This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/lSC4RzevQeRkikifsAt3gR84fxY.roa File: lSC4RzevQeRkikifsAt3gR84fxY.roa (raw, json) Hash identifier: CDC2+wQFTPEwC0Sq9Rnp++UpyacRzQctOXOPJvW93xc= Subject key identifier: 95:20:B8:47:37:AF:41:E4:64:8A:48:9F:B0:0B:77:81:1F:38:7F:16 Certificate issuer: /CN=6ca977f854c63dc9f97a18be7b13002121a5d384 Certificate serial: 019B7D5C7BF80AFBF3572DFFEE2DCADEDE00 Authority key identifier: 6C:A9:77:F8:54:C6:3D:C9:F9:7A:18:BE:7B:13:00:21:21:A5:D3:84 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bKl3-FTGPcn5ehi-exMAISGl04Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/lSC4RzevQeRkikifsAt3gR84fxY.roa Signing time: Fri 02 Jan 2026 06:19:31 +0000 ROA not before: Fri 02 Jan 2026 06:19:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198998 IP address blocks: 2a13:b487::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/bKl3-FTGPcn5ehi-exMAISGl04Q.crl rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/bKl3-FTGPcn5ehi-exMAISGl04Q.mft rsync://rpki.ripe.net/repository/DEFAULT/bKl3-FTGPcn5ehi-exMAISGl04Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 23 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:7b:f8:0a:fb:f3:57:2d:ff:ee:2d:ca:de:de:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ca977f854c63dc9f97a18be7b13002121a5d384 Validity Not Before: Jan 2 06:19:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9520b84737af41e4648a489fb00b77811f387f16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:34:8f:7e:b5:cb:f1:c0:91:29:d9:07:5b:10: 8d:3c:35:b8:2a:b0:59:24:19:ca:24:55:c6:27:70: 46:11:4c:6f:e6:89:b1:96:75:2c:94:68:1f:41:b3: 56:fb:37:46:b2:dc:88:8f:e0:79:ba:b0:da:97:1a: e5:e0:b1:94:a8:d2:f4:80:c7:98:11:2e:a7:fa:74: 1c:ff:8a:a6:85:20:9d:b7:1b:28:48:58:b5:c2:da: 5b:8f:4e:a7:03:2d:fa:17:f4:77:04:68:34:a3:e0: 1b:c7:07:af:f5:80:bb:e4:20:66:4a:5f:22:16:0f: 0a:ee:23:4a:58:c9:be:b6:f8:a3:df:28:aa:9a:c9: ae:ce:d9:67:ff:a2:16:c7:40:c3:6f:f5:6a:99:56: e3:f9:7a:7f:d8:52:73:d2:98:02:ab:b6:83:a3:58: 16:98:de:17:5b:e5:1b:6a:3f:42:a1:b6:11:d6:9a: e3:2e:f4:f5:bb:a6:6a:8b:4b:12:fd:53:4b:42:84: 4e:c4:cd:76:d4:08:bb:64:fb:63:63:27:00:b1:6f: ad:a3:db:dd:68:89:b1:38:00:f5:25:cd:77:18:aa: d6:b2:41:da:df:ae:bf:ef:9b:d6:c1:ed:77:a1:d1: 22:dd:28:9d:35:d0:b9:f3:54:d5:8a:20:6a:10:a1: 8a:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:20:B8:47:37:AF:41:E4:64:8A:48:9F:B0:0B:77:81:1F:38:7F:16 X509v3 Authority Key Identifier: keyid:6C:A9:77:F8:54:C6:3D:C9:F9:7A:18:BE:7B:13:00:21:21:A5:D3:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bKl3-FTGPcn5ehi-exMAISGl04Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/lSC4RzevQeRkikifsAt3gR84fxY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/bKl3-FTGPcn5ehi-exMAISGl04Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a13:b487::/36 