This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/5a6fda-7896-4c50-affd-30495f403784/1/1-hFSmPn8p4wEEZxUZspfaslXlZA.roa File: 1-hFSmPn8p4wEEZxUZspfaslXlZA.roa (raw, json) Hash identifier: lOGv+rMsBuq25eqAL8M7T80m6Kh7s9bx038wo+abdSs= Subject key identifier: FA:11:52:98:F9:FC:A7:8C:04:11:9C:54:66:CA:5F:6A:C9:57:95:90 Certificate issuer: /CN=57c670c8db32dd748df797c5c93013d8c91fa839 Certificate serial: 019BE096B05AABBBB2DB917554BFA90781B1 Authority key identifier: 57:C6:70:C8:DB:32:DD:74:8D:F7:97:C5:C9:30:13:D8:C9:1F:A8:39 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V8ZwyNsy3XSN95fFyTAT2MkfqDk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/5a6fda-7896-4c50-affd-30495f403784/1/1-hFSmPn8p4wEEZxUZspfaslXlZA.roa Signing time: Wed 21 Jan 2026 12:45:30 +0000 ROA not before: Wed 21 Jan 2026 12:45:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 23532 IP address blocks: 2a00:e460::/29 maxlen: 48 2a0b:d900::/29 maxlen: 48 2a0c:65c0::/29 maxlen: 48 2a0c:65c4::/33 maxlen: 33 2a0c:65c4:8000::/33 maxlen: 33 2a0c:65c5::/33 maxlen: 33 2a0c:65c5:8000::/33 maxlen: 33 2a0c:65c6::/33 maxlen: 33 2a0c:65c6:8000::/33 maxlen: 33 2a0c:65c7::/33 maxlen: 33 2a0c:65c7:8000::/33 maxlen: 33 2a0c:6980::/29 maxlen: 48 2a13:97c0::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/5a6fda-7896-4c50-affd-30495f403784/1/V8ZwyNsy3XSN95fFyTAT2MkfqDk.crl rsync://rpki.ripe.net/repository/DEFAULT/e8/5a6fda-7896-4c50-affd-30495f403784/1/V8ZwyNsy3XSN95fFyTAT2MkfqDk.mft rsync://rpki.ripe.net/repository/DEFAULT/V8ZwyNsy3XSN95fFyTAT2MkfqDk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e0:96:b0:5a:ab:bb:b2:db:91:75:54:bf:a9:07:81:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57c670c8db32dd748df797c5c93013d8c91fa839 Validity Not Before: Jan 21 12:45:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fa115298f9fca78c04119c5466ca5f6ac9579590 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:04:1a:a8:d3:18:cc:a0:6b:36:12:ce:0a:c0: 5a:22:2d:10:56:c1:16:b9:7c:6d:67:40:54:9c:a6: ca:f1:46:10:4e:39:22:4a:be:12:57:56:1c:8a:ee: 59:87:7e:08:0f:55:5e:19:3f:ef:b0:fd:82:ac:ce: f4:e9:d8:44:63:b0:ed:28:0b:03:a4:71:1d:65:64: 29:cc:ce:5e:a2:4f:e8:c2:16:2e:68:d0:da:46:cf: 57:ab:e6:19:70:a0:e0:84:a6:79:b3:ae:f7:12:68: 56:47:7f:92:b6:d1:b1:45:50:42:90:ab:d0:f9:85: 93:4e:62:ce:92:79:26:27:eb:9c:86:c4:e7:7a:ea: 3d:e3:72:b7:39:e4:8e:95:12:43:52:99:62:94:da: 4b:7e:7e:10:18:14:c9:46:16:4d:d3:0e:3e:79:24: d7:2e:c5:06:e5:c1:ba:57:f7:27:39:18:04:ee:1e: 20:51:3d:1d:f1:63:f6:72:84:90:70:fc:b0:83:d8: 01:18:18:f8:72:2f:a6:75:b3:17:33:59:6e:88:7d: 2c:c3:0e:a7:ab:87:da:53:e6:c1:0e:ca:7a:4b:a1: 7f:5b:10:a4:62:14:cb:59:a9:ea:32:bc:a0:43:dc: 9c:cb:71:b3:e5:8c:dd:0c:ab:b0:b8:8e:c7:cc:75: 51:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:11:52:98:F9:FC:A7:8C:04:11:9C:54:66:CA:5F:6A:C9:57:95:90 X509v3 Authority Key Identifier: