This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/hTJEftSpqDKpAn62ncVILyiUIA4.roa File: hTJEftSpqDKpAn62ncVILyiUIA4.roa (raw, json) Hash identifier: CgeSiN+wMYpnSUEh7oWmMa8OtknjA6ZGJ6sq3RGzTFw= Subject key identifier: 85:32:44:7E:D4:A9:A8:32:A9:02:7E:B6:9D:C5:48:2F:28:94:20:0E Certificate issuer: /CN=29fa7dd63f2e2d87b5f7850093c743bbfbe14e44 Certificate serial: 019B797F1516268D3DBB3ADBB18329A15955 Authority key identifier: 29:FA:7D:D6:3F:2E:2D:87:B5:F7:85:00:93:C7:43:BB:FB:E1:4E:44 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/hTJEftSpqDKpAn62ncVILyiUIA4.roa Signing time: Thu 01 Jan 2026 12:18:50 +0000 ROA not before: Thu 01 Jan 2026 12:18:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201341 IP address blocks: 2a14:c883::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 06 Jan 2026 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:15:16:26:8d:3d:bb:3a:db:b1:83:29:a1:59:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29fa7dd63f2e2d87b5f7850093c743bbfbe14e44 Validity Not Before: Jan 1 12:18:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8532447ed4a9a832a9027eb69dc5482f2894200e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:f9:d5:ed:00:9f:97:45:11:fa:c2:2c:3e:cb: 94:4e:0c:d6:c8:4e:42:c6:08:c7:aa:08:d3:1b:02: d0:1d:06:bc:89:b2:97:92:ea:a6:c9:0f:3b:67:5c: ac:d8:ec:6b:a5:bf:6f:62:78:33:8d:e3:7a:be:9b: 7b:03:cd:7b:ce:fc:a4:d3:52:f8:24:06:2e:34:4a: d8:26:41:d1:de:36:b3:47:4a:cc:2f:fa:45:ea:89: 4a:c2:ad:26:bc:9b:4b:d8:19:e3:60:f5:2f:6f:9c: ca:05:d3:97:6f:58:04:40:ae:82:44:0e:db:5e:20: 25:c1:16:f2:59:1a:15:1c:93:d1:af:9b:7e:98:0a: ef:92:a3:ed:d9:c6:d9:5b:74:0f:7a:14:b9:44:47: 4f:ee:de:1d:b4:08:b1:8f:eb:64:12:e9:b5:50:23: d3:13:af:5d:d9:96:c6:ba:b0:d0:ae:07:21:54:96: 77:eb:27:7b:5c:ff:70:32:c0:3f:22:25:a3:1d:8a: d4:a5:64:fc:07:a4:8c:cb:cb:f0:25:96:89:42:3a: 7f:a5:b8:7a:6f:28:c4:aa:70:c2:4a:4a:1d:67:1b: 14:e4:ac:01:5c:92:06:b0:92:4b:5e:b0:d1:04:01: fd:dc:3b:a0:6d:4d:65:a6:56:eb:b3:75:30:6d:51: 0b:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:32:44:7E:D4:A9:A8:32:A9:02:7E:B6:9D:C5:48:2F:28:94:20:0E X509v3 Authority Key Identifier: keyid:29:FA:7D:D6:3F:2E:2D:87:B5:F7:85:00:93:C7:43:BB:FB:E1:4E:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/hTJEftSpqDKpAn62ncVILyiUIA4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:c883::/33 Signature Algorithm: sha256WithRSAEncryption 