This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/8b4147-e6e0-4d80-a93f-ef63b816dd35/1/H0Uv4qjQoNIfOFA2Uh2lfvSrnuM.roa File: H0Uv4qjQoNIfOFA2Uh2lfvSrnuM.roa (raw, json) Hash identifier: vY+2w1+HCWEpgUUR51DXDaRBRAesuJMYriq8Ie3SSYY= Subject key identifier: 1F:45:2F:E2:A8:D0:A0:D2:1F:38:50:36:52:1D:A5:7E:F4:AB:9E:E3 Certificate issuer: /CN=e4d7aaa3d25c2f9ebbec74c830cc0cde9318c8f8 Certificate serial: 019B7F844A44977945EDCC1346A929860B1A Authority key identifier: E4:D7:AA:A3:D2:5C:2F:9E:BB:EC:74:C8:30:CC:0C:DE:93:18:C8:F8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Neqo9JcL5677HTIMMwM3pMYyPg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/8b4147-e6e0-4d80-a93f-ef63b816dd35/1/H0Uv4qjQoNIfOFA2Uh2lfvSrnuM.roa Signing time: Fri 02 Jan 2026 16:22:14 +0000 ROA not before: Fri 02 Jan 2026 16:22:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 0 IP address blocks: 2a01:f240::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/8b4147-e6e0-4d80-a93f-ef63b816dd35/1/5Neqo9JcL5677HTIMMwM3pMYyPg.crl rsync://rpki.ripe.net/repository/DEFAULT/05/8b4147-e6e0-4d80-a93f-ef63b816dd35/1/5Neqo9JcL5677HTIMMwM3pMYyPg.mft rsync://rpki.ripe.net/repository/DEFAULT/5Neqo9JcL5677HTIMMwM3pMYyPg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 10:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:4a:44:97:79:45:ed:cc:13:46:a9:29:86:0b:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e4d7aaa3d25c2f9ebbec74c830cc0cde9318c8f8 Validity Not Before: Jan 2 16:22:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1f452fe2a8d0a0d21f385036521da57ef4ab9ee3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:5f:4d:24:52:52:84:d6:bf:61:ad:29:59:00: b8:db:6b:d6:f9:75:38:25:e1:97:ed:fe:f9:27:28: 7b:56:4d:ef:6d:61:4e:07:d1:a0:12:88:b9:28:e1: e4:89:50:8a:59:c3:c0:58:3d:51:bc:29:99:e2:f7: 7f:2c:a9:20:f1:00:30:64:23:04:7e:d8:b8:84:26: 05:31:d0:ce:7d:fe:e5:23:51:29:f0:15:75:c9:47: 71:7f:74:81:ee:51:ec:31:4f:09:05:42:d8:a3:c5: 02:3e:6f:99:91:43:4d:a9:da:08:3c:e6:09:e9:f9: 7e:e0:b8:56:64:2f:af:83:f0:08:80:2d:60:09:ee: c0:ea:be:dd:b3:1e:e8:a6:c9:0a:85:44:76:90:05: 9c:50:a3:92:7f:9e:38:25:a0:11:dd:04:bf:5a:85: 6b:7f:90:ec:42:9a:3e:69:9d:e2:9f:2b:05:76:2d: 90:78:c8:59:80:16:a2:b9:bb:c8:a3:e4:67:9b:12: 3a:ab:09:99:3e:0e:d1:a1:3d:2a:7d:43:00:12:8e: e1:bb:56:c2:8c:de:14:1d:b6:88:ad:2f:a6:6d:cc: e3:68:9e:ec:bf:62:f9:2d:8f:c5:79:27:b3:91:73: 6c:ab:54:9c:b0:62:71:c7:a0:7a:19:bd:53:c4:b0: 41:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:45:2F:E2:A8:D0:A0:D2:1F:38:50:36:52:1D:A5:7E:F4:AB:9E:E3 X509v3 Authority Key Identifier: