This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/hgW6UdNsRqbaMhaBbeT-ctG6aAc.roa File: hgW6UdNsRqbaMhaBbeT-ctG6aAc.roa (raw, json) Hash identifier: IMa+dmrZ4m235eJ1aE+LNusr0YV7akDTX68KRY9IKNI= Subject key identifier: 86:05:BA:51:D3:6C:46:A6:DA:32:16:81:6D:E4:FE:72:D1:BA:68:07 Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Certificate serial: 019B79108AF04F5DC9E7577AB8D2F335049F Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/hgW6UdNsRqbaMhaBbeT-ctG6aAc.roa Signing time: Thu 01 Jan 2026 10:18:05 +0000 ROA not before: Thu 01 Jan 2026 10:18:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 150787 IP address blocks: 2a12:bec4:13c0::/44 maxlen: 44 2a12:bec4:13c0::/48 maxlen: 48 2a12:bec4:13c1::/48 maxlen: 48 2a12:bec4:13c2::/48 maxlen: 48 2a12:bec4:13c3::/48 maxlen: 48 2a12:bec4:13c4::/48 maxlen: 48 2a12:bec4:13c5::/48 maxlen: 48 2a12:bec4:13c6::/48 maxlen: 48 2a12:bec4:13c7::/48 maxlen: 48 2a12:bec4:13c8::/48 maxlen: 48 2a12:bec4:13c9::/48 maxlen: 48 2a12:bec4:13ca::/48 maxlen: 48 2a12:bec4:13cb::/48 maxlen: 48 2a12:bec4:13cc::/48 maxlen: 48 2a12:bec4:13cd::/48 maxlen: 48 2a12:bec4:13ce::/48 maxlen: 48 2a12:bec4:13cf::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.mft rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:8a:f0:4f:5d:c9:e7:57:7a:b8:d2:f3:35:04:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Validity Not Before: Jan 1 10:18:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8605ba51d36c46a6da3216816de4fe72d1ba6807 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:dc:13:81:65:50:e5:7b:cd:6c:67:62:b6:60: 6a:6c:20:f2:56:51:1f:14:9d:23:0d:ff:01:37:09: ec:95:75:d6:7d:ae:c3:bf:c4:15:42:9c:6c:93:16: 1c:c0:34:81:f0:15:0a:05:3b:7a:35:97:84:47:90: 87:7e:8d:67:c6:c0:4f:2d:27:21:d4:7f:8c:0a:5f: 27:d3:3f:99:94:7e:89:4d:91:d0:f7:c1:09:0c:af: 68:b0:d3:e3:b4:3b:1c:0a:f2:9c:3b:52:ae:32:f3: 6f:cb:45:d3:c6:e5:21:fa:b5:88:f0:1f:3d:eb:99: da:d8:0a:2b:00:8c:f8:f0:4a:d4:81:ee:c0:94:e2: 90:ad:bd:ea:d5:c6:c0:f7:87:26:8e:29:59:00:51: 2d:42:66:e8:94:1d:3f:a7:95:1b:af:1e:bf:32:83: c8:73:37:f8:f5:e8:79:98:ef:d4:f1:79:fa:b2:d1: e0:c4:f3:f4:e1:47:52:07:70:d6:6b:09:cb:54:66: 3b:2f:3e:98:84:e0:d4:a3:71:62:8b:a6:8c:4e:d6: f2:c3:0a:2f:0a:bf:2a:17:e5:03:10:c1:2a:6f:2f: 02:cc:28:6b:0b:14:5c:a2:33:28:65:26:09:12:de: d5:a5:6a:51:a1:53:63:d5:64:0b:e5:99:de:0d:ef: 6e:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:05:BA:51:D3:6C:46:A6:DA:32:16:81:6D:E4:FE:72:D1:BA:68:07 