This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/Huv8_F7CU0_Jslnzwh9x9lhwpc0.roa File: Huv8_F7CU0_Jslnzwh9x9lhwpc0.roa (raw, json) Hash identifier: que/wANCXPBVboi+Ao6/Mhrzm4uO58lF/bE0KnuyKBc= Subject key identifier: 1E:EB:FC:FC:5E:C2:53:4F:C9:B2:59:F3:C2:1F:71:F6:58:70:A5:CD Certificate issuer: /CN=5f0226a704cf620eb2000f27e7a919ce730991be Certificate serial: 019B7B36C47CA462FBB800AF443BA046D569 Authority key identifier: 5F:02:26:A7:04:CF:62:0E:B2:00:0F:27:E7:A9:19:CE:73:09:91:BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/Huv8_F7CU0_Jslnzwh9x9lhwpc0.roa Signing time: Thu 01 Jan 2026 20:19:05 +0000 ROA not before: Thu 01 Jan 2026 20:19:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42831 IP address blocks: 2a0c:b840:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:c4:7c:a4:62:fb:b8:00:af:44:3b:a0:46:d5:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5f0226a704cf620eb2000f27e7a919ce730991be Validity Not Before: Jan 1 20:19:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1eebfcfc5ec2534fc9b259f3c21f71f65870a5cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:52:de:0d:d5:06:52:80:ea:81:1e:43:6f:10: e9:65:cb:23:05:05:f2:21:d4:a6:4b:68:e1:44:a2: cd:52:60:fc:79:bc:c7:af:55:62:0e:af:61:dc:f4: 25:b5:33:38:05:ee:8c:18:16:25:38:4b:32:5b:6f: 83:34:89:17:f7:a6:c5:f2:33:12:27:b1:d1:ac:51: 26:f6:6c:da:3a:cb:0c:75:48:1a:55:e1:46:97:54: 8b:06:af:51:7d:c7:64:33:eb:08:45:28:05:62:7b: ea:9b:1c:eb:bd:50:71:98:90:26:e1:41:38:04:ff: 15:f0:7a:82:4d:cd:74:33:8b:27:96:ba:df:5e:e3: cf:2c:07:e5:b0:19:79:c7:e2:51:cd:c9:76:fb:96: 81:d7:f3:3d:6a:ef:b2:64:99:c8:93:b7:26:c1:8d: 21:42:d8:81:b5:16:35:2b:81:63:c6:4a:a8:04:e8: 18:7e:ce:ae:b2:03:c7:a4:16:6b:86:1c:09:9b:33: d5:04:51:95:5b:2f:23:8c:cf:a1:bb:23:99:8e:db: 34:62:41:4d:b5:c6:e8:1c:ed:ee:b8:75:de:46:df: e1:f5:11:cf:69:97:be:e0:3c:d3:44:8f:c7:53:0b: 2e:e7:dd:6b:6e:85:8f:ba:54:1f:c2:68:99:78:6d: 3f:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:EB:FC:FC:5E:C2:53:4F:C9:B2:59:F3:C2:1F:71:F6:58:70:A5:CD X509v3 Authority Key Identifier: keyid:5F:02:26:A7:04:CF:62:0E:B2:00:0F:27:E7:A9:19:CE:73:09:91:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/Huv8_F7CU0_Jslnzwh9x9lhwpc0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:b840:2::/48 Signature Algorithm: sha256WithRSAEncryption 99:ef:ea:e8:b4:01:b4:d7:f6:b9:20:72:7f:cf:e9:60:c9:0f: 61:1f:52:9a:6f:66:fd:29:8c:bf:29:4b:6c:33:a6:5a:70:64: 