This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/IHH1-9eElmx6vzHS6CSeWaasjPI.roa File: IHH1-9eElmx6vzHS6CSeWaasjPI.roa (raw, json) Hash identifier: 8l2d1ctkyvi2wD+52VfoZuD0gMg1JAj8dTjXtq4Gejg= Subject key identifier: 20:71:F5:FB:D7:84:96:6C:7A:BF:31:D2:E8:24:9E:59:A6:AC:8C:F2 Certificate issuer: /CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6 Certificate serial: 019B79ED4C6E0B55DC1E9B66F116A5EDD8A0 Authority key identifier: 0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/IHH1-9eElmx6vzHS6CSeWaasjPI.roa Signing time: Thu 01 Jan 2026 14:19:13 +0000 ROA not before: Thu 01 Jan 2026 14:19:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209557 IP address blocks: 2a0f:607:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DCG5JbTEvMMPd8nEG6jQQKyV38Y.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DCG5JbTEvMMPd8nEG6jQQKyV38Y.mft rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 12:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:4c:6e:0b:55:dc:1e:9b:66:f1:16:a5:ed:d8:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6 Validity Not Before: Jan 1 14:19:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2071f5fbd784966c7abf31d2e8249e59a6ac8cf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:7e:08:b7:13:37:a6:a7:fe:35:5d:a4:48:cf: 19:0f:5f:04:47:d8:b7:e5:3f:7f:fe:f3:2a:99:05: 5b:df:92:f0:be:65:c4:44:07:3f:39:f2:1d:03:ed: 65:3a:1a:a0:f0:e3:1f:d0:0d:4c:4b:d7:3a:a3:39: 26:33:ea:2e:9f:1c:8c:c1:92:05:4b:77:e5:72:a7: ad:ef:1b:4a:f3:50:88:14:8d:c3:87:a4:a2:c3:a7: 5a:e1:f1:7e:c0:b0:de:b0:98:40:8c:5a:ae:46:f1: 04:e5:9f:75:54:79:2e:18:5d:e2:de:9a:7b:17:d8: d5:67:bf:39:a4:67:f1:e7:fb:ab:bd:80:df:79:2c: 3c:68:99:1f:48:82:4b:3f:ff:f9:d3:73:16:8f:19: 8b:a0:82:b0:75:b4:43:8c:dd:56:25:45:fa:fe:ea: 80:f4:d1:55:16:ba:a7:fc:df:37:b3:0b:32:ce:92: 27:a0:10:18:f6:80:90:6e:c3:c8:4f:d8:a5:b1:01: 13:d2:5a:0b:fb:f8:50:5f:28:26:3b:c2:9d:84:cd: ee:26:a3:d4:e3:6f:39:6f:62:e3:4c:9a:da:99:e7: d7:ab:3d:c9:e2:ee:51:af:78:f2:1d:50:8f:00:d7: 8b:f9:31:f9:ed:ed:e3:fc:11:46:6e:80:03:67:8b: b5:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:71:F5:FB:D7:84:96:6C:7A:BF:31:D2:E8:24:9E:59:A6:AC:8C:F2 X509v3 Authority Key Identifier: keyid:0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/IHH1-9eElmx6vzHS6CSeWaasjPI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DCG5JbTEvMMPd8nEG6jQQKyV38Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:607:1000::/40 Signature Algorithm: sha256WithRSAEncryption