This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/f615b0-4d98-4a3d-8bd2-4c93bee27d54/1/HTwlYLS_ffwhQcdIe5ndzskreto.roa File: HTwlYLS_ffwhQcdIe5ndzskreto.roa (raw, json) Hash identifier: 2KCaWvsbTh5/gdngs8HmHbk57EMiFOhMngXsbQP11o0= Subject key identifier: 1D:3C:25:60:B4:BF:7D:FC:21:41:C7:48:7B:99:DD:CE:C9:2B:7A:DA Certificate issuer: /CN=8405c07192a8106fedb0760b8945032ca1d3054b Certificate serial: 019B7CEDFA0EB4000847028D7D4835EB6089 Authority key identifier: 84:05:C0:71:92:A8:10:6F:ED:B0:76:0B:89:45:03:2C:A1:D3:05:4B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hAXAcZKoEG_tsHYLiUUDLKHTBUs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/f615b0-4d98-4a3d-8bd2-4c93bee27d54/1/HTwlYLS_ffwhQcdIe5ndzskreto.roa Signing time: Fri 02 Jan 2026 04:18:49 +0000 ROA not before: Fri 02 Jan 2026 04:18:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51903 IP address blocks: 2a0c:3a81::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/f615b0-4d98-4a3d-8bd2-4c93bee27d54/1/hAXAcZKoEG_tsHYLiUUDLKHTBUs.crl rsync://rpki.ripe.net/repository/DEFAULT/56/f615b0-4d98-4a3d-8bd2-4c93bee27d54/1/hAXAcZKoEG_tsHYLiUUDLKHTBUs.mft rsync://rpki.ripe.net/repository/DEFAULT/hAXAcZKoEG_tsHYLiUUDLKHTBUs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:fa:0e:b4:00:08:47:02:8d:7d:48:35:eb:60:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8405c07192a8106fedb0760b8945032ca1d3054b Validity Not Before: Jan 2 04:18:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1d3c2560b4bf7dfc2141c7487b99ddcec92b7ada Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:90:c0:64:62:64:78:22:e5:39:03:fd:38:7f: 16:32:ce:34:58:d2:c1:4d:3f:ee:af:28:91:f4:f7: 9e:e0:68:35:90:05:6e:d8:26:ff:5c:25:98:60:8c: 51:86:cd:bb:bc:28:6a:8a:76:43:68:66:9d:cd:47: dd:69:07:1d:59:03:dd:9c:71:3e:c1:97:8b:c4:84: 01:b2:ef:97:67:17:89:3a:11:5a:03:fb:ff:8b:a7: 1f:e9:19:5e:f3:17:2a:d7:6a:88:b4:6f:0a:bc:38: 9d:c7:87:2d:01:74:b7:b4:51:51:2e:12:e9:77:46: 2b:36:6c:bd:27:0e:69:da:f5:bb:05:d1:28:7e:d2: 33:67:19:d7:4c:0a:81:e2:5b:93:d6:fe:e9:99:24: ed:95:b2:e9:ac:25:d4:9f:ce:4e:fd:e6:a8:cd:60: f4:6d:5c:7a:e3:a0:e8:21:28:ee:db:e5:aa:18:20: f6:e6:c3:08:12:d8:19:50:09:e5:bf:83:08:a7:12: 55:6e:d6:91:13:12:9b:34:ed:56:7f:ef:a5:6b:7f: 6e:a1:7c:4a:19:43:2a:be:e1:9c:f4:95:ca:67:24: f5:df:76:62:1f:15:24:e0:77:5a:86:90:fa:77:d0: d9:09:e4:9e:fa:9c:df:81:df:69:9f:b0:cd:0c:7a: 5f:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:3C:25:60:B4:BF:7D:FC:21:41:C7:48:7B:99:DD:CE:C9:2B:7A:DA X509v3 Authority Key Identifier: keyid:84:05:C0:71:92:A8:10:6F:ED:B0:76:0B:89:45:03:2C:A1:D3:05:4B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hAXAcZKoEG_tsHYLiUUDLKHTBUs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/f615b0-4d98-4a3d-8bd2-4c93bee27d54/1/HTwlYLS_ffwhQcdIe5ndzskreto.