This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/JSRvVnKgoglHvvXJHv1elzgx_sM.roa File: JSRvVnKgoglHvvXJHv1elzgx_sM.roa (raw, json) Hash identifier: /tK7Mz8GftXrbEY1ch03Q7vojkdzmXPZKAflbOMoanE= Subject key identifier: 25:24:6F:56:72:A0:A2:09:47:BE:F5:C9:1E:FD:5E:97:38:31:FE:C3 Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Certificate serial: 019B7910C2F09B310D4147147FFD558B716A Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/JSRvVnKgoglHvvXJHv1elzgx_sM.roa Signing time: Thu 01 Jan 2026 10:18:20 +0000 ROA not before: Thu 01 Jan 2026 10:18:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215809 IP address blocks: 2a12:bec0:5f0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.mft rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:c2:f0:9b:31:0d:41:47:14:7f:fd:55:8b:71:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Validity Not Before: Jan 1 10:18:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=25246f5672a0a20947bef5c91efd5e973831fec3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a8:02:5d:0a:10:1b:f8:dd:5d:49:87:ee:51: 4a:23:c6:fc:bc:2d:38:a6:02:d4:cf:d7:10:1f:8c: ca:b4:8d:92:81:13:91:54:05:b0:4f:30:6c:25:e1: 69:a7:29:17:3d:98:31:29:5b:ff:77:60:d4:d7:69: ef:37:37:66:6c:35:d0:4b:0d:3d:37:fc:82:c3:a7: df:0c:ae:77:0d:77:29:22:50:43:21:c6:4c:5f:85: 98:32:84:ee:b7:13:89:43:ea:5a:d6:61:88:59:8b: 24:17:02:70:77:e6:ee:80:53:55:52:c6:de:50:ae: c9:5b:63:22:57:76:64:14:1a:f5:bf:06:27:e7:8a: d6:81:ca:5a:da:27:bc:d2:9a:9a:9c:b1:54:4a:c3: bb:83:4e:02:5f:d3:75:27:54:d4:76:f9:cf:b3:03: 33:fd:ee:e1:f0:f1:43:16:a6:6f:b3:92:14:36:91: 40:bc:16:cc:a6:a6:73:5c:96:e5:c0:26:b0:6d:bb: 97:0f:b0:e7:b0:5a:08:5b:29:f8:e0:8b:52:ec:35: bc:96:cc:45:8c:80:51:18:a6:17:f0:02:88:40:94: de:c3:01:b9:7c:a1:d5:96:75:7a:91:ea:b1:99:e0: 5c:dc:c2:34:00:60:6a:73:2d:2d:0d:fc:69:c4:2e: c3:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:24:6F:56:72:A0:A2:09:47:BE:F5:C9:1E:FD:5E:97:38:31:FE:C3 X509v3 Authority Key Identifier: keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/JSRvVnKgoglHvvXJHv1elzgx_sM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:bec0:5f0::/44 Signature Algorithm: sha256WithRSAEncryption bc:e8:65:c1:07:a8:d2:78:3c:6b:bf:6c:67:6c:88:6a:20:88: f9:79:9b:2b:8f:07:be:b7:34:08:a0:60:ca:14:8e:6d:40:e7: c0:cb:f4:7e:07:00:1d:c9:5b:d6:21:54:b3:09:b5:64:cd:72: d6:51:89:66:60:e2:e0:7b:6b:9c:5e:3d:a9:47:b5:ab:a7:70: b3:1c:f6:7f:8a:dd:8b:52:a5:31:f9:b3:9d:64:b0:d2:17:3f: 6a:50:30:c2:f9:97:3c:85:9d:74:e3:98:d5:91:5b:60:13:7e: b8:d0:ea:71:b9:0d:52:fa:8b:a5:83:7d:db:c2:93:3d:f8:4c: a7:f0:5a:13:5b:85:30:bc:d2:bd:28:5a:aa:f5:31:43:fe:a6: ef:7f:e2:bd:7f:38:8e:35:55:e3:36:30:8b:34:7b:3e:5b:81: 02:6c:50:05:53:37:80:51:76:26:b1:84:b1:fa:e2:9d:d1:eb: 14:46:d0:f0:e1:f8:a2:a7:24:c6:0f:ec:09:18:e1:e7:8b:f4: 16:e2:75:0e:16:c2:b6:ce:c3:93:eb:be:b5:81:1f:ee:69:b6: 10:42:49:03:fa:88:45:b3:d0:e5:72:98:32:20:46:7c:05:d0: e4:50:bf:df:89:04:ca:3b:7d:dc:f6:eb:29:5c:a4:be:f7:e0: 41:b4:15:f5 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5EMLwmzENQUcUf/1Vi3FqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj M2Q2NmYwHhcNMjYwMTAxMTAxODIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNTI0NmY1NjcyYTBhMjA5NDdiZWY1YzkxZWZkNWU5NzM4MzFmZWMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqqgCXQoQG/jdXUmH7lFKI8b8vC04 pgLUz9cQH4zKtI2SgRORVAWwTzBsJeFppykXPZgxKVv/d2DU12nvNzdmbDXQSw09 N/yCw6ffDK53DXcpIlBDIcZMX4WYMoTutxOJQ+pa1mGIWYskFwJwd+bugFNVUsbe UK7JW2MiV3ZkFBr1vwYn54rWgcpa2ie80pqanLFUSsO7g04CX9N1J1TUdvnPswMz /e7h8PFDFqZvs5IUNpFAvBbMpqZzXJblwCawbbuXD7DnsFoIWyn44ItS7DW8lsxF jIBRGKYX8AKIQJTewwG5fKHVlnV6keqxmeBc3MI0AGBqcy0tDfxpxC7DxQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFCUkb1ZyoKIJR771yR79Xpc4Mf7DMB8GA1UdIwQY MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt NTUzNjljZjUwN2VlLzEvSlNSdlZuS2dvZ2xIdnZYSkh2MWVsemd4X3NNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhK+wAXw MA0GCSqGSIb3DQEBCwUAA4IBAQC86GXBB6jSeDxrv2xnbIhqIIj5eZsrjwe+tzQI oGDKFI5tQOfAy/R+BwAdyVvWIVSzCbVkzXLWUYlmYOLge2ucXj2pR7Wrp3CzHPZ/ it2LUqUx+bOdZLDSFz9qUDDC+Zc8hZ1045jVkVtgE3640OpxuQ1S+oulg33bwpM9 +Eyn8FoTW4UwvNK9KFqq9TFD/qbvf+K9fziONVXjNjCLNHs+W4ECbFAFUzeAUXYm sYSx+uKd0esURtDw4fiipyTGD+wJGOHni/QW4nUOFsK2zsOT6761gR/uabYQQkkD +ohFs9DlcpgyIEZ8BdDkUL/fiQTKO33c9uspXKS+9+BBtBX1 -----END CERTIFICATE-----Generated at Tue Jan 20 02:49:14 2026 by rpki-client