This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/e9b56e-3b5b-43b1-8bb5-bab48dab4cd6/1/x8PuWJNPJBC35K_SG-mLe9gxJtA.roa File: x8PuWJNPJBC35K_SG-mLe9gxJtA.roa (raw, json) Hash identifier: i+jPp0P0KxStb0wvP/NjPbGbfQidMuZ2R8mV3ecH7IA= Subject key identifier: C7:C3:EE:58:93:4F:24:10:B7:E4:AF:D2:1B:E9:8B:7B:D8:31:26:D0 Certificate issuer: /CN=ec9c685cf6671cc656f92e764557a38378f2827c Certificate serial: 019B7BA45069156F8DF3A897C291E109AAA4 Authority key identifier: EC:9C:68:5C:F6:67:1C:C6:56:F9:2E:76:45:57:A3:83:78:F2:82:7C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7JxoXPZnHMZW-S52RVejg3jygnw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/e9b56e-3b5b-43b1-8bb5-bab48dab4cd6/1/x8PuWJNPJBC35K_SG-mLe9gxJtA.roa Signing time: Thu 01 Jan 2026 22:18:44 +0000 ROA not before: Thu 01 Jan 2026 22:18:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12843 IP address blocks: 212.114.32.0/21 maxlen: 21 2a00:9300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/e9b56e-3b5b-43b1-8bb5-bab48dab4cd6/1/7JxoXPZnHMZW-S52RVejg3jygnw.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/e9b56e-3b5b-43b1-8bb5-bab48dab4cd6/1/7JxoXPZnHMZW-S52RVejg3jygnw.mft rsync://rpki.ripe.net/repository/DEFAULT/7JxoXPZnHMZW-S52RVejg3jygnw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:50:69:15:6f:8d:f3:a8:97:c2:91:e1:09:aa:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ec9c685cf6671cc656f92e764557a38378f2827c Validity Not Before: Jan 1 22:18:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c7c3ee58934f2410b7e4afd21be98b7bd83126d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:93:72:33:e5:07:c0:10:b8:5e:f2:10:3d:f7: dc:b2:ca:33:45:60:a1:dd:af:b8:67:e3:89:d6:24: 2b:8a:51:83:b3:23:51:ac:6f:1e:77:47:f8:86:38: fe:e9:4f:f1:fc:44:03:ba:fa:89:a5:68:6f:29:9b: 20:c7:e5:ea:47:5d:f1:bb:69:06:0a:a5:0e:04:e7: 75:05:d3:0f:01:8a:d6:f4:19:76:6f:4c:77:e3:67: 5e:18:ee:24:d9:3c:be:e7:7b:eb:ed:da:cd:20:87: c3:f1:ed:e9:b9:65:2f:47:ec:44:cf:55:ef:65:3e: 85:22:66:0b:a7:83:ff:76:99:2c:b3:e3:74:b0:7f: d1:65:73:ea:7e:c9:ef:d6:07:c1:c5:f0:50:51:50: 97:4f:6a:13:43:0e:64:e2:b1:54:0f:54:e2:d3:ec: e5:16:d7:a7:f6:bc:a6:36:fc:9a:6b:d7:40:fa:83: 85:34:7a:e8:78:c3:b3:fb:2d:37:0c:eb:31:28:17: 72:aa:38:82:1c:dc:b6:cc:f6:12:51:19:cc:03:c0: d5:99:57:d2:f8:17:bb:ab:0b:97:83:04:f7:7b:1b: b8:28:4b:4d:d4:96:0c:f9:dc:4b:0c:c6:95:c3:42: c0:c4:85:15:17:3e:8b:63:53:72:08:37:22:ae:bd: a9:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:C3:EE:58:93:4F:24:10:B7:E4:AF:D2:1B:E9:8B:7B:D8:31:26:D0 X509v3 Authority Key Identifier: keyid:EC:9C:68:5C:F6:67:1C:C6:56:F9:2E:76:45:57:A3:83:78:F2:82:7C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7JxoXPZnHMZW-S52RVejg3jygnw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e9b56e-3b5b-43b1-8bb5-bab48dab4cd6/1/x8PuWJNPJBC35K_SG-mLe9gxJtA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e9b56e-3b5b-43b1-8bb5-bab48dab4cd6/1/7JxoXPZnHMZW-S52RVejg3jygnw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.114.32.0/21 