This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/127684-5afe-4f18-b95d-3072503d8607/1/JhHZEdKJAkP34-ikWpJJrLVsEs4.roa File: JhHZEdKJAkP34-ikWpJJrLVsEs4.roa (raw, json) Hash identifier: KnIixUB21MIMX8vhmGnPkdfsgJQVtWJkg4ouIc7Q8O8= Subject key identifier: 26:11:D9:11:D2:89:02:43:F7:E3:E8:A4:5A:92:49:AC:B5:6C:12:CE Certificate issuer: /CN=9ff33d4f3ac0a887840a284cdc1abeb7dd642f01 Certificate serial: 019B78354C4EC6F9D7C61248CBA2076135A6 Authority key identifier: 9F:F3:3D:4F:3A:C0:A8:87:84:0A:28:4C:DC:1A:BE:B7:DD:64:2F:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n_M9TzrAqIeECihM3Bq-t91kLwE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/127684-5afe-4f18-b95d-3072503d8607/1/JhHZEdKJAkP34-ikWpJJrLVsEs4.roa Signing time: Thu 01 Jan 2026 06:18:37 +0000 ROA not before: Thu 01 Jan 2026 06:18:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15685 IP address blocks: 92.63.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/127684-5afe-4f18-b95d-3072503d8607/1/n_M9TzrAqIeECihM3Bq-t91kLwE.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/127684-5afe-4f18-b95d-3072503d8607/1/n_M9TzrAqIeECihM3Bq-t91kLwE.mft rsync://rpki.ripe.net/repository/DEFAULT/n_M9TzrAqIeECihM3Bq-t91kLwE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:4c:4e:c6:f9:d7:c6:12:48:cb:a2:07:61:35:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ff33d4f3ac0a887840a284cdc1abeb7dd642f01 Validity Not Before: Jan 1 06:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2611d911d2890243f7e3e8a45a9249acb56c12ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:63:d9:12:d8:06:31:06:10:39:77:8c:21:c0: b0:0a:23:ad:4f:83:49:d1:ac:04:9e:c4:c4:71:fd: 61:b9:78:0a:53:88:84:ba:4d:4a:93:6c:93:4e:5c: e0:5a:51:44:df:54:dd:67:f3:8c:bf:5f:e9:23:25: 0d:b5:ab:ce:bb:e5:21:04:ad:d9:3d:af:be:ba:8a: 49:a2:c9:ca:5a:e7:cc:83:29:62:6d:d3:ae:14:f5: 3a:0d:15:40:a4:67:c4:5a:ba:fb:56:25:9c:38:41: 46:5e:72:51:42:50:a3:8d:a4:74:e4:54:31:31:3a: 62:28:df:e2:f0:c2:8e:19:1f:79:4e:d8:5e:f3:c6: b1:20:04:2b:4b:88:1d:c5:2b:7a:32:e1:20:3e:a0: eb:c0:67:7f:61:33:93:39:6b:79:30:09:db:75:a6: c1:33:45:1f:7a:0b:a7:2c:15:3d:49:9c:72:b0:38: 60:c4:fb:0a:52:7c:21:f6:d0:05:cb:df:e7:aa:d1: ec:4d:2b:89:1e:83:65:28:59:77:91:eb:00:d3:8c: 42:ee:e4:b2:9a:02:fb:1f:35:4c:72:ad:d1:4a:d8: 81:c8:c8:fb:eb:f5:89:5d:41:6a:0a:35:28:87:8d: 7c:90:0c:cc:21:0a:bd:30:96:99:90:ad:9c:50:67: dd:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:11:D9:11:D2:89:02:43:F7:E3:E8:A4:5A:92:49:AC:B5:6C:12:CE X509v3 Authority Key Identifier: keyid:9F:F3:3D:4F:3A:C0:A8:87:84:0A:28:4C:DC:1A:BE:B7:DD:64:2F:01 