This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/d2548c-bd6a-4395-95fb-12e20c875c53/1/idejEcxXsr16g2wp9V8Tc_3IUpE.roa File: idejEcxXsr16g2wp9V8Tc_3IUpE.roa (raw, json) Hash identifier: 2R6v+WJgumF5jKo8h1riFb9sUElHbeJIrHYFIS833YM= Subject key identifier: 89:D7:A3:11:CC:57:B2:BD:7A:83:6C:29:F5:5F:13:73:FD:C8:52:91 Certificate issuer: /CN=1e3ba4dbba523d5b0dc989203bfd69648d1d4e66 Certificate serial: 019B7C11F8C7385C618C54AE338DD3860AE7 Authority key identifier: 1E:3B:A4:DB:BA:52:3D:5B:0D:C9:89:20:3B:FD:69:64:8D:1D:4E:66 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hjuk27pSPVsNyYkgO_1pZI0dTmY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/d2548c-bd6a-4395-95fb-12e20c875c53/1/idejEcxXsr16g2wp9V8Tc_3IUpE.roa Signing time: Fri 02 Jan 2026 00:18:31 +0000 ROA not before: Fri 02 Jan 2026 00:18:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 13101 IP address blocks: 2001:678:a14::/48 maxlen: 64 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/d2548c-bd6a-4395-95fb-12e20c875c53/1/Hjuk27pSPVsNyYkgO_1pZI0dTmY.crl rsync://rpki.ripe.net/repository/DEFAULT/e7/d2548c-bd6a-4395-95fb-12e20c875c53/1/Hjuk27pSPVsNyYkgO_1pZI0dTmY.mft rsync://rpki.ripe.net/repository/DEFAULT/Hjuk27pSPVsNyYkgO_1pZI0dTmY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 00:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:f8:c7:38:5c:61:8c:54:ae:33:8d:d3:86:0a:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e3ba4dbba523d5b0dc989203bfd69648d1d4e66 Validity Not Before: Jan 2 00:18:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=89d7a311cc57b2bd7a836c29f55f1373fdc85291 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:88:ec:6c:4c:32:68:f8:af:9b:22:ff:71:a0: 61:2e:0e:8d:8f:6c:18:1e:01:be:e2:0a:99:04:41: 02:fd:87:46:91:7c:92:c7:93:40:26:f0:90:88:32: 85:4a:e4:df:ab:5a:49:f5:a0:2d:f6:8c:ab:5a:cf: 2e:c5:a5:af:80:89:cf:9e:cd:6e:8d:ac:c4:78:21: 96:ff:b1:0a:dd:3f:2c:38:0d:c5:53:d7:40:7e:03: 0f:3a:6c:2c:ab:95:a8:9a:2e:45:ca:b6:36:85:33: 7e:23:45:3a:31:7d:5f:0a:08:91:a8:31:d5:f9:03: ca:9f:a6:a3:ae:65:29:a1:b6:04:44:52:ea:b0:3e: e5:25:5a:f9:41:41:a8:8b:91:17:19:1b:de:14:75: 56:c5:b9:d6:5c:fc:63:fe:8c:bb:62:88:c8:7e:58: 47:10:ce:b6:71:bc:d5:ed:00:8b:6f:ce:26:d7:6f: 03:83:24:7d:00:ba:a1:13:d1:77:bc:b6:4b:02:5d: bf:b0:26:dc:29:a9:71:e9:8e:37:4a:ad:64:61:18: b0:92:1f:e1:16:d7:09:1b:40:4f:32:91:27:c5:4c: 8a:19:08:de:4a:40:b3:e7:5b:52:0a:b1:99:82:91: 65:0f:90:61:78:94:d3:60:4b:e7:ea:96:d2:0e:c2: f3:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:D7:A3:11:CC:57:B2:BD:7A:83:6C:29:F5:5F:13:73:FD:C8:52:91 X509v3 Authority Key Identifier: keyid:1E:3B:A4:DB:BA:52:3D:5B:0D:C9:89:20:3B:FD:69:64:8D:1D:4E:66 