This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/urRtWaLR2gnz6VIzXgenl_PS_xk.roa File: urRtWaLR2gnz6VIzXgenl_PS_xk.roa (raw, json) Hash identifier: KQlzVBsirjc0ZH/ZsIvoSunaXEU7Ueo2nOvUw/Ef8hk= Subject key identifier: BA:B4:6D:59:A2:D1:DA:09:F3:E9:52:33:5E:07:A7:97:F3:D2:FF:19 Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Certificate serial: 019B7910BC0DB455EC32B1CE81F978A797D1 Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/urRtWaLR2gnz6VIzXgenl_PS_xk.roa Signing time: Thu 01 Jan 2026 10:18:18 +0000 ROA not before: Thu 01 Jan 2026 10:18:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215303 IP address blocks: 2a12:bec4:10f1::/48 maxlen: 48 2a12:bec4:10f2::/48 maxlen: 48 2a12:bec4:10f3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.mft rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:bc:0d:b4:55:ec:32:b1:ce:81:f9:78:a7:97:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Validity Not Before: Jan 1 10:18:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bab46d59a2d1da09f3e952335e07a797f3d2ff19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:f9:1f:6f:3f:37:77:1a:47:f6:cd:33:b3:17: 78:0e:c3:f2:ba:12:5f:fd:c5:bd:66:99:2c:b4:05: 90:f5:2c:c6:79:85:bf:09:09:dc:ff:ab:e3:7a:7a: e6:61:7d:d3:0f:ea:ce:d6:5e:23:31:21:d3:32:e5: bc:45:a0:20:7d:b4:8a:39:9c:f7:75:9b:a3:9b:fe: cd:21:77:bd:6a:9a:96:d5:00:ad:5b:07:56:c9:af: ad:96:36:4d:23:1b:fe:64:e4:13:60:cf:61:ff:7e: c7:43:d5:e0:93:62:b6:5c:6a:75:eb:1c:b5:5c:d5: 4b:ed:71:1d:c5:1d:c1:44:95:1c:cb:33:85:ca:2e: 6f:10:c6:de:a0:c5:38:cb:d6:91:03:84:be:3f:e9: db:14:86:d0:67:c0:2e:1d:39:f5:e5:16:ea:bf:a6: 37:aa:ac:8d:87:22:ef:bd:ee:ca:5f:4e:ee:95:1b: cb:b0:7e:be:a8:a5:a5:bb:10:c5:d6:8a:bf:19:09: 3f:8a:17:b7:77:5d:41:54:78:f7:44:de:a0:04:47: 10:59:af:ff:18:99:3e:1a:c4:f7:a7:53:6f:13:54: 2e:be:0d:61:c9:53:d8:de:08:60:64:fe:b8:69:f2: c0:01:3c:26:25:bf:79:e6:01:f4:58:cd:45:e5:26: 94:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:B4:6D:59:A2:D1:DA:09:F3:E9:52:33:5E:07:A7:97:F3:D2:FF:19 X509v3 Authority Key Identifier: keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/urRtWaLR2gnz6VIzXgenl_PS_xk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:bec4:10f1::-2a12:bec4:10f3:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 1c:9a:af:8e:9a:0e:0f:be:0d:1d:fd:90:41:63:2b:6c:8f:67: 86:df:fd:b8:f1:a5:72:a8:98:62:47:be:5d:61:23:81:a7:36: 1c:bc:e4:12:d7:e2:ff:bb:73:bc:00:ca:09:d0:54:90:7b:71: a2:8f:2f:2b:0a:8d:09:b0:21:02:24:6b:05:89:4f:4a:c1:4a: 70:31:04:76:69:27:b0:2c:3d:06:bb:17:fc:0e:8e:d3:b1:11: bc:45:04:04:d5:05:33:43:a5:8c:6a:4a:19:87:f6:ce:15:b4: 5a:71:1e:84:3c:e6:42:f5:65:8f:45:b0:a2:b6:a7:0b:11:6e: 69:8a:4f:f3:11:25:a0:a0:e4:48:98:71:a9:ce:aa:0b:38:a4: 4f:1c:a4:77:0e:08:df:97:b2:cc:75:6f:ba:9d:9a:c7:aa:00: 87:26:81:8f:db:dd:32:df:d1:63:ce:c2:e1:94:42:7d:d5:8c: d5:fa:50:13:bd:e3:90:ec:e2:ff:6a:d6:02:be:97:f9:61:aa: 2a:a6:db:61:af:c0:b4:be:be:a8:f9:1d:ee:f3:ef:07:53:24: 6d:96:80:b8:63:67:60:41:96:79:63:24:5d:87:e7:92:a2:ee: f5:d0:41:6c:79:9a:e3:40:58:01:dd:fc:a2:b9:27:42:cb:2c: 4f:2b:86:64 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZt5ELwNtFXsMrHOgfl4p5fRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj M2Q2NmYwHhcNMjYwMTAxMTAxODE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYWI0NmQ1OWEyZDFkYTA5ZjNlOTUyMzM1ZTA3YTc5N2YzZDJmZjE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn/kfbz83dxpH9s0zsxd4DsPyuhJf /cW9ZpkstAWQ9SzGeYW/CQnc/6vjenrmYX3TD+rO1l4jMSHTMuW8RaAgfbSKOZz3 dZujm/7NIXe9apqW1QCtWwdWya+tljZNIxv+ZOQTYM9h/37HQ9Xgk2K2XGp16xy1 XNVL7XEdxR3BRJUcyzOFyi5vEMbeoMU4y9aRA4S+P+nbFIbQZ8AuHTn15Rbqv6Y3 qqyNhyLvve7KX07ulRvLsH6+qKWluxDF1oq/GQk/ihe3d11BVHj3RN6gBEcQWa// GJk+GsT3p1NvE1Quvg1hyVPY3ghgZP64afLAATwmJb955gH0WM1F5SaUUwIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFLq0bVmi0doJ8+lSM14Hp5fz0v8ZMB8GA1UdIwQY MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt NTUzNjljZjUwN2VlLzEvdXJSdFdhTFIyZ256NlZJelhnZW5sX1BTX3hrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUMBIDBwAqEr7E EPEDBwIqEr7EEPAwDQYJKoZIhvcNAQELBQADggEBAByar46aDg++DR39kEFjK2yP Z4bf/bjxpXKomGJHvl1hI4GnNhy85BLX4v+7c7wAygnQVJB7caKPLysKjQmwIQIk awWJT0rBSnAxBHZpJ7AsPQa7F/wOjtOxEbxFBATVBTNDpYxqShmH9s4VtFpxHoQ8 5kL1ZY9FsKK2pwsRbmmKT/MRJaCg5EiYcanOqgs4pE8cpHcOCN+Xssx1b7qdmseq AIcmgY/b3TLf0WPOwuGUQn3VjNX6UBO945Ds4v9q1gK+l/lhqiqm22GvwLS+vqj5 He7z7wdTJG2WgLhjZ2BBlnljJF2H55Ki7vXQQWx5muNAWAHd/KK5J0LLLE8rhmQ= -----END CERTIFICATE-----Generated at Tue Jan 20 02:48:51 2026 by rpki-client