This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/mGyrvDI5oZO3aE2aN-4CqLKZzz4.roa File: mGyrvDI5oZO3aE2aN-4CqLKZzz4.roa (raw, json) Hash identifier: oXELlZmeHQPpoyobC20/uAIRiaGBEOE27phUrlntUXw= Subject key identifier: 98:6C:AB:BC:32:39:A1:93:B7:68:4D:9A:37:EE:02:A8:B2:99:CF:3E Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003 Certificate serial: 019B79EC5D5BFCEA34C39D779042B3334511 Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/mGyrvDI5oZO3aE2aN-4CqLKZzz4.roa Signing time: Thu 01 Jan 2026 14:18:12 +0000 ROA not before: Thu 01 Jan 2026 14:18:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6830 IP address blocks: 64.188.84.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.mft rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:5d:5b:fc:ea:34:c3:9d:77:90:42:b3:33:45:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003 Validity Not Before: Jan 1 14:18:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=986cabbc3239a193b7684d9a37ee02a8b299cf3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:6c:a5:84:8d:6b:0d:63:81:bb:53:23:98:c5: 11:54:d3:dd:a3:40:60:62:b4:03:37:77:6b:ed:42: 9e:91:99:7c:be:76:d6:0d:95:a3:c4:07:78:4b:ca: c2:ed:bc:10:37:20:3b:5d:f3:92:ba:59:db:58:81: ad:82:59:e0:ae:d6:b3:c9:0a:8c:ee:e2:d4:2f:e9: 8b:96:88:89:d4:30:32:25:a9:89:b2:71:72:df:99: 25:c5:02:5f:7e:06:8b:31:10:26:fd:a8:ef:7a:59: 3f:9c:e1:d4:d0:63:47:2b:84:fa:1e:a7:d9:43:4b: 5c:7d:7d:c6:13:90:ad:86:7b:34:3d:60:dc:8f:39: 27:e9:8d:f6:93:54:dc:2f:c0:cc:65:52:23:59:ec: 1c:6e:d6:e3:e7:7a:d1:7b:c1:63:13:b7:17:eb:ad: ff:c6:87:48:4e:69:50:2b:21:aa:b0:ff:59:ee:75: 46:88:98:7d:64:fa:ba:1f:65:93:1d:ac:ce:1b:42: 59:c8:c2:f1:36:b2:09:cf:1d:5f:b4:b9:0f:81:cc: fd:73:55:22:38:51:90:5b:0f:ed:35:a9:17:df:9f: 74:5d:2d:46:ce:95:7a:4e:57:9e:51:22:2d:a7:5b: 81:34:9c:83:ea:7c:63:50:87:f3:68:ad:c3:4c:00: 45:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:6C:AB:BC:32:39:A1:93:B7:68:4D:9A:37:EE:02:A8:B2:99:CF:3E X509v3 Authority Key Identifier: keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/mGyrvDI5oZO3aE2aN-4CqLKZzz4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.188.84.0/22 Signature Algorithm: sha256WithRSAEncryption 0a:94:99:8c:a8:d8:2e:f0:78:28:e4:ff:dd:45:5e:07:5d:89: cf:c2:75:f7:cc:f3:f3:62:0d:17:7c:41:24:62:f6:bd:5d:73: 61:9a:1e:10:d1:6c:8e:da:4a:7f:6c:07:f7:dc:1e:e2:c0:32: c2:be:d1:55:df:72:0f:40:2d:e9:0f:d8:16:dd:0b:54:3f:45: 72:3c:ec:8e:f5:58:1e:28:43:bf:d1:3f:c8:a6:57:28:d2:e3: 19:98:e2:4b:9d:1a:64:af:17:fe:61:40:9c:64:3f:14:13:8e: 58:cf:79:55:f1:5e:08:34:41:b0:39:b8:50:d5:a2:a5:a2:8e: cc:fa:0a:26:77:ec:25:3e:c0:17:13:77:5d:9d:38:51:af:38: 59:90:fe:56:d1:8f:77:37:2c:5c:00:71:86:b9:77:5d:3d:fd: 49:3e:04:7a:22:30:e8:5f:76:57:e1:46:06:6b:70:79:6b:3c: 79:96:7a:15:2c:4e:a4:14:ed:75:bb:0e:20:10:93:9e:16:f2: 7e:cc:8a:31:f5:9e:87:03:d4:f5:b7:51:42:a3:3d:31:a0:ef: de:0d:d1:b3:f3:89:09:02:fc:f1:0b:c0:ac:72:fc:cd:9f:b5: 64:ff:77:6e:c0:6a:e3:a9:63:20:82:a8:55:d2:ee:af:e5:8c: 84:4a:69:3f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57F1b/Oo0w513kEKzM0URMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjOTYzZTNkMjI4NDdkNDY2YzI2MmMyMDg3OGMyNzgwZDg4 NDAwMDMwHhcNMjYwMTAxMTQxODEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ODZjYWJiYzMyMzlhMTkzYjc2ODRkOWEzN2VlMDJhOGIyOTljZjNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxGylhI1rDWOBu1MjmMURVNPdo0Bg YrQDN3dr7UKekZl8vnbWDZWjxAd4S8rC7bwQNyA7XfOSulnbWIGtglngrtazyQqM 7uLUL+mLloiJ1DAyJamJsnFy35klxQJffgaLMRAm/ajvelk/nOHU0GNHK4T6HqfZ Q0tcfX3GE5Cthns0PWDcjzkn6Y32k1TcL8DMZVIjWewcbtbj53rRe8FjE7cX663/ xodITmlQKyGqsP9Z7nVGiJh9ZPq6H2WTHazOG0JZyMLxNrIJzx1ftLkPgcz9c1Ui OFGQWw/tNakX3590XS1GzpV6TleeUSItp1uBNJyD6nxjUIfzaK3DTABFQQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJhsq7wyOaGTt2hNmjfuAqiymc8+MB8GA1UdIwQY MBaAFByWPj0ihH1GbCYsIIeMJ4DYhAADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQt MTQzOTY3YThmZTA4LzEvbUd5cnZESTVvWk8zYUUyYU4tNENxTEtaeno0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQtMTQzOTY3YThmZTA4 LzEvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCQLxUMA0G CSqGSIb3DQEBCwUAA4IBAQAKlJmMqNgu8Hgo5P/dRV4HXYnPwnX3zPPzYg0XfEEk Yva9XXNhmh4Q0WyO2kp/bAf33B7iwDLCvtFV33IPQC3pD9gW3QtUP0VyPOyO9Vge KEO/0T/Iplco0uMZmOJLnRpkrxf+YUCcZD8UE45Yz3lV8V4INEGwObhQ1aKloo7M +gomd+wlPsAXE3ddnThRrzhZkP5W0Y93NyxcAHGGuXddPf1JPgR6IjDoX3ZX4UYG a3B5azx5lnoVLE6kFO11uw4gEJOeFvJ+zIox9Z6HA9T1t1FCoz0xoO/eDdGz84kJ AvzxC8CscvzNn7Vk/3duwGrjqWMggqhV0u6v5YyESmk/ -----END CERTIFICATE-----Generated at Wed Jan 21 04:58:49 2026 by rpki-client