Signature Algorithm: sha256WithRSAEncryption ab:72:f6:48:8f:4d:3a:0a:00:45:d9:03:04:ea:5d:6d:09:bb: 16:71:a5:c5:97:8f:8b:fe:db:30:fe:ee:ae:f3:4a:84:ec:ac: 78:b1:9a:92:d0:81:a8:cd:9d:ee:84:56:52:44:c5:d1:5a:bb: 59:89:18:54:c9:b1:47:fb:a5:eb:ee:c1:a3:5a:aa:2b:6b:2b: 67:18:31:4a:20:2b:5d:c1:d9:cb:bc:c9:5e:5f:be:01:fb:cd: b7:75:12:e5:8e:7e:cc:64:5a:1b:ca:d7:61:33:da:b7:10:aa: 38:92:b0:68:06:57:cb:65:7d:2d:c7:98:c4:6d:57:fa:6f:49: e4:60:ce:64:41:bd:59:42:0e:43:1c:4a:92:03:12:77:8a:2f: 25:92:8a:e8:c0:47:55:38:19:6b:c8:5e:58:0b:f4:a9:fd:08: 28:c5:ef:ab:f8:87:68:31:e7:57:b1:34:84:49:13:17:c0:58: 88:bb:f0:c8:49:28:f9:a3:32:c8:8c:c6:19:88:b0:22:f2:e3: 7d:f0:00:3a:7d:47:28:9c:cb:48:b5:84:5b:26:99:ba:58:16: b3:6d:79:0c:6d:84:77:7d:8f:bc:26:f6:ba:04:c6:77:3e:68: ad:cb:ab:44:7f:25:aa:49:86:fb:e1:19:1d:79:1f:a4:95:2b: 86:31:fc:c1 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt9XHv4CvvzVy3/7i3K3t4AMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjYTk3N2Y4NTRjNjNkYzlmOTdhMThiZTdiMTMwMDIxMjFh NWQzODQwHhcNMjYwMTAyMDYxOTMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NTIwYjg0NzM3YWY0MWU0NjQ4YTQ4OWZiMDBiNzc4MTFmMzg3ZjE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwzSPfrXL8cCRKdkHWxCNPDW4KrBZ JBnKJFXGJ3BGEUxv5omxlnUslGgfQbNW+zdGstyIj+B5urDalxrl4LGUqNL0gMeY ES6n+nQc/4qmhSCdtxsoSFi1wtpbj06nAy36F/R3BGg0o+Abxwev9YC75CBmSl8i Fg8K7iNKWMm+tvij3yiqmsmuztln/6IWx0DDb/VqmVbj+Xp/2FJz0pgCq7aDo1gW mN4XW+Ubaj9CobYR1prjLvT1u6Zqi0sS/VNLQoROxM121Ai7ZPtjYycAsW+to9vd aImxOAD1Jc13GKrWskHa366/75vWwe13odEi3SidNdC581TViiBqEKGKpwIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFJUguEc3r0HkZIpIn7ALd4EfOH8WMB8GA1UdIwQY MBaAFGypd/hUxj3J+XoYvnsTACEhpdOEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYktsMy1GVEdQY241ZWhpLWV4TUFJU0dsMDRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8wOWNjYjQtMjQ4My00YmE3LTk2MzQt ZDZhNTk1MGNhZGYyLzEvbFNDNFJ6ZXZRZVJraWtpZnNBdDNnUjg0ZnhZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS8wOWNjYjQtMjQ4My00YmE3LTk2MzQtZDZhNTk1MGNhZGYy LzEvYktsMy1GVEdQY241ZWhpLWV4TUFJU0dsMDRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEKhO0hwAw DQYJKoZIhvcNAQELBQADggEBAKty9kiPTToKAEXZAwTqXW0JuxZxpcWXj4v+2zD+ 7q7zSoTsrHixmpLQgajNne6EVlJExdFau1mJGFTJsUf7pevuwaNaqitrK2cYMUog K13B2cu8yV5fvgH7zbd1EuWOfsxkWhvK12Ez2rcQqjiSsGgGV8tlfS3HmMRtV/pv SeRgzmRBvVlCDkMcSpIDEneKLyWSiujAR1U4GWvIXlgL9Kn9CCjF76v4h2gx51ex NIRJExfAWIi78MhJKPmjMsiMxhmIsCLy433wADp9Ryicy0i1hFsmmbpYFrNteQxt hHd9j7wm9roExnc+aK3Lq0R/JapJhvvhGR15H6SVK4Yx/ME= -----END CERTIFICATE-----Generated at Thu Jan 22 06:16:23 2026 by rpki-client