIIeMJ4DYhAADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQt MTQzOTY3YThmZTA4LzEvcjFDZ1FIYkowYmF4SG9Xc0pnVnRvV21MbnNnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQtMTQzOTY3YThmZTA4 LzEvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAQLxiAwQA Te9rMA0GCSqGSIb3DQEBCwUAA4IBAQAL8Ld+ZvHNobweLcIyfdUOIoCvjsGgu1l9 S2voWWN0IKvWh0fpwID5gefUAC2MkpKXdTBe5RUsksZPvHzySoKowZFe6qkAGdC8 sCgWmNoyfPang3Ae0PS4bqpDDPJeNDqXzTGlWwNJKjzpz+7aPdXhpCxxq19MTTVC RQ75SSlWwiJMQNGDijkCi5LhiqoqMnXKcto6KcktF/oQ1e/dFNnBTS+v2UwaUhtO ENbXkjsXSRVgkeT3mrUvj3ec3O70ebaMfJmx+8x7cWfYdFWVOtBgDEi9bKntf4yX jNYY73IkUkJecfF/0dKHiDFXkgXOyyoXhQZS0EjwQc09xu1AuXRM -----END CERTIFICATE-----Generated at Sun Jan 25 10:21:01 2026 by rpki-client