This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/SFMYlN0Z7j7jTfVInMfOAfp757A.roa File: SFMYlN0Z7j7jTfVInMfOAfp757A.roa (raw, json) Hash identifier: 61Le/u2BZHTj8JLBDMpSTN47fQq6QVqFLHjwtsxh4go= Subject key identifier: 48:53:18:94:DD:19:EE:3E:E3:4D:F5:48:9C:C7:CE:01:FA:7B:E7:B0 Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2 Certificate serial: 019BCBBCFDDCF30B78B31B90C72438D0918A Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/SFMYlN0Z7j7jTfVInMfOAfp757A.roa Signing time: Sat 17 Jan 2026 11:35:19 +0000 ROA not before: Sat 17 Jan 2026 11:35:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12389 IP address blocks: 2a09:6285::/32 maxlen: 32 2a13:2984::/30 maxlen: 30 2a13:3880::/32 maxlen: 32 2a13:3881::/32 maxlen: 32 2a13:3882::/32 maxlen: 32 2a13:3883::/32 maxlen: 32 2a13:3884::/32 maxlen: 32 2a13:3885::/32 maxlen: 32 2a13:3886::/32 maxlen: 32 2a13:3887::/32 maxlen: 32 2a13:93c2::/32 maxlen: 32 2a13:93c4::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.mft rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:cb:bc:fd:dc:f3:0b:78:b3:1b:90:c7:24:38:d0:91:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2 Validity Not Before: Jan 17 11:35:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=48531894dd19ee3ee34df5489cc7ce01fa7be7b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:2e:dc:fa:d3:72:22:dd:42:70:e5:71:2f:ec: 74:2d:75:48:da:7a:89:f0:46:80:d7:a1:fa:1e:d7: 04:1c:11:03:77:b1:9e:53:ed:32:99:ab:25:0f:83: da:18:96:e5:42:05:34:63:5f:86:ec:b6:55:5a:2d: 0c:3e:6b:df:81:86:2b:0f:81:b4:18:2e:7a:78:dc: 3b:e1:85:81:38:75:23:d7:27:8f:ec:d8:fd:ba:8b: d2:60:69:5b:48:94:d3:b7:29:9e:9e:71:86:21:dc: 34:71:ca:5e:5d:c5:79:da:30:2c:d4:d2:29:de:a2: 0c:95:dc:09:6b:71:22:fc:3b:61:71:42:36:14:7a: 83:78:9b:56:98:b1:1f:a8:7e:d0:fe:3f:bf:cd:25: b7:71:93:75:59:24:47:02:06:f0:9e:4e:ed:9b:8b: 99:38:45:79:cd:dc:ad:27:e9:3e:08:8a:d0:05:bb: bd:66:26:a5:a7:6f:72:cd:09:51:84:9c:82:24:bf: 14:03:0e:04:19:cc:27:68:be:82:94:cc:86:f6:df: 91:a4:b9:81:0d:d1:68:b2:b6:44:20:df:3c:f8:f2: 5b:b4:7a:0e:03:3d:7b:6c:0f:55:ff:7d:d9:7d:00: 44:f7:1a:f2:42:78:68:3f:82:d8:65:69:6a:64:b4: 93:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:53:18:94:DD:19:EE:3E:E3:4D:F5:48:9C:C7:CE:01:FA:7B:E7:B0 X509v3 Authority Key Identifier: keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/SFMYlN0Z7j7jTfVInMfOAfp757A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:6285::/32 2a13:2984::/30 2a13:3880::/29 2a13:93c2::/32 2a13:93c4::/32 Signature Algorithm: sha256WithRSAEncryption