4b:65:1e:5a:d1:5f:b5:9b:1c:38:4e:10:a8:d1:f5:d6:69:69: 07:12:36:64:16:84:ad:6c:ea:b9:09:26:c4:94:ab:8b:39:bc: a7:db:d7:46:36:5a:3d:7b:4e:31:bd:83:37:8f:d5:44:7c:a6: f3:29:ec:76:a7:4f:19:bd:ec:77:78:55:89:0d:d4:af:c3:43: 19:a7:52:58:d9:ef:cc:13:50:cd:50:c8:ec:26:4e:7b:a4:df: 5f:1e:8b:10:ce:fa:be:9e:9c:7f:58:83:f0:a5:83:28:06:a6: 04:d9:5a:8c:50:0b:2a:a4:80:bd:1c:34:fc:af:0c:76:24:64: e1:35:1a:fb:3d:d9:64:dc:86:6f:9e:07:d3:51:6d:c6:36:2e: 05:4f:33:a3:03:4c:a4:b9:be:5d:d6:e2:68:13:8c:9c:89:b3: cd:65:a9:04:fd:82:18:ec:84:20:ba:7b:4b:82:93:8e:1a:ef: 03:29:95:b1:72:9d:66:50:51:49:85:18:d0:3a:d5:bf:30:3e: 0a:b7:2a:48:ce:ab:0b:fc:81:b6:fe:58:39:f1:d3:b5:2e:1e: 5f:4e:a4:44 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt7NsR8pGL7uACvRDugRtVpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVmMDIyNmE3MDRjZjYyMGViMjAwMGYyN2U3YTkxOWNlNzMw OTkxYmUwHhcNMjYwMTAxMjAxOTA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZWViZmNmYzVlYzI1MzRmYzliMjU5ZjNjMjFmNzFmNjU4NzBhNWNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv1LeDdUGUoDqgR5DbxDpZcsjBQXy IdSmS2jhRKLNUmD8ebzHr1ViDq9h3PQltTM4Be6MGBYlOEsyW2+DNIkX96bF8jMS J7HRrFEm9mzaOssMdUgaVeFGl1SLBq9RfcdkM+sIRSgFYnvqmxzrvVBxmJAm4UE4 BP8V8HqCTc10M4snlrrfXuPPLAflsBl5x+JRzcl2+5aB1/M9au+yZJnIk7cmwY0h QtiBtRY1K4FjxkqoBOgYfs6usgPHpBZrhhwJmzPVBFGVWy8jjM+huyOZjts0YkFN tcboHO3uuHXeRt/h9RHPaZe+4DzTRI/HUwsu591rboWPulQfwmiZeG0/LQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFB7r/PxewlNPybJZ88IfcfZYcKXNMB8GA1UdIwQY MBaAFF8CJqcEz2IOsgAPJ+epGc5zCZG+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHdJbXB3VFBZZzZ5QUE4bjU2a1p6bk1Ka2I0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC82M2VmYjgtYmYyNC00OGMyLThjNTAt NzVkOWNlNWI4ZDljLzEvSHV2OF9GN0NVMF9Kc2xuendoOXg5bGh3cGMwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC82M2VmYjgtYmYyNC00OGMyLThjNTAtNzVkOWNlNWI4ZDlj LzEvWHdJbXB3VFBZZzZ5QUE4bjU2a1p6bk1Ka2I0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgy4QAAC MA0GCSqGSIb3DQEBCwUAA4IBAQCZ7+rotAG01/a5IHJ/z+lgyQ9hH1Kab2b9KYy/ KUtsM6ZacGRLZR5a0V+1mxw4ThCo0fXWaWkHEjZkFoStbOq5CSbElKuLObyn29dG Nlo9e04xvYM3j9VEfKbzKex2p08Zvex3eFWJDdSvw0MZp1JY2e/ME1DNUMjsJk57 pN9fHosQzvq+npx/WIPwpYMoBqYE2VqMUAsqpIC9HDT8rwx2JGThNRr7Pdlk3IZv ngfTUW3GNi4FTzOjA0ykub5d1uJoE4ycibPNZakE/YIY7IQguntLgpOOGu8DKZWx cp1mUFFJhRjQOtW/MD4KtypIzqsL/IG2/lg58dO1Lh5fTqRE -----END CERTIFICATE-----Generated at Mon Jan 19 23:20:57 2026 by rpki-client