This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/htYhWUioYCDJo6nxIcNKky94uws.roa File: htYhWUioYCDJo6nxIcNKky94uws.roa (raw, json) Hash identifier: k5FO6tYZGH00rUDjMFodEsOJSsR9ms34ekdAnYB+Tzo= Subject key identifier: 86:D6:21:59:48:A8:60:20:C9:A3:A9:F1:21:C3:4A:93:2F:78:BB:0B Certificate issuer: /CN=a38b176a7d92e501eedaef6c60e8ce3a68d75224 Certificate serial: 019B7A5B0307FDCF5E4BCBEDB7EA5F8DFCC5 Authority key identifier: A3:8B:17:6A:7D:92:E5:01:EE:DA:EF:6C:60:E8:CE:3A:68:D7:52:24 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o4sXan2S5QHu2u9sYOjOOmjXUiQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/htYhWUioYCDJo6nxIcNKky94uws.roa Signing time: Thu 01 Jan 2026 16:19:03 +0000 ROA not before: Thu 01 Jan 2026 16:19:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49132 IP address blocks: 2a13:1500:2200::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/o4sXan2S5QHu2u9sYOjOOmjXUiQ.crl rsync://rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/o4sXan2S5QHu2u9sYOjOOmjXUiQ.mft rsync://rpki.ripe.net/repository/DEFAULT/o4sXan2S5QHu2u9sYOjOOmjXUiQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:03:07:fd:cf:5e:4b:cb:ed:b7:ea:5f:8d:fc:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a38b176a7d92e501eedaef6c60e8ce3a68d75224 Validity Not Before: Jan 1 16:19:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=86d6215948a86020c9a3a9f121c34a932f78bb0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:0c:9c:7b:45:f4:1a:1f:80:01:67:7f:81:6f: b6:97:0f:56:af:06:4b:76:e1:a4:85:df:8a:0b:ef: 35:bd:83:ac:03:e8:b7:6a:a9:dd:9c:51:32:c9:3f: ac:69:1a:07:a8:e2:7a:16:8c:76:b7:b6:48:23:f4: 45:e7:a3:1a:50:2b:19:53:79:69:6e:51:ea:8c:01: 38:6e:5c:63:da:33:08:8f:b0:4c:4c:7b:b8:3e:e9: 9e:b0:2b:22:69:79:d6:08:f8:cc:ac:8d:b3:34:3b: 5c:fd:5e:7b:8f:41:f3:0c:a4:e5:3b:e0:c7:35:c0: 3e:e1:72:0b:39:ca:10:48:5c:ac:52:b7:f9:fd:d1: 32:ef:10:a3:1c:64:2e:bd:b3:a0:b4:2b:16:db:a8: a2:1d:cb:45:16:be:5b:5f:b1:4d:01:28:8c:78:92: ba:07:da:0a:49:09:14:bb:01:a1:d9:03:bd:96:03: 94:70:b4:15:3d:74:01:16:93:62:e8:df:bb:4f:1f: 50:8e:7f:66:f7:7f:8e:78:20:9e:11:be:97:c6:f7: 94:95:32:e0:5a:93:1a:94:03:88:a5:f5:fb:67:b1: ca:ef:cc:1f:f8:32:b8:9e:fa:dd:21:35:b3:d9:9b: 90:62:44:1c:4f:0a:49:e2:46:d6:ca:d6:7d:fd:b2: 21:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:D6:21:59:48:A8:60:20:C9:A3:A9:F1:21:C3:4A:93:2F:78:BB:0B X509v3 Authority Key Identifier: keyid:A3:8B:17:6A:7D:92:E5:01:EE:DA:EF:6C:60:E8:CE:3A:68:D7:52:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o4sXan2S5QHu2u9sYOjOOmjXUiQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/htYhWUioYCDJo6nxIcNKky94uws.