This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/af8f36-e358-4b76-8822-128b5c3d053a/1/HMfT7RXQv0cCzI6qjjbXpv0Dpvs.roa File: HMfT7RXQv0cCzI6qjjbXpv0Dpvs.roa (raw, json) Hash identifier: rpVCvThgsyRbmHi9yrVB1FHQ2vnW/yUkYGAfm5xLUFo= Subject key identifier: 1C:C7:D3:ED:15:D0:BF:47:02:CC:8E:AA:8E:36:D7:A6:FD:03:A6:FB Certificate issuer: /CN=1ce65c57686ce5e51b367fc996b49bcc59896b9c Certificate serial: 019B7B36639473E760CD0698A0A610C0D253 Authority key identifier: 1C:E6:5C:57:68:6C:E5:E5:1B:36:7F:C9:96:B4:9B:CC:59:89:6B:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HOZcV2hs5eUbNn_JlrSbzFmJa5w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/af8f36-e358-4b76-8822-128b5c3d053a/1/HMfT7RXQv0cCzI6qjjbXpv0Dpvs.roa Signing time: Thu 01 Jan 2026 20:18:40 +0000 ROA not before: Thu 01 Jan 2026 20:18:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3320 IP address blocks: 2a0e:4c44:5410::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/af8f36-e358-4b76-8822-128b5c3d053a/1/HOZcV2hs5eUbNn_JlrSbzFmJa5w.crl rsync://rpki.ripe.net/repository/DEFAULT/93/af8f36-e358-4b76-8822-128b5c3d053a/1/HOZcV2hs5eUbNn_JlrSbzFmJa5w.mft rsync://rpki.ripe.net/repository/DEFAULT/HOZcV2hs5eUbNn_JlrSbzFmJa5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 02:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:63:94:73:e7:60:cd:06:98:a0:a6:10:c0:d2:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1ce65c57686ce5e51b367fc996b49bcc59896b9c Validity Not Before: Jan 1 20:18:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1cc7d3ed15d0bf4702cc8eaa8e36d7a6fd03a6fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d0:59:45:3f:16:81:4a:19:e0:77:cc:bc:3b: a6:8a:4c:36:b9:a8:01:12:70:fe:3c:b9:67:8f:4b: 58:c0:65:c0:51:39:4b:21:1d:d4:32:7b:20:ea:d7: ad:fb:d5:ce:14:0d:34:0a:30:6f:b7:56:4f:51:54: 85:14:6e:f9:a7:f7:57:75:34:00:e3:f4:1f:27:fe: d5:3d:b4:8b:d0:5f:14:10:74:22:5e:9e:19:0d:44: 0d:af:aa:94:bc:24:46:d8:86:2d:7e:aa:6c:eb:a9: af:45:a7:06:89:ee:9b:09:ad:00:7f:fa:94:53:fd: cd:a8:1d:69:06:f5:e7:10:11:9b:4a:e9:76:e8:fb: 69:69:9a:c5:f2:18:e7:5b:26:56:de:2a:71:d7:95: d0:07:4b:31:c3:16:6f:85:3f:02:5a:af:bb:b3:23: 5b:71:a7:47:9a:51:c6:92:32:96:59:34:1c:fe:0e: 84:43:6b:46:8f:b8:6d:79:6e:70:4a:d6:33:ef:05: fb:63:11:1c:e3:86:d5:20:81:ac:82:d7:a3:9c:92: 62:63:c2:94:b7:eb:a0:57:63:40:52:ca:e3:fa:42: 22:ad:50:04:e6:d8:87:45:b2:ed:23:bd:72:4d:f0: 23:e6:22:70:12:c1:6a:75:71:49:94:1d:4f:48:ae: 70:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:C7:D3:ED:15:D0:BF:47:02:CC:8E:AA:8E:36:D7:A6:FD:03:A6:FB X509v3 Authority Key Identifier: