This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/JHtYHD8Iyx3V96gC23guCUwysoA.roa File: JHtYHD8Iyx3V96gC23guCUwysoA.roa (raw, json) Hash identifier: MS3GzSnd/9DfOIVXwarEr43I7HtZTiDeZSu2GyvA+mM= Subject key identifier: 24:7B:58:1C:3F:08:CB:1D:D5:F7:A8:02:DB:78:2E:09:4C:32:B2:80 Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071 Certificate serial: 019B7E381FF9DBBC9C49660F5F26E0F1FC81 Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/JHtYHD8Iyx3V96gC23guCUwysoA.roa Signing time: Fri 02 Jan 2026 10:19:25 +0000 ROA not before: Fri 02 Jan 2026 10:19:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44812 IP address blocks: 5.8.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.mft rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:1f:f9:db:bc:9c:49:66:0f:5f:26:e0:f1:fc:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071 Validity Not Before: Jan 2 10:19:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=247b581c3f08cb1dd5f7a802db782e094c32b280 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:80:c7:f6:f1:71:86:30:fd:75:97:c0:73:89: f7:59:63:b0:2d:58:d4:75:fd:37:f8:6a:c4:c8:39: 0d:25:18:5b:b4:e6:35:96:1e:9c:48:11:14:49:e3: ae:2c:30:b3:d9:4b:f2:b1:db:80:aa:40:99:61:69: 7e:47:73:1b:fc:ce:fa:54:51:1b:ea:02:42:4a:77: 03:61:87:4d:fe:e5:ce:98:81:d3:cb:ef:c4:ca:9e: 92:01:cd:34:b7:d2:02:bb:34:36:18:4b:4c:11:ac: 2e:ab:02:72:79:ca:43:83:bf:3a:44:62:0f:04:b2: 2f:85:cd:4c:cc:0f:c3:16:c3:00:e4:12:a8:32:19: 40:79:a2:b1:f3:79:18:ad:0e:26:ce:39:f1:27:6f: 10:51:18:9c:37:65:3d:7d:0b:f3:ff:92:7b:d7:e1: 53:b5:74:ca:86:73:65:f2:7d:22:7d:12:77:7a:59: 27:b6:8b:c2:90:d3:55:75:f8:89:1f:4c:a5:9b:76: 50:4b:4a:fa:c3:52:11:d8:72:de:42:2a:1a:a2:99: 67:d2:ce:fb:aa:d7:f2:f1:6d:94:e4:99:02:39:3b: 90:a7:05:de:a7:d9:5c:4e:a6:57:0e:d9:f5:95:a8: 91:08:2f:f6:11:dd:2f:80:08:23:06:e5:2d:b3:66: 52:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:7B:58:1C:3F:08:CB:1D:D5:F7:A8:02:DB:78:2E:09:4C:32:B2:80 X509v3 Authority Key Identifier: keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/JHtYHD8Iyx3V96gC23guCUwysoA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.8.64.0/24 Signature Algorithm: sha256WithRSAEncryption 22:2f:0a:ef:71:85:99:6b:23:ff:f1:28:a6:4f:54:99:d7:1b: 82:69:ed:df:d7:6b:d8:9b:38:3e:e7:57:26:1a:20:56:16:9b: 26:75:84:ab:0f:3c:1d:86:f2:14:d4:3f:0b:fa:96:de:60:b9: 58:dc:84:32:3f:b8:5d:c5:6a:bd:7f:2a:87:08:8e:ff:15:e6: 6f:db:29:47:1f:d5:53:fb:84:17:ce:23:9f:51:d9:e9:1f:c6: 04:9f:50:89:c0:2c:2d:f5:7e:76:fb:28:36:37:fd:24:b9:72: 69:23:46:84:57:4a:1a:d5:b6:5b:50:ed:a5:f4:8e:a8:73:0e: 34:ee:98:ba:8a:c2:a3:cb:92:fd:7e:35:ff:48:1f:52:3d:11: 12:12:44:8b:c5:e4:68:de:d1:b6:8f:99:f2:1e:5c:35:d1:db: 45:89:8f:b2:cb:ba:c8:e4:0c:d6:01:46:25:e5:eb:5c:29:c4: 54:e4:53:72:2e:1f:20:4c:cc:81:44:95:6d:6b:d0:0d:d3:fa: 5b:33:8a:00:0a:f4:b6:e1:0d:50:8d:39:88:3a:26:e0:26:8f: c8:d2:79:7a:d6:98:e1:ce:f4:e4:e4:da:e8:31:f2:14:5e:05: fc:d2:c5:26:22:cb:e0:25:b9:48:ab:02:7e:c9:3d:2a:30:ce: ee:78:73:c2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+OB/527ycSWYPXybg8fyBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVhYWE4YTBhNWZkZmQ2OThlMTA0YmUzNmEyYWVlYzgxM2Fl Y2EwNzEwHhcNMjYwMTAyMTAxOTI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNDdiNTgxYzNmMDhjYjFkZDVmN2E4MDJkYjc4MmUwOTRjMzJiMjgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyIDH9vFxhjD9dZfAc4n3WWOwLVjU df03+GrEyDkNJRhbtOY1lh6cSBEUSeOuLDCz2UvysduAqkCZYWl+R3Mb/M76VFEb 6gJCSncDYYdN/uXOmIHTy+/Eyp6SAc00t9ICuzQ2GEtMEawuqwJyecpDg786RGIP BLIvhc1MzA/DFsMA5BKoMhlAeaKx83kYrQ4mzjnxJ28QURicN2U9fQvz/5J71+FT tXTKhnNl8n0ifRJ3elkntovCkNNVdfiJH0ylm3ZQS0r6w1IR2HLeQioaopln0s77 qtfy8W2U5JkCOTuQpwXep9lcTqZXDtn1laiRCC/2Ed0vgAgjBuUts2ZSOQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCR7WBw/CMsd1feoAtt4LglMMrKAMB8GA1UdIwQY MBaAFOqqigpf39aY4QS+NqKu7IE67KBxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNnFxS0NsX2YxcGpoQkw0Mm9xN3NnVHJzb0hFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy8yOTMyZGYtYTRiZC00YWY1LWE0ZDQt ODlkMDkyNDBjNDNiLzEvSkh0WUhEOEl5eDNWOTZnQzIzZ3VDVXd5c29BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy8yOTMyZGYtYTRiZC00YWY1LWE0ZDQtODlkMDkyNDBjNDNi LzEvNnFxS0NsX2YxcGpoQkw0Mm9xN3NnVHJzb0hFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABQhAMA0G CSqGSIb3DQEBCwUAA4IBAQAiLwrvcYWZayP/8SimT1SZ1xuCae3f12vYmzg+51cm GiBWFpsmdYSrDzwdhvIU1D8L+pbeYLlY3IQyP7hdxWq9fyqHCI7/FeZv2ylHH9VT +4QXziOfUdnpH8YEn1CJwCwt9X52+yg2N/0kuXJpI0aEV0oa1bZbUO2l9I6ocw40 7pi6isKjy5L9fjX/SB9SPRESEkSLxeRo3tG2j5nyHlw10dtFiY+yy7rI5AzWAUYl 5etcKcRU5FNyLh8gTMyBRJVta9AN0/pbM4oACvS24Q1QjTmIOibgJo/I0nl61pjh zvTk5NroMfIUXgX80sUmIsvgJblIqwJ+yT0qMM7ueHPC -----END CERTIFICATE-----Generated at Tue Jan 20 09:23:14 2026 by rpki-client