This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/SzHJf1_z9dU3KM5sDi_wZZPaT4g.roa File: SzHJf1_z9dU3KM5sDi_wZZPaT4g.roa (raw, json) Hash identifier: uOcBVeXm2n0ouBDFnTjXVf4GMua7wgfr7TJSzfNF7PI= Subject key identifier: 4B:31:C9:7F:5F:F3:F5:D5:37:28:CE:6C:0E:2F:F0:65:93:DA:4F:88 Certificate issuer: /CN=7bab6c11d41162db0306858f83e5e65121132a6b Certificate serial: 019B791134077830A53710F8EDF55B92391B Authority key identifier: 7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/SzHJf1_z9dU3KM5sDi_wZZPaT4g.roa Signing time: Thu 01 Jan 2026 10:18:49 +0000 ROA not before: Thu 01 Jan 2026 10:18:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213034 IP address blocks: 2a07:22c0:8002::/48 maxlen: 48 2a07:22c0:8003::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/e6tsEdQRYtsDBoWPg-XmUSETKms.crl rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/e6tsEdQRYtsDBoWPg-XmUSETKms.mft rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:34:07:78:30:a5:37:10:f8:ed:f5:5b:92:39:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7bab6c11d41162db0306858f83e5e65121132a6b Validity Not Before: Jan 1 10:18:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4b31c97f5ff3f5d53728ce6c0e2ff06593da4f88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:fe:f9:6e:81:6d:0f:d0:da:3d:e2:64:1e:f1: c9:a0:02:7e:2f:5c:ab:f9:e2:3c:e2:18:30:3a:3e: 13:9a:d7:30:e8:00:5e:42:62:1e:95:99:29:2e:2a: 1a:f2:3f:35:53:6a:85:2c:61:90:97:f4:c7:b9:1e: 9a:0d:97:5b:ad:76:82:8a:ee:4a:e5:eb:81:40:27: 6d:b1:c9:72:63:77:c1:8d:d1:85:0f:b1:b5:57:b0: 55:2a:1b:66:d2:86:78:2f:f1:53:0c:38:cd:aa:ca: ea:77:df:76:01:7a:cc:51:d9:8a:64:da:ea:b9:32: d6:bd:a1:33:f5:2d:e0:f4:d9:77:b1:96:2a:5e:16: b2:ed:51:59:a0:7c:7f:f4:a1:db:6a:d6:a8:42:94: 26:c2:dd:d3:a3:b4:6c:57:a2:41:27:fc:ac:2a:bb: 6e:7d:7c:1c:9d:9c:43:e8:cd:1c:86:70:4a:bb:88: a1:5a:2d:aa:8c:03:69:42:f7:3d:35:5e:b8:33:50: 36:1e:10:03:78:8f:d2:37:c7:43:20:d6:9e:18:ec: b1:c6:c1:0f:a2:27:29:8e:79:62:3b:c9:57:a2:9c: 54:09:7b:7e:ec:57:89:d3:93:95:84:98:bf:b7:89: 39:f0:eb:67:59:83:c2:21:a7:f3:52:e9:1e:40:9b: 6a:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:31:C9:7F:5F:F3:F5:D5:37:28:CE:6C:0E:2F:F0:65:93:DA:4F:88 X509v3 Authority Key Identifier: keyid:7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/SzHJf1_z9dU3KM5sDi_wZZPaT4g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/e6tsEdQRYtsDBoWPg-XmUSETKms.