This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/202a79-5bfe-4a48-a7f9-414196ac646e/1/h8XV-KgY396KZBJ7Bi9YlZn3ShM.roa File: h8XV-KgY396KZBJ7Bi9YlZn3ShM.roa (raw, json) Hash identifier: fluQLEMS1tYgpv9diRyw7o5a3GxgE3HkE4V51yJi7a8= Subject key identifier: 87:C5:D5:F8:A8:18:DF:DE:8A:64:12:7B:06:2F:58:95:99:F7:4A:13 Certificate issuer: /CN=742b1b5c075c3d3bdfa3525d476b1b2867c2a2ca Certificate serial: 019B7E3801049546DBC4501ED2102765461E Authority key identifier: 74:2B:1B:5C:07:5C:3D:3B:DF:A3:52:5D:47:6B:1B:28:67:C2:A2:CA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dCsbXAdcPTvfo1JdR2sbKGfCoso.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/202a79-5bfe-4a48-a7f9-414196ac646e/1/h8XV-KgY396KZBJ7Bi9YlZn3ShM.roa Signing time: Fri 02 Jan 2026 10:19:18 +0000 ROA not before: Fri 02 Jan 2026 10:19:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 0 IP address blocks: 2a02:79a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/202a79-5bfe-4a48-a7f9-414196ac646e/1/dCsbXAdcPTvfo1JdR2sbKGfCoso.crl rsync://rpki.ripe.net/repository/DEFAULT/a5/202a79-5bfe-4a48-a7f9-414196ac646e/1/dCsbXAdcPTvfo1JdR2sbKGfCoso.mft rsync://rpki.ripe.net/repository/DEFAULT/dCsbXAdcPTvfo1JdR2sbKGfCoso.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:01:04:95:46:db:c4:50:1e:d2:10:27:65:46:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=742b1b5c075c3d3bdfa3525d476b1b2867c2a2ca Validity Not Before: Jan 2 10:19:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=87c5d5f8a818dfde8a64127b062f589599f74a13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:63:97:fd:03:d0:f0:ab:b9:dc:98:3a:ca:e5: d8:76:a5:02:2b:1f:49:1c:a6:35:65:7f:d3:05:20: dc:04:53:2d:b9:87:19:c6:73:fe:dd:31:dd:2c:9a: b2:36:4b:4d:d7:a0:0c:d5:d3:4f:47:e9:04:d0:d5: 13:90:e8:b2:60:64:c8:71:07:87:ad:0a:e7:53:aa: f0:5e:a8:b7:98:bc:98:74:08:ca:ce:bc:9a:19:45: 2a:06:21:fd:e8:a8:e0:db:77:90:c4:81:07:cc:f6: 54:bb:ef:2c:dc:b9:94:20:83:78:bb:6a:ca:6c:4a: ea:2f:52:50:e8:5f:8a:63:ce:a0:15:b1:26:45:48: f8:d6:4e:48:26:d1:51:62:19:ab:2c:8a:d5:51:51: f0:71:58:93:fc:2d:b8:0c:e8:67:47:b8:89:a1:11: 00:cd:b5:c7:67:84:1e:31:68:4c:e4:b1:79:ba:d5: a2:52:2b:15:00:b6:24:34:9e:11:8a:59:4d:fc:2d: 53:8b:34:87:f9:69:98:d9:0e:e5:69:55:a6:96:4d: 43:03:1e:4a:c6:ca:ce:69:b1:02:cc:2d:a2:a2:fe: aa:c2:20:4f:79:9a:6c:28:d5:15:04:09:e5:94:5a: 7c:c4:7b:e5:79:a1:4d:56:de:d4:71:15:c1:f6:be: 05:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:C5:D5:F8:A8:18:DF:DE:8A:64:12:7B:06:2F:58:95:99:F7:4A:13 X509v3 Authority Key Identifier: keyid:74:2B:1B:5C:07:5C:3D:3B:DF:A3:52:5D:47:6B:1B:28:67:C2:A2:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dCsbXAdcPTvfo1JdR2sbKGfCoso.