This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/2d2109-cfb8-4325-a0e3-058785b4a96e/1/HtCMzIedr8Uyc-ZY1tVjU5QJcKU.roa File: HtCMzIedr8Uyc-ZY1tVjU5QJcKU.roa (raw, json) Hash identifier: I9957InTODSplYXK+6SDN/CVJ6zGM65GrDjFyU/wtKc= Subject key identifier: 1E:D0:8C:CC:87:9D:AF:C5:32:73:E6:58:D6:D5:63:53:94:09:70:A5 Certificate issuer: /CN=d83713fd7b4cdfa6cba016a87eaf8b31c891beb0 Certificate serial: 019B797F4AF5689E6E95076898CB76D19734 Authority key identifier: D8:37:13:FD:7B:4C:DF:A6:CB:A0:16:A8:7E:AF:8B:31:C8:91:BE:B0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2DcT_XtM36bLoBaofq-LMciRvrA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/2d2109-cfb8-4325-a0e3-058785b4a96e/1/HtCMzIedr8Uyc-ZY1tVjU5QJcKU.roa Signing time: Thu 01 Jan 2026 12:19:03 +0000 ROA not before: Thu 01 Jan 2026 12:19:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51126 IP address blocks: 2a13:3fc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/2d2109-cfb8-4325-a0e3-058785b4a96e/1/2DcT_XtM36bLoBaofq-LMciRvrA.crl rsync://rpki.ripe.net/repository/DEFAULT/b6/2d2109-cfb8-4325-a0e3-058785b4a96e/1/2DcT_XtM36bLoBaofq-LMciRvrA.mft rsync://rpki.ripe.net/repository/DEFAULT/2DcT_XtM36bLoBaofq-LMciRvrA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:4a:f5:68:9e:6e:95:07:68:98:cb:76:d1:97:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d83713fd7b4cdfa6cba016a87eaf8b31c891beb0 Validity Not Before: Jan 1 12:19:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1ed08ccc879dafc53273e658d6d56353940970a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:cf:6b:cd:40:53:2e:54:0d:f4:e4:88:62:b4: fd:d7:39:60:f9:22:58:68:9a:c2:a0:70:f6:c0:dd: 33:07:d8:40:a9:bb:2c:dd:7a:d3:fd:06:94:92:38: ac:1c:2f:64:9d:d7:3a:ad:1c:e7:e4:de:68:d4:70: cc:18:58:4b:22:7f:bb:0b:ec:60:40:63:76:cd:aa: 91:b9:a0:ca:b3:8e:e3:00:29:a4:57:09:39:57:0c: 3c:0a:30:99:be:f5:95:1a:cc:bc:cd:0f:32:f9:c6: b0:2a:75:7a:94:c4:d3:10:85:a2:fe:df:8d:36:c7: 77:87:03:0f:16:8c:09:58:ed:fd:6a:dc:56:25:b7: a4:f4:e7:ea:af:73:0c:f3:74:49:dd:ce:77:99:3a: 6a:82:7b:8a:a6:b7:13:63:c7:99:57:0b:9b:a1:cf: 90:85:95:5b:3d:0e:85:31:8c:68:bd:c2:b6:a4:22: 0a:ea:33:9a:c0:5d:0b:6c:94:1b:fb:00:08:a3:17: 17:a5:ea:4e:0a:f1:fe:d5:6d:34:d5:aa:91:20:47: b3:20:63:22:20:b4:fc:43:7f:d3:5c:8d:5d:f5:08: 1e:c0:78:4f:74:fc:f4:4c:fd:38:2f:aa:ff:83:c4: 6a:cb:01:43:a0:c7:10:c6:24:14:e1:3c:89:20:1d: 6d:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:D0:8C:CC:87:9D:AF:C5:32:73:E6:58:D6:D5:63:53:94:09:70:A5 X509v3 Authority Key Identifier: keyid:D8:37:13:FD:7B:4C:DF:A6:CB:A0:16:A8:7E:AF:8B:31:C8:91:BE:B0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DcT_XtM36bLoBaofq-LMciRvrA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/2d2109-cfb8-4325-a0e3-058785b4a96e/1/HtCMzIedr8Uyc-ZY1tVjU5QJcKU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/2d2109-cfb8-4325-a0e3-058785b4a96e/1/2DcT_XtM36bLoBaofq-LMciRvrA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a13:3fc0::/32 