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:22c0:8002::/47 Signature Algorithm: sha256WithRSAEncryption 40:b5:3b:e4:3a:4b:29:00:c3:c0:d5:dd:12:21:7a:56:0f:2a: d3:5a:a3:70:7b:ae:05:dd:06:9a:59:02:d6:00:df:e0:1d:2b: 00:03:5d:c5:4c:ee:15:98:06:e3:e2:2c:11:a5:9d:56:f2:f2: 61:dc:1f:ee:05:56:f3:f5:84:63:6a:c8:a3:23:6d:e1:0e:5d: ce:06:0e:2d:69:7f:c2:5e:78:6d:7a:58:76:82:fd:88:b4:44: 8c:d7:d8:f0:6c:b0:41:91:2f:fe:df:0f:e8:d8:47:e0:09:0e: b6:f5:24:99:1a:63:82:15:90:09:bf:fa:ff:38:33:90:f1:b3: 18:24:54:a7:5d:83:2f:2b:e8:b7:2c:63:9f:c1:4a:10:4b:85: d2:08:70:99:8d:df:52:9b:60:82:db:1e:8d:fa:b5:8f:26:2a: 72:e9:d1:96:46:e6:b1:63:b7:c7:79:7e:63:8d:3e:ca:03:61: 34:12:a5:1c:41:5a:2d:b0:a9:9b:a6:15:2d:79:31:4e:bd:21: af:ea:33:83:2e:68:ae:b4:83:66:1a:20:60:b0:b0:7b:a4:5b: cd:2c:20:91:b7:70:f4:0a:ab:4e:4c:1f:5b:d6:c7:3d:a3:f6: 44:88:f5:e1:2a:3d:14:27:c6:7b:28:e5:c3:37:a8:de:12:6f: 9e:51:cd:e3 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5ETQHeDClNxD47fVbkjkbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdiYWI2YzExZDQxMTYyZGIwMzA2ODU4ZjgzZTVlNjUxMjEx MzJhNmIwHhcNMjYwMTAxMTAxODQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YjMxYzk3ZjVmZjNmNWQ1MzcyOGNlNmMwZTJmZjA2NTkzZGE0Zjg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoP75boFtD9DaPeJkHvHJoAJ+L1yr +eI84hgwOj4Tmtcw6ABeQmIelZkpLioa8j81U2qFLGGQl/THuR6aDZdbrXaCiu5K 5euBQCdtsclyY3fBjdGFD7G1V7BVKhtm0oZ4L/FTDDjNqsrqd992AXrMUdmKZNrq uTLWvaEz9S3g9Nl3sZYqXhay7VFZoHx/9KHbataoQpQmwt3To7RsV6JBJ/ysKrtu fXwcnZxD6M0chnBKu4ihWi2qjANpQvc9NV64M1A2HhADeI/SN8dDINaeGOyxxsEP oicpjnliO8lXopxUCXt+7FeJ05OVhJi/t4k58OtnWYPCIafzUukeQJtqZQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFEsxyX9f8/XVNyjObA4v8GWT2k+IMB8GA1UdIwQY MBaAFHurbBHUEWLbAwaFj4Pl5lEhEyprMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZTZ0c0VkUVJZdHNEQm9XUGctWG1VU0VUS21zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS9kMzM0YWQtNTI0MC00ZGFhLWEwNTAt OWY1YmY3MzY3MjBlLzEvU3pISmYxX3o5ZFUzS001c0RpX3daWlBhVDRnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOS9kMzM0YWQtNTI0MC00ZGFhLWEwNTAtOWY1YmY3MzY3MjBl LzEvZTZ0c0VkUVJZdHNEQm9XUGctWG1VU0VUS21zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcBKgciwIAC MA0GCSqGSIb3DQEBCwUAA4IBAQBAtTvkOkspAMPA1d0SIXpWDyrTWqNwe64F3Qaa WQLWAN/gHSsAA13FTO4VmAbj4iwRpZ1W8vJh3B/uBVbz9YRjasijI23hDl3OBg4t aX/CXnhtelh2gv2ItESM19jwbLBBkS/+3w/o2EfgCQ629SSZGmOCFZAJv/r/ODOQ 8bMYJFSnXYMvK+i3LGOfwUoQS4XSCHCZjd9Sm2CC2x6N+rWPJipy6dGWRuaxY7fH eX5jjT7KA2E0EqUcQVotsKmbphUteTFOvSGv6jODLmiutINmGiBgsLB7pFvNLCCR t3D0CqtOTB9b1sc9o/ZEiPXhKj0UJ8Z7KOXDN6jeEm+eUc3j -----END CERTIFICATE-----Generated at Mon Jan 26 02:07:58 2026 by rpki-client