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/o4sXan2S5QHu2u9sYOjOOmjXUiQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a13:1500:2200::/40 Signature Algorithm: sha256WithRSAEncryption 04:f8:28:61:de:cd:c5:47:c4:49:e0:76:50:ca:9c:31:3a:03: 18:1b:6b:23:bc:99:9a:58:1b:da:64:91:2d:d9:a7:86:17:c3: 7e:da:34:b4:f3:71:85:49:b7:35:d9:8e:d7:82:bd:71:1a:22: 73:82:81:24:76:ea:24:eb:6b:7d:ab:e4:6a:1e:fd:09:c9:f4: d1:74:4e:88:01:a9:0f:2e:88:ac:01:c4:60:50:83:b7:a3:2a: 91:89:66:92:8a:aa:be:10:8b:43:35:f2:bd:9c:41:5f:63:6c: bf:af:97:1e:cb:da:d6:2e:0a:35:14:87:f0:32:68:26:21:2f: 65:de:ee:eb:d8:d3:bc:2d:fc:6d:9e:ef:bf:14:8c:c4:6f:24: fe:56:cf:10:2d:c0:8e:f6:94:4b:8c:5a:d9:4e:92:b6:5f:f8: 64:45:5d:74:a4:b2:14:2d:f6:a7:17:81:1f:ad:71:b6:73:45: ba:9d:6d:3e:3f:80:84:e9:45:e4:08:e4:db:bf:d6:0d:5e:94: 49:03:00:a1:9d:4b:d9:4f:17:68:06:7c:3a:41:da:b5:f7:d7: 31:4e:6d:1f:7f:8e:5e:11:8f:63:a4:7e:65:68:e2:57:aa:21: ee:ea:16:b8:f7:31:13:2c:77:38:64:b8:b4:f1:93:47:f1:48: 4e:18:da:7d -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt6WwMH/c9eS8vtt+pfjfzFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzOGIxNzZhN2Q5MmU1MDFlZWRhZWY2YzYwZThjZTNhNjhk NzUyMjQwHhcNMjYwMTAxMTYxOTAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NmQ2MjE1OTQ4YTg2MDIwYzlhM2E5ZjEyMWMzNGE5MzJmNzhiYjBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5gyce0X0Gh+AAWd/gW+2lw9WrwZL duGkhd+KC+81vYOsA+i3aqndnFEyyT+saRoHqOJ6Fox2t7ZII/RF56MaUCsZU3lp blHqjAE4blxj2jMIj7BMTHu4PumesCsiaXnWCPjMrI2zNDtc/V57j0HzDKTlO+DH NcA+4XILOcoQSFysUrf5/dEy7xCjHGQuvbOgtCsW26iiHctFFr5bX7FNASiMeJK6 B9oKSQkUuwGh2QO9lgOUcLQVPXQBFpNi6N+7Tx9Qjn9m93+OeCCeEb6XxveUlTLg WpMalAOIpfX7Z7HK78wf+DK4nvrdITWz2ZuQYkQcTwpJ4kbWytZ9/bIh4wIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFIbWIVlIqGAgyaOp8SHDSpMveLsLMB8GA1UdIwQY MBaAFKOLF2p9kuUB7trvbGDozjpo11IkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbzRzWGFuMlM1UUh1MnU5c1lPak9PbWpYVWlRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi84MTAwZGItNDQzYS00YzdlLWJiZTIt ZWZlNzljMjU0ZTI1LzEvaHRZaFdVaW9ZQ0RKbzZueEljTktreTk0dXdzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZi84MTAwZGItNDQzYS00YzdlLWJiZTItZWZlNzljMjU0ZTI1 LzEvbzRzWGFuMlM1UUh1MnU5c1lPak9PbWpYVWlRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKhMVACIw DQYJKoZIhvcNAQELBQADggEBAAT4KGHezcVHxEngdlDKnDE6AxgbayO8mZpYG9pk kS3Zp4YXw37aNLTzcYVJtzXZjteCvXEaInOCgSR26iTra32r5Goe/QnJ9NF0TogB qQ8uiKwBxGBQg7ejKpGJZpKKqr4Qi0M18r2cQV9jbL+vlx7L2tYuCjUUh/AyaCYh L2Xe7uvY07wt/G2e778UjMRvJP5WzxAtwI72lEuMWtlOkrZf+GRFXXSkshQt9qcX gR+tcbZzRbqdbT4/gITpReQI5Nu/1g1elEkDAKGdS9lPF2gGfDpB2rX31zFObR9/ jl4Rj2OkfmVo4leqIe7qFrj3MRMsdzhkuLTxk0fxSE4Y2n0= -----END CERTIFICATE-----Generated at Mon Feb 9 21:01:30 2026 by rpki-client