This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/b05e08-0762-4dc7-a4b0-5805d3f3dbb2/1/sCREUy5oJ9tpm5q7Gzs288OxCwI.roa File: sCREUy5oJ9tpm5q7Gzs288OxCwI.roa (raw, json) Hash identifier: YBVHBMqxomYQcf4nO/wlXwSvZkGQdWRYPk635BeFEJM= Subject key identifier: B0:24:44:53:2E:68:27:DB:69:9B:9A:BB:1B:3B:36:F3:C3:B1:0B:02 Certificate issuer: /CN=153f24183d6c95185919349e6e92533736437b94 Certificate serial: 019B797E0299E63C3FAB6614D65236495416 Authority key identifier: 15:3F:24:18:3D:6C:95:18:59:19:34:9E:6E:92:53:37:36:43:7B:94 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FT8kGD1slRhZGTSebpJTNzZDe5Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/b05e08-0762-4dc7-a4b0-5805d3f3dbb2/1/sCREUy5oJ9tpm5q7Gzs288OxCwI.roa Signing time: Thu 01 Jan 2026 12:17:39 +0000 ROA not before: Thu 01 Jan 2026 12:17:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9121 IP address blocks: 2a13:e940::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/b05e08-0762-4dc7-a4b0-5805d3f3dbb2/1/FT8kGD1slRhZGTSebpJTNzZDe5Q.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/b05e08-0762-4dc7-a4b0-5805d3f3dbb2/1/FT8kGD1slRhZGTSebpJTNzZDe5Q.mft rsync://rpki.ripe.net/repository/DEFAULT/FT8kGD1slRhZGTSebpJTNzZDe5Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:02:99:e6:3c:3f:ab:66:14:d6:52:36:49:54:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=153f24183d6c95185919349e6e92533736437b94 Validity Not Before: Jan 1 12:17:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b02444532e6827db699b9abb1b3b36f3c3b10b02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:bb:81:0d:d3:fb:5f:bb:ee:26:be:f4:26:77: 23:74:c9:35:42:64:6a:7e:98:ab:16:8b:92:53:3a: 09:b9:b7:89:1b:54:1f:9f:c0:03:fb:2d:3f:fc:50: 92:60:c5:45:e0:a2:e0:a5:59:50:29:8d:0b:d7:c4: 18:a6:13:e4:2e:9a:17:82:91:06:cc:b6:14:f6:b3: e9:9d:59:43:8d:22:c0:77:04:c8:b4:d1:6c:6f:55: eb:2b:cc:db:ce:59:ff:01:c5:52:b3:82:a7:cc:ed: fb:2f:aa:c9:3f:67:55:ed:4a:98:cb:dd:8a:b6:c7: fe:49:33:6a:34:2a:cc:2a:3a:b2:e7:7d:65:57:1d: e3:9c:f8:bf:a6:d1:5a:db:68:c8:17:c4:a6:b0:a2: d4:91:89:5f:e0:0d:d7:9b:0c:a4:52:84:9a:9e:c8: af:bc:ce:7c:39:13:9e:b0:e4:79:1f:98:ce:81:fe: 83:b7:e8:2b:dd:31:01:f9:95:ee:28:27:30:79:df: 17:89:1b:ab:59:37:c9:80:b2:38:bb:9f:dd:90:20: b2:05:17:4e:8b:3b:0e:a0:1e:d9:8d:38:7d:78:07: a1:a2:9a:cf:40:f3:6a:96:eb:8c:5f:af:9e:55:69: e0:9a:03:58:2e:68:68:45:ba:6f:12:51:6a:96:9b: 54:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:24:44:53:2E:68:27:DB:69:9B:9A:BB:1B:3B:36:F3:C3:B1:0B:02 X509v3 Authority Key Identifier: keyid:15:3F:24:18:3D:6C:95:18:59:19:34:9E:6E:92:53:37:36:43:7B:94 