This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/sm3iYgOtqN6nnym3it3jySvolrU.roa File: sm3iYgOtqN6nnym3it3jySvolrU.roa (raw, json) Hash identifier: lZ/OmmYi4r8mf5j3sK31bIT6Hooge+fXxyDeDEKgkMo= Subject key identifier: B2:6D:E2:62:03:AD:A8:DE:A7:9F:29:B7:8A:DD:E3:C9:2B:E8:96:B5 Certificate issuer: /CN=884bf80e72f50f09bf563493ebdb11a34bba312d Certificate serial: 019B7EA5941E502A5C790163CB0AAF2C4E90 Authority key identifier: 88:4B:F8:0E:72:F5:0F:09:BF:56:34:93:EB:DB:11:A3:4B:BA:31:2D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iEv4DnL1Dwm_VjST69sRo0u6MS0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/sm3iYgOtqN6nnym3it3jySvolrU.roa Signing time: Fri 02 Jan 2026 12:18:59 +0000 ROA not before: Fri 02 Jan 2026 12:18:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208083 IP address blocks: 2a0f:a180::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/iEv4DnL1Dwm_VjST69sRo0u6MS0.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/iEv4DnL1Dwm_VjST69sRo0u6MS0.mft rsync://rpki.ripe.net/repository/DEFAULT/iEv4DnL1Dwm_VjST69sRo0u6MS0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:94:1e:50:2a:5c:79:01:63:cb:0a:af:2c:4e:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=884bf80e72f50f09bf563493ebdb11a34bba312d Validity Not Before: Jan 2 12:18:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b26de26203ada8dea79f29b78adde3c92be896b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2d:67:32:e5:b0:d3:a1:0a:1a:33:20:51:71: f7:72:6f:bf:6c:15:6e:22:a7:e7:a2:a4:53:47:4d: 7a:be:11:2a:d3:48:d1:03:6a:c6:76:f5:d1:8d:4f: ef:31:92:96:de:cd:03:1c:64:31:2e:e6:8c:86:cf: 0a:61:d6:0d:7b:6a:8d:b2:c2:55:ff:6b:9f:99:95: 0c:dd:b1:29:ab:7a:7d:0b:d3:45:75:db:cf:00:07: ae:32:d8:87:08:75:ef:d5:b9:c7:e9:74:0e:99:ed: 1b:38:3c:4e:39:d6:58:1f:6c:f1:7c:13:7d:ad:35: 73:3a:03:5b:42:12:5f:29:6d:b4:62:6f:77:ac:24: 40:57:21:69:71:e2:92:48:2a:5d:49:8a:ed:51:45: 84:5d:e7:05:a2:5f:f4:31:0e:1a:49:0b:64:50:ae: 4a:7d:c9:74:22:35:eb:6b:60:64:4b:94:24:cb:11: ee:9c:25:70:b9:ac:e6:03:9f:29:b4:5c:4e:a0:b5: 7f:52:40:9b:36:73:dc:d8:5c:2e:5f:32:f3:51:a2: b6:47:9d:2c:ce:af:bf:3a:21:a2:95:19:fa:9a:41: da:2f:91:b3:87:b1:45:49:67:8a:bb:06:4d:25:c3: 46:dd:31:70:09:86:93:09:a9:59:56:3b:69:d6:22: 46:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:6D:E2:62:03:AD:A8:DE:A7:9F:29:B7:8A:DD:E3:C9:2B:E8:96:B5 X509v3 Authority Key Identifier: keyid:88:4B:F8:0E:72:F5:0F:09:BF:56:34:93:EB:DB:11:A3:4B:BA:31:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iEv4DnL1Dwm_VjST69sRo0u6MS0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/sm3iYgOtqN6nnym3it3jySvolrU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/iEv4DnL1Dwm_VjST69sRo0u6MS0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:a180::/29 