This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/3ca7L1EzAgITwmcajkQKuysJquE.roa File: 3ca7L1EzAgITwmcajkQKuysJquE.roa (raw, json) Hash identifier: Wut0bEvf/aRU+bkHHkYPcgDngkBwWhrpJWCGayFbTc4= Subject key identifier: DD:C6:BB:2F:51:33:02:02:13:C2:67:1A:8E:44:0A:BB:2B:09:AA:E1 Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Certificate serial: 019B791091BE0413F9B5FA8C8B4C4B94AC3E Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/3ca7L1EzAgITwmcajkQKuysJquE.roa Signing time: Thu 01 Jan 2026 10:18:07 +0000 ROA not before: Thu 01 Jan 2026 10:18:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199406 IP address blocks: 2a12:bec0:1a0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.mft rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:91:be:04:13:f9:b5:fa:8c:8b:4c:4b:94:ac:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Validity Not Before: Jan 1 10:18:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ddc6bb2f5133020213c2671a8e440abb2b09aae1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:1c:c3:6c:7d:42:e2:4f:b9:d1:a7:2f:24:cc: 91:4e:d9:1d:ce:59:73:df:bc:c7:8d:c0:43:ca:0f: 00:6d:36:66:a2:e1:84:51:c4:b1:19:2d:b4:f0:6f: 9a:3a:5e:68:1c:62:27:12:d0:34:a5:28:7c:a7:04: 7c:3f:1c:ed:1e:19:26:7d:fb:00:e2:14:3a:89:36: e2:5a:12:cd:3d:06:e0:cf:81:aa:17:c7:55:23:be: 10:8a:8a:c7:6c:19:1d:02:a7:df:ad:2a:9b:72:73: c4:72:4d:81:1a:01:90:13:fe:16:56:8a:f9:1c:3d: 9d:98:b0:33:f1:27:4d:6f:b5:91:db:0e:f4:bf:6a: c4:71:1f:f9:cd:7d:f5:ed:2c:4f:41:ed:c6:f3:0d: 53:eb:53:60:99:49:2c:c0:78:53:5d:1a:2e:b8:53: 2d:85:6e:5c:b1:66:f1:7f:98:a6:04:5d:47:08:0e: a9:9a:29:e3:cc:5e:86:42:c9:8f:e9:b1:56:89:c7: b3:b1:17:35:c7:e2:51:f5:80:7a:58:9a:dc:5f:0c: 10:e8:69:4e:58:df:8d:45:36:37:bf:9c:d1:72:85: ce:1e:13:18:0d:26:ca:60:80:59:5c:6e:c0:03:65: 88:83:75:a9:11:41:9d:4b:f2:d6:92:0e:14:99:3f: 65:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:C6:BB:2F:51:33:02:02:13:C2:67:1A:8E:44:0A:BB:2B:09:AA:E1 X509v3 Authority Key Identifier: keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/3ca7L1EzAgITwmcajkQKuysJquE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:bec0:1a0::/44 Signature Algorithm: sha256WithRSAEncryption 7b:b3:c6:a9:f2:7b:66:9e:bd:5f:fe:66:ac:ab:33:8b:c4:a4: 43:1b:93:8b:66:dd:6e:15:14:c4:83:9f:98:20:08:37:84:9f: f8:6f:42:24:3e:59:3d:b9:a4:2c:0a:a2:d9:0e:80:db:30:1e: 03:5f:4b:9d:d5:b7:88:e2:c1:ce:a3:a4:a6:f8:98:04:f8:ca: 4b:3f:bf:f9:50:06:d0:6b:51:b3:1c:16:b0:f4:b9:83:d8:21: 5e:82:ae:b7:79:e6:fd:57:0d:6a:95:2b:6e:d8:0e:94:f4:95: 25:ca:93:a1:5b:71:90:ff:a6:82:0a:83:69:db:28:97:50:ce: 49:3e:68:26:c4:03:77:9f:d5:19:b9:73:5d:59:d2:a6:21:b6: df:29:37:f7:0b:cf:0f:a6:59:a8:ce:71:f7:5f:bd:58:bc:6d: 9f:80:f7:a8:65:cd:42:48:97:06:f8:42:73:57:cc:38:cb:c5: d6:cb:58:97:a9:52:27:66:88:12:b4:f5:e6:c8:27:ce:a6:18: 19:51:4b:7e:6b:d2:5b:df:fd:5e:a8:1d:d6:d0:f4:d8:3f:47: b6:98:c3:88:00:8a:f4:1f:d4:b7:83:52:32:8e:4d:c6:b9:75: 39:9a:e2:38:7b:a5:9f:5c:9e:c6:56:32:74:48:db:12:b8:a3: 8a:4d:63:36 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5EJG+BBP5tfqMi0xLlKw+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj M2Q2NmYwHhcNMjYwMTAxMTAxODA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZGM2YmIyZjUxMzMwMjAyMTNjMjY3MWE4ZTQ0MGFiYjJiMDlhYWUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlRzDbH1C4k+50acvJMyRTtkdzllz 37zHjcBDyg8AbTZmouGEUcSxGS208G+aOl5oHGInEtA0pSh8pwR8PxztHhkmffsA 4hQ6iTbiWhLNPQbgz4GqF8dVI74QiorHbBkdAqffrSqbcnPEck2BGgGQE/4WVor5 HD2dmLAz8SdNb7WR2w70v2rEcR/5zX317SxPQe3G8w1T61NgmUkswHhTXRouuFMt hW5csWbxf5imBF1HCA6pminjzF6GQsmP6bFWicezsRc1x+JR9YB6WJrcXwwQ6GlO WN+NRTY3v5zRcoXOHhMYDSbKYIBZXG7AA2WIg3WpEUGdS/LWkg4UmT9lrQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFN3Guy9RMwICE8JnGo5ECrsrCarhMB8GA1UdIwQY MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt NTUzNjljZjUwN2VlLzEvM2NhN0wxRXpBZ0lUd21jYWprUUt1eXNKcXVFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhK+wAGg MA0GCSqGSIb3DQEBCwUAA4IBAQB7s8ap8ntmnr1f/masqzOLxKRDG5OLZt1uFRTE g5+YIAg3hJ/4b0IkPlk9uaQsCqLZDoDbMB4DX0ud1beI4sHOo6Sm+JgE+MpLP7/5 UAbQa1GzHBaw9LmD2CFegq63eeb9Vw1qlStu2A6U9JUlypOhW3GQ/6aCCoNp2yiX UM5JPmgmxAN3n9UZuXNdWdKmIbbfKTf3C88PplmoznH3X71YvG2fgPeoZc1CSJcG +EJzV8w4y8XWy1iXqVInZogStPXmyCfOphgZUUt+a9Jb3/1eqB3W0PTYP0e2mMOI AIr0H9S3g1Iyjk3GuXU5muI4e6WfXJ7GVjJ0SNsSuKOKTWM2 -----END CERTIFICATE-----Generated at Tue Jan 20 02:47:44 2026 by rpki-client