This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/H2CZmJ8TDDqCgA3UVKEHT5Ab9kE.roa File: H2CZmJ8TDDqCgA3UVKEHT5Ab9kE.roa (raw, json) Hash identifier: T+a/89d5cshzqqSDb6PeIMfbHVvttHGT8MXGuBRaCIo= Subject key identifier: 1F:60:99:98:9F:13:0C:3A:82:80:0D:D4:54:A1:07:4F:90:1B:F6:41 Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce Certificate serial: 019B7CEDF8DE7955B67119BEDA4CF4A80A27 Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/H2CZmJ8TDDqCgA3UVKEHT5Ab9kE.roa Signing time: Fri 02 Jan 2026 04:18:49 +0000 ROA not before: Fri 02 Jan 2026 04:18:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 216107 IP address blocks: 2a0c:e640::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.mft rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:f8:de:79:55:b6:71:19:be:da:4c:f4:a8:0a:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce Validity Not Before: Jan 2 04:18:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1f6099989f130c3a82800dd454a1074f901bf641 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:fb:17:b8:bd:62:bf:2a:a7:bc:24:7d:78:b7: 78:9b:c6:22:96:72:d5:32:bb:44:27:0a:23:f7:c5: 03:98:4e:fd:47:61:18:28:df:d7:34:e2:b3:0d:0e: ab:68:8b:8b:45:9e:73:cf:ec:95:7c:82:ac:ae:c3: a6:08:23:fa:e4:2c:4d:27:f7:71:3e:12:00:4e:63: 63:61:6c:49:3a:bd:6a:f5:9e:ad:31:59:64:3a:cf: d6:b1:13:c9:0e:fd:19:ee:dc:47:05:bc:7f:08:2a: bc:b0:9c:0e:5a:36:f4:2a:eb:74:50:4d:72:54:9d: 0d:8e:10:51:06:8c:77:a1:40:a9:12:fb:4d:22:2e: e2:d8:3c:e3:41:29:20:3f:6f:ff:e8:b7:c4:f4:20: 90:fc:c7:74:dd:ba:13:aa:f7:5a:69:ad:d6:6d:b1: ef:10:f8:98:0f:12:8a:28:1c:5b:f5:c9:b8:9e:52: 29:f7:da:df:bd:93:e1:8a:a5:04:e9:34:e8:79:ae: 5e:45:d6:7c:97:99:fa:f6:74:a4:36:29:22:f7:68: 88:01:25:3e:9b:5c:95:d9:38:b9:d7:a1:88:aa:64: 46:47:7b:78:0d:52:f8:ee:ea:d3:60:52:52:a7:b8: 44:a0:e1:5a:ed:d0:63:bc:ce:ed:e0:ae:6a:f2:6c: a2:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:60:99:98:9F:13:0C:3A:82:80:0D:D4:54:A1:07:4F:90:1B:F6:41 X509v3 Authority Key Identifier: keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/H2CZmJ8TDDqCgA3UVKEHT5Ab9kE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:e640::/32 Signature Algorithm: sha256WithRSAEncryption ba:db:ba:86:1f:a4:94:50:66:22:33:02:92:95:96:78:4a:b2: 6b:19:13:e4:e8:c9:7d:58:0c:e8:1c:44:48:09:d7:b7:34:33: 13:82:cd:44:53:76:f6:1a:bb:97:0d:47:f6:2d:10:7a:44:b5: 34:85:00:9a:a7:a0:1a:c8:11:84:48:32:00:80:21:32:78:1d: 29:a5:0b:85:f7:0f:f1:83:1d:b5:88:bc:62:e4:09:33:5d:b3: d5:b6:a0:fc:ae:d3:ac:0a:22:24:9c:d7:69:3c:af:c2:05:b0: d7:38:7d:f2:20:8c:8c:27:99:8c:29:2d:f4:3b:77:d6:49:de: c3:70:60:1b:a3:7a:f4:61:b1:a3:48:73:35:0a:bf:a6:20:e1: 78:46:39:9f:a6:bc:73:3b:cb:00:fe:b7:b5:80:f6:98:3f:b8: 3d:f0:85:6f:22:1d:a6:6b:5f:1f:7d:0e:cd:cb:d4:3b:c2:59: 1d:9f:b0:68:e5:58:3b:0d:99:4c:b8:9d:7f:5d:96:6b:22:e3: ea:ed:3c:cb:1a:17:8f:17:42:24:a8:9e:cc:28:d3:0e:47:35: 18:55:69:7e:f1:2b:a2:7a:a9:36:3e:bd:b9:7e:3e:33:37:ec: 38:a2:6c:a7:e4:f7:7a:39:cd:97:0d:ec:85:ce:59:c5:3d:82: b1:f2:82:9c -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt87fjeeVW2cRm+2kz0qAonMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDczYzY5ZDA0NTgzNTAwYzVlZjgxMTM2ODMxMjM3NTkzZTBi Yjg2Y2UwHhcNMjYwMTAyMDQxODQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZjYwOTk5ODlmMTMwYzNhODI4MDBkZDQ1NGExMDc0ZjkwMWJmNjQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmfsXuL1ivyqnvCR9eLd4m8YilnLV MrtEJwoj98UDmE79R2EYKN/XNOKzDQ6raIuLRZ5zz+yVfIKsrsOmCCP65CxNJ/dx PhIATmNjYWxJOr1q9Z6tMVlkOs/WsRPJDv0Z7txHBbx/CCq8sJwOWjb0Kut0UE1y VJ0NjhBRBox3oUCpEvtNIi7i2DzjQSkgP2//6LfE9CCQ/Md03boTqvdaaa3WbbHv EPiYDxKKKBxb9cm4nlIp99rfvZPhiqUE6TToea5eRdZ8l5n69nSkNiki92iIASU+ m1yV2Ti516GIqmRGR3t4DVL47urTYFJSp7hEoOFa7dBjvM7t4K5q8myiFwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFB9gmZifEww6goAN1FShB0+QG/ZBMB8GA1UdIwQY MBaAFHPGnQRYNQDF74ETaDEjdZPgu4bOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYzhhZEJGZzFBTVh2Z1JOb01TTjFrLUM3aHM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82ZjZjZTItZTZlZS00ZTJhLTkwNWQt ZjljYjBhN2IyMDZjLzEvSDJDWm1KOFRERHFDZ0EzVVZLRUhUNUFiOWtFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OC82ZjZjZTItZTZlZS00ZTJhLTkwNWQtZjljYjBhN2IyMDZj LzEvYzhhZEJGZzFBTVh2Z1JOb01TTjFrLUM3aHM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgzmQDAN BgkqhkiG9w0BAQsFAAOCAQEAutu6hh+klFBmIjMCkpWWeEqyaxkT5OjJfVgM6BxE SAnXtzQzE4LNRFN29hq7lw1H9i0QekS1NIUAmqegGsgRhEgyAIAhMngdKaULhfcP 8YMdtYi8YuQJM12z1bag/K7TrAoiJJzXaTyvwgWw1zh98iCMjCeZjCkt9Dt31kne w3BgG6N69GGxo0hzNQq/piDheEY5n6a8czvLAP63tYD2mD+4PfCFbyIdpmtfH30O zcvUO8JZHZ+waOVYOw2ZTLidf12WayLj6u08yxoXjxdCJKiezCjTDkc1GFVpfvEr onqpNj69uX4+MzfsOKJsp+T3ejnNlw3shc5ZxT2CsfKCnA== -----END CERTIFICATE-----Generated at Fri Jan 9 09:59:44 2026 by rpki-client