keyid:E4:D7:AA:A3:D2:5C:2F:9E:BB:EC:74:C8:30:CC:0C:DE:93:18:C8:F8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Neqo9JcL5677HTIMMwM3pMYyPg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/8b4147-e6e0-4d80-a93f-ef63b816dd35/1/H0Uv4qjQoNIfOFA2Uh2lfvSrnuM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/8b4147-e6e0-4d80-a93f-ef63b816dd35/1/5Neqo9JcL5677HTIMMwM3pMYyPg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:f240::/29 Signature Algorithm: sha256WithRSAEncryption 21:4e:27:dd:db:02:ad:2e:01:7a:91:a9:32:68:a2:b4:35:4d: 7d:95:c0:0f:28:ce:4e:49:86:24:cd:bd:1b:a1:fa:52:2d:74: 8d:e5:72:bd:c8:56:9d:7a:01:84:04:ba:07:38:f9:43:80:d1: e6:f8:f0:fe:95:bf:fa:ba:cd:e3:a7:4b:c8:3d:72:96:fd:cd: 82:1e:a3:89:ed:bd:f4:bf:30:72:0e:15:bd:96:2d:79:b3:e5: 46:66:3c:21:42:ef:46:b5:19:e9:74:61:5c:89:dc:41:0e:a7: 0f:26:f6:16:82:89:b2:f4:80:8f:cc:12:4d:20:16:7e:92:d2: df:0f:48:69:d9:67:e7:7d:b9:76:94:25:62:58:96:5d:80:f0: 7f:03:db:2a:15:93:8f:26:f3:66:c6:44:26:fa:51:57:24:68: 36:36:18:58:db:2c:58:9b:e7:70:32:d2:98:c8:f5:40:59:97: fb:27:99:79:2f:67:22:8d:4a:a1:6a:c1:80:b9:a8:65:3c:05: 6a:ce:c6:f9:96:18:61:c3:24:8f:72:2f:01:cd:d8:83:7f:2b: 2c:2c:d6:9d:65:fc:55:c0:51:74:b2:88:eb:94:2a:9c:86:fe: a8:db:14:a0:7d:48:d9:77:2c:c7:b7:fd:dc:ea:07:00:1a:97: b4:6f:09:e4 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt/hEpEl3lF7cwTRqkphgsaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU0ZDdhYWEzZDI1YzJmOWViYmVjNzRjODMwY2MwY2RlOTMx OGM4ZjgwHhcNMjYwMTAyMTYyMjE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZjQ1MmZlMmE4ZDBhMGQyMWYzODUwMzY1MjFkYTU3ZWY0YWI5ZWUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt19NJFJShNa/Ya0pWQC422vW+XU4 JeGX7f75Jyh7Vk3vbWFOB9GgEoi5KOHkiVCKWcPAWD1RvCmZ4vd/LKkg8QAwZCME fti4hCYFMdDOff7lI1Ep8BV1yUdxf3SB7lHsMU8JBULYo8UCPm+ZkUNNqdoIPOYJ 6fl+4LhWZC+vg/AIgC1gCe7A6r7dsx7opskKhUR2kAWcUKOSf544JaAR3QS/WoVr f5DsQpo+aZ3inysFdi2QeMhZgBaiubvIo+RnmxI6qwmZPg7RoT0qfUMAEo7hu1bC jN4UHbaIrS+mbczjaJ7sv2L5LY/FeSezkXNsq1ScsGJxx6B6Gb1TxLBB8QIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFB9FL+Ko0KDSHzhQNlIdpX70q57jMB8GA1UdIwQY MBaAFOTXqqPSXC+eu+x0yDDMDN6TGMj4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNU5lcW85SmNMNTY3N0hUSU1Nd00zcE1ZeVBnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS84YjQxNDctZTZlMC00ZDgwLWE5M2Yt ZWY2M2I4MTZkZDM1LzEvSDBVdjRxalFvTklmT0ZBMlVoMmxmdlNybnVNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS84YjQxNDctZTZlMC00ZDgwLWE5M2YtZWY2M2I4MTZkZDM1 LzEvNU5lcW85SmNMNTY3N0hUSU1Nd00zcE1ZeVBnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgHyQDAN BgkqhkiG9w0BAQsFAAOCAQEAIU4n3dsCrS4BepGpMmiitDVNfZXADyjOTkmGJM29 G6H6Ui10jeVyvchWnXoBhAS6Bzj5Q4DR5vjw/pW/+rrN46dLyD1ylv3Ngh6jie29 9L8wcg4VvZYtebPlRmY8IULvRrUZ6XRhXIncQQ6nDyb2FoKJsvSAj8wSTSAWfpLS 3w9Iadln5325dpQlYliWXYDwfwPbKhWTjybzZsZEJvpRVyRoNjYYWNssWJvncDLS mMj1QFmX+yeZeS9nIo1KoWrBgLmoZTwFas7G+ZYYYcMkj3IvAc3Yg38rLCzWnWX8 VcBRdLKI65QqnIb+qNsUoH1I2Xcsx7f93OoHABqXtG8J5A== -----END CERTIFICATE-----Generated at Fri Jan 9 17:04:37 2026 by rpki-client