IPv6: 2a00:9300::/32 Signature Algorithm: sha256WithRSAEncryption 7f:7f:5c:98:e8:fb:a1:a1:d3:41:34:32:a9:0e:22:f4:58:c5: 72:46:fb:20:ce:57:76:56:88:78:9d:87:98:4a:ff:25:7a:42: 22:1b:b8:87:b0:c3:f9:eb:81:74:a8:c6:b3:33:c7:f7:c6:83: f2:e5:12:da:57:0a:f4:c1:42:0f:05:39:ca:81:5b:4d:de:a5: f4:c6:41:1f:ce:a2:37:1e:8e:24:41:3d:7d:42:0f:a6:63:43: 13:c8:be:c2:f4:99:e6:2b:17:bb:8b:8b:83:20:76:c6:86:39: 92:e8:4b:cb:79:eb:c0:d0:f7:cd:b6:17:4a:8f:33:3a:3c:ac: 1b:91:74:81:85:ce:d7:a8:fc:a3:6e:5f:e4:30:f3:f0:7a:aa: 58:4b:ae:18:06:26:eb:84:6a:0a:a2:1a:47:6f:7d:b5:7d:1d: c1:1f:e7:50:6f:a0:65:0e:d6:31:22:de:6e:ea:f8:f5:9d:df: 05:a6:4e:2e:f9:22:59:67:f5:88:59:98:6d:c1:1a:09:c0:d7: 16:80:af:f0:d9:4d:09:4f:da:b4:32:f7:75:e5:8e:ca:4c:ac: 4f:4e:e8:93:db:10:16:98:9b:b9:f4:b8:79:13:a0:d3:1f:6f: a6:1f:fa:53:09:c4:f5:5f:f2:f5:92:03:b9:65:84:54:38:74: 88:75:6f:90 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt7pFBpFW+N86iXwpHhCaqkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVjOWM2ODVjZjY2NzFjYzY1NmY5MmU3NjQ1NTdhMzgzNzhm MjgyN2MwHhcNMjYwMTAxMjIxODQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjN2MzZWU1ODkzNGYyNDEwYjdlNGFmZDIxYmU5OGI3YmQ4MzEyNmQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzpNyM+UHwBC4XvIQPffcssozRWCh 3a+4Z+OJ1iQrilGDsyNRrG8ed0f4hjj+6U/x/EQDuvqJpWhvKZsgx+XqR13xu2kG CqUOBOd1BdMPAYrW9Bl2b0x342deGO4k2Ty+53vr7drNIIfD8e3puWUvR+xEz1Xv ZT6FImYLp4P/dpkss+N0sH/RZXPqfsnv1gfBxfBQUVCXT2oTQw5k4rFUD1Ti0+zl Ften9rymNvyaa9dA+oOFNHroeMOz+y03DOsxKBdyqjiCHNy2zPYSURnMA8DVmVfS +Be7qwuXgwT3exu4KEtN1JYM+dxLDMaVw0LAxIUVFz6LY1NyCDcirr2pjQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFMfD7liTTyQQt+Sv0hvpi3vYMSbQMB8GA1UdIwQY MBaAFOycaFz2ZxzGVvkudkVXo4N48oJ8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN0p4b1hQWm5ITVpXLVM1MlJWZWpnM2p5Z253LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi9lOWI1NmUtM2I1Yi00M2IxLThiYjUt YmFiNDhkYWI0Y2Q2LzEveDhQdVdKTlBKQkMzNUtfU0ctbUxlOWd4SnRBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi9lOWI1NmUtM2I1Yi00M2IxLThiYjUtYmFiNDhkYWI0Y2Q2 LzEvN0p4b1hQWm5ITVpXLVM1MlJWZWpnM2p5Z253LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQD1HIgMA0E AgACMAcDBQAqAJMAMA0GCSqGSIb3DQEBCwUAA4IBAQB/f1yY6PuhodNBNDKpDiL0 WMVyRvsgzld2Voh4nYeYSv8lekIiG7iHsMP564F0qMazM8f3xoPy5RLaVwr0wUIP BTnKgVtN3qX0xkEfzqI3Ho4kQT19Qg+mY0MTyL7C9JnmKxe7i4uDIHbGhjmS6EvL eevA0PfNthdKjzM6PKwbkXSBhc7XqPyjbl/kMPPweqpYS64YBibrhGoKohpHb321 fR3BH+dQb6BlDtYxIt5u6vj1nd8Fpk4u+SJZZ/WIWZhtwRoJwNcWgK/w2U0JT9q0 Mvd15Y7KTKxPTuiT2xAWmJu59Lh5E6DTH2+mH/pTCcT1X/L1kgO5ZYRUOHSIdW+Q -----END CERTIFICATE-----Generated at Tue Jan 20 02:47:19 2026 by rpki-client