This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/lhSHG1hOOtpdN6RyyRVWLUZRpas.roa File: lhSHG1hOOtpdN6RyyRVWLUZRpas.roa (raw, json) Hash identifier: N0NwMtvu3QRMjFcWU6wlSY7NDmiVK/GcNXRzml26wHw= Subject key identifier: 96:14:87:1B:58:4E:3A:DA:5D:37:A4:72:C9:15:56:2D:46:51:A5:AB Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Certificate serial: 019B79109AE9E8302BED557802034CF38B42 Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/lhSHG1hOOtpdN6RyyRVWLUZRpas.roa Signing time: Thu 01 Jan 2026 10:18:09 +0000 ROA not before: Thu 01 Jan 2026 10:18:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199948 IP address blocks: 2a12:bec0:140::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.mft rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:9a:e9:e8:30:2b:ed:55:78:02:03:4c:f3:8b:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Validity Not Before: Jan 1 10:18:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9614871b584e3ada5d37a472c915562d4651a5ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:92:c6:18:15:aa:ec:5e:2b:b2:ab:78:10:5e: c0:ba:ac:82:e0:b9:7f:10:ea:ba:98:84:ca:6e:9c: f8:91:17:f8:67:ef:4f:97:14:f9:9a:6c:2d:f4:87: 8f:9b:e3:8c:9d:1d:5f:23:9d:39:1f:9c:90:1d:aa: a5:ff:d6:1e:b5:61:c2:ed:f4:99:62:54:7e:4e:6a: 41:2b:93:12:fb:21:83:51:6d:0f:21:60:31:77:55: b6:c3:09:de:d5:e1:2b:23:cf:6f:e4:8a:42:ff:5e: 32:0c:e1:94:50:a3:fa:3e:34:19:96:d3:4d:33:42: 1f:36:01:a1:ef:62:81:e6:6d:47:22:f7:56:b4:3f: 6d:2c:4c:ef:6d:bc:d5:b5:c5:50:d5:95:0f:49:7d: 52:43:4a:2a:76:3f:6d:b6:ff:3d:77:f2:c0:03:24: 90:10:76:b9:c8:a6:06:92:43:88:05:41:7d:6a:4c: 87:95:60:6e:55:6b:cf:77:26:54:3d:4d:c6:6a:3f: 86:3c:a3:ee:22:0b:6c:3b:ee:25:3e:66:9e:99:b2: 0c:55:49:db:a4:5a:74:29:60:e7:c7:c2:ac:d7:a7: d7:be:96:6d:2b:b5:4b:44:5b:d1:78:29:8e:59:85: 6d:d4:a8:0b:aa:23:0a:e4:7a:1a:14:5e:f5:3a:55: 27:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:14:87:1B:58:4E:3A:DA:5D:37:A4:72:C9:15:56:2D:46:51:A5:AB X509v3 Authority Key Identifier: keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/lhSHG1hOOtpdN6RyyRVWLUZRpas.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:bec0:140::/44 Signature Algorithm: sha256WithRSAEncryption 5a:a0:a1:92:a1:9b:80:41:fe:c8:c1:74:9c:cb:84:c9:65:90: e4:96:86:99:2b:4e:c0:e6:b8:28:94:fe:70:c5:dd:17:43:d9: 81:ca:23:c2:df:08:16:c1:24:ca:f9:2e:2b:45:ba:d5:7a:70: 78:63:95:ad:6c:2e:e7:f3:78:64:6f:de:9a:3b:a4:b1:f2:f6: 11:83:b2:e7:e9:28:de:c3:b3:18:d1:89:7b:51:8b:ee:3f:9e: 18:2d:c2:50:4a:2c:ee:f4:0c:83:9f:ce:59:29:d0:f6:81:2c: 76:e6:e9:f4:17:31:aa:cb:44:5c:25:fb:f1:2b:a3:a8:fe:bc: 2c:c7:94:42:ac:b7:70:9c:f6:bb:fb:c9:01:32:45:24:48:31: f2:2a:b4:9c:03:f1:0a:66:9f:97:89:3c:ca:49:4b:3e:52:b6: dc:e6:9c:8e:ec:ac:a2:6d:84:b0:17:93:cc:87:91:10:ce:a3: f9:1e:ca:d0:b0:fa:df:04:b5:9b:21:0a:88:d9:64:82:0d:9f: 89:6a:d1:73:b9:5c:75:01:20:1b:1b:e9:07:24:4f:5f:78:af: c0:5f:c5:8f:e0:81:c2:13:67:80:5e:4a:67:2a:79:9e:1f:1a: dd:63:22:24:3d:be:ba:bc:98:11:88:c7:84:0d:ec:ac:98:6d: 51:a8:54:82 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5EJrp6DAr7VV4AgNM84tCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj M2Q2NmYwHhcNMjYwMTAxMTAxODA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NjE0ODcxYjU4NGUzYWRhNWQzN2E0NzJjOTE1NTYyZDQ2NTFhNWFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzpLGGBWq7F4rsqt4EF7AuqyC4Ll/ EOq6mITKbpz4kRf4Z+9PlxT5mmwt9IePm+OMnR1fI505H5yQHaql/9YetWHC7fSZ YlR+TmpBK5MS+yGDUW0PIWAxd1W2wwne1eErI89v5IpC/14yDOGUUKP6PjQZltNN M0IfNgGh72KB5m1HIvdWtD9tLEzvbbzVtcVQ1ZUPSX1SQ0oqdj9ttv89d/LAAySQ EHa5yKYGkkOIBUF9akyHlWBuVWvPdyZUPU3Gaj+GPKPuIgtsO+4lPmaembIMVUnb pFp0KWDnx8Ks16fXvpZtK7VLRFvReCmOWYVt1KgLqiMK5HoaFF71OlUnDwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFJYUhxtYTjraXTekcskVVi1GUaWrMB8GA1UdIwQY MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt NTUzNjljZjUwN2VlLzEvbGhTSEcxaE9PdHBkTjZSeXlSVldMVVpScGFzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhK+wAFA MA0GCSqGSIb3DQEBCwUAA4IBAQBaoKGSoZuAQf7IwXScy4TJZZDkloaZK07A5rgo lP5wxd0XQ9mByiPC3wgWwSTK+S4rRbrVenB4Y5WtbC7n83hkb96aO6Sx8vYRg7Ln 6Sjew7MY0Yl7UYvuP54YLcJQSizu9AyDn85ZKdD2gSx25un0FzGqy0RcJfvxK6Oo /rwsx5RCrLdwnPa7+8kBMkUkSDHyKrScA/EKZp+XiTzKSUs+Urbc5pyO7KyibYSw F5PMh5EQzqP5HsrQsPrfBLWbIQqI2WSCDZ+JatFzuVx1ASAbG+kHJE9feK/AX8WP 4IHCE2eAXkpnKnmeHxrdYyIkPb66vJgRiMeEDeysmG1RqFSC -----END CERTIFICATE-----Generated at Tue Jan 20 02:48:02 2026 by rpki-client