This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/4W5VZEynzjPUwBomEZt40ka1t0s.roa File: 4W5VZEynzjPUwBomEZt40ka1t0s.roa (raw, json) Hash identifier: bX2s5nx1Y9MV33hOaj9vbvS0PrgDAi2Rv7Nn8FpCPGU= Subject key identifier: E1:6E:55:64:4C:A7:CE:33:D4:C0:1A:26:11:9B:78:D2:46:B5:B7:4B Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Certificate serial: 019B7910C745B11A8CAABCBCA0C1C9DD8561 Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/4W5VZEynzjPUwBomEZt40ka1t0s.roa Signing time: Thu 01 Jan 2026 10:18:21 +0000 ROA not before: Thu 01 Jan 2026 10:18:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 216085 IP address blocks: 2a12:bec0:570::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.mft rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:c7:45:b1:1a:8c:aa:bc:bc:a0:c1:c9:dd:85:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Validity Not Before: Jan 1 10:18:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e16e55644ca7ce33d4c01a26119b78d246b5b74b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:08:29:18:2e:0f:36:db:f7:d9:ce:3f:a0:26: 89:b5:7b:60:f8:3d:7c:82:b3:16:ed:1e:4e:11:db: b2:ab:ec:5a:22:13:bb:4d:60:38:a6:b2:b6:fc:46: 8d:e0:da:78:e9:8f:24:6b:48:4f:df:01:aa:24:8f: 2c:33:5d:21:e5:cd:71:f8:e8:4b:ca:63:46:90:2a: 38:ae:86:fd:d2:f3:1b:9d:b9:76:b0:f1:a4:c2:b4: a6:7f:be:36:47:b2:57:84:b4:02:76:1d:d5:6d:8e: fe:81:e6:b9:26:20:6f:03:f8:ef:08:17:b0:60:75: c2:91:0c:b7:30:96:73:f3:8e:98:a1:1c:2f:2f:37: 8e:d9:de:ee:1b:dd:3c:2c:fc:e2:73:93:ff:0d:67: 6c:ec:7f:2a:b4:1a:71:a9:35:17:8c:54:f1:fa:48: ec:c5:ec:eb:26:6a:f6:77:69:35:c7:55:34:ec:aa: 4f:39:b4:d2:dd:f5:38:52:f2:9a:5d:09:67:40:1a: 94:38:9d:01:59:81:60:20:48:35:34:49:60:e5:5c: 7b:6a:c2:b6:d4:bd:77:c2:43:c3:87:a2:e9:94:97: 10:e6:97:37:74:bc:4b:9b:8e:74:ee:5d:01:06:e5: 82:86:84:27:fc:85:98:bc:97:07:97:f2:56:9c:43: 84:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:6E:55:64:4C:A7:CE:33:D4:C0:1A:26:11:9B:78:D2:46:B5:B7:4B X509v3 Authority Key Identifier: keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/4W5VZEynzjPUwBomEZt40ka1t0s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:bec0:570::/44 Signature Algorithm: sha256WithRSAEncryption b8:d9:df:73:58:18:40:01:bd:11:84:95:28:1e:53:82:43:58: c6:76:54:32:32:6a:3f:e8:23:83:53:e0:20:49:42:d0:b2:65: a3:af:ff:d9:ef:98:3b:be:2d:2b:9b:94:1a:37:9c:2d:42:d5: 82:2e:8f:1e:25:73:ab:05:e7:10:e1:d5:96:19:4f:5e:29:9a: 69:df:7a:c1:07:f1:5b:30:dc:72:e8:5b:4c:36:ce:5a:78:7c: 1f:a0:1f:ab:c4:11:84:2e:4c:4a:80:d0:bc:f9:c6:16:25:bd: d1:76:ff:b8:cc:a8:4d:ae:2e:4e:02:87:fd:e7:51:33:95:b3: ab:4e:69:a6:43:bf:af:8e:04:ad:84:31:99:d1:87:40:5b:19: cd:43:bf:4f:7d:96:60:e0:53:d2:96:9a:00:4f:86:38:59:9a: 7e:eb:73:98:0b:88:0e:96:0f:cc:cf:f3:3a:b0:78:39:62:cf: 29:ec:11:61:76:0a:c6:9c:50:75:62:15:5f:ef:95:20:fa:e6: 00:e5:82:14:e6:03:e7:11:5b:be:20:5f:a6:fa:b2:2c:f6:4c: d2:92:a4:3d:cb:e9:4e:65:bd:14:ae:8d:75:09:f5:5d:35:93: c9:e4:ff:b5:fc:f6:39:b3:2e:1f:cc:bd:fa:fe:c6:64:b6:50: 44:6e:12:b0 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5EMdFsRqMqry8oMHJ3YVhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj M2Q2NmYwHhcNMjYwMTAxMTAxODIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMTZlNTU2NDRjYTdjZTMzZDRjMDFhMjYxMTliNzhkMjQ2YjViNzRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4QgpGC4PNtv32c4/oCaJtXtg+D18 grMW7R5OEduyq+xaIhO7TWA4prK2/EaN4Np46Y8ka0hP3wGqJI8sM10h5c1x+OhL ymNGkCo4rob90vMbnbl2sPGkwrSmf742R7JXhLQCdh3VbY7+gea5JiBvA/jvCBew YHXCkQy3MJZz846YoRwvLzeO2d7uG908LPzic5P/DWds7H8qtBpxqTUXjFTx+kjs xezrJmr2d2k1x1U07KpPObTS3fU4UvKaXQlnQBqUOJ0BWYFgIEg1NElg5Vx7asK2 1L13wkPDh6LplJcQ5pc3dLxLm4507l0BBuWChoQn/IWYvJcHl/JWnEOEmwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFOFuVWRMp84z1MAaJhGbeNJGtbdLMB8GA1UdIwQY MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt NTUzNjljZjUwN2VlLzEvNFc1VlpFeW56alBVd0JvbUVadDQwa2ExdDBzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhK+wAVw MA0GCSqGSIb3DQEBCwUAA4IBAQC42d9zWBhAAb0RhJUoHlOCQ1jGdlQyMmo/6COD U+AgSULQsmWjr//Z75g7vi0rm5QaN5wtQtWCLo8eJXOrBecQ4dWWGU9eKZpp33rB B/FbMNxy6FtMNs5aeHwfoB+rxBGELkxKgNC8+cYWJb3Rdv+4zKhNri5OAof951Ez lbOrTmmmQ7+vjgSthDGZ0YdAWxnNQ79PfZZg4FPSlpoAT4Y4WZp+63OYC4gOlg/M z/M6sHg5Ys8p7BFhdgrGnFB1YhVf75Ug+uYA5YIU5gPnEVu+IF+m+rIs9kzSkqQ9 y+lOZb0Uro11CfVdNZPJ5P+1/PY5sy4fzL36/sZktlBEbhKw -----END CERTIFICATE-----Generated at Tue Jan 20 02:50:01 2026 by rpki-client