This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/HIFyOEF6o7Rsq5goVjW52OhadgI.roa File: HIFyOEF6o7Rsq5goVjW52OhadgI.roa (raw, json) Hash identifier: k9ek9boUBYYEmOjPJ57YH83oUBsMeWYZC5hDknA/Hs4= Subject key identifier: 1C:81:72:38:41:7A:A3:B4:6C:AB:98:28:56:35:B9:D8:E8:5A:76:02 Certificate issuer: /CN=6ca977f854c63dc9f97a18be7b13002121a5d384 Certificate serial: 019B7D5C7B8E5471D83E7B3C8EB7D0A6F816 Authority key identifier: 6C:A9:77:F8:54:C6:3D:C9:F9:7A:18:BE:7B:13:00:21:21:A5:D3:84 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bKl3-FTGPcn5ehi-exMAISGl04Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/HIFyOEF6o7Rsq5goVjW52OhadgI.roa Signing time: Fri 02 Jan 2026 06:19:31 +0000 ROA not before: Fri 02 Jan 2026 06:19:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 151338 IP address blocks: 2a13:b487:4f00::/40 maxlen: 48 2a13:b487:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/bKl3-FTGPcn5ehi-exMAISGl04Q.crl rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/bKl3-FTGPcn5ehi-exMAISGl04Q.mft rsync://rpki.ripe.net/repository/DEFAULT/bKl3-FTGPcn5ehi-exMAISGl04Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 23 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:7b:8e:54:71:d8:3e:7b:3c:8e:b7:d0:a6:f8:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ca977f854c63dc9f97a18be7b13002121a5d384 Validity Not Before: Jan 2 06:19:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1c817238417aa3b46cab98285635b9d8e85a7602 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:9e:1c:04:7f:fd:20:5f:ca:ac:bb:f5:0f:21: 52:c4:fc:1b:5f:e9:db:fe:20:73:a9:6c:1e:ba:73: cc:f4:c2:b3:93:93:9b:6d:b0:3b:a0:bf:10:da:db: d5:61:5f:df:02:f3:2d:71:ac:43:48:1c:39:e8:6c: c4:f5:d5:e3:4c:1d:b1:c8:1f:cc:bd:9b:18:d9:ed: 9a:b8:53:dc:4e:e0:f7:f4:f5:0f:b3:65:ae:09:01: 88:24:a9:91:57:9e:0a:5f:e6:34:1b:f3:d4:7f:bb: d3:26:f0:8c:6a:0c:fc:6b:20:03:b4:8d:d9:cc:d1: 83:9f:27:59:14:d7:3c:d8:e5:45:51:60:e1:68:52: 91:78:1d:cb:4b:3d:ca:1e:14:6f:45:50:90:1b:d1: e7:4f:a0:82:a6:e5:d0:9f:8c:93:88:96:cd:1b:56: e5:ea:57:ea:cb:3d:18:9b:08:2e:c1:7c:67:61:b4: 9b:0b:ff:09:a8:a2:f0:68:93:2a:7d:60:1c:99:a7: 7b:b0:f6:0d:6b:97:d3:71:77:e0:b0:51:77:10:c3: 69:f4:12:ad:c5:1a:ef:95:7e:a7:86:dd:c9:f1:6c: 50:80:33:70:1e:c3:0a:dc:15:6d:87:5f:d0:85:5e: 28:28:21:36:f2:f1:78:8e:bd:4c:f8:53:36:94:65: 41:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:81:72:38:41:7A:A3:B4:6C:AB:98:28:56:35:B9:D8:E8:5A:76:02 X509v3 Authority Key Identifier: keyid:6C:A9:77:F8:54:C6:3D:C9:F9:7A:18:BE:7B:13:00:21:21:A5:D3:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bKl3-FTGPcn5ehi-exMAISGl04Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/HIFyOEF6o7Rsq5goVjW52OhadgI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/bKl3-FTGPcn5ehi-exMAISGl04Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a13:b487:4f00::-2a13:b487:50ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 