ac:42:bf:7f:ab:4b:30:62:c6:eb:4e:17:b2:14:37:6c:33:39: 4f:6f:11:1e:39:f0:d0:1e:e7:f9:87:b4:4f:58:83:d6:c4:fc: bd:91:7f:62:0b:f2:8b:58:88:5b:76:eb:91:04:c7:6b:6b:7d: 54:c3:5b:26:de:c6:7b:2b:35:a0:bf:49:14:b8:c2:09:fd:de: 5f:7b:b8:97:10:0f:6d:44:f7:7b:ec:a0:29:af:17:8c:69:d5: 74:43:3b:e8:ea:b2:9e:2d:dd:dd:30:9b:b8:70:a0:6c:0f:8a: 14:03:57:bb:9b:fa:15:4e:61:f9:f6:77:c3:d0:75:6a:d7:6e: 96:c2:3a:a0:55:f4:33:89:44:e5:bd:63:be:6f:63:e4:19:9f: 2d:79:ca:da:82:f5:09:3a:d0:06:00:29:bd:9c:1c:a3:a5:cf: ca:89:15:e7:b3:b4:a3:79:ed:73:b8:db:84:85:00:2d:f1:26: d8:bf:c3:7a:f6:c5:92:4e:e7:d8:e1:f4:f9:23:b7:c7:91:55: 49:fc:0d:a5:78:2f:80:75:9a:d4:16:a4:3b:c6:c3:71:1f:b5: 31:f5:d2:3f:cb:2b:75:66:a0:ea:d3:ea:c8:ea:d8:5e:83:47: 4e:08:14:1f:d8:c5:b8:d1:79:5e:cd:d3:aa:24:0f:bf:0f:d5: 1e:75:6c:f0 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt57UxuC1XcHptm8Ral7digMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjMjFiOTI1YjRjNGJjYzMwZjc3YzljNDFiYThkMDQwYWM5 NWRmYzYwHhcNMjYwMTAxMTQxOTEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMDcxZjVmYmQ3ODQ5NjZjN2FiZjMxZDJlODI0OWU1OWE2YWM4Y2YyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA234ItxM3pqf+NV2kSM8ZD18ER9i3 5T9//vMqmQVb35LwvmXERAc/OfIdA+1lOhqg8OMf0A1MS9c6ozkmM+ounxyMwZIF S3flcqet7xtK81CIFI3Dh6Siw6da4fF+wLDesJhAjFquRvEE5Z91VHkuGF3i3pp7 F9jVZ785pGfx5/urvYDfeSw8aJkfSIJLP//503MWjxmLoIKwdbRDjN1WJUX6/uqA 9NFVFrqn/N83swsyzpInoBAY9oCQbsPIT9ilsQET0loL+/hQXygmO8KdhM3uJqPU 4285b2LjTJramefXqz3J4u5Rr3jyHVCPANeL+TH57e3j/BFGboADZ4u1UwIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFCBx9fvXhJZser8x0ugknlmmrIzyMB8GA1UdIwQY MBaAFAwhuSW0xLzDD3fJxBuo0ECsld/GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRENHNUpiVEV2TU1QZDhuRUc2alFRS3lWMzhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9jMGJkNjctZjdkZC00Y2UyLWFiN2Ut YTM0NzU2NDE1OGY4LzEvSUhIMS05ZUVsbXg2dnpIUzZDU2VXYWFzalBJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy9jMGJkNjctZjdkZC00Y2UyLWFiN2UtYTM0NzU2NDE1OGY4 LzEvRENHNUpiVEV2TU1QZDhuRUc2alFRS3lWMzhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKg8GBxAw DQYJKoZIhvcNAQELBQADggEBAKxCv3+rSzBixutOF7IUN2wzOU9vER458NAe5/mH tE9Yg9bE/L2Rf2IL8otYiFt265EEx2trfVTDWybexnsrNaC/SRS4wgn93l97uJcQ D21E93vsoCmvF4xp1XRDO+jqsp4t3d0wm7hwoGwPihQDV7ub+hVOYfn2d8PQdWrX bpbCOqBV9DOJROW9Y75vY+QZny15ytqC9Qk60AYAKb2cHKOlz8qJFeeztKN57XO4 24SFAC3xJti/w3r2xZJO59jh9Pkjt8eRVUn8DaV4L4B1mtQWpDvGw3EftTH10j/L K3VmoOrT6sjq2F6DR04IFB/YxbjReV7N06okD78P1R51bPA= -----END CERTIFICATE-----Generated at Fri Jan 2 19:47:52 2026 by rpki-client