This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/sH_p26xyHH8MkqkPAtGRFRdSyhY.roa File: sH_p26xyHH8MkqkPAtGRFRdSyhY.roa (raw, json) Hash identifier: zXs/G9OpIMVrP0AKJXvyhT+qe34O8ja6aESujN0KLpE= Subject key identifier: B0:7F:E9:DB:AC:72:1C:7F:0C:92:A9:0F:02:D1:91:15:17:52:CA:16 Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Certificate serial: 019B7910B19BCEDAC5D05569DDE8E2987BC2 Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/sH_p26xyHH8MkqkPAtGRFRdSyhY.roa Signing time: Thu 01 Jan 2026 10:18:15 +0000 ROA not before: Thu 01 Jan 2026 10:18:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214212 IP address blocks: 2a12:bec4:14f1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.mft rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:b1:9b:ce:da:c5:d0:55:69:dd:e8:e2:98:7b:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Validity Not Before: Jan 1 10:18:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b07fe9dbac721c7f0c92a90f02d191151752ca16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:d8:c0:55:a3:be:a6:5c:d3:c2:88:5f:eb:37: 26:42:a3:16:16:18:4d:f4:38:1f:6d:d6:a0:a4:25: 17:d1:3c:6d:31:a4:c3:4d:4a:be:fe:76:9e:95:d8: 13:eb:93:87:e4:99:fa:32:bf:af:f5:b1:1a:68:88: ab:cc:f6:e8:84:a8:1c:2c:e2:63:d5:b2:7a:76:db: 1a:b9:06:fd:6c:9c:9b:3c:44:6f:af:d5:e3:60:ad: 2b:20:d1:be:e3:80:60:ea:92:b0:99:ca:4b:7d:98: ca:bf:f2:53:0c:fd:62:9c:6c:34:8d:00:f8:c2:e7: 88:fa:aa:8a:a5:c8:db:86:c5:29:80:51:3c:28:7a: c6:a7:e0:d0:ff:0b:69:8e:95:26:47:a2:7a:56:14: 81:33:9a:72:66:7e:34:31:31:e3:6b:40:18:49:d5: 55:fc:c0:a8:20:2b:35:4b:91:6d:27:a2:be:70:93: b9:69:5f:af:14:db:eb:d8:e0:59:79:a5:96:50:42: cb:ee:98:af:5d:bd:12:49:2a:4b:be:d8:b5:12:e2: 02:c5:36:3c:2d:16:38:1e:1d:69:85:e4:66:1a:2f: d6:33:a0:38:5c:61:69:20:a4:04:de:70:61:fc:e6: fa:59:3c:19:9f:9d:ae:31:2a:fb:94:fc:c0:d3:a7: 87:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:7F:E9:DB:AC:72:1C:7F:0C:92:A9:0F:02:D1:91:15:17:52:CA:16 X509v3 Authority Key Identifier: keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/sH_p26xyHH8MkqkPAtGRFRdSyhY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:bec4:14f1::/48 Signature Algorithm: sha256WithRSAEncryption 45:0b:d1:a4:9b:1f:dd:15:9e:bd:bc:43:8d:4a:be:fd:ff:70: 39:1b:97:28:6b:fb:2b:d1:b9:7c:f4:23:06:3a:a3:9c:82:06: d2:fe:ec:37:3c:64:5a:c9:18:65:db:9e:ab:7e:00:d7:80:8c: e1:ef:50:78:50:63:77:13:aa:d7:67:4b:30:ed:2c:4a:ce:fb: dd:6f:da:2f:59:8e:90:eb:c0:a3:1c:8d:be:9f:8a:6d:f2:86: 57:ae:94:3a:e1:77:11:bd:86:d1:3e:de:f8:c9:05:ef:3e:0b: 9b:78:77:4b:39:8e:a6:13:62:5b:a7:c2:15:cf:5a:de:14:47: d4:21:3d:dd:1a:c6:04:ab:76:6d:96:71:09:c8:e1:96:d6:23: ca:23:23:a0:c4:7f:84:ea:3e:aa:a6:b0:15:70:b4:c2:68:3b: bd:28:4a:81:da:71:29:ea:aa:f1:d3:a2:9d:53:17:57:9a:6b: 1f:a2:3b:17:e1:24:68:b0:02:89:0d:f7:da:27:a8:23:6f:10: 7e:bf:6b:0c:4f:a4:a0:3f:a8:20:5c:a7:58:e8:47:f4:f9:58: 18:05:7c:05:0c:54:3f:db:2c:93:34:f4:16:f8:2d:d9:1f:e2: 69:92:f6:66:ec:1e:83:a7:41:b0:50:43:aa:9f:63:5f:9f:cf: 5b:86:48:03 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5ELGbztrF0FVp3ejimHvCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj M2Q2NmYwHhcNMjYwMTAxMTAxODE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMDdmZTlkYmFjNzIxYzdmMGM5MmE5MGYwMmQxOTExNTE3NTJjYTE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4NjAVaO+plzTwohf6zcmQqMWFhhN 9DgfbdagpCUX0TxtMaTDTUq+/naeldgT65OH5Jn6Mr+v9bEaaIirzPbohKgcLOJj 1bJ6dtsauQb9bJybPERvr9XjYK0rING+44Bg6pKwmcpLfZjKv/JTDP1inGw0jQD4 wueI+qqKpcjbhsUpgFE8KHrGp+DQ/wtpjpUmR6J6VhSBM5pyZn40MTHja0AYSdVV /MCoICs1S5FtJ6K+cJO5aV+vFNvr2OBZeaWWUELL7pivXb0SSSpLvti1EuICxTY8 LRY4Hh1pheRmGi/WM6A4XGFpIKQE3nBh/Ob6WTwZn52uMSr7lPzA06eHhQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFLB/6duschx/DJKpDwLRkRUXUsoWMB8GA1UdIwQY MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt NTUzNjljZjUwN2VlLzEvc0hfcDI2eHlISDhNa3FrUEF0R1JGUmRTeWhZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhK+xBTx MA0GCSqGSIb3DQEBCwUAA4IBAQBFC9Gkmx/dFZ69vEONSr79/3A5G5coa/sr0bl8 9CMGOqOcggbS/uw3PGRayRhl256rfgDXgIzh71B4UGN3E6rXZ0sw7SxKzvvdb9ov WY6Q68CjHI2+n4pt8oZXrpQ64XcRvYbRPt74yQXvPgubeHdLOY6mE2Jbp8IVz1re FEfUIT3dGsYEq3ZtlnEJyOGW1iPKIyOgxH+E6j6qprAVcLTCaDu9KEqB2nEp6qrx 06KdUxdXmmsfojsX4SRosAKJDffaJ6gjbxB+v2sMT6SgP6ggXKdY6Ef0+VgYBXwF DFQ/2yyTNPQW+C3ZH+JpkvZm7B6Dp0GwUEOqn2Nfn89bhkgD -----END CERTIFICATE-----Generated at Tue Jan 20 02:47:45 2026 by rpki-client