This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/_V8A2ZkgBHR1EDdipJge9jpDvfU.roa File: _V8A2ZkgBHR1EDdipJge9jpDvfU.roa (raw, json) Hash identifier: wqK23PLUif+HsVwVFzoWQ32jsFPJkKPYL79laJdzHe8= Subject key identifier: FD:5F:00:D9:99:20:04:74:75:10:37:62:A4:98:1E:F6:3A:43:BD:F5 Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Certificate serial: 019B7910AB6D91DE236C4D3807125E605A92 Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/_V8A2ZkgBHR1EDdipJge9jpDvfU.roa Signing time: Thu 01 Jan 2026 10:18:14 +0000 ROA not before: Thu 01 Jan 2026 10:18:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213482 IP address blocks: 2a12:bec4:1780::/44 maxlen: 44 2a12:bec4:1c50::/44 maxlen: 44 2a12:bec4:1e40::/44 maxlen: 44 2a12:bec4:1e60::/44 maxlen: 44 2a12:bec4:1e70::/44 maxlen: 44 2a12:bec4:1e80::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.mft rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 04:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:ab:6d:91:de:23:6c:4d:38:07:12:5e:60:5a:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Validity Not Before: Jan 1 10:18:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fd5f00d99920047475103762a4981ef63a43bdf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:7d:57:ed:07:db:18:e8:df:7b:d0:0c:39:25: 81:3e:3a:4e:27:a3:b5:02:4e:dc:dc:34:4e:6a:d9: 4f:f0:55:05:1d:af:24:b0:49:2d:80:cc:62:6c:a6: f9:2b:73:27:50:bd:9d:40:72:11:dd:cb:05:09:c5: 0d:50:61:91:92:06:d0:85:6e:27:90:16:30:b1:fd: 8e:ae:6f:08:92:f2:c6:7a:a9:da:d7:bd:69:db:72: c8:dd:9e:33:ed:26:01:d8:1b:f7:49:78:6f:c1:e0: ca:55:df:c0:ed:e0:17:ce:79:66:5e:e5:00:6e:69: dc:24:69:0b:41:c7:d3:5e:eb:43:df:d9:21:de:ab: c8:83:12:76:a0:ed:e4:19:42:26:73:df:32:2b:d4: 62:db:b9:72:42:44:62:02:07:0e:fb:e6:51:7c:14: 5a:16:e2:4d:8e:dd:8d:55:d8:3f:9e:ae:34:65:d4: 08:24:86:ed:bf:df:b7:b4:9e:a1:a1:5c:64:d6:55: c8:36:3f:83:e8:b7:a3:8f:0e:78:32:d6:65:ad:42: 56:c2:2c:ae:ff:6e:87:71:f3:5d:f0:ea:a5:ef:09: de:11:38:11:59:05:af:07:50:42:dd:41:72:d9:b2: 56:08:ea:07:8c:d1:d2:22:97:c9:9e:5e:6a:e2:5b: 03:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:5F:00:D9:99:20:04:74:75:10:37:62:A4:98:1E:F6:3A:43:BD:F5 X509v3 Authority Key Identifier: keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/_V8A2ZkgBHR1EDdipJge9jpDvfU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:bec4:1780::/44 2a12:bec4:1c50::/44 2a12:bec4:1e40::/44 2a12:bec4:1e60::-2a12:bec4:1e8f:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 5c:3d:c2:7d:0f:d6:19:17:3c:0f:cb:e4:71:1c:3a:ce:4b:3f: 0d:74:7d:6f:27:a3:bf:c7:8f:68:31:4b:12:c8:04:0c:3c:75: f0:a8:9c:91:05:6e:dd:9f:c0:ca:f2:82:9d:11:42:27:5e:fa: 5c:bb:c5:24:55:5c:d3:c7:d8:47:37:a5:f6:60:11:81:6f:5e: 21:e7:09:70:8e:8e:b5:55:f5:a0:a9:4c:e5:90:97:31:59:2e: 4c:57:dd:60:71:eb:28:91:3e:9a:03:e7:a0:36:2f:3a:c4:8c: a7:84:93:0b:4b:5f:6e:c4:29:81:3f:3c:57:d9:7e:27:51:5a: 8b:9a:6e:da:9c:a9:9b:0d:f9:0f:15:f6:96:49:60:58:81:00: d5:8a:45:8e:b4:6e:7f:c2:36:28:bb:89:84:5c:f1:ae:a6:44: 08:c6:d4:e5:d2:ce:d9:6b:d6:1a:c5:ea:53:6b:78:5b:1c:5a: 0b:d0:13:a6:f3:5b:bb:2c:41:f2:dd:cd:0a:ad:12:7d:6b:b2: ed:7b:6b:89:15:cc:bf:ce:7b:23:39:d0:38:7c:77:83:f0:8d: 8b:20:4f:73:88:dd:41:cb:98:30:00:23:da:7c:d9:7d:83:c5: 41:eb:c1:a9:03:0f:9f:19:df:94:54:7f:58:e4:94:d8:9c:7a: 86:f4:9f:19 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgISAZt5EKttkd4jbE04BxJeYFqSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj M2Q2NmYwHhcNMjYwMTAxMTAxODE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZDVmMDBkOTk5MjAwNDc0NzUxMDM3NjJhNDk4MWVmNjNhNDNiZGY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA131X7QfbGOjfe9AMOSWBPjpOJ6O1 Ak7c3DROatlP8FUFHa8ksEktgMxibKb5K3MnUL2dQHIR3csFCcUNUGGRkgbQhW4n kBYwsf2Orm8IkvLGeqna171p23LI3Z4z7SYB2Bv3SXhvweDKVd/A7eAXznlmXuUA bmncJGkLQcfTXutD39kh3qvIgxJ2oO3kGUImc98yK9Ri27lyQkRiAgcO++ZRfBRa FuJNjt2NVdg/nq40ZdQIJIbtv9+3tJ6hoVxk1lXINj+D6Lejjw54MtZlrUJWwiyu /26HcfNd8Oql7wneETgRWQWvB1BC3UFy2bJWCOoHjNHSIpfJnl5q4lsDkwIDAQAB o4ICMjCCAi4wHQYDVR0OBBYEFP1fANmZIAR0dRA3YqSYHvY6Q731MB8GA1UdIwQY MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt NTUzNjljZjUwN2VlLzEvX1Y4QTJaa2dCSFIxRURkaXBKZ2U5anBEdmZVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEgGCCsGAQUFBwEHAQH/BDkwNzA1BAIAAjAvAwcEKhK+xBeA AwcEKhK+xBxQAwcEKhK+xB5AMBIDBwUqEr7EHmADBwQqEr7EHoAwDQYJKoZIhvcN AQELBQADggEBAFw9wn0P1hkXPA/L5HEcOs5LPw10fW8no7/Hj2gxSxLIBAw8dfCo nJEFbt2fwMrygp0RQide+ly7xSRVXNPH2Ec3pfZgEYFvXiHnCXCOjrVV9aCpTOWQ lzFZLkxX3WBx6yiRPpoD56A2LzrEjKeEkwtLX27EKYE/PFfZfidRWouabtqcqZsN +Q8V9pZJYFiBANWKRY60bn/CNii7iYRc8a6mRAjG1OXSztlr1hrF6lNreFscWgvQ E6bzW7ssQfLdzQqtEn1rsu17a4kVzL/OeyM50Dh8d4PwjYsgT3OI3UHLmDAAI9p8 2X2DxUHrwakDD58Z35RUf1jklNiceob0nxk= -----END CERTIFICATE-----Generated at Sun Jan 18 10:56:33 2026 by rpki-client