This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/SaHrSTC5krmsWxX_ceQai78tgh8.roa File: SaHrSTC5krmsWxX_ceQai78tgh8.roa (raw, json) Hash identifier: vvSAOVCsL8NO/5zPPIeY4HedCXvrsfINEtkJoroKG7g= Subject key identifier: 49:A1:EB:49:30:B9:92:B9:AC:5B:15:FF:71:E4:1A:8B:BF:2D:82:1F Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Certificate serial: 019B79109CB1B4982A6858C8DE343F9D6B16 Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/SaHrSTC5krmsWxX_ceQai78tgh8.roa Signing time: Thu 01 Jan 2026 10:18:10 +0000 ROA not before: Thu 01 Jan 2026 10:18:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200636 IP address blocks: 2a12:bec0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.mft rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:9c:b1:b4:98:2a:68:58:c8:de:34:3f:9d:6b:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Validity Not Before: Jan 1 10:18:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=49a1eb4930b992b9ac5b15ff71e41a8bbf2d821f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:28:73:58:4d:45:a6:5f:75:1e:05:26:50:cc: 72:51:18:e6:5e:96:e2:9e:01:07:1e:59:db:c4:dd: a3:b0:3c:c2:0f:3a:4d:9c:96:b3:13:73:9c:4d:c3: 98:ee:33:5d:af:51:44:1f:2a:78:06:92:c6:df:16: d8:e6:4f:cb:32:0c:6f:fa:f3:bd:46:30:e6:8c:01: f9:76:1f:a0:53:8d:26:bb:fc:5d:2a:4a:6c:50:e5: fa:0f:64:33:0c:4b:26:19:3b:cb:f4:8b:1a:75:bd: e9:33:bf:15:e2:f3:9f:c3:71:53:91:79:82:7a:30: 31:31:30:a0:05:88:8d:fb:da:26:aa:88:76:19:69: aa:1c:30:26:d6:81:2b:a2:4a:95:b8:4e:61:a4:61: 6b:34:d4:1f:96:f7:3a:a4:26:c8:97:55:fe:ad:73: 06:00:07:aa:c9:18:9a:2c:b6:de:e0:40:92:a8:d9: 3b:c0:59:d0:8c:94:79:6b:d7:fa:cb:7c:b2:e9:ff: 08:9e:81:3d:17:bf:ce:40:d6:72:3f:04:cf:11:50: cc:01:82:f5:a6:bd:a6:09:04:07:96:ec:72:d4:dd: 30:32:bd:44:d3:93:c1:c4:d2:48:9e:05:50:48:ae: 75:db:e1:f3:1a:c8:30:b2:81:25:ce:97:4f:f8:37: 01:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:A1:EB:49:30:B9:92:B9:AC:5B:15:FF:71:E4:1A:8B:BF:2D:82:1F X509v3 Authority Key Identifier: keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/SaHrSTC5krmsWxX_ceQai78tgh8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:bec0:1::/48 Signature Algorithm: sha256WithRSAEncryption 4b:78:07:b4:2f:54:90:91:3b:1c:98:81:ff:88:bb:fb:94:ee: f9:b3:85:8f:38:0c:3d:40:7e:f7:21:1b:cc:a5:46:bc:00:7d: f9:d6:be:d3:5d:ce:62:7f:09:d0:fd:32:8f:3d:12:f7:e7:3c: f1:e4:e1:90:f8:e6:5e:b2:1c:f4:a2:68:a8:3c:c9:5c:70:9b: 90:84:fe:1e:c4:f5:2d:36:40:38:12:67:ba:17:3f:ee:52:01: f0:75:2d:4f:19:5a:33:54:ad:8f:d0:70:db:b5:d5:ec:11:09: d7:8b:82:be:90:40:db:70:bd:c5:63:77:b0:a5:bb:ae:f9:31: e9:33:02:28:59:5f:aa:0a:5b:17:d8:de:7e:9b:a4:f4:23:e7: 0c:ca:f7:81:55:8b:92:ee:7f:28:69:75:76:23:17:8b:4b:4f: f4:dc:c3:95:bc:9e:8d:f3:b6:0d:48:ab:18:18:8b:47:aa:15: 08:f6:9f:cb:73:dd:78:7c:40:ce:df:21:59:88:85:a8:8b:67: 58:60:02:28:36:53:de:c2:0d:67:37:85:04:3b:49:63:9f:72: b2:e9:db:28:f6:b8:54:45:a5:bb:ed:b4:0b:48:96:6a:a5:7d: be:d4:79:cc:c4:63:b1:f9:0f:88:0f:fb:45:24:9d:c9:32:46: fa:0a:ea:53 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5EJyxtJgqaFjI3jQ/nWsWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj M2Q2NmYwHhcNMjYwMTAxMTAxODEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0OWExZWI0OTMwYjk5MmI5YWM1YjE1ZmY3MWU0MWE4YmJmMmQ4MjFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlyhzWE1Fpl91HgUmUMxyURjmXpbi ngEHHlnbxN2jsDzCDzpNnJazE3OcTcOY7jNdr1FEHyp4BpLG3xbY5k/LMgxv+vO9 RjDmjAH5dh+gU40mu/xdKkpsUOX6D2QzDEsmGTvL9Isadb3pM78V4vOfw3FTkXmC ejAxMTCgBYiN+9omqoh2GWmqHDAm1oErokqVuE5hpGFrNNQflvc6pCbIl1X+rXMG AAeqyRiaLLbe4ECSqNk7wFnQjJR5a9f6y3yy6f8InoE9F7/OQNZyPwTPEVDMAYL1 pr2mCQQHluxy1N0wMr1E05PBxNJIngVQSK512+HzGsgwsoElzpdP+DcBRwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFEmh60kwuZK5rFsV/3HkGou/LYIfMB8GA1UdIwQY MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt NTUzNjljZjUwN2VlLzEvU2FIclNUQzVrcm1zV3hYX2NlUWFpNzh0Z2g4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhK+wAAB MA0GCSqGSIb3DQEBCwUAA4IBAQBLeAe0L1SQkTscmIH/iLv7lO75s4WPOAw9QH73 IRvMpUa8AH351r7TXc5ifwnQ/TKPPRL35zzx5OGQ+OZeshz0omioPMlccJuQhP4e xPUtNkA4Eme6Fz/uUgHwdS1PGVozVK2P0HDbtdXsEQnXi4K+kEDbcL3FY3ewpbuu +THpMwIoWV+qClsX2N5+m6T0I+cMyveBVYuS7n8oaXV2IxeLS0/03MOVvJ6N87YN SKsYGItHqhUI9p/Lc914fEDO3yFZiIWoi2dYYAIoNlPewg1nN4UEO0ljn3Ky6dso 9rhURaW77bQLSJZqpX2+1HnMxGOx+Q+ID/tFJJ3JMkb6CupT -----END CERTIFICATE-----Generated at Mon Jan 19 23:23:28 2026 by rpki-client