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/f615b0-4d98-4a3d-8bd2-4c93bee27d54/1/hAXAcZKoEG_tsHYLiUUDLKHTBUs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:3a81::/40 Signature Algorithm: sha256WithRSAEncryption 56:76:cb:90:6c:8c:5a:d3:bd:69:d5:4d:ab:de:0d:7d:58:03: 1c:42:c8:e1:79:85:cb:87:1e:5b:a8:e2:b9:4b:b6:6c:44:d9: 42:93:ab:b1:15:e4:8d:45:6c:9e:b6:8c:b9:8b:15:aa:dc:da: 35:e1:3a:70:bc:50:49:ec:14:3c:0c:40:1a:a7:01:15:10:7c: 62:10:20:b4:2a:1f:e1:f1:3d:87:7c:54:da:b8:eb:84:af:52: 2a:db:48:68:7e:76:d9:d7:03:a5:4e:74:e9:ad:b9:cf:f1:dd: 4f:1f:5d:2c:53:0b:2d:61:13:23:40:c8:74:02:d2:e3:0f:1e: 30:b5:33:5b:47:c4:ba:09:e7:a3:1e:fa:eb:8a:24:d0:61:f6: 1e:0c:f5:cd:67:87:0f:76:66:58:61:74:8c:0a:35:7a:33:b9: f9:d2:fc:e1:8c:12:ad:cc:79:7e:f6:2b:ef:d4:40:52:1c:57: e2:02:da:90:cf:f7:a7:e7:d5:1a:05:96:ca:62:ab:b3:19:22: 6d:0a:e7:ff:09:19:6d:7b:46:8b:0f:c1:41:df:bf:44:e8:92: 53:17:43:57:21:1b:0e:ec:cb:d9:62:1f:9b:e9:0c:32:11:b6: ab:12:35:b1:1f:c3:4c:ac:04:4f:66:8b:cc:1e:5c:1b:84:a0: 22:74:d7:da -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt87foOtAAIRwKNfUg162CJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0MDVjMDcxOTJhODEwNmZlZGIwNzYwYjg5NDUwMzJjYTFk MzA1NGIwHhcNMjYwMTAyMDQxODQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZDNjMjU2MGI0YmY3ZGZjMjE0MWM3NDg3Yjk5ZGRjZWM5MmI3YWRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6pDAZGJkeCLlOQP9OH8WMs40WNLB TT/uryiR9Pee4Gg1kAVu2Cb/XCWYYIxRhs27vChqinZDaGadzUfdaQcdWQPdnHE+ wZeLxIQBsu+XZxeJOhFaA/v/i6cf6Rle8xcq12qItG8KvDidx4ctAXS3tFFRLhLp d0YrNmy9Jw5p2vW7BdEoftIzZxnXTAqB4luT1v7pmSTtlbLprCXUn85O/eaozWD0 bVx646DoISju2+WqGCD25sMIEtgZUAnlv4MIpxJVbtaRExKbNO1Wf++la39uoXxK GUMqvuGc9JXKZyT133ZiHxUk4HdahpD6d9DZCeSe+pzfgd9pn7DNDHpfuQIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFB08JWC0v338IUHHSHuZ3c7JK3raMB8GA1UdIwQY MBaAFIQFwHGSqBBv7bB2C4lFAyyh0wVLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEFYQWNaS29FR190c0hZTGlVVURMS0hUQlVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9mNjE1YjAtNGQ5OC00YTNkLThiZDIt NGM5M2JlZTI3ZDU0LzEvSFR3bFlMU19mZndoUWNkSWU1bmR6c2tyZXRvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni9mNjE1YjAtNGQ5OC00YTNkLThiZDItNGM5M2JlZTI3ZDU0 LzEvaEFYQWNaS29FR190c0hZTGlVVURMS0hUQlVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgw6gQAw DQYJKoZIhvcNAQELBQADggEBAFZ2y5BsjFrTvWnVTaveDX1YAxxCyOF5hcuHHluo 4rlLtmxE2UKTq7EV5I1FbJ62jLmLFarc2jXhOnC8UEnsFDwMQBqnARUQfGIQILQq H+HxPYd8VNq464SvUirbSGh+dtnXA6VOdOmtuc/x3U8fXSxTCy1hEyNAyHQC0uMP HjC1M1tHxLoJ56Me+uuKJNBh9h4M9c1nhw92ZlhhdIwKNXozufnS/OGMEq3MeX72 K+/UQFIcV+IC2pDP96fn1RoFlspiq7MZIm0K5/8JGW17RosPwUHfv0ToklMXQ1ch Gw7sy9liH5vpDDIRtqsSNbEfw0ysBE9mi8weXBuEoCJ019o= -----END CERTIFICATE-----Generated at Mon Feb 9 22:35:44 2026 by rpki-client