This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/HtxrMlw1XYD3O00XvDNyUfXKFD8.roa File: HtxrMlw1XYD3O00XvDNyUfXKFD8.roa (raw, json) Hash identifier: okOUXYArEcKSjt4C2XgrkB0y7IllxSkE0rtSnZOlw/I= Subject key identifier: 1E:DC:6B:32:5C:35:5D:80:F7:3B:4D:17:BC:33:72:51:F5:CA:14:3F Certificate issuer: /CN=ba6ed0fb7b320832ac1580534c7b263f304e981b Certificate serial: 019B7F841D18A102C206B487C2F5CA2EE8C2 Authority key identifier: BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/HtxrMlw1XYD3O00XvDNyUfXKFD8.roa Signing time: Fri 02 Jan 2026 16:22:03 +0000 ROA not before: Fri 02 Jan 2026 16:22:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 398104 IP address blocks: 2a01:488:bb1b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.crl rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.mft rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:1d:18:a1:02:c2:06:b4:87:c2:f5:ca:2e:e8:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba6ed0fb7b320832ac1580534c7b263f304e981b Validity Not Before: Jan 2 16:22:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1edc6b325c355d80f73b4d17bc337251f5ca143f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:7b:9b:87:d1:84:a8:3b:2b:60:1f:13:1d:7c: 9b:dc:9b:66:0b:bb:32:05:38:8a:b8:7a:a7:2b:06: a7:3b:38:25:10:c6:a4:15:c9:06:e7:d1:20:19:ff: a3:1d:98:3c:e8:5b:b2:76:52:1c:7b:4e:f7:32:e0: fa:9f:5b:11:70:d7:34:48:1b:3e:60:f2:7c:56:7c: bf:0f:c2:67:eb:80:d8:94:89:f1:84:3a:5b:f0:db: 4f:9e:c5:ac:f3:82:9a:01:e2:d0:e2:68:47:f0:7b: 47:a5:da:a7:e2:ad:c1:63:55:26:ae:75:6c:69:f9: 2a:8f:2b:11:bf:73:de:29:2f:60:7a:63:70:8b:8a: 5a:d3:24:44:de:34:0f:e2:b4:ae:5d:84:ef:fc:13: 61:74:71:c8:43:3d:7a:76:1f:28:f6:55:05:b1:c5: 02:f2:ae:20:27:96:e7:4a:9f:ba:37:20:c3:85:a6: 9b:05:8e:d2:d0:96:7d:d6:93:cc:21:5f:58:26:dc: b3:38:84:63:86:94:ef:c3:b0:ea:54:ff:9f:e0:e9: 51:a7:7b:4f:fc:f5:d2:6f:0d:48:f3:74:cc:f9:a0: 32:cc:af:76:2e:2b:6e:41:1c:57:69:6f:58:5e:b5: 07:55:9f:6a:01:7c:fc:8a:01:a8:ff:37:67:97:24: 98:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:DC:6B:32:5C:35:5D:80:F7:3B:4D:17:BC:33:72:51:F5:CA:14:3F X509v3 Authority Key Identifier: keyid:BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/HtxrMlw1XYD3O00XvDNyUfXKFD8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:488:bb1b::/48 Signature Algorithm: sha256WithRSAEncryption 16:00:56:8e:c7:59:58:09:04:d9:24:d4:e7:2a:58:04:90:37: de:15:41:03:25:58:de:6c:29:3e:5f:c7:22:86:47:d0:d0:ae: