This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/hRT5AU1lcztSEFq5od_d9b_9tnY.roa File: hRT5AU1lcztSEFq5od_d9b_9tnY.roa (raw, json) Hash identifier: VHpbnaoOaSTDKjVLc+Gsv893Nm5GPIlmvQMX4rowvsE= Subject key identifier: 85:14:F9:01:4D:65:73:3B:52:10:5A:B9:A1:DF:DD:F5:BF:FD:B6:76 Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f Certificate serial: 019B7F8589BC0BDDD9781A904086CEC38E4E Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/hRT5AU1lcztSEFq5od_d9b_9tnY.roa Signing time: Fri 02 Jan 2026 16:23:36 +0000 ROA not before: Fri 02 Jan 2026 16:23:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 7018 IP address blocks: 2a0f:b242:6000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.mft rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 03:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:89:bc:0b:dd:d9:78:1a:90:40:86:ce:c3:8e:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f Validity Not Before: Jan 2 16:23:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8514f9014d65733b52105ab9a1dfddf5bffdb676 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c2:2d:af:88:9e:a0:32:37:e9:14:c8:96:70: 19:d0:63:d2:7c:50:e0:2d:b6:95:c1:9c:0e:24:52: 3d:11:34:4a:82:f6:91:17:7e:e7:c3:80:6b:30:19: 66:19:4c:88:27:98:a0:b2:78:c8:a1:6a:49:37:31: f4:c8:02:89:4d:7c:7e:46:2e:85:0e:c3:84:ba:8f: 59:67:c1:a8:21:11:b1:89:b4:13:4a:1f:34:9b:46: 58:99:df:34:5a:55:ee:68:52:26:8e:68:ca:48:5e: 2a:95:bd:d5:5c:66:02:b4:2f:0f:85:00:a8:8b:79: 32:b9:c4:05:ae:0e:f0:1a:09:e2:14:b9:e0:41:dc: 9e:ba:4f:3c:57:f7:2b:0b:47:57:34:3d:91:e0:f9: 7c:1b:12:9c:a2:34:8f:2b:2e:68:d6:fd:57:97:fb: 56:e7:f0:45:de:f2:1c:80:2c:7c:5a:7d:6c:eb:a1: f4:b9:73:83:59:62:0b:e4:1e:3a:ec:bf:e0:91:5b: 34:36:2d:a7:fa:43:41:39:52:b2:d8:31:7c:bb:de: dd:39:c0:e5:a7:cc:9b:92:0d:4a:f7:6c:2e:05:e2: cc:83:66:98:46:6d:0b:eb:50:2c:72:92:2f:35:06: 9e:c3:c9:37:60:c8:c1:f3:76:04:91:ad:c2:d0:e3: 94:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:14:F9:01:4D:65:73:3B:52:10:5A:B9:A1:DF:DD:F5:BF:FD:B6:76 X509v3 Authority Key Identifier: keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/hRT5AU1lcztSEFq5od_d9b_9tnY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:b242:6000::/36 Signature Algorithm: sha256WithRSAEncryption 48:50:40:88:b6:d4:c5:37:0c:f9:01:79:16:92:e3:f6:f0:c5: ca:8d:9f:02:4a:07:52:0e:bc:80:55:03:66:bf:ed:74:2b:14: cd:2d:6d:ca:80:2e:4b:25:cb:29:4d:5a:74:ec:e9:77:e6:f7: 46:74:9e:46:58:ea:2e:66:3e:3c:65:bb:05:be:ba:fc:be:40: c3:34:6a:be:3a:1f:c3:cf:35:e2:30:5c:36:5d:63:57:d5:b3: a8:4f:67:2b:ad:db:95:46:72:6a:3d:c4:de:85:d5:a0:83:3b: d5:09:99:eb:20:8c:99:ab:01:4c:56:f8:4c:c0:ae:fa:ab:0f: 9b:7e:56:b4:aa:9b:12:15:5d:a0:c8:24:b2:62:dd:68:dd:4a: 56:e1:a6:24:7c:0f:17:92:3c:ea:8a:5b:89:0e:a7:f9:eb:b3: 00:ef:dd:5e:5f:c5:bc:3f:67:fe:aa:95:cd:2d:44:bc:2e:b6: 43:35:f8:58:1f:a8:6b:88:d1:00:d3:81:29:78:8b:58:ee:f8: 22:79:e8:ed:80:97:52:d4:14:3d:61:29:68:46:71:72:76:4a: 23:6e:dd:58:8f:63:f9:ac:23:2e:db:31:27:33:59:ee:d8:c8: 6a:87:44:73:cc:da:0e:b0:22:ef:6d:98:3e:46:73:da:d3:74: 36:3c:49:21 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt/hYm8C93ZeBqQQIbOw45OMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk ZmUyMGYwHhcNMjYwMTAyMTYyMzM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NTE0ZjkwMTRkNjU3MzNiNTIxMDVhYjlhMWRmZGRmNWJmZmRiNjc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvMItr4ieoDI36RTIlnAZ0GPSfFDg LbaVwZwOJFI9ETRKgvaRF37nw4BrMBlmGUyIJ5igsnjIoWpJNzH0yAKJTXx+Ri6F DsOEuo9ZZ8GoIRGxibQTSh80m0ZYmd80WlXuaFImjmjKSF4qlb3VXGYCtC8PhQCo i3kyucQFrg7wGgniFLngQdyeuk88V/crC0dXND2R4Pl8GxKcojSPKy5o1v1Xl/tW 5/BF3vIcgCx8Wn1s66H0uXODWWIL5B467L/gkVs0Ni2n+kNBOVKy2DF8u97dOcDl p8ybkg1K92wuBeLMg2aYRm0L61AscpIvNQaew8k3YMjB83YEka3C0OOUvwIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFIUU+QFNZXM7UhBauaHf3fW//bZ2MB8GA1UdIwQY MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct YjcxNzk4MGU0YWQ2LzEvaFJUNUFVMWxjenRTRUZxNW9kX2Q5Yl85dG5ZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2 LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEKg+yQmAw DQYJKoZIhvcNAQELBQADggEBAEhQQIi21MU3DPkBeRaS4/bwxcqNnwJKB1IOvIBV A2a/7XQrFM0tbcqALkslyylNWnTs6Xfm90Z0nkZY6i5mPjxluwW+uvy+QMM0ar46 H8PPNeIwXDZdY1fVs6hPZyut25VGcmo9xN6F1aCDO9UJmesgjJmrAUxW+EzArvqr D5t+VrSqmxIVXaDIJLJi3WjdSlbhpiR8DxeSPOqKW4kOp/nrswDv3V5fxbw/Z/6q lc0tRLwutkM1+FgfqGuI0QDTgSl4i1ju+CJ56O2Al1LUFD1hKWhGcXJ2SiNu3ViP Y/msIy7bMSczWe7YyGqHRHPM2g6wIu9tmD5Gc9rTdDY8SSE= -----END CERTIFICATE-----Generated at Sun Jan 18 11:04:25 2026 by rpki-client