X509v3 Authority Key Identifier: keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/hgW6UdNsRqbaMhaBbeT-ctG6aAc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:bec4:13c0::/44 Signature Algorithm: sha256WithRSAEncryption 86:a2:27:f9:f0:24:c7:41:ca:ff:ac:17:bd:0f:81:53:ac:37: 49:99:81:7e:ab:d2:69:21:9f:63:20:ad:50:a8:bd:77:0e:1b: 40:fa:9a:da:6f:b5:a7:ad:5c:18:56:fd:90:67:b7:12:46:69: 9c:3f:54:1e:52:a8:4a:a6:f2:95:a5:18:b7:61:42:26:db:1d: b4:ee:28:22:fb:f6:b3:57:91:e7:a9:07:8b:a7:3c:dc:46:59: a7:08:93:19:99:c0:eb:61:e3:7c:0c:dc:97:62:bd:b3:57:d0: 9e:59:f9:4e:9b:89:f5:62:06:6f:a4:03:ac:f6:2d:01:e0:43: b8:24:74:4f:35:49:25:58:b5:a4:25:7c:e0:95:d4:59:7a:90: 9a:b1:67:6f:6f:f2:ac:84:0f:31:9c:ad:91:88:b9:a5:6a:ee: 87:1e:83:dd:b1:e0:29:d3:b0:4c:82:21:6b:85:dc:f5:b8:f1: 1f:f3:d0:ff:de:1d:76:35:0e:89:67:e4:27:c8:66:6a:6b:9a: 16:84:2f:8e:09:36:87:79:f8:db:d8:a4:ed:09:e8:c0:00:70: d7:af:45:6d:52:47:f3:3f:5b:ab:46:0e:97:17:ba:7c:f6:5d: 72:14:2f:85:84:4a:0f:0f:99:fe:78:12:15:f3:55:4e:a8:d6: d3:01:27:d1 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5EIrwT13J51d6uNLzNQSfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj M2Q2NmYwHhcNMjYwMTAxMTAxODA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NjA1YmE1MWQzNmM0NmE2ZGEzMjE2ODE2ZGU0ZmU3MmQxYmE2ODA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4twTgWVQ5XvNbGditmBqbCDyVlEf FJ0jDf8BNwnslXXWfa7Dv8QVQpxskxYcwDSB8BUKBTt6NZeER5CHfo1nxsBPLSch 1H+MCl8n0z+ZlH6JTZHQ98EJDK9osNPjtDscCvKcO1KuMvNvy0XTxuUh+rWI8B89 65na2AorAIz48ErUge7AlOKQrb3q1cbA94cmjilZAFEtQmbolB0/p5Ubrx6/MoPI czf49eh5mO/U8Xn6stHgxPP04UdSB3DWawnLVGY7Lz6YhODUo3Fii6aMTtbywwov Cr8qF+UDEMEqby8CzChrCxRcojMoZSYJEt7VpWpRoVNj1WQL5ZneDe9uYwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFIYFulHTbEam2jIWgW3k/nLRumgHMB8GA1UdIwQY MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt NTUzNjljZjUwN2VlLzEvaGdXNlVkTnNScWJhTWhhQmJlVC1jdEc2YUFjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhK+xBPA MA0GCSqGSIb3DQEBCwUAA4IBAQCGoif58CTHQcr/rBe9D4FTrDdJmYF+q9JpIZ9j IK1QqL13DhtA+prab7WnrVwYVv2QZ7cSRmmcP1QeUqhKpvKVpRi3YUIm2x207igi +/azV5HnqQeLpzzcRlmnCJMZmcDrYeN8DNyXYr2zV9CeWflOm4n1YgZvpAOs9i0B 4EO4JHRPNUklWLWkJXzgldRZepCasWdvb/KshA8xnK2RiLmlau6HHoPdseAp07BM giFrhdz1uPEf89D/3h12NQ6JZ+QnyGZqa5oWhC+OCTaHefjb2KTtCejAAHDXr0Vt UkfzP1urRg6XF7p89l1yFC+FhEoPD5n+eBIV81VOqNbTASfR -----END CERTIFICATE-----Generated at Tue Jan 20 02:47:41 2026 by rpki-client