This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/b73add-ea0f-4c22-980e-059bab015cc3/1/HpKYJTH0AKCOXkV-1Il50PmP0QY.roa File: HpKYJTH0AKCOXkV-1Il50PmP0QY.roa (raw, json) Hash identifier: 9PVXUkwReOwf8wA4lfiLTA69I7UGpu+3253jwBo7ruE= Subject key identifier: 1E:92:98:25:31:F4:00:A0:8E:5E:45:7E:D4:89:79:D0:F9:8F:D1:06 Certificate issuer: /CN=bbe026ef26920909d931ea4dac9d9390486b4153 Certificate serial: 019B7EA57A14C89FD7C9798E9E41B90A8773 Authority key identifier: BB:E0:26:EF:26:92:09:09:D9:31:EA:4D:AC:9D:93:90:48:6B:41:53 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u-Am7yaSCQnZMepNrJ2TkEhrQVM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/b73add-ea0f-4c22-980e-059bab015cc3/1/HpKYJTH0AKCOXkV-1Il50PmP0QY.roa Signing time: Fri 02 Jan 2026 12:18:52 +0000 ROA not before: Fri 02 Jan 2026 12:18:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6697 IP address blocks: 2a10:641::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/b73add-ea0f-4c22-980e-059bab015cc3/1/u-Am7yaSCQnZMepNrJ2TkEhrQVM.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/b73add-ea0f-4c22-980e-059bab015cc3/1/u-Am7yaSCQnZMepNrJ2TkEhrQVM.mft rsync://rpki.ripe.net/repository/DEFAULT/u-Am7yaSCQnZMepNrJ2TkEhrQVM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:7a:14:c8:9f:d7:c9:79:8e:9e:41:b9:0a:87:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bbe026ef26920909d931ea4dac9d9390486b4153 Validity Not Before: Jan 2 12:18:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1e92982531f400a08e5e457ed48979d0f98fd106 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:cb:a4:07:ef:6a:c7:e8:8a:e8:cd:2f:7a:73: c3:74:bf:29:84:d2:3a:58:01:b9:35:b2:54:c6:2b: 24:9b:15:88:19:2f:1d:a6:76:30:e7:3e:e3:ed:50: 29:1b:88:54:15:b8:1a:9a:d4:30:6d:51:19:9d:89: bf:81:15:73:fd:38:b1:c2:49:c0:59:59:12:63:6b: 62:83:18:cd:e8:c4:91:17:1e:8b:41:f0:e1:64:66: 97:69:5f:ae:f0:6a:b6:f4:71:02:26:df:59:e4:46: 3f:43:a3:df:68:10:50:f1:2a:08:ef:af:20:9e:1e: 74:49:05:1a:b9:81:84:a8:2b:23:54:48:9e:cc:d6: 25:e1:d8:f4:23:8c:e5:44:db:25:e0:0e:28:f3:3a: 2e:ba:e4:cb:55:94:07:1b:93:98:49:26:0d:6c:bd: ba:1a:76:50:55:c9:de:74:e1:2d:1f:3d:12:50:bd: 81:74:3a:b7:88:86:7a:6c:88:8a:69:c8:85:d6:f1: d7:b8:53:16:11:f9:a0:ee:20:04:9d:c8:41:03:c1: bb:f5:5b:2c:9d:f1:bc:a7:25:65:bc:15:c7:fe:bf: d4:94:60:b9:39:5c:28:dc:e3:58:1a:f9:9c:ee:46: d4:77:2d:09:40:f0:5a:b0:28:62:ea:dc:fc:0a:f8: 1a:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:92:98:25:31:F4:00:A0:8E:5E:45:7E:D4:89:79:D0:F9:8F:D1:06 X509v3 Authority Key Identifier: keyid:BB:E0:26:EF:26:92:09:09:D9:31:EA:4D:AC:9D:93:90:48:6B:41:53 