Signature Algorithm: sha256WithRSAEncryption 3f:2d:48:79:f1:b3:31:79:2d:4e:f8:ff:5f:eb:e5:64:40:e7: 31:b7:b2:d2:e6:7e:41:72:74:02:58:95:3c:eb:97:44:0d:e0: 22:ab:ad:27:c5:ea:bc:78:1d:f1:01:0c:28:40:ab:d9:1b:e5: dd:88:76:e3:0b:7d:1c:46:47:ef:09:50:7d:7a:7a:2d:ea:62: eb:2a:70:7b:16:bf:08:7e:6f:37:7b:f1:9b:2b:3f:f6:d1:a0: ed:c2:2a:3d:50:ca:70:3e:84:f5:c7:aa:ab:11:dd:9f:e6:e1: 78:87:88:91:82:07:ef:17:a2:49:bf:2c:a4:a4:dc:e8:f0:4e: 37:5f:98:4d:c4:34:2c:c4:62:17:1e:43:73:c1:e8:24:96:b0: 98:b5:e4:72:37:84:c0:31:d5:94:a1:7c:04:f6:ce:26:6b:fe: 60:ac:3a:8b:a5:45:af:50:eb:83:71:41:30:0e:e5:23:e2:06: 5e:4d:7e:54:a4:12:c6:4d:35:f0:7f:0c:32:46:22:94:61:9b: 1a:e9:83:93:2c:39:1c:db:f5:37:53:1a:33:52:7a:6a:34:fa: 35:89:87:ed:cb:0a:e9:96:d6:d2:5c:32:d9:ab:95:51:ed:88: ba:14:b6:3a:ae:7e:8b:52:d9:f4:0c:4e:9f:03:8f:de:59:65: f2:81:a4:10 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt+pZQeUCpceQFjywqvLE6QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4NGJmODBlNzJmNTBmMDliZjU2MzQ5M2ViZGIxMWEzNGJi YTMxMmQwHhcNMjYwMTAyMTIxODU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMjZkZTI2MjAzYWRhOGRlYTc5ZjI5Yjc4YWRkZTNjOTJiZTg5NmI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtS1nMuWw06EKGjMgUXH3cm+/bBVu IqfnoqRTR016vhEq00jRA2rGdvXRjU/vMZKW3s0DHGQxLuaMhs8KYdYNe2qNssJV /2ufmZUM3bEpq3p9C9NFddvPAAeuMtiHCHXv1bnH6XQOme0bODxOOdZYH2zxfBN9 rTVzOgNbQhJfKW20Ym93rCRAVyFpceKSSCpdSYrtUUWEXecFol/0MQ4aSQtkUK5K fcl0IjXra2BkS5QkyxHunCVwuazmA58ptFxOoLV/UkCbNnPc2FwuXzLzUaK2R50s zq+/OiGilRn6mkHaL5Gzh7FFSWeKuwZNJcNG3TFwCYaTCalZVjtp1iJGKwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFLJt4mIDrajep58pt4rd48kr6Ja1MB8GA1UdIwQY MBaAFIhL+A5y9Q8Jv1Y0k+vbEaNLujEtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUV2NERuTDFEd21fVmpTVDY5c1JvMHU2TVMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9iMTJlNGQtOGExYS00MDEwLTlhOGIt MzZmOTg0N2FjMzViLzEvc20zaVlnT3RxTjZubnltM2l0M2p5U3ZvbHJVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi9iMTJlNGQtOGExYS00MDEwLTlhOGItMzZmOTg0N2FjMzVi LzEvaUV2NERuTDFEd21fVmpTVDY5c1JvMHU2TVMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKg+hgDAN BgkqhkiG9w0BAQsFAAOCAQEAPy1IefGzMXktTvj/X+vlZEDnMbey0uZ+QXJ0AliV POuXRA3gIqutJ8XqvHgd8QEMKECr2Rvl3Yh24wt9HEZH7wlQfXp6Lepi6ypwexa/ CH5vN3vxmys/9tGg7cIqPVDKcD6E9ceqqxHdn+bheIeIkYIH7xeiSb8spKTc6PBO N1+YTcQ0LMRiFx5Dc8HoJJawmLXkcjeEwDHVlKF8BPbOJmv+YKw6i6VFr1Drg3FB MA7lI+IGXk1+VKQSxk018H8MMkYilGGbGumDkyw5HNv1N1MaM1J6ajT6NYmH7csK 6ZbW0lwy2auVUe2IuhS2Oq5+i1LZ9AxOnwOP3lll8oGkEA== -----END CERTIFICATE-----Generated at Tue Feb 10 02:58:24 2026 by rpki-client