This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/3aLvO1urC3X-OmgtO11uN3YQOv0.roa File: 3aLvO1urC3X-OmgtO11uN3YQOv0.roa (raw, json) Hash identifier: tELwdmLJ+Hp8hBat1QlYn1Dl4REhEgyIFTZ6zCmAjbE= Subject key identifier: DD:A2:EF:3B:5B:AB:0B:75:FE:3A:68:2D:3B:5D:6E:37:76:10:3A:FD Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Certificate serial: 019B7910A700308AA558114045DFAF0175E9 Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/3aLvO1urC3X-OmgtO11uN3YQOv0.roa Signing time: Thu 01 Jan 2026 10:18:12 +0000 ROA not before: Thu 01 Jan 2026 10:18:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210269 IP address blocks: 2a12:bec0:100::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.mft rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:a7:00:30:8a:a5:58:11:40:45:df:af:01:75:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Validity Not Before: Jan 1 10:18:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dda2ef3b5bab0b75fe3a682d3b5d6e3776103afd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:8e:fe:7d:16:80:4b:77:d9:e1:cf:89:63:66: e4:60:c9:f0:42:2b:a1:c2:df:a7:9c:26:f3:ec:55: 3b:7e:4b:7a:87:e2:56:d8:bb:90:4e:8f:9f:96:d4: 3e:e3:a3:e0:2f:b9:2b:a9:dd:67:c0:b3:8e:a1:2b: e1:07:3d:17:57:79:0b:7e:af:78:39:82:04:d2:91: 31:8b:a6:26:95:0f:07:ff:61:80:39:3d:36:d2:61: 9b:06:c0:7a:f0:69:d0:3b:a2:70:18:40:0a:ad:73: 41:e4:ed:00:1b:b6:db:fa:6b:a4:1e:d3:8f:94:18: f7:d5:05:e3:85:2b:cd:79:2d:33:bb:40:3d:a8:3f: 3f:42:9e:25:ec:02:d1:e4:e4:8c:0e:54:73:9d:c5: a3:9b:25:0c:a4:55:8e:0a:84:8d:06:07:4d:4b:20: 4c:93:ba:64:88:ac:97:6b:48:0e:0f:9f:d1:cf:65: 1e:11:ca:b8:c2:74:47:9c:71:e9:72:8d:08:1b:16: 02:d5:15:8e:fd:5d:58:7b:fe:ab:de:7b:65:6c:25: 7a:e5:b6:6d:cd:ee:c0:af:8f:85:89:ba:e9:3e:ab: c1:7d:ad:38:7d:0b:6e:25:dd:36:f4:ef:ec:01:24: 77:2a:96:24:ec:1f:7a:14:a3:4a:82:07:28:54:0d: 9e:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:A2:EF:3B:5B:AB:0B:75:FE:3A:68:2D:3B:5D:6E:37:76:10:3A:FD X509v3 Authority Key Identifier: keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/3aLvO1urC3X-OmgtO11uN3YQOv0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:bec0:100::/44 Signature Algorithm: sha256WithRSAEncryption 85:64:00:1f:67:7e:cd:7d:94:ba:bd:b8:81:9a:f7:26:7d:d2: d4:e2:c6:bd:b9:41:5d:9b:29:0e:f5:2e:c3:a4:3e:96:b1:f0: e3:b2:ec:bd:e4:16:b3:fd:7b:b7:64:a8:8f:79:88:31:9b:16: f9:75:f4:ec:86:8d:5d:14:0f:8c:1b:46:ba:7d:d4:0e:c7:1d: 6d:17:59:77:63:92:2e:4e:4a:dd:dc:46:8f:e8:fd:af:52:85: 11:f7:4b:54:62:ce:0f:7d:35:cb:bf:eb:3e:f2:60:d1:61:19: 54:1e:5e:a3:20:ce:f8:5b:12:62:4b:05:c1:e1:d2:9f:83:02: 61:e8:45:bf:dd:c9:ac:2d:06:5c:59:55:1d:5c:9a:22:d3:b8: 9c:f6:90:89:86:92:d2:9e:36:8c:a3:be:8a:76:e7:a4:4c:82: 1d:83:46:fd:e2:3c:4f:69:06:c3:3c:fe:f3:52:47:75:a1:6c: 52:fd:7a:5d:30:3c:f8:ff:af:80:5a:9b:13:d4:63:78:02:23: 4b:cb:47:3c:64:bc:71:ff:02:1c:73:df:01:30:97:c5:d8:07: ce:93:dd:89:f7:86:c3:38:d8:32:f5:03:7f:82:76:24:8c:a9: 1e:bd:36:b9:37:41:f3:64:40:1b:97:0e:53:33:a2:b0:6b:1c: ae:f4:ee:d3 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5EKcAMIqlWBFARd+vAXXpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj M2Q2NmYwHhcNMjYwMTAxMTAxODEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZGEyZWYzYjViYWIwYjc1ZmUzYTY4MmQzYjVkNmUzNzc2MTAzYWZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxY7+fRaAS3fZ4c+JY2bkYMnwQiuh wt+nnCbz7FU7fkt6h+JW2LuQTo+fltQ+46PgL7krqd1nwLOOoSvhBz0XV3kLfq94 OYIE0pExi6YmlQ8H/2GAOT020mGbBsB68GnQO6JwGEAKrXNB5O0AG7bb+mukHtOP lBj31QXjhSvNeS0zu0A9qD8/Qp4l7ALR5OSMDlRzncWjmyUMpFWOCoSNBgdNSyBM k7pkiKyXa0gOD5/Rz2UeEcq4wnRHnHHpco0IGxYC1RWO/V1Ye/6r3ntlbCV65bZt ze7Ar4+FibrpPqvBfa04fQtuJd029O/sASR3KpYk7B96FKNKggcoVA2eAQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFN2i7ztbqwt1/jpoLTtdbjd2EDr9MB8GA1UdIwQY MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt NTUzNjljZjUwN2VlLzEvM2FMdk8xdXJDM1gtT21ndE8xMXVOM1lRT3YwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhK+wAEA MA0GCSqGSIb3DQEBCwUAA4IBAQCFZAAfZ37NfZS6vbiBmvcmfdLU4sa9uUFdmykO 9S7DpD6WsfDjsuy95Baz/Xu3ZKiPeYgxmxb5dfTsho1dFA+MG0a6fdQOxx1tF1l3 Y5IuTkrd3EaP6P2vUoUR90tUYs4PfTXLv+s+8mDRYRlUHl6jIM74WxJiSwXB4dKf gwJh6EW/3cmsLQZcWVUdXJoi07ic9pCJhpLSnjaMo76KduekTIIdg0b94jxPaQbD PP7zUkd1oWxS/XpdMDz4/6+AWpsT1GN4AiNLy0c8ZLxx/wIcc98BMJfF2AfOk92J 94bDONgy9QN/gnYkjKkevTa5N0HzZEAblw5TM6Kwaxyu9O7T -----END CERTIFICATE-----Generated at Tue Jan 20 02:49:16 2026 by rpki-client