Signature Algorithm: sha256WithRSAEncryption 75:42:0e:b9:4e:ff:1b:2d:c2:5f:c7:e8:f1:29:45:04:c9:a4: 62:d1:91:a5:77:f4:87:44:59:60:04:6c:50:f5:2e:e0:66:a9: 96:20:0c:54:2e:37:7a:20:02:68:00:1a:7a:e8:37:25:51:4d: a6:53:de:15:79:a0:ab:3e:ec:71:38:33:9f:24:f6:c7:78:5f: 95:e1:c5:aa:97:f5:f7:60:d0:f8:da:94:92:05:50:f3:2b:b6: 8c:3b:c3:5a:51:6f:62:40:42:4b:fd:c8:1c:f4:48:7f:84:06: 3d:8b:54:f2:81:6e:d2:1d:5c:4a:ae:66:eb:98:d7:23:01:e8: 95:56:4b:ae:37:1f:02:0e:40:04:0c:c8:62:bd:3e:bf:8a:8e: b2:63:df:10:73:2b:dc:d1:b2:0b:ce:f7:ae:bc:ed:d6:16:93: 2d:01:9a:20:30:de:6f:2c:a8:c0:5f:24:ea:6c:48:8b:ec:02: c1:23:cc:54:fc:e1:83:3c:ac:70:5e:7f:f2:77:4f:02:ae:de: 8c:65:bc:9a:15:73:36:d9:9f:69:cd:1f:9c:ec:14:8c:f2:f9: 8f:f8:b2:84:61:d9:dc:85:0a:6d:f4:b5:d8:81:74:05:45:f8: 4e:80:26:8f:7b:e4:80:ef:41:75:1e:e9:cf:9f:01:d3:64:23: 06:b0:5e:42 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt5f0r1aJ5ulQdomMt20Zc0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4MzcxM2ZkN2I0Y2RmYTZjYmEwMTZhODdlYWY4YjMxYzg5 MWJlYjAwHhcNMjYwMTAxMTIxOTAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZWQwOGNjYzg3OWRhZmM1MzI3M2U2NThkNmQ1NjM1Mzk0MDk3MGE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAts9rzUBTLlQN9OSIYrT91zlg+SJY aJrCoHD2wN0zB9hAqbss3XrT/QaUkjisHC9kndc6rRzn5N5o1HDMGFhLIn+7C+xg QGN2zaqRuaDKs47jACmkVwk5Vww8CjCZvvWVGsy8zQ8y+cawKnV6lMTTEIWi/t+N Nsd3hwMPFowJWO39atxWJbek9Ofqr3MM83RJ3c53mTpqgnuKprcTY8eZVwuboc+Q hZVbPQ6FMYxovcK2pCIK6jOawF0LbJQb+wAIoxcXpepOCvH+1W001aqRIEezIGMi ILT8Q3/TXI1d9QgewHhPdPz0TP04L6r/g8RqywFDoMcQxiQU4TyJIB1taQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFB7QjMyHna/FMnPmWNbVY1OUCXClMB8GA1UdIwQY MBaAFNg3E/17TN+my6AWqH6vizHIkb6wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkRjVF9YdE0zNmJMb0Jhb2ZxLUxNY2lSdnJBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi8yZDIxMDktY2ZiOC00MzI1LWEwZTMt MDU4Nzg1YjRhOTZlLzEvSHRDTXpJZWRyOFV5Yy1aWTF0VmpVNVFKY0tVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNi8yZDIxMDktY2ZiOC00MzI1LWEwZTMtMDU4Nzg1YjRhOTZl LzEvMkRjVF9YdE0zNmJMb0Jhb2ZxLUxNY2lSdnJBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhM/wDAN BgkqhkiG9w0BAQsFAAOCAQEAdUIOuU7/Gy3CX8fo8SlFBMmkYtGRpXf0h0RZYARs UPUu4GapliAMVC43eiACaAAaeug3JVFNplPeFXmgqz7scTgznyT2x3hfleHFqpf1 92DQ+NqUkgVQ8yu2jDvDWlFvYkBCS/3IHPRIf4QGPYtU8oFu0h1cSq5m65jXIwHo lVZLrjcfAg5ABAzIYr0+v4qOsmPfEHMr3NGyC873rrzt1haTLQGaIDDebyyowF8k 6mxIi+wCwSPMVPzhgzyscF5/8ndPAq7ejGW8mhVzNtmfac0fnOwUjPL5j/iyhGHZ 3IUKbfS12IF0BUX4ToAmj3vkgO9BdR7pz58B02QjBrBeQg== -----END CERTIFICATE-----Generated at Mon Jan 26 08:39:56 2026 by rpki-client