This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/8f88de-daed-48d2-b701-6bb5fe665750/1/HMmCdkpHTMLYze6qZGF-iwUAzmA.roa File: HMmCdkpHTMLYze6qZGF-iwUAzmA.roa (raw, json) Hash identifier: EsQLIbughOGxNVdEh2Tzb5JlJpT3ZvlB6qAeVifGGwk= Subject key identifier: 1C:C9:82:76:4A:47:4C:C2:D8:CD:EE:AA:64:61:7E:8B:05:00:CE:60 Certificate issuer: /CN=abc1918c1f45e6ec17daca67a7ad193caf04b7b2 Certificate serial: 019AE9E68358103928F3A4D212E4FAB85770 Authority key identifier: AB:C1:91:8C:1F:45:E6:EC:17:DA:CA:67:A7:AD:19:3C:AF:04:B7:B2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q8GRjB9F5uwX2spnp60ZPK8Et7I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/8f88de-daed-48d2-b701-6bb5fe665750/1/HMmCdkpHTMLYze6qZGF-iwUAzmA.roa Signing time: Thu 04 Dec 2025 15:06:29 +0000 ROA not before: Thu 04 Dec 2025 15:06:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 214857 IP address blocks: 2a14:52c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/8f88de-daed-48d2-b701-6bb5fe665750/1/q8GRjB9F5uwX2spnp60ZPK8Et7I.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/8f88de-daed-48d2-b701-6bb5fe665750/1/q8GRjB9F5uwX2spnp60ZPK8Et7I.mft rsync://rpki.ripe.net/repository/DEFAULT/q8GRjB9F5uwX2spnp60ZPK8Et7I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:e9:e6:83:58:10:39:28:f3:a4:d2:12:e4:fa:b8:57:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=abc1918c1f45e6ec17daca67a7ad193caf04b7b2 Validity Not Before: Dec 4 15:06:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=1cc982764a474cc2d8cdeeaa64617e8b0500ce60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:b7:c0:7a:83:37:80:23:9b:0f:49:f3:20:d4: 17:82:48:c2:09:6e:33:8d:b9:73:be:49:db:81:8d: 55:06:61:96:6a:d3:a8:94:cc:63:c3:d1:7b:c6:53: cd:7c:4e:37:0f:21:0d:66:2e:5b:90:70:95:44:07: 48:cb:a0:d9:c8:32:0f:b4:c4:6d:4e:2c:42:77:f0: da:0a:01:2b:77:46:68:e9:dc:1e:3f:a9:8c:8d:fb: 64:59:a0:55:73:79:62:84:87:32:2c:3a:97:74:fa: 3e:94:99:ed:ca:bb:20:4b:7b:35:be:d7:55:2b:2d: 36:16:42:99:44:5c:b2:75:ac:6e:1b:78:f4:fa:c8: cd:d9:e8:60:ee:50:8d:a4:46:21:f5:a9:8d:2d:ac: f5:80:29:ea:30:ec:9c:a1:90:ec:6b:fa:f4:17:5b: 7a:c2:d0:d6:c9:93:8c:63:1a:f4:7e:b3:91:86:f9: 09:dd:68:72:31:b9:30:62:67:1e:be:30:46:7f:f6: f4:cc:b8:21:02:ba:28:6a:4e:66:92:4f:39:e9:73: 1b:f5:5c:81:c3:b2:37:5f:a2:05:04:ad:be:af:ac: bd:11:f2:d6:45:ba:93:1f:95:ee:7e:9a:27:d9:c0: c5:46:60:5d:59:c4:58:14:46:9e:1e:95:7e:6f:e9: 27:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:C9:82:76:4A:47:4C:C2:D8:CD:EE:AA:64:61:7E:8B:05:00:CE:60 X509v3 Authority Key Identifier: keyid:AB:C1:91:8C:1F:45:E6:EC:17:DA:CA:67:A7:AD:19:3C:AF:04:B7:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q8GRjB9F5uwX2spnp60ZPK8Et7I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/8f88de-daed-48d2-b701-6bb5fe665750/1/HMmCdkpHTMLYze6qZGF-iwUAzmA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/8f88de-daed-48d2-b701-6bb5fe665750/1/q8GRjB9F5uwX2spnp60ZPK8Et7I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:52c0::/48 