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/202a79-5bfe-4a48-a7f9-414196ac646e/1/h8XV-KgY396KZBJ7Bi9YlZn3ShM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/202a79-5bfe-4a48-a7f9-414196ac646e/1/dCsbXAdcPTvfo1JdR2sbKGfCoso.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a02:79a0::/32 Signature Algorithm: sha256WithRSAEncryption 0e:63:ab:1b:ff:30:fc:16:66:8b:ff:19:e8:e6:01:3f:57:d3: 84:b4:1f:c5:d1:2e:74:bc:70:3e:73:2e:43:cd:79:5a:fc:f1: be:e7:c7:88:6e:21:f4:9f:98:bc:32:39:d9:d6:59:69:cc:1c: 2c:80:08:e2:39:07:45:7f:44:c9:cb:83:b9:d3:1e:e4:e5:27: a3:13:b2:03:36:2a:62:6c:34:10:8f:b4:e4:34:fb:f7:74:e9: 1c:77:24:0d:e0:6f:2b:eb:71:2b:4d:61:40:07:23:99:8c:6c: 15:74:9a:85:b2:91:c5:5c:30:39:a4:2d:93:95:72:38:0a:51: ad:6b:1e:6f:12:e7:cc:a3:35:68:7d:ed:64:7e:a3:a0:fe:1c: b0:95:78:be:35:56:8e:ef:50:93:9a:18:39:60:05:e7:12:1d: a5:92:99:56:b9:33:84:30:bc:f5:52:b9:83:46:f5:a4:f3:d0: 6c:5a:50:84:ff:0e:c0:2f:9f:c5:ea:bb:d5:a6:ba:ae:98:33: c2:fe:75:dd:ad:6f:cd:4e:0c:6b:86:03:a9:32:e6:a6:d6:ff: 92:33:ef:1f:7f:a2:f4:10:2a:19:a4:90:cd:dd:d1:67:d5:d4: eb:68:f7:92:e0:91:42:d3:e4:38:f5:b3:1e:07:0b:65:f1:a3: 54:15:3f:5b -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt+OAEElUbbxFAe0hAnZUYeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0MmIxYjVjMDc1YzNkM2JkZmEzNTI1ZDQ3NmIxYjI4Njdj MmEyY2EwHhcNMjYwMTAyMTAxOTE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4N2M1ZDVmOGE4MThkZmRlOGE2NDEyN2IwNjJmNTg5NTk5Zjc0YTEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApWOX/QPQ8Ku53Jg6yuXYdqUCKx9J HKY1ZX/TBSDcBFMtuYcZxnP+3THdLJqyNktN16AM1dNPR+kE0NUTkOiyYGTIcQeH rQrnU6rwXqi3mLyYdAjKzryaGUUqBiH96Kjg23eQxIEHzPZUu+8s3LmUIIN4u2rK bErqL1JQ6F+KY86gFbEmRUj41k5IJtFRYhmrLIrVUVHwcViT/C24DOhnR7iJoREA zbXHZ4QeMWhM5LF5utWiUisVALYkNJ4RillN/C1TizSH+WmY2Q7laVWmlk1DAx5K xsrOabECzC2iov6qwiBPeZpsKNUVBAnllFp8xHvleaFNVt7UcRXB9r4FJwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFIfF1fioGN/eimQSewYvWJWZ90oTMB8GA1UdIwQY MBaAFHQrG1wHXD0736NSXUdrGyhnwqLKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZENzYlhBZGNQVHZmbzFKZFIyc2JLR2ZDb3NvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS8yMDJhNzktNWJmZS00YTQ4LWE3Zjkt NDE0MTk2YWM2NDZlLzEvaDhYVi1LZ1kzOTZLWkJKN0JpOVlsWm4zU2hNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNS8yMDJhNzktNWJmZS00YTQ4LWE3ZjktNDE0MTk2YWM2NDZl LzEvZENzYlhBZGNQVHZmbzFKZFIyc2JLR2ZDb3NvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgJ5oDAN BgkqhkiG9w0BAQsFAAOCAQEADmOrG/8w/BZmi/8Z6OYBP1fThLQfxdEudLxwPnMu Q815WvzxvufHiG4h9J+YvDI52dZZacwcLIAI4jkHRX9EycuDudMe5OUnoxOyAzYq Ymw0EI+05DT793TpHHckDeBvK+txK01hQAcjmYxsFXSahbKRxVwwOaQtk5VyOApR rWsebxLnzKM1aH3tZH6joP4csJV4vjVWju9Qk5oYOWAF5xIdpZKZVrkzhDC89VK5 g0b1pPPQbFpQhP8OwC+fxeq71aa6rpgzwv513a1vzU4Ma4YDqTLmptb/kjPvH3+i 9BAqGaSQzd3RZ9XU62j3kuCRQtPkOPWzHgcLZfGjVBU/Ww== -----END CERTIFICATE-----Generated at Wed Jan 7 23:51:45 2026 by rpki-client