8e:f1:34:38:81:94:82:8b:8c:e2:48:17:ef:fe:63:d2:93:a4: 57:e1:90:a4:50:75:2e:81:60:55:64:16:3f:10:51:92:84:3c: c8:ec:7c:87:23:d3:38:78:cb:48:56:b6:ef:bf:05:e6:e7:51: 14:ea:64:c6:29:5a:62:5c:25:1e:1b:55:b8:0a:87:62:9b:e2: ab:3d:2f:3a:ad:f3:0c:2b:6b:03:50:1f:b8:f4:35:d2:cb:87: 9b:fe:72:e7:54:ff:bb:11:83:cd:e9:6f:d4:c8:07:4d:37:a9: 58:8d:9f:14:86:fc:08:00:5e:2e:f9:42:0a:be:09:58:a1:2d: 82:21:3c:5d:0a:6e:ab:eb:d6:d1:5d:e7:b6:bd:28:c0:12:fb: 35:06:b3:bc:4a:33:a5:09:09:d6:b2:75:02:75:72:89:a5:4a: 77:b5:0d:7b:b4:6b:5b:4e:f0:43:2d:38:8c:d8:85:79:29:57: 27:ac:2b:0c:7b:05:bd:27:8b:c0:64:44:af:e0:37:f4:24:df: 6e:d9:03:50:9f:0f:da:b3:bf:06:96:21:c3:08:91:4d:8f:4c: 56:08:bb:9d:d1:92:f0:86:fe:b6:cc:d1:8a:b2:84:fd:57:e9: a9:51:76:d1:d6:97:9b:79:ed:76:b9:c9:86:74:f6:33:66:fc: e9:7b:89:95 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt9XHuOVHHYPns8jrfQpvgWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjYTk3N2Y4NTRjNjNkYzlmOTdhMThiZTdiMTMwMDIxMjFh NWQzODQwHhcNMjYwMTAyMDYxOTMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYzgxNzIzODQxN2FhM2I0NmNhYjk4Mjg1NjM1YjlkOGU4NWE3NjAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzZ4cBH/9IF/KrLv1DyFSxPwbX+nb /iBzqWweunPM9MKzk5ObbbA7oL8Q2tvVYV/fAvMtcaxDSBw56GzE9dXjTB2xyB/M vZsY2e2auFPcTuD39PUPs2WuCQGIJKmRV54KX+Y0G/PUf7vTJvCMagz8ayADtI3Z zNGDnydZFNc82OVFUWDhaFKReB3LSz3KHhRvRVCQG9HnT6CCpuXQn4yTiJbNG1bl 6lfqyz0YmwguwXxnYbSbC/8JqKLwaJMqfWAcmad7sPYNa5fTcXfgsFF3EMNp9BKt xRrvlX6nht3J8WxQgDNwHsMK3BVth1/QhV4oKCE28vF4jr1M+FM2lGVBEwIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFByBcjhBeqO0bKuYKFY1udjoWnYCMB8GA1UdIwQY MBaAFGypd/hUxj3J+XoYvnsTACEhpdOEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYktsMy1GVEdQY241ZWhpLWV4TUFJU0dsMDRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8wOWNjYjQtMjQ4My00YmE3LTk2MzQt ZDZhNTk1MGNhZGYyLzEvSElGeU9FRjZvN1JzcTVnb1ZqVzUyT2hhZGdJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS8wOWNjYjQtMjQ4My00YmE3LTk2MzQtZDZhNTk1MGNhZGYy LzEvYktsMy1GVEdQY241ZWhpLWV4TUFJU0dsMDRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASMBADBgAqE7SH TwMGACoTtIdQMA0GCSqGSIb3DQEBCwUAA4IBAQCO8TQ4gZSCi4ziSBfv/mPSk6RX 4ZCkUHUugWBVZBY/EFGShDzI7HyHI9M4eMtIVrbvvwXm51EU6mTGKVpiXCUeG1W4 Codim+KrPS86rfMMK2sDUB+49DXSy4eb/nLnVP+7EYPN6W/UyAdNN6lYjZ8UhvwI AF4u+UIKvglYoS2CITxdCm6r69bRXee2vSjAEvs1BrO8SjOlCQnWsnUCdXKJpUp3 tQ17tGtbTvBDLTiM2IV5KVcnrCsMewW9J4vAZESv4Df0JN9u2QNQnw/as78GliHD CJFNj0xWCLud0ZLwhv62zNGKsoT9V+mpUXbR1pebee12ucmGdPYzZvzpe4mV -----END CERTIFICATE-----Generated at Thu Jan 22 06:16:25 2026 by rpki-client