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u-Am7yaSCQnZMepNrJ2TkEhrQVM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/b73add-ea0f-4c22-980e-059bab015cc3/1/HpKYJTH0AKCOXkV-1Il50PmP0QY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/b73add-ea0f-4c22-980e-059bab015cc3/1/u-Am7yaSCQnZMepNrJ2TkEhrQVM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a10:641::/32 Signature Algorithm: sha256WithRSAEncryption 87:de:2d:e9:a0:ed:d2:a3:cd:68:e3:8a:0d:f8:a8:3e:66:52: 57:32:e3:ee:5e:f6:19:f4:55:6d:57:00:d2:dc:25:bc:82:0b: 99:9b:7a:14:10:e8:59:0d:40:25:80:e6:f2:63:d1:51:68:98: ca:71:97:11:96:1f:8b:15:ad:bd:9f:34:5e:b2:75:61:94:29: 25:e0:f2:c9:99:80:a9:bf:d1:be:b9:c5:08:a4:73:ae:8a:22: 24:97:a6:d6:05:54:cf:ed:00:8a:8a:78:07:cd:ef:59:f5:cb: 51:e7:aa:ed:62:bc:ac:05:33:57:46:00:8a:9e:e3:9d:77:91: 8c:dc:3b:09:e5:8b:b2:14:82:3f:1e:5f:3f:f8:cf:ca:e7:1f: 8b:ae:92:21:5f:d2:7d:34:b1:d6:8c:92:c7:2a:85:b5:11:4c: 4e:67:db:99:68:f9:43:5e:a4:81:cc:0b:24:d0:25:5d:9e:b5: 54:66:83:bf:f4:e9:62:bf:18:ea:62:3a:59:fa:a9:30:a8:5c: 2c:66:1d:16:50:f3:1b:cd:71:a4:e5:ad:7e:2b:4d:ff:ec:a4: b4:ee:cd:89:39:08:5b:d7:26:8b:5d:aa:fd:93:ba:6a:fb:86: 63:91:40:38:70:c9:23:d6:07:e4:d8:44:20:33:b2:b6:6b:c7: a5:1b:e0:95 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt+pXoUyJ/XyXmOnkG5CodzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiZTAyNmVmMjY5MjA5MDlkOTMxZWE0ZGFjOWQ5MzkwNDg2 YjQxNTMwHhcNMjYwMTAyMTIxODUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZTkyOTgyNTMxZjQwMGEwOGU1ZTQ1N2VkNDg5NzlkMGY5OGZkMTA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzcukB+9qx+iK6M0venPDdL8phNI6 WAG5NbJUxiskmxWIGS8dpnYw5z7j7VApG4hUFbgamtQwbVEZnYm/gRVz/TixwknA WVkSY2tigxjN6MSRFx6LQfDhZGaXaV+u8Gq29HECJt9Z5EY/Q6PfaBBQ8SoI768g nh50SQUauYGEqCsjVEiezNYl4dj0I4zlRNsl4A4o8zouuuTLVZQHG5OYSSYNbL26 GnZQVcnedOEtHz0SUL2BdDq3iIZ6bIiKaciF1vHXuFMWEfmg7iAEnchBA8G79Vss nfG8pyVlvBXH/r/UlGC5OVwo3ONYGvmc7kbUdy0JQPBasChi6tz8CvgaGwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFB6SmCUx9ACgjl5FftSJedD5j9EGMB8GA1UdIwQY MBaAFLvgJu8mkgkJ2THqTaydk5BIa0FTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdS1BbTd5YVNDUW5aTWVwTnJKMlRrRWhyUVZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC9iNzNhZGQtZWEwZi00YzIyLTk4MGUt MDU5YmFiMDE1Y2MzLzEvSHBLWUpUSDBBS0NPWGtWLTFJbDUwUG1QMFFZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC9iNzNhZGQtZWEwZi00YzIyLTk4MGUtMDU5YmFiMDE1Y2Mz LzEvdS1BbTd5YVNDUW5aTWVwTnJKMlRrRWhyUVZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhAGQTAN BgkqhkiG9w0BAQsFAAOCAQEAh94t6aDt0qPNaOOKDfioPmZSVzLj7l72GfRVbVcA 0twlvIILmZt6FBDoWQ1AJYDm8mPRUWiYynGXEZYfixWtvZ80XrJ1YZQpJeDyyZmA qb/RvrnFCKRzrooiJJem1gVUz+0Aiop4B83vWfXLUeeq7WK8rAUzV0YAip7jnXeR jNw7CeWLshSCPx5fP/jPyucfi66SIV/SfTSx1oySxyqFtRFMTmfbmWj5Q16kgcwL JNAlXZ61VGaDv/TpYr8Y6mI6WfqpMKhcLGYdFlDzG81xpOWtfitN/+yktO7NiTkI W9cmi12q/ZO6avuGY5FAOHDJI9YH5NhEIDOytmvHpRvglQ== -----END CERTIFICATE-----Generated at Sun Jan 25 23:48:51 2026 by rpki-client