This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/ac24df-09d6-4457-9d2e-9fceb45d6fdb/1/HgNlDxtVI_FZHJ-yg5V2bGuq6V0.roa File: HgNlDxtVI_FZHJ-yg5V2bGuq6V0.roa (raw, json) Hash identifier: /mLah/dk5n4ZBua8a6QDuH7hNHn7+jWSIk14BHGnCao= Subject key identifier: 1E:03:65:0F:1B:55:23:F1:59:1C:9F:B2:83:95:76:6C:6B:AA:E9:5D Certificate issuer: /CN=7b9447fe9a4acc7d6ff72d6c798d43d66cd50c3f Certificate serial: 019A731E5455D5F6ABF64AE73538135DCBEB Authority key identifier: 7B:94:47:FE:9A:4A:CC:7D:6F:F7:2D:6C:79:8D:43:D6:6C:D5:0C:3F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e5RH_ppKzH1v9y1seY1D1mzVDD8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/ac24df-09d6-4457-9d2e-9fceb45d6fdb/1/HgNlDxtVI_FZHJ-yg5V2bGuq6V0.roa Signing time: Tue 11 Nov 2025 13:32:38 +0000 ROA not before: Tue 11 Nov 2025 13:32:38 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 206306 IP address blocks: 2a12:3bc6::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/ac24df-09d6-4457-9d2e-9fceb45d6fdb/1/e5RH_ppKzH1v9y1seY1D1mzVDD8.crl rsync://rpki.ripe.net/repository/DEFAULT/e3/ac24df-09d6-4457-9d2e-9fceb45d6fdb/1/e5RH_ppKzH1v9y1seY1D1mzVDD8.mft rsync://rpki.ripe.net/repository/DEFAULT/e5RH_ppKzH1v9y1seY1D1mzVDD8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:73:1e:54:55:d5:f6:ab:f6:4a:e7:35:38:13:5d:cb:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7b9447fe9a4acc7d6ff72d6c798d43d66cd50c3f Validity Not Before: Nov 11 13:32:38 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=1e03650f1b5523f1591c9fb28395766c6baae95d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:29:99:15:a6:f3:9e:2b:d5:45:a2:f6:54:4c: 28:d9:7a:b0:31:4e:3d:1e:e8:d1:df:11:7d:0d:bf: 3a:a7:0d:44:99:ac:6c:17:f3:2c:05:d6:f9:73:f5: 0a:62:fe:fc:ed:9c:39:5a:01:88:1a:d6:5a:6a:60: 9e:a7:ca:6e:cd:7c:50:2a:ff:37:00:e8:b2:79:63: 26:49:e8:4e:e6:6b:83:2f:b3:c7:30:c1:d1:c6:48: f2:cb:04:f8:b3:6f:a3:a5:47:f7:18:00:1d:17:19: bd:56:e1:e9:95:61:17:df:38:40:50:4e:8f:64:96: 96:fc:56:8e:14:51:6e:a2:1e:65:65:5c:72:01:b7: 15:b6:8d:26:2c:a4:9d:60:ad:e2:12:50:29:76:cc: 3b:2b:85:ce:0b:38:fc:08:1a:bb:e3:37:7c:33:9b: a1:d7:00:35:4b:a9:0c:3e:12:df:aa:96:53:23:7a: 5f:1e:db:f5:8f:6b:4c:49:e6:cb:52:9d:0b:d9:e2: bd:7e:43:0c:a3:df:a0:e2:dc:1f:00:e5:ab:25:1b: d6:63:b9:12:dd:e1:17:bd:55:56:5d:64:78:8b:fd: 21:59:f0:68:59:16:4b:b1:34:b9:87:91:1c:80:64: 9b:c5:85:c8:e6:66:2f:a2:6a:81:e9:71:e4:a0:0f: 0b:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:03:65:0F:1B:55:23:F1:59:1C:9F:B2:83:95:76:6C:6B:AA:E9:5D X509v3 Authority Key Identifier: keyid:7B:94:47:FE:9A:4A:CC:7D:6F:F7:2D:6C:79:8D:43:D6:6C:D5:0C:3F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5RH_ppKzH1v9y1seY1D1mzVDD8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/ac24df-09d6-4457-9d2e-9fceb45d6fdb/1/HgNlDxtVI_FZHJ-yg5V2bGuq6V0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/ac24df-09d6-4457-9d2e-9fceb45d6fdb/1/e5RH_ppKzH1v9y1seY1D1mzVDD8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:3bc6::/32 