This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/893887-f863-4a8b-bd96-e6958ed5a7a0/1/hTGE6ELHbieMT0G0iN4y8hwxQe0.roa File: hTGE6ELHbieMT0G0iN4y8hwxQe0.roa (raw, json) Hash identifier: jd1Qf3dWz2x2zfCoL963jsCndX0EAqODH84Hv7SXhcU= Subject key identifier: 85:31:84:E8:42:C7:6E:27:8C:4F:41:B4:88:DE:32:F2:1C:31:41:ED Certificate issuer: /CN=51f83b800bf5d66cc76d0e624847fb668e177c71 Certificate serial: 019B7A5AEC6A6B91EC9060D4F4A9D22E5BDC Authority key identifier: 51:F8:3B:80:0B:F5:D6:6C:C7:6D:0E:62:48:47:FB:66:8E:17:7C:71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ufg7gAv11mzHbQ5iSEf7Zo4XfHE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/893887-f863-4a8b-bd96-e6958ed5a7a0/1/hTGE6ELHbieMT0G0iN4y8hwxQe0.roa Signing time: Thu 01 Jan 2026 16:18:57 +0000 ROA not before: Thu 01 Jan 2026 16:18:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209569 IP address blocks: 2001:678:dcc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/893887-f863-4a8b-bd96-e6958ed5a7a0/1/Ufg7gAv11mzHbQ5iSEf7Zo4XfHE.crl rsync://rpki.ripe.net/repository/DEFAULT/02/893887-f863-4a8b-bd96-e6958ed5a7a0/1/Ufg7gAv11mzHbQ5iSEf7Zo4XfHE.mft rsync://rpki.ripe.net/repository/DEFAULT/Ufg7gAv11mzHbQ5iSEf7Zo4XfHE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:ec:6a:6b:91:ec:90:60:d4:f4:a9:d2:2e:5b:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51f83b800bf5d66cc76d0e624847fb668e177c71 Validity Not Before: Jan 1 16:18:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=853184e842c76e278c4f41b488de32f21c3141ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:97:b1:5d:60:d0:b6:b2:53:95:5b:91:67:c0: 4e:53:65:f3:4b:35:d2:48:ec:fc:55:36:98:07:f7: 0a:a4:ab:67:16:a3:63:fa:c1:dd:20:0c:20:ef:bc: 0c:68:6f:13:14:0f:7c:31:09:6b:d1:43:8b:9b:c6: 2a:bd:a3:9e:db:a7:24:b7:6a:d9:b6:24:5b:88:1d: eb:89:94:c6:8c:1a:3a:53:31:b3:cb:c0:f6:40:64: aa:55:b7:8e:90:61:c9:fc:e7:fd:91:61:18:86:32: f8:e2:61:0a:24:7c:15:58:59:b2:ab:a6:84:13:e3: e8:3f:82:a6:8b:42:23:a2:22:c3:41:ad:ee:b5:ab: 67:05:d0:b6:d0:b5:fb:d3:e4:d2:e5:44:f1:85:82: 91:1e:c1:38:6e:a4:f7:cf:aa:e6:7a:5d:5d:a0:77: 20:ab:93:fe:88:14:e7:b8:66:45:d4:bf:cb:b6:95: a8:4d:7f:94:b0:c3:9b:02:38:59:90:a9:ba:60:86: 3a:31:da:b1:86:00:6e:af:99:8d:f7:19:ec:73:44: 65:ee:48:f6:ab:10:8c:15:81:0f:27:b6:75:53:2a: 0d:0d:23:bf:aa:7a:58:c7:ac:ad:45:1d:ba:e9:19: 8a:b2:0d:01:a6:a4:64:ff:c5:25:bf:76:82:06:18: 3d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:31:84:E8:42:C7:6E:27:8C:4F:41:B4:88:DE:32:F2:1C:31:41:ED X509v3 Authority Key Identifier: keyid:51:F8:3B:80:0B:F5:D6:6C:C7:6D:0E:62:48:47:FB:66:8E:17:7C:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ufg7gAv11mzHbQ5iSEf7Zo4XfHE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/893887-f863-4a8b-bd96-e6958ed5a7a0/1/hTGE6ELHbieMT0G0iN4y8hwxQe0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/893887-f863-4a8b-bd96-e6958ed5a7a0/1/Ufg7gAv11mzHbQ5iSEf7Zo4XfHE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:dcc::/48 