Signature Algorithm: sha256WithRSAEncryption 1f:a8:2e:b7:e8:14:83:4c:77:48:80:17:52:e3:6b:15:69:92: 24:ce:58:24:d1:b5:aa:90:19:63:ea:0b:81:66:fe:67:76:c3: aa:d0:c7:7f:44:4a:97:48:b4:3e:43:c8:f1:ef:a3:46:da:31: f0:b3:29:06:70:4a:a5:fe:c5:38:fb:33:80:8c:af:4e:aa:71: b2:e4:e6:22:79:ac:d3:9b:1c:04:d0:3b:a4:2a:84:1c:cb:85: d1:6f:ae:bd:8a:04:c7:13:44:8b:31:45:b3:6d:cc:a9:87:32: 0f:c5:d4:1f:8f:63:b2:fc:1c:c9:0f:f4:40:aa:a9:4b:c9:fe: 97:e4:c4:c1:94:0f:ae:fb:40:75:65:73:4c:77:51:07:9e:f1: 61:63:bc:2b:ec:f3:cf:41:f2:f0:fe:57:12:05:89:04:77:9e: 3e:30:ac:f6:fc:ff:76:a9:19:f4:7d:8f:9b:ba:6a:43:7f:ce: d0:c7:fd:76:77:1f:d2:80:ea:51:5b:48:93:fc:ba:c7:b2:1c: 03:44:bf:16:15:61:73:47:ed:13:d5:fb:1a:ea:76:2f:be:cc: 1f:00:bb:b5:cb:a8:d2:38:88:5c:40:d7:65:a8:4f:8a:3b:1b: c6:31:db:43:32:77:ef:fe:6e:f1:d1:4b:1a:60:cc:51:32:e1: 50:60:05:85 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZrp5oNYEDko86TSEuT6uFdwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiYzE5MThjMWY0NWU2ZWMxN2RhY2E2N2E3YWQxOTNjYWYw NGI3YjIwHhcNMjUxMjA0MTUwNjI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxY2M5ODI3NjRhNDc0Y2MyZDhjZGVlYWE2NDYxN2U4YjA1MDBjZTYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6LfAeoM3gCObD0nzINQXgkjCCW4z jblzvknbgY1VBmGWatOolMxjw9F7xlPNfE43DyENZi5bkHCVRAdIy6DZyDIPtMRt TixCd/DaCgErd0Zo6dweP6mMjftkWaBVc3lihIcyLDqXdPo+lJntyrsgS3s1vtdV Ky02FkKZRFyydaxuG3j0+sjN2ehg7lCNpEYh9amNLaz1gCnqMOycoZDsa/r0F1t6 wtDWyZOMYxr0frORhvkJ3WhyMbkwYmcevjBGf/b0zLghArooak5mkk856XMb9VyB w7I3X6IFBK2+r6y9EfLWRbqTH5Xufpon2cDFRmBdWcRYFEaeHpV+b+kniQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFBzJgnZKR0zC2M3uqmRhfosFAM5gMB8GA1UdIwQY MBaAFKvBkYwfRebsF9rKZ6etGTyvBLeyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcThHUmpCOUY1dXdYMnNwbnA2MFpQSzhFdDdJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi84Zjg4ZGUtZGFlZC00OGQyLWI3MDEt NmJiNWZlNjY1NzUwLzEvSE1tQ2RrcEhUTUxZemU2cVpHRi1pd1VBem1BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi84Zjg4ZGUtZGFlZC00OGQyLWI3MDEtNmJiNWZlNjY1NzUw LzEvcThHUmpCOUY1dXdYMnNwbnA2MFpQSzhFdDdJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhRSwAAA MA0GCSqGSIb3DQEBCwUAA4IBAQAfqC636BSDTHdIgBdS42sVaZIkzlgk0bWqkBlj 6guBZv5ndsOq0Md/REqXSLQ+Q8jx76NG2jHwsykGcEql/sU4+zOAjK9OqnGy5OYi eazTmxwE0DukKoQcy4XRb669igTHE0SLMUWzbcyphzIPxdQfj2Oy/BzJD/RAqqlL yf6X5MTBlA+u+0B1ZXNMd1EHnvFhY7wr7PPPQfLw/lcSBYkEd54+MKz2/P92qRn0 fY+bumpDf87Qx/12dx/SgOpRW0iT/LrHshwDRL8WFWFzR+0T1fsa6nYvvswfALu1 y6jSOIhcQNdlqE+KOxvGMdtDMnfv/m7x0UsaYMxRMuFQYAWF -----END CERTIFICATE-----Generated at Sat Dec 6 22:12:47 2025 by rpki-client