This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/12391d-5fb6-4dea-a713-73a452bafb46/1/3hEq94EGlgud0m4THLqNIw7_pEI.roa File: 3hEq94EGlgud0m4THLqNIw7_pEI.roa (raw, json) Hash identifier: iwseUv8Ssl2EzH4+sgIpXtz5sb0Gtf1/B2FcnNjM0OU= Subject key identifier: DE:11:2A:F7:81:06:96:0B:9D:D2:6E:13:1C:BA:8D:23:0E:FF:A4:42 Certificate issuer: /CN=101287927ad7b1db479ae5ab92ab87c4a4faf496 Certificate serial: 019B797EC812311F3BC791F103AF6AA62A78 Authority key identifier: 10:12:87:92:7A:D7:B1:DB:47:9A:E5:AB:92:AB:87:C4:A4:FA:F4:96 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EBKHknrXsdtHmuWrkquHxKT69JY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/12391d-5fb6-4dea-a713-73a452bafb46/1/3hEq94EGlgud0m4THLqNIw7_pEI.roa Signing time: Thu 01 Jan 2026 12:18:30 +0000 ROA not before: Thu 01 Jan 2026 12:18:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15557 IP address blocks: 2a00:be80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/12391d-5fb6-4dea-a713-73a452bafb46/1/EBKHknrXsdtHmuWrkquHxKT69JY.crl rsync://rpki.ripe.net/repository/DEFAULT/74/12391d-5fb6-4dea-a713-73a452bafb46/1/EBKHknrXsdtHmuWrkquHxKT69JY.mft rsync://rpki.ripe.net/repository/DEFAULT/EBKHknrXsdtHmuWrkquHxKT69JY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:c8:12:31:1f:3b:c7:91:f1:03:af:6a:a6:2a:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=101287927ad7b1db479ae5ab92ab87c4a4faf496 Validity Not Before: Jan 1 12:18:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=de112af78106960b9dd26e131cba8d230effa442 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:05:90:90:38:62:82:23:23:7d:5d:06:37:ef: df:59:2c:d4:c0:1a:d2:4c:43:52:0e:ce:8a:e3:f0: 0f:21:6f:a9:93:c6:6f:a7:89:12:43:af:34:59:23: a6:70:34:b2:b4:e4:c7:0a:d3:df:5d:86:58:ec:6e: ac:39:31:ea:f8:da:1f:f7:ab:a3:1d:06:4f:40:f3: dd:54:2b:45:49:56:93:69:20:35:73:d3:8d:bf:96: 72:d1:77:60:b8:af:7d:0e:77:02:25:17:ab:8e:b0: 80:00:0a:7d:a7:08:91:16:ce:71:bb:03:f5:d9:0a: 32:d4:81:7d:1c:1e:08:bd:50:b2:1e:ae:74:bb:2c: a7:c8:a0:26:4e:ec:09:ce:0c:6e:4a:90:aa:f3:9e: dc:c6:43:f0:f1:4e:31:24:9f:b1:75:5d:5d:71:56: a1:08:fc:bc:30:39:07:ec:0a:7e:9a:6f:45:5b:40: ad:1b:c5:a7:b9:3f:15:e5:5e:28:45:8b:c8:5f:6b: ca:a9:9f:64:d4:6c:41:c4:a6:5f:9f:23:89:dd:50: e4:14:35:2e:32:7a:04:16:82:cb:d7:db:41:cb:48: ab:cb:2b:69:f9:b1:38:4e:69:aa:4a:d6:62:21:97: 2d:69:88:2d:92:ea:b0:09:b6:8d:d8:c0:8b:d1:dc: e8:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:11:2A:F7:81:06:96:0B:9D:D2:6E:13:1C:BA:8D:23:0E:FF:A4:42 X509v3 Authority Key Identifier: keyid:10:12:87:92:7A:D7:B1:DB:47:9A:E5:AB:92:AB:87:C4:A4:FA:F4:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EBKHknrXsdtHmuWrkquHxKT69JY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/12391d-5fb6-4dea-a713-73a452bafb46/1/3hEq94EGlgud0m4THLqNIw7_pEI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/74/12391d-5fb6-4dea-a713-73a452bafb46/1/EBKHknrXsdtHmuWrkquHxKT69JY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a00:be80::/32 