Signature Algorithm: sha256WithRSAEncryption b8:9f:5c:c6:21:fa:b5:a4:05:81:ac:f8:55:9d:f6:63:8a:c4: d7:39:ee:e3:1d:e2:23:d6:18:47:62:16:8e:b1:b7:e9:96:fe: f9:1d:79:45:6d:bd:78:4e:da:d1:da:67:09:f2:33:05:af:a1: 43:a3:36:d3:05:83:b2:3a:64:99:1d:29:46:28:d6:e8:f8:76: 76:93:3a:ed:89:c3:13:a6:4c:8d:69:13:c2:61:b2:fd:be:f3: ac:72:76:b8:28:3a:12:df:35:71:b4:62:c5:51:64:64:71:65: ad:ca:66:3e:29:c4:2b:2c:88:a3:17:1f:c7:08:5d:72:d6:99: 90:09:5f:c3:94:83:cc:e5:e0:cb:0c:19:8f:30:8c:38:6d:12: 4b:74:69:c3:f7:a0:45:cd:28:51:97:a4:44:f6:80:ca:8d:44: ab:a0:25:93:f3:12:37:0b:08:ce:06:16:b3:98:89:dc:f7:b9: e4:4f:a0:fe:c7:5b:39:48:2c:83:66:fa:72:50:53:e4:79:2a: dd:78:90:8d:51:b3:80:2c:b0:bf:b9:59:ee:78:f8:0f:f1:bd: 13:2d:66:24:d6:37:61:47:dc:96:7c:01:36:fa:9f:e3:32:06: 8b:52:53:b5:58:5b:2f:70:49:c7:40:02:56:52:b7:0f:9e:ee: 4c:15:12:03 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt6Wuxqa5HskGDU9KnSLlvcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUxZjgzYjgwMGJmNWQ2NmNjNzZkMGU2MjQ4NDdmYjY2OGUx NzdjNzEwHhcNMjYwMTAxMTYxODU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NTMxODRlODQyYzc2ZTI3OGM0ZjQxYjQ4OGRlMzJmMjFjMzE0MWVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtJexXWDQtrJTlVuRZ8BOU2XzSzXS SOz8VTaYB/cKpKtnFqNj+sHdIAwg77wMaG8TFA98MQlr0UOLm8YqvaOe26ckt2rZ tiRbiB3riZTGjBo6UzGzy8D2QGSqVbeOkGHJ/Of9kWEYhjL44mEKJHwVWFmyq6aE E+PoP4Kmi0IjoiLDQa3utatnBdC20LX70+TS5UTxhYKRHsE4bqT3z6rmel1doHcg q5P+iBTnuGZF1L/LtpWoTX+UsMObAjhZkKm6YIY6MdqxhgBur5mN9xnsc0Rl7kj2 qxCMFYEPJ7Z1UyoNDSO/qnpYx6ytRR266RmKsg0BpqRk/8Ulv3aCBhg9qwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFIUxhOhCx24njE9BtIjeMvIcMUHtMB8GA1UdIwQY MBaAFFH4O4AL9dZsx20OYkhH+2aOF3xxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVWZnN2dBdjExbXpIYlE1aVNFZjdabzRYZkhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi84OTM4ODctZjg2My00YThiLWJkOTYt ZTY5NThlZDVhN2EwLzEvaFRHRTZFTEhiaWVNVDBHMGlONHk4aHd4UWUwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi84OTM4ODctZjg2My00YThiLWJkOTYtZTY5NThlZDVhN2Ew LzEvVWZnN2dBdjExbXpIYlE1aVNFZjdabzRYZkhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeA3M MA0GCSqGSIb3DQEBCwUAA4IBAQC4n1zGIfq1pAWBrPhVnfZjisTXOe7jHeIj1hhH YhaOsbfplv75HXlFbb14TtrR2mcJ8jMFr6FDozbTBYOyOmSZHSlGKNbo+HZ2kzrt icMTpkyNaRPCYbL9vvOscna4KDoS3zVxtGLFUWRkcWWtymY+KcQrLIijFx/HCF1y 1pmQCV/DlIPM5eDLDBmPMIw4bRJLdGnD96BFzShRl6RE9oDKjUSroCWT8xI3CwjO BhazmInc97nkT6D+x1s5SCyDZvpyUFPkeSrdeJCNUbOALLC/uVnuePgP8b0TLWYk 1jdhR9yWfAE2+p/jMgaLUlO1WFsvcEnHQAJWUrcPnu5MFRID -----END CERTIFICATE-----Generated at Mon Feb 9 22:23:43 2026 by rpki-client