This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/oATMuANfhrNaxIHyC3XXaXWLvUY.roa File: oATMuANfhrNaxIHyC3XXaXWLvUY.roa (raw, json) Hash identifier: RIYItQ48R1lXV6djUiiZmyxytPER9Y+3+NoLFD57Xzs= Subject key identifier: A0:04:CC:B8:03:5F:86:B3:5A:C4:81:F2:0B:75:D7:69:75:8B:BD:46 Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Certificate serial: 019B791087B8C6B2F4E959023ACDB4891B28 Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/oATMuANfhrNaxIHyC3XXaXWLvUY.roa Signing time: Thu 01 Jan 2026 10:18:04 +0000 ROA not before: Thu 01 Jan 2026 10:18:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51847 IP address blocks: 2a12:bec4:13f0::/44 maxlen: 48 2a12:bec4:1440::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.mft rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 19:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:87:b8:c6:b2:f4:e9:59:02:3a:cd:b4:89:1b:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Validity Not Before: Jan 1 10:18:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a004ccb8035f86b35ac481f20b75d769758bbd46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:02:7a:4a:b5:78:a1:f3:89:6d:c7:aa:e1:d3: 5e:3b:1f:15:cb:e6:17:fc:47:ef:b2:50:e3:5b:4d: 98:3c:b2:7e:39:e9:e1:b4:da:d7:b6:2d:85:16:f0: 28:14:e8:6a:41:60:ae:59:c2:41:ad:3f:88:bc:83: 77:d9:4c:4a:d1:58:e1:c2:67:2e:8a:39:7a:13:ed: 96:9d:9e:da:8e:1e:4c:97:32:35:17:02:64:28:2f: 4b:01:55:a9:0e:71:0c:7d:a3:ff:69:95:ba:b3:63: 23:a0:ce:42:f1:e0:e1:0a:06:07:cd:c1:f4:78:a7: 47:5c:41:78:c8:ff:4b:f2:25:57:81:cc:c0:cb:c3: 7b:d2:62:2b:66:10:d1:a2:64:75:b2:fe:41:1f:61: 28:77:ac:71:af:27:e7:eb:1f:53:87:8e:84:65:7c: d7:c2:fe:36:ec:d5:0e:97:46:0d:79:cd:64:07:d0: 8e:67:f0:f6:bc:a6:1f:8a:6d:a5:30:e6:44:fa:bf: 89:cd:7d:81:90:8a:da:18:97:b3:d4:42:b0:ad:83: 5e:11:7b:8e:3d:58:73:44:de:2c:85:c1:cb:1d:af: 60:5f:96:e8:14:ad:bf:77:de:e8:35:d2:9c:d5:35: d8:5c:c8:22:ae:df:6b:8a:04:df:f9:3c:1d:a7:34: 8e:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:04:CC:B8:03:5F:86:B3:5A:C4:81:F2:0B:75:D7:69:75:8B:BD:46 X509v3 Authority Key Identifier: keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/oATMuANfhrNaxIHyC3XXaXWLvUY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:bec4:13f0::/44 2a12:bec4:1440::/44 Signature Algorithm: sha256WithRSAEncryption 4a:b5:2d:29:80:f3:8d:75:35:00:20:f5:9b:53:a9:59:91:7a: b6:bf:90:c6:2f:01:40:2d:d8:26:44:e2:96:30:e2:af:2f:e2: 39:9f:e6:5b:39:08:4e:50:66:90:cb:e8:86:dc:ff:98:75:73: 97:cd:c4:af:c0:82:e0:47:33:0a:03:b8:20:b1:74:7a:dd:4f: 70:30:0b:3e:96:66:53:13:57:2a:c3:56:7c:da:5c:1a:38:5b: b0:a5:0f:39:9a:1f:d1:71:47:11:c0:c1:cc:c6:c0:bd:00:95: 3d:5c:ed:29:49:c7:80:45:e3:3b:5d:0d:34:44:96:31:55:14: 2e:ca:86:26:c3:3e:fd:9c:dd:59:5d:94:96:3b:bf:d9:b9:95: 8f:02:1c:37:0a:4e:07:44:52:ef:e2:2c:73:68:c2:ba:15:5f: 01:bd:95:5e:fa:c2:3c:3b:df:4f:4d:ef:84:11:9b:6f:65:ac: 0b:b1:5a:1a:ba:f9:84:4d:ef:e5:28:9b:81:3c:4f:c4:af:a7: 26:e1:81:4d:e7:2d:87:1f:35:86:fb:e5:68:cc:0b:f4:5e:5c: 1e:48:cf:f1:44:72:eb:7f:e7:eb:03:7e:d6:d2:69:a8:29:a7: fa:10:69:27:5a:34:78:90:25:42:a3:bf:7c:40:42:cc:1e:ef: 6f:b3:e6:09 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt5EIe4xrL06VkCOs20iRsoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj M2Q2NmYwHhcNMjYwMTAxMTAxODA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMDA0Y2NiODAzNWY4NmIzNWFjNDgxZjIwYjc1ZDc2OTc1OGJiZDQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsQJ6SrV4ofOJbceq4dNeOx8Vy+YX /EfvslDjW02YPLJ+OenhtNrXti2FFvAoFOhqQWCuWcJBrT+IvIN32UxK0Vjhwmcu ijl6E+2WnZ7ajh5MlzI1FwJkKC9LAVWpDnEMfaP/aZW6s2MjoM5C8eDhCgYHzcH0 eKdHXEF4yP9L8iVXgczAy8N70mIrZhDRomR1sv5BH2Eod6xxryfn6x9Th46EZXzX wv427NUOl0YNec1kB9COZ/D2vKYfim2lMOZE+r+JzX2BkIraGJez1EKwrYNeEXuO PVhzRN4shcHLHa9gX5boFK2/d97oNdKc1TXYXMgirt9rigTf+TwdpzSOuQIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFKAEzLgDX4azWsSB8gt112l1i71GMB8GA1UdIwQY MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt NTUzNjljZjUwN2VlLzEvb0FUTXVBTmZock5heElIeUMzWFhhWFdMdlVZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcEKhK+xBPw AwcEKhK+xBRAMA0GCSqGSIb3DQEBCwUAA4IBAQBKtS0pgPONdTUAIPWbU6lZkXq2 v5DGLwFALdgmROKWMOKvL+I5n+ZbOQhOUGaQy+iG3P+YdXOXzcSvwILgRzMKA7gg sXR63U9wMAs+lmZTE1cqw1Z82lwaOFuwpQ85mh/RcUcRwMHMxsC9AJU9XO0pSceA ReM7XQ00RJYxVRQuyoYmwz79nN1ZXZSWO7/ZuZWPAhw3Ck4HRFLv4ixzaMK6FV8B vZVe+sI8O99PTe+EEZtvZawLsVoauvmETe/lKJuBPE/Er6cm4YFN5y2HHzWG++Vo zAv0XlweSM/xRHLrf+frA37W0mmoKaf6EGknWjR4kCVCo798QELMHu9vs+YJ -----END CERTIFICATE-----Generated at Sun Jan 18 04:10:02 2026 by rpki-client