42:bf:43:98:5c:89:74:11:3b:48:d5:92:34:ed:9c:2a:14:54: ca:62:11:65:9d:a1:23:4f:9e:10:d7:63:e5:7c:5c:34:39:ec: 7a:4c:0f:9c:9e:a5:cb:3a:af:d7:c3:67:be:98:cc:e1:3d:18: 67:6b:ac:f8:e0:8c:d4:d6:65:0b:7f:a7:31:0f:b5:ba:98:be: 6f:fc:8c:06:98:87:30:e9:b3:4f:4d:07:53:32:73:43:12:8c: 26:04:67:da:80:ca:ae:af:4f:b7:df:78:5d:ad:82:60:7f:1e: ec:9e:e1:95:96:98:5a:75:db:10:c7:7b:4d:d3:9c:e7:8f:43: ad:bb:82:ba:f8:b6:a8:a3:3b:ba:75:d9:8b:f2:5b:3b:38:e1: e5:87:7c:7f:ba:b9:13:ea:5f:18:4a:d6:86:de:18:b5:0e:d7: 62:4e:d3:6b:8a:46:0a:c1:d7:71:34:a6:50:d0:69:d4:ef:b3: 90:a7:b7:bf:9e:57:90:d2:b3:56:17:fc:2e:1c:50:d2:71:03: 0a:ef:d0:5c:d5:cc:2c:46:60:cf:30:5c:f7:de:8a:f7:bd:fb: 77:ca:57:2c:1a:eb:8a:9a:7c:8e:7f:09:78:21:aa:1b:e3:60: 68:c0:39:73:24:a6:e6:1d:53:fe:c5:f5:d2:24:2b:e1:e0:d7: 08:64:73:12 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt5fxUWJo09uzrbsYMpoVlVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ZmE3ZGQ2M2YyZTJkODdiNWY3ODUwMDkzYzc0M2JiZmJl MTRlNDQwHhcNMjYwMTAxMTIxODUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NTMyNDQ3ZWQ0YTlhODMyYTkwMjdlYjY5ZGM1NDgyZjI4OTQyMDBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3vnV7QCfl0UR+sIsPsuUTgzWyE5C xgjHqgjTGwLQHQa8ibKXkuqmyQ87Z1ys2Oxrpb9vYngzjeN6vpt7A817zvyk01L4 JAYuNErYJkHR3jazR0rML/pF6olKwq0mvJtL2BnjYPUvb5zKBdOXb1gEQK6CRA7b XiAlwRbyWRoVHJPRr5t+mArvkqPt2cbZW3QPehS5REdP7t4dtAixj+tkEum1UCPT E69d2ZbGurDQrgchVJZ36yd7XP9wMsA/IiWjHYrUpWT8B6SMy8vwJZaJQjp/pbh6 byjEqnDCSkodZxsU5KwBXJIGsJJLXrDRBAH93DugbU1lplbrs3UwbVELpwIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFIUyRH7UqagyqQJ+tp3FSC8olCAOMB8GA1UdIwQY MBaAFCn6fdY/Li2HtfeFAJPHQ7v74U5EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8yYzBjYmYtMTFmNy00YjZkLWI4OGUt NzlmN2I2ZWE3YzE0LzEvaFRKRWZ0U3BxREtwQW42Mm5jVklMeWlVSUE0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy8yYzBjYmYtMTFmNy00YjZkLWI4OGUtNzlmN2I2ZWE3YzE0 LzEvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYHKhTIgwAw DQYJKoZIhvcNAQELBQADggEBAEK/Q5hciXQRO0jVkjTtnCoUVMpiEWWdoSNPnhDX Y+V8XDQ57HpMD5yepcs6r9fDZ76YzOE9GGdrrPjgjNTWZQt/pzEPtbqYvm/8jAaY hzDps09NB1Myc0MSjCYEZ9qAyq6vT7ffeF2tgmB/Huye4ZWWmFp12xDHe03TnOeP Q627grr4tqijO7p12YvyWzs44eWHfH+6uRPqXxhK1obeGLUO12JO02uKRgrB13E0 plDQadTvs5Cnt7+eV5DSs1YX/C4cUNJxAwrv0FzVzCxGYM8wXPfeive9+3fKVywa 64qafI5/CXghqhvjYGjAOXMkpuYdU/7F9dIkK+Hg1whkcxI= -----END CERTIFICATE-----Generated at Mon Jan 5 14:35:07 2026 by rpki-client