d0:34:65:fe:2e:0f:d3:7a:85:d4:80:0e:5e:6f:ed:c4:19:db: 4e:d0:43:e5:40:96:dc:54:1b:e3:21:dc:19:de:17:1a:f0:04: 1a:2b:b8:a7:20:ff:c3:78:bf:89:6c:07:11:86:49:ff:cd:43: 97:bd:e6:f5:90:10:e0:d9:45:c9:41:60:e5:32:55:a7:43:84: 21:ae:0f:8c:8c:e3:de:19:13:26:dd:bb:ac:76:b4:0a:fa:4d: 98:e9:41:34:51:5d:37:7f:f7:7c:46:8c:4a:00:5d:24:38:bf: 05:b1:c6:0e:e9:89:4a:d1:b0:2b:ef:fa:d0:c6:46:09:af:7b: d2:5e:d2:60:51:cf:76:f7:ff:34:eb:40:35:fa:71:0f:b9:4f: 15:d1:c6:8c:da:0b:a9:c0:a7:c3:94:22:a8:7a:3b:b6:d8:48: ed:f3:1e:d4:db:7e:8b:73:56:3d:57:e9:c8:9f:ee:cf:d2:2f: b3:6e:19:49:9c:fc:93:e1:d8:ff:47:78:ad:5c:ee:f3:6d:4a: 73:53:9b:db:e9:2c:be:2a:5f:11:0b:1a:a0:a4:31:13:f8:f8: f3:61:41:04 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/hB0YoQLCBrSHwvXKLujCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhNmVkMGZiN2IzMjA4MzJhYzE1ODA1MzRjN2IyNjNmMzA0 ZTk4MWIwHhcNMjYwMTAyMTYyMjAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZWRjNmIzMjVjMzU1ZDgwZjczYjRkMTdiYzMzNzI1MWY1Y2ExNDNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAznubh9GEqDsrYB8THXyb3JtmC7sy BTiKuHqnKwanOzglEMakFckG59EgGf+jHZg86FuydlIce073MuD6n1sRcNc0SBs+ YPJ8Vny/D8Jn64DYlInxhDpb8NtPnsWs84KaAeLQ4mhH8HtHpdqn4q3BY1UmrnVs afkqjysRv3PeKS9gemNwi4pa0yRE3jQP4rSuXYTv/BNhdHHIQz16dh8o9lUFscUC 8q4gJ5bnSp+6NyDDhaabBY7S0JZ91pPMIV9YJtyzOIRjhpTvw7DqVP+f4OlRp3tP /PXSbw1I83TM+aAyzK92LituQRxXaW9YXrUHVZ9qAXz8igGo/zdnlySYAwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFB7cazJcNV2A9ztNF7wzclH1yhQ/MB8GA1UdIwQY MBaAFLpu0Pt7MggyrBWAU0x7Jj8wTpgbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdW03US0zc3lDREtzRllCVFRIc21QekJPbUJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC80MjA0MWQtNTkzMS00ODI0LTkyNTQt MTYxZjM0MjM4N2QxLzEvSHR4ck1sdzFYWUQzTzAwWHZETnlVZlhLRkQ4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC80MjA0MWQtNTkzMS00ODI0LTkyNTQtMTYxZjM0MjM4N2Qx LzEvdW03US0zc3lDREtzRllCVFRIc21QekJPbUJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgEEiLsb MA0GCSqGSIb3DQEBCwUAA4IBAQAWAFaOx1lYCQTZJNTnKlgEkDfeFUEDJVjebCk+ X8cihkfQ0K7QNGX+Lg/TeoXUgA5eb+3EGdtO0EPlQJbcVBvjIdwZ3hca8AQaK7in IP/DeL+JbAcRhkn/zUOXveb1kBDg2UXJQWDlMlWnQ4Qhrg+MjOPeGRMm3busdrQK +k2Y6UE0UV03f/d8RoxKAF0kOL8FscYO6YlK0bAr7/rQxkYJr3vSXtJgUc929/80 60A1+nEPuU8V0caM2gupwKfDlCKoeju22Ejt8x7U236Lc1Y9V+nIn+7P0i+zbhlJ nPyT4dj/R3itXO7zbUpzU5vb6Sy+Kl8RCxqgpDET+PjzYUEE -----END CERTIFICATE-----Generated at Sun Jan 25 12:46:14 2026 by rpki-client