This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/j53oQinbTEurnQoDAkLEcMMm1CE.roa File: j53oQinbTEurnQoDAkLEcMMm1CE.roa (raw, json) Hash identifier: sL+sO9cfT1bOBJPFls8PtsGS307hOO2CKi5V46jf8M8= Subject key identifier: 8F:9D:E8:42:29:DB:4C:4B:AB:9D:0A:03:02:42:C4:70:C3:26:D4:21 Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Certificate serial: 019B7910CBC0124F00E50FB9A17B05FD25D1 Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/j53oQinbTEurnQoDAkLEcMMm1CE.roa Signing time: Thu 01 Jan 2026 10:18:22 +0000 ROA not before: Thu 01 Jan 2026 10:18:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 216401 IP address blocks: 2a12:bec0:e20::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.mft rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:cb:c0:12:4f:00:e5:0f:b9:a1:7b:05:fd:25:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Validity Not Before: Jan 1 10:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8f9de84229db4c4bab9d0a030242c470c326d421 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:58:61:c2:ce:b3:2b:f9:70:bd:ec:cc:ab:6c: 6a:5c:ad:8d:c0:49:02:a3:15:4d:39:e0:a2:98:b6: 29:9f:e5:88:8a:df:b3:9f:a7:d9:56:7c:7f:2a:1a: 53:9b:09:4c:ba:06:51:9d:7f:d6:73:a4:b0:31:08: 0f:ef:24:bd:44:26:71:e7:d0:dd:11:b1:38:90:ec: e1:68:f2:f3:93:ff:71:ae:2a:e3:19:3c:6a:bf:c5: aa:1a:fd:2f:ff:ed:65:1d:94:68:d7:bf:83:b5:2d: 6a:50:db:c8:72:67:c9:00:0c:40:47:f0:a7:fd:44: 0c:3e:10:80:08:0d:db:42:0d:c1:bb:8c:d1:7a:d0: e0:16:40:c8:d9:2e:e9:66:e9:88:fa:a1:0f:57:c3: f1:bc:93:6a:b7:83:21:99:9f:c7:d1:dd:ed:38:70: b3:a3:74:41:cb:77:a4:2e:94:dc:cd:e3:48:b1:42: 6c:62:b7:0f:c5:7a:6e:b8:84:98:77:3f:39:d3:db: 52:41:7e:03:3e:e7:70:00:c9:1b:f7:7d:60:00:a9: 93:8c:e5:14:3a:7c:1a:03:0b:4b:6e:b6:a9:92:ed: 52:59:cc:dc:b7:71:c0:ab:b9:2b:3b:a0:74:be:67: ab:3d:d5:a9:73:4e:ad:e2:81:6e:e1:f9:f8:06:56: cd:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:9D:E8:42:29:DB:4C:4B:AB:9D:0A:03:02:42:C4:70:C3:26:D4:21 X509v3 Authority Key Identifier: keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/j53oQinbTEurnQoDAkLEcMMm1CE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:bec0:e20::/44 Signature Algorithm: sha256WithRSAEncryption 59:ab:e9:a4:0a:64:f0:70:f2:c8:d2:84:5b:54:52:63:5a:98: 86:2c:b8:1c:7c:05:2b:cf:7d:72:4f:51:f2:87:49:d2:a2:71: cf:89:6c:0a:92:ad:24:78:ea:50:e3:59:e9:68:6c:e8:a6:a3: c6:14:2c:7d:dc:98:db:51:d3:14:ca:30:41:2d:b2:ba:c5:f4: 43:04:3d:0c:80:bc:f3:57:de:9c:6e:a4:db:6b:e1:95:4d:55: 3e:79:c3:34:77:a5:6b:cf:bd:16:7d:b7:c3:9e:6a:5a:bf:78: 23:03:92:5f:e2:d7:9a:93:8a:6b:67:ed:d5:f3:7f:c3:b3:02: 15:80:76:cc:8c:55:a7:e4:e3:75:1e:c2:01:22:f7:60:8a:c6: ec:3d:be:f2:81:50:c8:8b:34:88:fb:b0:be:fd:7b:e5:eb:06: f1:38:0e:4b:91:fa:06:44:5c:39:3f:bc:13:db:eb:df:f7:ae: 2d:da:2b:ea:9d:31:40:87:f9:fa:05:d6:bb:a1:8c:1c:92:ea: 55:1b:cd:65:9c:df:60:28:36:6f:89:cb:aa:30:e4:bd:c3:85: 96:98:36:3d:c7:d4:30:1f:30:32:9b:74:ce:2b:8e:e9:f3:0e: c9:91:0e:87:90:8a:71:1d:7c:bb:01:a5:c6:cb:5d:65:f5:3d: 99:30:d9:52 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5EMvAEk8A5Q+5oXsF/SXRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj M2Q2NmYwHhcNMjYwMTAxMTAxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZjlkZTg0MjI5ZGI0YzRiYWI5ZDBhMDMwMjQyYzQ3MGMzMjZkNDIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkFhhws6zK/lwvezMq2xqXK2NwEkC oxVNOeCimLYpn+WIit+zn6fZVnx/KhpTmwlMugZRnX/Wc6SwMQgP7yS9RCZx59Dd EbE4kOzhaPLzk/9xrirjGTxqv8WqGv0v/+1lHZRo17+DtS1qUNvIcmfJAAxAR/Cn /UQMPhCACA3bQg3Bu4zRetDgFkDI2S7pZumI+qEPV8PxvJNqt4MhmZ/H0d3tOHCz o3RBy3ekLpTczeNIsUJsYrcPxXpuuISYdz8509tSQX4DPudwAMkb931gAKmTjOUU OnwaAwtLbrapku1SWczct3HAq7krO6B0vmerPdWpc06t4oFu4fn4BlbNZwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFI+d6EIp20xLq50KAwJCxHDDJtQhMB8GA1UdIwQY MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt NTUzNjljZjUwN2VlLzEvajUzb1FpbmJURXVyblFvREFrTEVjTU1tMUNFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhK+wA4g MA0GCSqGSIb3DQEBCwUAA4IBAQBZq+mkCmTwcPLI0oRbVFJjWpiGLLgcfAUrz31y T1Hyh0nSonHPiWwKkq0keOpQ41npaGzopqPGFCx93JjbUdMUyjBBLbK6xfRDBD0M gLzzV96cbqTba+GVTVU+ecM0d6Vrz70WfbfDnmpav3gjA5Jf4teak4prZ+3V83/D swIVgHbMjFWn5ON1HsIBIvdgisbsPb7ygVDIizSI+7C+/Xvl6wbxOA5LkfoGRFw5 P7wT2+vf964t2ivqnTFAh/n6Bda7oYwckupVG81lnN9gKDZvicuqMOS9w4WWmDY9 x9QwHzAym3TOK47p8w7JkQ6HkIpxHXy7AaXGy11l9T2ZMNlS -----END CERTIFICATE-----Generated at Tue Jan 20 02:47:47 2026 by rpki-client