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FT8kGD1slRhZGTSebpJTNzZDe5Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/b05e08-0762-4dc7-a4b0-5805d3f3dbb2/1/sCREUy5oJ9tpm5q7Gzs288OxCwI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/b05e08-0762-4dc7-a4b0-5805d3f3dbb2/1/FT8kGD1slRhZGTSebpJTNzZDe5Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a13:e940::/29 Signature Algorithm: sha256WithRSAEncryption 66:44:fd:4b:be:7a:1d:2d:e2:78:f6:a2:a6:55:36:a4:ff:cc: 89:f9:0f:0c:a0:2e:e2:fc:02:6b:88:f7:a7:a5:1a:a7:1c:42: 3d:36:75:8b:88:71:8e:c6:bd:ca:3a:b2:8e:ae:45:08:69:52: c5:61:7f:37:77:bb:d2:fe:0a:76:04:91:0e:3b:5b:ba:1b:a4: 62:f5:74:35:fd:34:eb:0b:76:5d:fb:1c:f8:fd:98:66:66:33: 86:30:fd:0c:e6:96:9b:74:a9:61:51:80:e2:8d:b8:46:68:b2: 3b:f0:8a:10:9a:ac:cd:12:39:94:30:90:a4:1e:94:28:45:51: 19:c9:d6:01:62:bc:c6:84:f5:99:e2:12:d8:1c:9a:78:e7:24: d2:24:e1:ce:b1:a9:ba:d3:96:e4:5a:93:5f:bf:32:1f:6c:6e: c1:a8:a9:1a:3d:91:01:92:23:5b:8a:ad:92:a5:67:2f:c4:55: 6a:77:d2:8c:9e:17:eb:92:5c:70:76:9c:fe:3a:53:09:32:18: 3f:95:65:fc:cb:46:ee:cf:ca:f0:0a:fc:6b:7f:95:91:b5:24: ba:cf:0c:0c:11:3d:ad:60:2e:c6:a3:bd:3d:85:c3:78:0a:8c: 99:37:d6:c8:67:6f:21:23:e0:c4:ea:e3:a7:e9:93:2f:a1:a4: e1:3a:26:40 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt5fgKZ5jw/q2YU1lI2SVQWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE1M2YyNDE4M2Q2Yzk1MTg1OTE5MzQ5ZTZlOTI1MzM3MzY0 MzdiOTQwHhcNMjYwMTAxMTIxNzM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMDI0NDQ1MzJlNjgyN2RiNjk5YjlhYmIxYjNiMzZmM2MzYjEwYjAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi7uBDdP7X7vuJr70JncjdMk1QmRq fpirFouSUzoJubeJG1Qfn8AD+y0//FCSYMVF4KLgpVlQKY0L18QYphPkLpoXgpEG zLYU9rPpnVlDjSLAdwTItNFsb1XrK8zbzln/AcVSs4KnzO37L6rJP2dV7UqYy92K tsf+STNqNCrMKjqy531lVx3jnPi/ptFa22jIF8SmsKLUkYlf4A3XmwykUoSansiv vM58OROesOR5H5jOgf6Dt+gr3TEB+ZXuKCcwed8XiRurWTfJgLI4u5/dkCCyBRdO izsOoB7ZjTh9eAehoprPQPNqluuMX6+eVWngmgNYLmhoRbpvElFqlptUUwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFLAkRFMuaCfbaZuauxs7NvPDsQsCMB8GA1UdIwQY MBaAFBU/JBg9bJUYWRk0nm6SUzc2Q3uUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRlQ4a0dEMXNsUmhaR1RTZWJwSlROelpEZTVRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi9iMDVlMDgtMDc2Mi00ZGM3LWE0YjAt NTgwNWQzZjNkYmIyLzEvc0NSRVV5NW9KOXRwbTVxN0d6czI4OE94Q3dJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi9iMDVlMDgtMDc2Mi00ZGM3LWE0YjAtNTgwNWQzZjNkYmIy LzEvRlQ4a0dEMXNsUmhaR1RTZWJwSlROelpEZTVRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhPpQDAN BgkqhkiG9w0BAQsFAAOCAQEAZkT9S756HS3iePaiplU2pP/MifkPDKAu4vwCa4j3 p6UapxxCPTZ1i4hxjsa9yjqyjq5FCGlSxWF/N3e70v4KdgSRDjtbuhukYvV0Nf00 6wt2Xfsc+P2YZmYzhjD9DOaWm3SpYVGA4o24RmiyO/CKEJqszRI5lDCQpB6UKEVR GcnWAWK8xoT1meIS2ByaeOck0iThzrGputOW5FqTX78yH2xuwaipGj2RAZIjW4qt kqVnL8RVanfSjJ4X65JccHac/jpTCTIYP5Vl/MtG7s/K8Ar8a3+VkbUkus8MDBE9 rWAuxqO9PYXDeAqMmTfWyGdvISPgxOrjp+mTL6Gk4TomQA== -----END CERTIFICATE-----Generated at Wed Jan 21 13:17:58 2026 by rpki-client