keyid:57:C6:70:C8:DB:32:DD:74:8D:F7:97:C5:C9:30:13:D8:C9:1F:A8:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V8ZwyNsy3XSN95fFyTAT2MkfqDk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/5a6fda-7896-4c50-affd-30495f403784/1/1-hFSmPn8p4wEEZxUZspfaslXlZA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/5a6fda-7896-4c50-affd-30495f403784/1/V8ZwyNsy3XSN95fFyTAT2MkfqDk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a00:e460::/29 2a0b:d900::/29 2a0c:65c0::/29 2a0c:6980::/29 2a13:97c0::/29 Signature Algorithm: sha256WithRSAEncryption b8:43:c7:4d:35:f7:ee:17:9a:34:2a:fa:84:ed:26:ae:22:f1: 55:d5:2f:26:01:e2:7e:fc:5b:11:4d:6f:92:af:9e:00:7f:d9: de:6e:d3:34:2a:0b:80:b8:34:b5:fc:f1:77:4a:72:9e:72:04: ca:7b:52:06:2a:f7:06:d2:dc:95:91:21:b0:b6:31:2e:bf:8a: e2:87:c4:2b:ef:cf:ce:59:f6:f6:aa:f7:5d:e5:ca:24:1c:59: 62:02:dc:23:21:8a:6b:54:f9:0f:55:7f:7f:63:76:ad:5d:c0: 07:87:20:77:88:a3:fe:c3:93:38:55:ca:49:3c:d5:6f:1a:fe: 93:b1:da:5c:ef:42:56:7a:c8:65:55:bd:a3:ff:a1:e2:1b:43: 02:5b:c6:a7:3f:ff:1f:79:83:51:9d:06:62:e6:b0:45:4b:d0: df:2f:89:fc:75:aa:c0:7a:f1:d4:a2:d5:1c:3e:60:38:2d:32: 17:5a:5b:e1:f1:36:d0:ee:b7:fb:7d:72:14:01:2b:57:25:5b: 12:9d:b3:df:9d:31:b4:60:d1:af:ef:4a:f6:ff:13:be:72:58: b7:75:9e:b3:10:fc:9d:35:5e:75:a6:de:4c:89:7a:53:e5:f0: c7:ff:89:d0:de:5c:54:e2:70:bc:ff:c3:12:d1:57:5f:42:32: 87:0c:5d:3c -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgISAZvglrBaq7uy25F1VL+pB4GxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU3YzY3MGM4ZGIzMmRkNzQ4ZGY3OTdjNWM5MzAxM2Q4Yzkx ZmE4MzkwHhcNMjYwMTIxMTI0NTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYTExNTI5OGY5ZmNhNzhjMDQxMTljNTQ2NmNhNWY2YWM5NTc5NTkwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtwQaqNMYzKBrNhLOCsBaIi0QVsEW uXxtZ0BUnKbK8UYQTjkiSr4SV1Yciu5Zh34ID1VeGT/vsP2CrM706dhEY7DtKAsD pHEdZWQpzM5eok/owhYuaNDaRs9Xq+YZcKDghKZ5s673EmhWR3+SttGxRVBCkKvQ +YWTTmLOknkmJ+uchsTneuo943K3OeSOlRJDUplilNpLfn4QGBTJRhZN0w4+eSTX LsUG5cG6V/cnORgE7h4gUT0d8WP2coSQcPywg9gBGBj4ci+mdbMXM1luiH0sww6n q4faU+bBDsp6S6F/WxCkYhTLWanqMrygQ9ycy3Gz5YzdDKuwuI7HzHVRowIDAQAB o4ICJzCCAiMwHQYDVR0OBBYEFPoRUpj5/KeMBBGcVGbKX2rJV5WQMB8GA1UdIwQY MBaAFFfGcMjbMt10jfeXxckwE9jJH6g5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVjhad3lOc3kzWFNOOTVmRnlUQVQyTWtmcURrLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC81YTZmZGEtNzg5Ni00YzUwLWFmZmQt MzA0OTVmNDAzNzg0LzEvMS1oRlNtUG44cDR3RUVaeFVac3BmYXNsWGxaQS5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvZTgvNWE2ZmRhLTc4OTYtNGM1MC1hZmZkLTMwNDk1ZjQwMzc4 NC8xL1Y4Wnd5TnN5M1hTTjk1ZkZ5VEFUMk1rZnFEay5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjA8BggrBgEFBQcBBwEB/wQtMCswKQQCAAIwIwMFAyoA5GAD BQMqC9kAAwUDKgxlwAMFAyoMaYADBQMqE5fAMA0GCSqGSIb3DQEBCwUAA4IBAQC4 Q8dNNffuF5o0KvqE7SauIvFV1S8mAeJ+/FsRTW+Sr54Af9nebtM0KguAuDS1/PF3 SnKecgTKe1IGKvcG0tyVkSGwtjEuv4rih8Qr78/OWfb2qvdd5cokHFliAtwjIYpr VPkPVX9/Y3atXcAHhyB3iKP+w5M4VcpJPNVvGv6Tsdpc70JWeshlVb2j/6HiG0MC W8anP/8feYNRnQZi5rBFS9DfL4n8darAevHUotUcPmA4LTIXWlvh8TbQ7rf7fXIU AStXJVsSnbPfnTG0YNGv70r2/xO+cli3dZ6zEPydNV51pt5MiXpT5fDH/4nQ3lxU 4nC8/8MS0VdfQjKHDF08 -----END CERTIFICATE-----Generated at Sun Jan 25 10:32:52 2026 by rpki-client