d4:5b:ab:5e:4d:20:63:4b:3c:bd:95:76:1c:8d:55:1d:0f:93: 02:c0:dc:36:a8:0c:32:e6:d7:85:fa:5b:00:eb:6d:93:21:b2: 04:88:16:7b:1f:b5:dc:ee:df:8a:08:fa:6e:47:63:9a:5f:f3: 05:bf:25:37:04:fe:52:b9:96:ac:9a:40:6c:b2:5d:a7:f3:01: b0:d2:2c:03:a4:cd:e4:ce:33:d1:3e:f8:94:d0:7a:9a:d8:08: 52:97:4e:57:53:6f:4c:c2:4e:ee:be:5d:d3:cd:31:ba:ff:4f: 5c:52:92:ca:f5:ab:dd:40:28:78:85:c4:42:ef:42:64:87:87: 30:ed:d4:f9:ed:f7:de:cb:55:5b:38:78:14:69:e8:02:0f:c3: 26:8b:e4:75:62:e1:37:31:7e:7a:47:ef:47:da:f3:4e:24:59: c7:b0:b8:27:d2:20:2d:5f:28:25:a6:9b:03:80:93:ac:44:c4: 45:1d:ba:39:06:27:2a:84:15:bf:cb:e7:b7:32:b9:e6:bd:b1: 5e:5a:ff:6a:6d:59:0f:4a:1d:d5:83:50:dd:c8:3c:89:58:2b: 54:ec:91:21:fc:d6:5c:de:19:77:d3:7d:4e:58:8d:de:1f:60: b1:cc:08:da:3c:c7:6f:be:f2:a0:06:f9:1b:7e:2d:44:99:09: df:63:4f:49 -----BEGIN CERTIFICATE----- MIIFGjCCBAKgAwIBAgISAZvLvP3c8wt4sxuQxyQ40JGKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1MDg0NzVmZjBkOGVjOTYwMzM2MDE2ZTBlMDQyMjFhOThl NWVjZjIwHhcNMjYwMTE3MTEzNTE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ODUzMTg5NGRkMTllZTNlZTM0ZGY1NDg5Y2M3Y2UwMWZhN2JlN2IwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAki7c+tNyIt1CcOVxL+x0LXVI2nqJ 8EaA16H6HtcEHBEDd7GeU+0ymaslD4PaGJblQgU0Y1+G7LZVWi0MPmvfgYYrD4G0 GC56eNw74YWBOHUj1yeP7Nj9uovSYGlbSJTTtymennGGIdw0ccpeXcV52jAs1NIp 3qIMldwJa3Ei/DthcUI2FHqDeJtWmLEfqH7Q/j+/zSW3cZN1WSRHAgbwnk7tm4uZ OEV5zdytJ+k+CIrQBbu9Zialp29yzQlRhJyCJL8UAw4EGcwnaL6ClMyG9t+RpLmB DdFosrZEIN88+PJbtHoOAz17bA9V/33ZfQBE9xryQnhoP4LYZWlqZLSTBQIDAQAB o4ICJjCCAiIwHQYDVR0OBBYEFEhTGJTdGe4+4031SJzHzgH6e+ewMB8GA1UdIwQY MBaAFHUIR1/w2OyWAzYBbg4EIhqY5ezyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZFFoSFhfRFk3SllETmdGdURnUWlHcGpsN1BJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8xZmE2YTMtOGRjNS00YzM1LWE0OWIt MTcxYzM2N2JlNzgyLzEvU0ZNWWxOMFo3ajdqVGZWSW5NZk9BZnA3NTdBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS8xZmE2YTMtOGRjNS00YzM1LWE0OWItMTcxYzM2N2JlNzgy LzEvZFFoSFhfRFk3SllETmdGdURnUWlHcGpsN1BJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDwGCCsGAQUFBwEHAQH/BC0wKzApBAIAAjAjAwUAKglihQMF AioTKYQDBQMqEziAAwUAKhOTwgMFACoTk8QwDQYJKoZIhvcNAQELBQADggEBANRb q15NIGNLPL2VdhyNVR0PkwLA3DaoDDLm14X6WwDrbZMhsgSIFnsftdzu34oI+m5H Y5pf8wW/JTcE/lK5lqyaQGyyXafzAbDSLAOkzeTOM9E++JTQeprYCFKXTldTb0zC Tu6+XdPNMbr/T1xSksr1q91AKHiFxELvQmSHhzDt1Pnt997LVVs4eBRp6AIPwyaL 5HVi4TcxfnpH70fa804kWcewuCfSIC1fKCWmmwOAk6xExEUdujkGJyqEFb/L57cy uea9sV5a/2ptWQ9KHdWDUN3IPIlYK1TskSH81lzeGXfTfU5Yjd4fYLHMCNo8x2++ 8qAG+Rt+LUSZCd9jT0k= -----END CERTIFICATE-----Generated at Mon Jan 19 19:57:16 2026 by rpki-client