This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/mz59fhf4Fm1cw9ao-ojLwelN2NU.roa File: mz59fhf4Fm1cw9ao-ojLwelN2NU.roa (raw, json) Hash identifier: uAMXTJLSnEdwOc54iCPrlKJl2gicui53iPIWMhKNuQI= Subject key identifier: 9B:3E:7D:7E:17:F8:16:6D:5C:C3:D6:A8:FA:88:CB:C1:E9:4D:D8:D5 Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Certificate serial: 019B7910AA3E900A063A1E02FBA258F9F21F Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/mz59fhf4Fm1cw9ao-ojLwelN2NU.roa Signing time: Thu 01 Jan 2026 10:18:13 +0000 ROA not before: Thu 01 Jan 2026 10:18:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213026 IP address blocks: 2a12:bec0:6b0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.mft rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:aa:3e:90:0a:06:3a:1e:02:fb:a2:58:f9:f2:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Validity Not Before: Jan 1 10:18:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9b3e7d7e17f8166d5cc3d6a8fa88cbc1e94dd8d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c4:0a:3c:6d:a6:b8:fc:99:5b:c3:48:86:94: 0e:11:e3:96:71:5f:51:27:68:1f:0f:b3:f4:78:e8: 6b:70:63:83:dc:dd:be:5d:23:ce:7f:54:3a:e5:d2: 29:d7:e3:be:e7:97:28:8b:6b:78:6f:80:d0:99:4c: eb:91:c3:70:27:b3:91:60:bf:9b:e7:5a:13:00:2d: f8:e8:64:a6:2a:ee:d7:69:b0:3b:67:ce:ab:1c:19: 37:61:22:21:df:78:a6:96:3f:09:28:e1:17:cc:d6: 5a:b6:48:2e:f8:5c:c2:e2:64:e5:24:8d:b5:c3:4d: 8d:31:73:1f:9d:35:ad:69:29:8b:24:e5:cc:d3:8c: e9:07:68:15:04:c5:68:0d:52:29:7d:96:7a:f2:22: b4:ff:50:45:78:fa:4c:65:a3:16:0a:bf:30:31:7a: 91:d3:ad:23:2e:fa:15:86:5d:23:b7:cd:66:80:e1: b1:23:cc:20:fc:8c:2f:86:a1:62:10:9b:b4:32:4e: ba:dd:bd:ad:50:eb:bd:a5:c8:f3:95:d8:c6:cc:f3: a6:b5:70:19:62:6c:0b:80:27:91:ac:e9:4b:0d:1f: a9:f1:68:c1:46:36:71:3d:67:5d:01:51:ea:a8:25: 77:ba:de:be:a7:e4:d7:ce:fc:be:01:c8:97:ca:a2: 4d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:3E:7D:7E:17:F8:16:6D:5C:C3:D6:A8:FA:88:CB:C1:E9:4D:D8:D5 X509v3 Authority Key Identifier: keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/mz59fhf4Fm1cw9ao-ojLwelN2NU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:bec0:6b0::/44 Signature Algorithm: sha256WithRSAEncryption 4f:9e:63:7a:6c:4f:2b:34:04:21:c0:29:fc:92:93:61:ab:69: fc:95:c7:e4:9f:5f:4b:b0:69:bc:b2:b4:89:9b:46:f2:8f:4d: 0c:36:30:29:15:12:3f:93:23:80:69:f7:52:9b:d4:3d:37:10: d2:fa:dd:61:15:c1:d2:26:69:80:bd:99:ac:a7:b0:a2:e8:d8: 58:2c:d6:22:5a:98:57:16:9a:0d:40:ec:16:dd:e6:24:86:62: 36:73:7f:69:65:29:10:c2:9c:11:50:4d:f8:4a:1a:90:9a:4f: ba:90:9b:aa:08:b0:af:5b:eb:e0:fa:d7:00:33:e6:b7:b2:ce: 90:74:4f:4c:bf:d2:11:66:d3:d5:67:8d:a4:ab:7c:ee:2b:0e: b3:c7:e2:39:33:48:93:97:0f:64:e8:c8:66:8d:8d:fd:79:57: 3a:2f:08:18:e8:04:42:08:ed:6a:95:26:a1:50:07:94:c8:0f: 6b:f6:3d:c4:fc:9b:f9:fd:a7:ec:fa:4e:54:45:73:7e:18:c6: df:ef:d9:10:93:77:50:bf:c7:77:8d:97:1e:de:4c:70:b6:5e: ec:0d:21:2d:bc:51:de:ac:7f:a6:ac:59:b3:36:83:0d:19:ae: 51:26:e5:72:68:39:1e:56:0c:ab:24:bf:5c:90:2d:be:bc:23: 92:1c:c2:8b -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5EKo+kAoGOh4C+6JY+fIfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj M2Q2NmYwHhcNMjYwMTAxMTAxODEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YjNlN2Q3ZTE3ZjgxNjZkNWNjM2Q2YThmYTg4Y2JjMWU5NGRkOGQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvsQKPG2muPyZW8NIhpQOEeOWcV9R J2gfD7P0eOhrcGOD3N2+XSPOf1Q65dIp1+O+55coi2t4b4DQmUzrkcNwJ7ORYL+b 51oTAC346GSmKu7XabA7Z86rHBk3YSIh33imlj8JKOEXzNZatkgu+FzC4mTlJI21 w02NMXMfnTWtaSmLJOXM04zpB2gVBMVoDVIpfZZ68iK0/1BFePpMZaMWCr8wMXqR 060jLvoVhl0jt81mgOGxI8wg/IwvhqFiEJu0Mk663b2tUOu9pcjzldjGzPOmtXAZ YmwLgCeRrOlLDR+p8WjBRjZxPWddAVHqqCV3ut6+p+TXzvy+AciXyqJNuQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFJs+fX4X+BZtXMPWqPqIy8HpTdjVMB8GA1UdIwQY MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt NTUzNjljZjUwN2VlLzEvbXo1OWZoZjRGbTFjdzlhby1vakx3ZWxOMk5VLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhK+wAaw MA0GCSqGSIb3DQEBCwUAA4IBAQBPnmN6bE8rNAQhwCn8kpNhq2n8lcfkn19LsGm8 srSJm0byj00MNjApFRI/kyOAafdSm9Q9NxDS+t1hFcHSJmmAvZmsp7Ci6NhYLNYi WphXFpoNQOwW3eYkhmI2c39pZSkQwpwRUE34ShqQmk+6kJuqCLCvW+vg+tcAM+a3 ss6QdE9Mv9IRZtPVZ42kq3zuKw6zx+I5M0iTlw9k6MhmjY39eVc6LwgY6ARCCO1q lSahUAeUyA9r9j3E/Jv5/afs+k5URXN+GMbf79kQk3dQv8d3jZce3kxwtl7sDSEt vFHerH+mrFmzNoMNGa5RJuVyaDkeVgyrJL9ckC2+vCOSHMKL -----END CERTIFICATE-----Generated at Tue Jan 20 02:48:55 2026 by rpki-client