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hjuk27pSPVsNyYkgO_1pZI0dTmY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/d2548c-bd6a-4395-95fb-12e20c875c53/1/idejEcxXsr16g2wp9V8Tc_3IUpE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/d2548c-bd6a-4395-95fb-12e20c875c53/1/Hjuk27pSPVsNyYkgO_1pZI0dTmY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:a14::/48 Signature Algorithm: sha256WithRSAEncryption 07:16:1a:ba:25:42:ac:c4:be:4d:dc:fd:19:9f:d2:28:13:a4: 33:69:ad:22:25:cf:c4:1d:0c:87:ff:e0:e8:93:43:7b:4f:a7: 28:c5:ef:35:3f:07:7c:dc:8a:74:f2:a8:3e:3b:c5:32:78:d4: 59:ad:ea:05:3e:bd:1b:62:3b:8d:b5:d4:a8:50:a5:31:af:4f: ff:bf:f1:7b:e2:63:83:8a:0e:4c:f3:59:ba:69:28:af:9b:57: e7:56:ff:ee:5f:5e:f7:4b:c8:0b:f2:8b:9d:c7:e1:8e:81:b0: c6:f0:f4:2e:fb:cf:fc:a4:26:dd:b5:b1:f4:c5:64:4d:db:22: f7:7e:fe:01:21:25:bb:99:f1:d4:5f:21:9d:2f:52:e9:24:74: 1a:2b:60:33:50:db:c5:b0:2c:4a:40:fc:46:fc:39:84:1c:6c: 99:27:d7:d9:c9:7a:75:cf:f2:af:9e:a6:18:f7:a6:ba:29:ef: 00:d0:41:e1:ab:dc:b8:57:60:6b:10:94:16:db:51:72:a0:01: dc:32:79:70:ac:70:df:e4:2d:70:45:08:b6:0c:c5:91:b1:65: 72:56:e5:32:fb:43:1f:54:a9:66:c6:22:75:65:7c:a6:3f:ac: 33:b5:50:33:a2:3d:23:62:cc:0a:d9:f1:c7:78:ed:4f:65:1d: 68:32:0a:30 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt8EfjHOFxhjFSuM43ThgrnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlM2JhNGRiYmE1MjNkNWIwZGM5ODkyMDNiZmQ2OTY0OGQx ZDRlNjYwHhcNMjYwMTAyMDAxODMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OWQ3YTMxMWNjNTdiMmJkN2E4MzZjMjlmNTVmMTM3M2ZkYzg1MjkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjYjsbEwyaPivmyL/caBhLg6Nj2wY HgG+4gqZBEEC/YdGkXySx5NAJvCQiDKFSuTfq1pJ9aAt9oyrWs8uxaWvgInPns1u jazEeCGW/7EK3T8sOA3FU9dAfgMPOmwsq5Womi5FyrY2hTN+I0U6MX1fCgiRqDHV +QPKn6ajrmUpobYERFLqsD7lJVr5QUGoi5EXGRveFHVWxbnWXPxj/oy7YojIflhH EM62cbzV7QCLb84m128DgyR9ALqhE9F3vLZLAl2/sCbcKalx6Y43Sq1kYRiwkh/h FtcJG0BPMpEnxUyKGQjeSkCz51tSCrGZgpFlD5BheJTTYEvn6pbSDsLzNwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFInXoxHMV7K9eoNsKfVfE3P9yFKRMB8GA1UdIwQY MBaAFB47pNu6Uj1bDcmJIDv9aWSNHU5mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGp1azI3cFNQVnNOeVlrZ09fMXBaSTBkVG1ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy9kMjU0OGMtYmQ2YS00Mzk1LTk1ZmIt MTJlMjBjODc1YzUzLzEvaWRlakVjeFhzcjE2ZzJ3cDlWOFRjXzNJVXBFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNy9kMjU0OGMtYmQ2YS00Mzk1LTk1ZmItMTJlMjBjODc1YzUz LzEvSGp1azI3cFNQVnNOeVlrZ09fMXBaSTBkVG1ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAoU MA0GCSqGSIb3DQEBCwUAA4IBAQAHFhq6JUKsxL5N3P0Zn9IoE6Qzaa0iJc/EHQyH /+Dok0N7T6coxe81Pwd83Ip08qg+O8UyeNRZreoFPr0bYjuNtdSoUKUxr0//v/F7 4mODig5M81m6aSivm1fnVv/uX173S8gL8oudx+GOgbDG8PQu+8/8pCbdtbH0xWRN 2yL3fv4BISW7mfHUXyGdL1LpJHQaK2AzUNvFsCxKQPxG/DmEHGyZJ9fZyXp1z/Kv nqYY96a6Ke8A0EHhq9y4V2BrEJQW21FyoAHcMnlwrHDf5C1wRQi2DMWRsWVyVuUy +0MfVKlmxiJ1ZXymP6wztVAzoj0jYswK2fHHeO1PZR1oMgow -----END CERTIFICATE-----Generated at Mon Jan 26 10:23:07 2026 by rpki-client