This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/hNqK6zLi8m-2NRhOM1I7CqyPqgY.roa File: hNqK6zLi8m-2NRhOM1I7CqyPqgY.roa (raw, json) Hash identifier: /38agfthOMwq9vL91tgzz6OLu0yt0ZcfDri0YaKvot8= Subject key identifier: 84:DA:8A:EB:32:E2:F2:6F:B6:35:18:4E:33:52:3B:0A:AC:8F:AA:06 Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa Certificate serial: 019B797EB176A3887CDBE2CBE71E98F554FE Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/hNqK6zLi8m-2NRhOM1I7CqyPqgY.roa Signing time: Thu 01 Jan 2026 12:18:24 +0000 ROA not before: Thu 01 Jan 2026 12:18:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209306 IP address blocks: 2a0e:aa06:400::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.mft rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 07 Jan 2026 14:32:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:b1:76:a3:88:7c:db:e2:cb:e7:1e:98:f5:54:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa Validity Not Before: Jan 1 12:18:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=84da8aeb32e2f26fb635184e33523b0aac8faa06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:67:2c:da:a7:09:48:23:ed:d5:54:40:80:bf: 09:6d:eb:e6:35:86:80:91:e8:d3:dd:41:d7:cf:4b: 1f:cf:df:55:2d:31:77:db:33:86:24:03:26:b2:28: 5f:4d:92:6b:6c:90:fd:5a:dd:47:68:a4:bd:8c:cd: 13:77:08:81:e3:c3:af:fd:67:ad:a2:dd:0f:ec:39: 8f:5e:fc:2f:64:55:48:51:cf:e6:22:d4:cb:40:f4: 4a:d9:ae:82:34:3b:6b:b7:91:2b:00:0e:e0:ff:df: 63:37:09:ad:ed:16:ea:d0:58:16:cd:0b:2a:83:fc: b3:f8:c9:a8:5e:5b:dc:04:a6:32:c3:98:44:1a:36: b0:18:3e:3c:1b:c8:26:1e:90:c2:7c:3e:08:cc:b3: c0:07:57:3e:07:20:a1:ca:11:4c:8f:fc:bd:70:17: 9a:58:dd:28:04:1b:75:0c:77:cd:34:d4:80:85:48: d6:33:8d:ab:88:0b:a7:69:a8:a6:ec:ad:66:8e:c3: 51:37:5a:1d:da:9e:78:7e:71:d0:4a:a9:e7:0b:19: f9:1d:bd:21:a3:9b:cb:99:90:1e:06:bc:ce:6d:ff: b8:1c:3e:a2:44:8a:ee:b5:33:3f:34:7f:df:c6:96: 84:40:bf:d7:7a:c1:c1:71:67:aa:97:2d:03:99:a6: 32:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:DA:8A:EB:32:E2:F2:6F:B6:35:18:4E:33:52:3B:0A:AC:8F:AA:06 X509v3 Authority Key Identifier: keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/hNqK6zLi8m-2NRhOM1I7CqyPqgY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:aa06:400::/44 Signature Algorithm: sha256WithRSAEncryption 64:34:fc:bc:9c:81:95:49:30:cb:36:8a:d9:d2:c1:78:3c:98: 47:cb:6f:86:90:ac:1a:97:16:48:9c:e2:31:d0:33:56:74:e3: 89:a2:91:d8:ef:9d:74:66:ad:7a:92:6f:f9:5b:ad:95:49:44: 0d:f7:68:6e:79:ed:a2:f8:32:95:de:20:96:99:f6:74:8c:23: e4:4f:94:32:4d:0b:67:84:99:b8:dd:70:ee:48:14:f5:4d:33: 6d:45:33:83:bf:06:ef:da:26:e9:c5:cd:92:49:6c:b2:b4:ea: c7:fb:65:c9:a9:5a:e8:6e:28:42:d7:e5:92:66:78:10:b2:53: b6:99:db:4e:c6:11:7e:cf:4c:25:f4:b7:2f:9f:77:29:53:07: c7:ae:e9:0a:bd:55:c9:b4:47:40:7b:dd:42:0f:7d:7e:0a:fa: a1:77:c4:5b:6c:5c:b1:1b:b0:e2:d5:9e:51:b7:0f:a7:1e:ea: 7c:6d:ba:49:b4:64:c1:35:6a:15:16:b9:69:06:72:3f:e2:44: 84:0a:f6:4e:45:8f:d7:cc:c5:1d:be:61:f7:13:4c:21:7c:24: 66:7a:9d:d1:61:66:e6:db:62:0c:2b:2c:e9:5e:43:77:c5:c3: cb:66:08:9d:f2:c0:85:c9:db:03:42:6d:24:cb:38:87:22:66: b7:b9:6d:25 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5frF2o4h82+LL5x6Y9VT+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzNjFiNWNkNjk2ODI1Yjc0ZmNjYmE3ZDk3YzNkMGEyNzI0 ZWYzYWEwHhcNMjYwMTAxMTIxODI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NGRhOGFlYjMyZTJmMjZmYjYzNTE4NGUzMzUyM2IwYWFjOGZhYTA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhWcs2qcJSCPt1VRAgL8JbevmNYaA kejT3UHXz0sfz99VLTF32zOGJAMmsihfTZJrbJD9Wt1HaKS9jM0TdwiB48Ov/Wet ot0P7DmPXvwvZFVIUc/mItTLQPRK2a6CNDtrt5ErAA7g/99jNwmt7Rbq0FgWzQsq g/yz+MmoXlvcBKYyw5hEGjawGD48G8gmHpDCfD4IzLPAB1c+ByChyhFMj/y9cBea WN0oBBt1DHfNNNSAhUjWM42riAunaaim7K1mjsNRN1od2p54fnHQSqnnCxn5Hb0h o5vLmZAeBrzObf+4HD6iRIrutTM/NH/fxpaEQL/XesHBcWeqly0DmaYyGQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFITaiusy4vJvtjUYTjNSOwqsj6oGMB8GA1UdIwQY MBaAFJNhtc1paCW3T8y6fZfD0KJyTvOqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEt YTU0MWQxYmNlZTE5LzEvaE5xSzZ6TGk4bS0yTlJoT00xSTdDcXlQcWdZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEtYTU0MWQxYmNlZTE5 LzEvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6qBgQA MA0GCSqGSIb3DQEBCwUAA4IBAQBkNPy8nIGVSTDLNorZ0sF4PJhHy2+GkKwalxZI nOIx0DNWdOOJopHY7510Zq16km/5W62VSUQN92huee2i+DKV3iCWmfZ0jCPkT5Qy TQtnhJm43XDuSBT1TTNtRTODvwbv2ibpxc2SSWyytOrH+2XJqVrobihC1+WSZngQ slO2mdtOxhF+z0wl9Lcvn3cpUwfHrukKvVXJtEdAe91CD31+Cvqhd8RbbFyxG7Di 1Z5Rtw+nHup8bbpJtGTBNWoVFrlpBnI/4kSECvZORY/XzMUdvmH3E0whfCRmep3R YWbm22IMKyzpXkN3xcPLZgid8sCFydsDQm0kyziHIma3uW0l -----END CERTIFICATE-----Generated at Tue Jan 6 21:32:09 2026 by rpki-client