keyid:1C:E6:5C:57:68:6C:E5:E5:1B:36:7F:C9:96:B4:9B:CC:59:89:6B:9C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HOZcV2hs5eUbNn_JlrSbzFmJa5w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/af8f36-e358-4b76-8822-128b5c3d053a/1/HMfT7RXQv0cCzI6qjjbXpv0Dpvs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/93/af8f36-e358-4b76-8822-128b5c3d053a/1/HOZcV2hs5eUbNn_JlrSbzFmJa5w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:4c44:5410::/48 Signature Algorithm: sha256WithRSAEncryption 5a:5e:91:d9:56:cf:32:11:0e:52:2b:3b:43:4e:63:d1:ca:b0: 44:fa:4c:a5:9c:89:9b:be:1d:a7:60:07:ab:1e:6c:21:36:b8: 74:a8:02:8f:f7:f7:00:3e:d7:ba:c7:31:8b:02:33:fd:d8:09: 55:1e:2d:74:e1:0f:ed:da:0e:0f:f1:a8:94:80:d3:80:60:c2: 08:d9:12:65:12:6c:8b:5f:ef:50:70:38:08:67:cb:43:31:e8: 87:22:95:55:2e:ef:b8:41:f7:6b:72:df:62:00:e1:98:93:eb: 2f:2a:f7:8a:2d:5d:a0:30:df:02:cc:15:89:fb:b9:5a:47:ed: 04:41:51:63:e6:09:81:82:52:6d:1e:2c:4d:be:87:b3:cc:27: a5:83:96:fe:07:7c:c9:d7:88:a2:f5:f6:99:85:46:55:d7:59: 54:c6:09:e8:19:2e:ad:2c:41:91:e6:18:93:8e:d1:3d:ba:7f: 0e:74:25:f8:55:f9:c1:9e:8b:4e:74:65:02:e5:a3:dc:f3:fd: f2:0a:5c:36:fb:e7:b5:a1:2c:6b:d9:5d:81:af:38:16:87:45: 06:0d:d8:75:e2:85:a3:b4:74:89:ab:1b:64:fb:b8:0d:76:16: c3:92:80:16:fa:b1:89:c4:9e:eb:79:de:f7:68:25:9d:9e:1f: a9:a5:ad:2d -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt7NmOUc+dgzQaYoKYQwNJTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjZTY1YzU3Njg2Y2U1ZTUxYjM2N2ZjOTk2YjQ5YmNjNTk4 OTZiOWMwHhcNMjYwMTAxMjAxODQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxY2M3ZDNlZDE1ZDBiZjQ3MDJjYzhlYWE4ZTM2ZDdhNmZkMDNhNmZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArdBZRT8WgUoZ4HfMvDumikw2uagB EnD+PLlnj0tYwGXAUTlLIR3UMnsg6tet+9XOFA00CjBvt1ZPUVSFFG75p/dXdTQA 4/QfJ/7VPbSL0F8UEHQiXp4ZDUQNr6qUvCRG2IYtfqps66mvRacGie6bCa0Af/qU U/3NqB1pBvXnEBGbSul26PtpaZrF8hjnWyZW3ipx15XQB0sxwxZvhT8CWq+7syNb cadHmlHGkjKWWTQc/g6EQ2tGj7hteW5wStYz7wX7YxEc44bVIIGsgtejnJJiY8KU t+ugV2NAUsrj+kIirVAE5tiHRbLtI71yTfAj5iJwEsFqdXFJlB1PSK5wGwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFBzH0+0V0L9HAsyOqo4216b9A6b7MB8GA1UdIwQY MBaAFBzmXFdobOXlGzZ/yZa0m8xZiWucMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSE9aY1YyaHM1ZVViTm5fSmxyU2J6Rm1KYTV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My9hZjhmMzYtZTM1OC00Yjc2LTg4MjIt MTI4YjVjM2QwNTNhLzEvSE1mVDdSWFF2MGNDekk2cWpqYlhwdjBEcHZzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85My9hZjhmMzYtZTM1OC00Yjc2LTg4MjItMTI4YjVjM2QwNTNh LzEvSE9aY1YyaHM1ZVViTm5fSmxyU2J6Rm1KYTV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg5MRFQQ MA0GCSqGSIb3DQEBCwUAA4IBAQBaXpHZVs8yEQ5SKztDTmPRyrBE+kylnImbvh2n YAerHmwhNrh0qAKP9/cAPte6xzGLAjP92AlVHi104Q/t2g4P8aiUgNOAYMII2RJl EmyLX+9QcDgIZ8tDMeiHIpVVLu+4Qfdrct9iAOGYk+svKveKLV2gMN8CzBWJ+7la R+0EQVFj5gmBglJtHixNvoezzCelg5b+B3zJ14ii9faZhUZV11lUxgnoGS6tLEGR 5hiTjtE9un8OdCX4VfnBnotOdGUC5aPc8/3yClw2++e1oSxr2V2BrzgWh0UGDdh1 4oWjtHSJqxtk+7gNdhbDkoAW+rGJxJ7red73aCWdnh+ppa0t -----END CERTIFICATE-----Generated at Mon Jan 19 11:48:42 2026 by rpki-client