Signature Algorithm: sha256WithRSAEncryption 19:70:41:df:e0:63:98:b4:b4:1f:3b:73:94:20:b3:ee:ad:5b: 5b:a6:06:02:2d:39:36:08:56:a6:41:e5:57:84:39:6a:84:c1: 9a:b7:64:04:ee:85:8d:1f:b7:32:aa:78:fb:28:46:d5:24:a2: 64:b8:81:ca:c6:7f:9b:f2:6a:f6:8c:e2:86:c7:8c:15:0c:a5: 5a:40:57:50:f4:37:97:64:32:c0:1f:18:67:fa:a9:8f:7e:3a: 94:a7:8b:01:ad:f0:50:f4:0b:43:7d:93:cf:73:7b:a0:2a:7c: c9:69:6c:5b:32:14:ce:6d:0e:10:a6:f4:32:03:6c:6e:72:eb: f9:3e:a7:76:07:79:89:27:23:4b:b7:1b:93:00:b4:ed:4d:59: 4d:b4:dd:d1:df:e5:91:77:2e:29:2f:cd:73:e3:ec:eb:6e:7b: 98:4d:89:e1:c9:52:ca:df:b2:06:06:d3:8a:e5:4e:6f:25:b7: 67:41:20:75:16:31:63:fd:01:ad:b3:07:30:60:58:e2:68:86: 43:12:99:67:2c:7d:84:ac:80:e5:0f:b1:b1:18:97:40:ae:43: 92:d0:a9:d9:91:c7:16:53:26:b8:2c:ff:7c:f7:ac:27:14:d2: aa:e5:23:c7:68:56:f5:22:16:ec:20:15:8e:c4:ed:69:b1:5e: c3:9d:52:a0 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt5fsgSMR87x5HxA69qpip4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEwMTI4NzkyN2FkN2IxZGI0NzlhZTVhYjkyYWI4N2M0YTRm YWY0OTYwHhcNMjYwMTAxMTIxODMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZTExMmFmNzgxMDY5NjBiOWRkMjZlMTMxY2JhOGQyMzBlZmZhNDQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvQWQkDhigiMjfV0GN+/fWSzUwBrS TENSDs6K4/APIW+pk8Zvp4kSQ680WSOmcDSytOTHCtPfXYZY7G6sOTHq+Nof96uj HQZPQPPdVCtFSVaTaSA1c9ONv5Zy0XdguK99DncCJRerjrCAAAp9pwiRFs5xuwP1 2Qoy1IF9HB4IvVCyHq50uyynyKAmTuwJzgxuSpCq857cxkPw8U4xJJ+xdV1dcVah CPy8MDkH7Ap+mm9FW0CtG8WnuT8V5V4oRYvIX2vKqZ9k1GxBxKZfnyOJ3VDkFDUu MnoEFoLL19tBy0iryytp+bE4TmmqStZiIZctaYgtkuqwCbaN2MCL0dzohQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFN4RKveBBpYLndJuExy6jSMO/6RCMB8GA1UdIwQY MBaAFBASh5J617HbR5rlq5Krh8Sk+vSWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRUJLSGtuclhzZHRIbXVXcmtxdUh4S1Q2OUpZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC8xMjM5MWQtNWZiNi00ZGVhLWE3MTMt NzNhNDUyYmFmYjQ2LzEvM2hFcTk0RUdsZ3VkMG00VEhMcU5JdzdfcEVJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NC8xMjM5MWQtNWZiNi00ZGVhLWE3MTMtNzNhNDUyYmFmYjQ2 LzEvRUJLSGtuclhzZHRIbXVXcmtxdUh4S1Q2OUpZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgC+gDAN BgkqhkiG9w0BAQsFAAOCAQEAGXBB3+BjmLS0HztzlCCz7q1bW6YGAi05NghWpkHl V4Q5aoTBmrdkBO6FjR+3Mqp4+yhG1SSiZLiBysZ/m/Jq9ozihseMFQylWkBXUPQ3 l2QywB8YZ/qpj346lKeLAa3wUPQLQ32Tz3N7oCp8yWlsWzIUzm0OEKb0MgNsbnLr +T6ndgd5iScjS7cbkwC07U1ZTbTd0d/lkXcuKS/Nc+Ps6257mE2J4clSyt+yBgbT iuVObyW3Z0EgdRYxY/0BrbMHMGBY4miGQxKZZyx9hKyA5Q+xsRiXQK5DktCp2ZHH FlMmuCz/fPesJxTSquUjx2hW9SIW7CAVjsTtabFew51SoA== -----END CERTIFICATE-----Generated at Wed Jan 21 06:09:26 2026 by rpki-client