This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/SFJFT2ML-Qe0uUAssih1SBA8BhA.roa File: SFJFT2ML-Qe0uUAssih1SBA8BhA.roa (raw, json) Hash identifier: 5qdMHItS59FBfbhGZZzu8PTMMoBYXvuG1iraW0v2D38= Subject key identifier: 48:52:45:4F:63:0B:F9:07:B4:B9:40:2C:B2:28:75:48:10:3C:06:10 Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008 Certificate serial: 019B7EA70C65568860983FD48F8497A926A5 Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/SFJFT2ML-Qe0uUAssih1SBA8BhA.roa Signing time: Fri 02 Jan 2026 12:20:35 +0000 ROA not before: Fri 02 Jan 2026 12:20:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214376 IP address blocks: 2a0c:9a46:200::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.mft rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 02:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:0c:65:56:88:60:98:3f:d4:8f:84:97:a9:26:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008 Validity Not Before: Jan 2 12:20:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4852454f630bf907b4b9402cb2287548103c0610 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:86:07:31:d0:ed:42:7f:86:82:64:44:67:35: dc:74:cd:0b:e0:ba:b0:9c:36:c6:5e:db:b3:a8:0b: 52:ef:b5:e7:63:ba:c5:58:80:3c:3c:1e:c2:a2:ac: ec:89:32:a8:f5:7f:82:a0:be:6c:94:8a:01:4d:3d: 4e:ff:a2:08:7a:4f:c1:52:26:c8:24:9e:d6:6e:98: 5a:27:b7:30:a2:a1:99:bb:9d:cf:1c:dd:8d:2b:f1: 31:e0:83:3a:9e:16:df:04:8a:1a:ca:ef:3f:b0:35: 6e:8f:74:c6:2d:ca:e3:a6:5c:d1:ef:04:db:a4:b1: 2f:4c:24:9c:a4:13:b0:65:5d:50:5f:ca:f8:cb:fd: 25:e3:f3:44:56:48:4f:24:d2:ae:d4:09:cb:ae:91: 52:7a:4c:b9:1d:d2:f6:b8:64:44:d2:09:24:d8:02: 46:15:40:80:06:44:9d:df:13:c8:b7:f6:66:39:d0: b5:43:17:d2:8c:11:01:e2:55:70:dc:d7:64:4b:39: da:a9:8c:51:40:80:88:f7:58:37:36:25:0f:30:6b: bf:d0:6c:48:fa:72:23:1b:40:33:4b:36:a3:e2:9a: b8:5c:20:22:3c:7c:2d:fd:73:a9:30:69:61:83:d4: 13:32:bc:83:b3:9f:22:35:c7:ad:0d:b3:71:56:bd: 6d:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:52:45:4F:63:0B:F9:07:B4:B9:40:2C:B2:28:75:48:10:3C:06:10 X509v3 Authority Key Identifier: keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/SFJFT2ML-Qe0uUAssih1SBA8BhA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:9a46:200::/40 Signature Algorithm: sha256WithRSAEncryption c1:e0:d5:88:9c:01:6c:16:a7:ad:53:34:8b:ee:f7:90:3d:13: a6:1e:25:bc:55:9b:6a:75:0a:df:d5:d6:4c:59:35:c6:d0:d8: c1:35:ee:b8:f8:e3:30:f2:6e:cc:1c:8d:9e:4f:e1:7f:34:5d: a7:da:4e:3b:47:59:d0:a5:f3:95:98:a6:4c:81:4b:8b:71:1c: 8f:e6:e3:5c:12:70:70:1a:b6:7e:88:84:bf:5c:a9:96:49:c8: 67:5d:aa:82:c1:4a:e1:fc:6e:2d:69:15:51:93:d8:57:48:f3: 4a:c6:ee:b0:9c:53:bd:9d:03:e3:16:b1:cd:c3:5a:b3:b2:ca: f3:3f:7e:aa:69:4b:f4:4e:45:fd:af:1b:df:73:b1:85:23:2c: 90:39:81:6b:29:ad:0c:a8:36:2e:e6:a6:28:eb:cb:75:8f:7e: 0a:d3:2f:3f:25:ec:f0:c8:b0:1a:51:67:47:cf:9b:97:2a:ec: 47:92:31:0e:d3:17:c7:8b:6c:b7:7a:0e:5b:e4:25:e1:57:5e: fe:16:24:8a:76:93:4b:32:41:fb:de:3e:61:36:01:32:93:23: 8a:3c:fa:ef:fc:6e:ac:f4:16:33:e0:d9:74:3f:16:53:ce:09: c5:f6:c8:01:4b:ed:15:97:2e:e4:8f:98:d7:0a:c2:85:23:2e: 91:6b:46:ce -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt+pwxlVohgmD/Uj4SXqSalMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDllOTVhMzYxZmUyYjJjNTI5MjYyNmJhNGM1NmE2NWE4MTRl NDgwMDgwHhcNMjYwMTAyMTIyMDM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ODUyNDU0ZjYzMGJmOTA3YjRiOTQwMmNiMjI4NzU0ODEwM2MwNjEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwoYHMdDtQn+GgmREZzXcdM0L4Lqw nDbGXtuzqAtS77XnY7rFWIA8PB7CoqzsiTKo9X+CoL5slIoBTT1O/6IIek/BUibI JJ7WbphaJ7cwoqGZu53PHN2NK/Ex4IM6nhbfBIoayu8/sDVuj3TGLcrjplzR7wTb pLEvTCScpBOwZV1QX8r4y/0l4/NEVkhPJNKu1AnLrpFSeky5HdL2uGRE0gkk2AJG FUCABkSd3xPIt/ZmOdC1QxfSjBEB4lVw3NdkSznaqYxRQICI91g3NiUPMGu/0GxI +nIjG0AzSzaj4pq4XCAiPHwt/XOpMGlhg9QTMryDs58iNcetDbNxVr1tJQIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFEhSRU9jC/kHtLlALLIodUgQPAYQMB8GA1UdIwQY MBaAFJ6Vo2H+KyxSkmJrpMVqZagU5IAIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2Yt YmY0ZTUyN2I5ZmE4LzEvU0ZKRlQyTUwtUWUwdVVBc3NpaDFTQkE4QmhBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2YtYmY0ZTUyN2I5ZmE4 LzEvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgyaRgIw DQYJKoZIhvcNAQELBQADggEBAMHg1YicAWwWp61TNIvu95A9E6YeJbxVm2p1Ct/V 1kxZNcbQ2ME17rj44zDybswcjZ5P4X80XafaTjtHWdCl85WYpkyBS4txHI/m41wS cHAatn6IhL9cqZZJyGddqoLBSuH8bi1pFVGT2FdI80rG7rCcU72dA+MWsc3DWrOy yvM/fqppS/RORf2vG99zsYUjLJA5gWsprQyoNi7mpijry3WPfgrTLz8l7PDIsBpR Z0fPm5cq7EeSMQ7TF8eLbLd6DlvkJeFXXv4WJIp2k0syQfvePmE2ATKTI4o8+u/8 bqz0FjPg2XQ/FlPOCcX2yAFL7RWXLuSPmNcKwoUjLpFrRs4= -----END CERTIFICATE-----Generated at Tue Jan 20 09:03:27 2026 by rpki-client