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n_M9TzrAqIeECihM3Bq-t91kLwE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/127684-5afe-4f18-b95d-3072503d8607/1/JhHZEdKJAkP34-ikWpJJrLVsEs4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/127684-5afe-4f18-b95d-3072503d8607/1/n_M9TzrAqIeECihM3Bq-t91kLwE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 92.63.57.0/24 Signature Algorithm: sha256WithRSAEncryption 23:47:ff:73:30:f6:6f:6b:53:2c:48:0d:b9:4b:bc:42:a9:dd: 4d:ff:64:5f:da:65:30:88:3f:0a:b5:68:68:48:5a:65:c5:64: 60:d5:40:27:3e:af:1c:99:c4:f7:8a:91:88:66:ea:16:ec:54: 12:45:81:8d:56:33:54:0b:2d:42:a8:5d:01:d2:f2:a3:99:7f: 50:a5:52:7a:99:82:d1:d4:e8:1d:05:90:de:f0:99:33:6b:25: c6:b6:9c:f0:df:75:2f:31:95:bf:ba:7d:31:8f:bf:af:37:d8: c6:1d:a5:b2:0d:63:99:89:9a:65:01:83:ba:16:c9:a1:fe:0b: 46:e7:4d:9f:fc:3e:89:e3:72:41:33:78:4b:69:d0:eb:f5:92: 63:4e:b2:33:5b:b2:b1:0f:1a:ab:bc:bd:61:d7:d0:01:d7:10: f7:0c:63:39:25:9b:36:53:7b:19:13:5e:8e:ec:1b:ba:bd:22: 69:b7:1f:b9:df:c3:40:fe:e4:a2:08:61:79:bf:76:39:5a:d9: 28:85:99:fb:06:e9:ac:33:25:c8:de:dc:4c:e5:59:51:b2:a0: ec:63:a3:5b:15:c7:ea:90:07:df:f7:25:5a:43:55:d5:fb:1a: 10:8d:12:b2:34:05:21:7c:3b:d7:8c:dc:e1:d0:83:e3:95:aa: 74:0d:49:27 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NUxOxvnXxhJIy6IHYTWmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlmZjMzZDRmM2FjMGE4ODc4NDBhMjg0Y2RjMWFiZWI3ZGQ2 NDJmMDEwHhcNMjYwMTAxMDYxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNjExZDkxMWQyODkwMjQzZjdlM2U4YTQ1YTkyNDlhY2I1NmMxMmNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqGPZEtgGMQYQOXeMIcCwCiOtT4NJ 0awEnsTEcf1huXgKU4iEuk1Kk2yTTlzgWlFE31TdZ/OMv1/pIyUNtavOu+UhBK3Z Pa++uopJosnKWufMgylibdOuFPU6DRVApGfEWrr7ViWcOEFGXnJRQlCjjaR05FQx MTpiKN/i8MKOGR95Tthe88axIAQrS4gdxSt6MuEgPqDrwGd/YTOTOWt5MAnbdabB M0UfegunLBU9SZxysDhgxPsKUnwh9tAFy9/nqtHsTSuJHoNlKFl3kesA04xC7uSy mgL7HzVMcq3RStiByMj76/WJXUFqCjUoh418kAzMIQq9MJaZkK2cUGfdqQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCYR2RHSiQJD9+PopFqSSay1bBLOMB8GA1UdIwQY MBaAFJ/zPU86wKiHhAooTNwavrfdZC8BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbl9NOVR6ckFxSWVFQ2loTTNCcS10OTFrTHdFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8xMjc2ODQtNWFmZS00ZjE4LWI5NWQt MzA3MjUwM2Q4NjA3LzEvSmhIWkVkS0pBa1AzNC1pa1dwSkpyTFZzRXM0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS8xMjc2ODQtNWFmZS00ZjE4LWI5NWQtMzA3MjUwM2Q4NjA3 LzEvbl9NOVR6ckFxSWVFQ2loTTNCcS10OTFrTHdFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXD85MA0G CSqGSIb3DQEBCwUAA4IBAQAjR/9zMPZva1MsSA25S7xCqd1N/2Rf2mUwiD8KtWho SFplxWRg1UAnPq8cmcT3ipGIZuoW7FQSRYGNVjNUCy1CqF0B0vKjmX9QpVJ6mYLR 1OgdBZDe8JkzayXGtpzw33UvMZW/un0xj7+vN9jGHaWyDWOZiZplAYO6Fsmh/gtG 502f/D6J43JBM3hLadDr9ZJjTrIzW7KxDxqrvL1h19AB1xD3DGM5JZs2U3sZE16O 7Bu6vSJptx+538NA/uSiCGF5v3Y5WtkohZn7BumsMyXI3txM5VlRsqDsY6NbFcfq kAff9yVaQ1XV+xoQjRKyNAUhfDvXjNzh0IPjlap0DUkn -----END CERTIFICATE-----Generated at Mon Jan 12 01:33:32 2026 by rpki-client