Signature Algorithm: sha256WithRSAEncryption 6f:59:fb:50:92:7f:c8:87:57:49:f9:64:c9:92:dd:69:9f:c8: 40:ad:fa:1f:0a:96:68:6c:6e:2e:fb:9f:37:fd:30:98:38:e1: 37:d6:5d:49:6e:56:66:09:e6:c6:2e:c4:9b:a3:f5:f5:33:18: d3:8a:c3:5d:60:26:c1:6a:2a:9b:2f:43:e9:b8:58:35:f5:d5: 19:8b:8f:b1:34:23:22:c6:bf:63:d3:e6:09:0b:55:e6:32:20: 13:ee:d5:06:38:b5:44:a8:4c:4f:4f:83:71:63:a5:89:8f:26: 49:d6:6f:ac:0f:da:66:c6:e5:00:e8:de:65:1e:12:29:3f:3d: 06:d7:b6:ff:5e:81:09:ac:bd:32:47:a8:f6:c3:18:b8:cc:e7: 6b:98:b8:d2:55:e6:52:89:65:5b:bf:93:d7:cd:73:d7:97:00: 02:c7:94:62:49:10:f8:80:69:47:cb:c1:da:0e:51:8d:70:04: 71:07:72:15:1a:ae:c1:d6:02:fe:7b:ab:ff:96:56:c0:09:d3: 8c:cd:90:9d:bc:6e:5d:7c:9b:5e:15:5e:07:39:03:b1:ee:81: 94:f9:ed:5d:c5:b1:4d:c9:f6:eb:21:e3:82:28:5d:cb:bf:2c: c4:df:00:01:08:2f:7c:6e:4f:99:63:95:ab:29:5c:36:8e:b0: 72:a7:1f:74 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZpzHlRV1far9krnNTgTXcvrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdiOTQ0N2ZlOWE0YWNjN2Q2ZmY3MmQ2Yzc5OGQ0M2Q2NmNk NTBjM2YwHhcNMjUxMTExMTMzMjM4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZTAzNjUwZjFiNTUyM2YxNTkxYzlmYjI4Mzk1NzY2YzZiYWFlOTVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlimZFabznivVRaL2VEwo2XqwMU49 HujR3xF9Db86pw1EmaxsF/MsBdb5c/UKYv787Zw5WgGIGtZaamCep8puzXxQKv83 AOiyeWMmSehO5muDL7PHMMHRxkjyywT4s2+jpUf3GAAdFxm9VuHplWEX3zhAUE6P ZJaW/FaOFFFuoh5lZVxyAbcVto0mLKSdYK3iElApdsw7K4XOCzj8CBq74zd8M5uh 1wA1S6kMPhLfqpZTI3pfHtv1j2tMSebLUp0L2eK9fkMMo9+g4twfAOWrJRvWY7kS 3eEXvVVWXWR4i/0hWfBoWRZLsTS5h5EcgGSbxYXI5mYvomqB6XHkoA8LdQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFB4DZQ8bVSPxWRyfsoOVdmxrquldMB8GA1UdIwQY MBaAFHuUR/6aSsx9b/ctbHmNQ9Zs1Qw/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZTVSSF9wcEt6SDF2OXkxc2VZMUQxbXpWREQ4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy9hYzI0ZGYtMDlkNi00NDU3LTlkMmUt OWZjZWI0NWQ2ZmRiLzEvSGdObER4dFZJX0ZaSEoteWc1VjJiR3VxNlYwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMy9hYzI0ZGYtMDlkNi00NDU3LTlkMmUtOWZjZWI0NWQ2ZmRi LzEvZTVSSF9wcEt6SDF2OXkxc2VZMUQxbXpWREQ4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhI7xjAN BgkqhkiG9w0BAQsFAAOCAQEAb1n7UJJ/yIdXSflkyZLdaZ/IQK36HwqWaGxuLvuf N/0wmDjhN9ZdSW5WZgnmxi7Em6P19TMY04rDXWAmwWoqmy9D6bhYNfXVGYuPsTQj Isa/Y9PmCQtV5jIgE+7VBji1RKhMT0+DcWOliY8mSdZvrA/aZsblAOjeZR4SKT89 Bte2/16BCay9Mkeo9sMYuMzna5i40lXmUollW7+T181z15cAAseUYkkQ+IBpR8vB 2g5RjXAEcQdyFRquwdYC/nur/5ZWwAnTjM2QnbxuXXybXhVeBzkDse6BlPntXcWx Tcn26yHjgihdy78sxN8AAQgvfG5PmWOVqylcNo6wcqcfdA== -----END CERTIFICATE-----Generated at Sun Dec 7 00:16:06 2025 by rpki-client