This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/SX12JxHI1yb7Whr9JcDwUAxULp8.roa File: SX12JxHI1yb7Whr9JcDwUAxULp8.roa (raw, json) Hash identifier: ApSmY0S8qTNYXwukxIVeuiewmXm8ajFCqQM8mZELYRE= Subject key identifier: 49:7D:76:27:11:C8:D7:26:FB:5A:1A:FD:25:C0:F0:50:0C:54:2E:9F Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8 Certificate serial: 019B7758E9CCE5424C37EF588EC1E4E4ABD9 Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/SX12JxHI1yb7Whr9JcDwUAxULp8.roa Signing time: Thu 01 Jan 2026 02:17:54 +0000 ROA not before: Thu 01 Jan 2026 02:17:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12912 IP address blocks: 85.202.56.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.mft rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:e9:cc:e5:42:4c:37:ef:58:8e:c1:e4:e4:ab:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8 Validity Not Before: Jan 1 02:17:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=497d762711c8d726fb5a1afd25c0f0500c542e9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:25:ed:36:4a:1c:3e:ac:68:fb:26:51:8f:4b: c5:64:42:e2:98:6d:78:66:38:68:2a:c6:ae:fe:8f: 8e:81:aa:d5:0e:ce:34:96:87:df:97:e0:97:01:db: 44:d8:b0:c8:fc:e5:3f:9f:b7:49:23:f0:ec:4b:77: 77:7d:41:df:e9:a6:88:fd:69:62:1d:bc:50:a6:3f: 17:6f:ef:01:37:72:ce:a0:73:f5:74:8e:4f:c9:af: 16:9c:c1:b5:ac:84:5d:99:91:0c:16:d9:74:53:aa: 61:61:00:a6:d9:20:31:8e:68:58:c4:17:37:cb:4e: 52:0f:dc:c2:f6:ed:9a:5d:d6:42:85:80:47:41:71: 68:da:27:95:63:1d:9f:3b:be:df:33:8a:d7:6e:27: fa:2d:95:fe:00:09:8f:93:ec:39:ff:58:ee:cb:63: 25:22:cd:63:81:8b:19:12:69:0a:af:29:a9:cc:89: 52:6f:c7:ae:7e:66:b1:10:8c:9e:07:09:e7:1c:64: 3e:fe:cd:f3:cc:68:36:81:a0:59:1f:c4:81:b3:f9: 7c:ba:b1:fe:48:29:51:de:6b:bd:24:87:61:99:e9: 99:38:3b:55:3f:67:a6:b8:64:b0:03:0e:42:91:94: 9d:02:6d:60:cc:4d:c9:3e:9f:60:0a:a0:4e:98:06: 4a:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:7D:76:27:11:C8:D7:26:FB:5A:1A:FD:25:C0:F0:50:0C:54:2E:9F X509v3 Authority Key Identifier: keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/SX12JxHI1yb7Whr9JcDwUAxULp8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.202.56.0/23 Signature Algorithm: sha256WithRSAEncryption 55:26:bc:1d:33:a8:09:61:54:1b:3d:db:b6:05:7c:15:c8:bf: c7:7f:7f:7e:c9:9a:fb:00:30:ab:54:9f:0f:21:59:69:cf:28: 4c:d5:bb:0c:8b:1a:6d:6c:63:b6:30:41:8d:53:49:b8:d1:3c: 67:78:4a:a2:6d:8d:8d:ab:1a:9a:ef:28:41:3c:3c:9f:74:22: cc:f5:01:1c:65:8b:24:ec:88:e9:6a:93:6d:27:12:d2:4e:36: fc:95:2a:ba:49:86:88:ed:0f:c8:fc:0c:69:4f:39:ec:54:94: f4:bc:d4:de:17:8d:d1:32:10:1f:31:88:78:9a:d7:02:2a:c7: f2:53:9b:6e:b8:23:c5:4e:3e:0f:cb:47:63:fa:25:5c:dd:3c: ea:0b:a3:dc:2a:d1:ff:5b:71:70:8b:9e:ce:a9:4b:86:87:aa: 53:40:b0:5c:91:54:4f:ea:30:b3:cf:99:24:27:37:d1:d1:7d: 0d:40:45:ba:9c:dd:c0:b9:c1:02:0c:98:bd:a6:9a:8e:da:46: f5:ec:ad:6c:1c:18:65:8b:c1:dc:1e:b7:72:58:cd:89:c2:eb: ce:89:fa:f1:e5:9d:2a:79:71:86:2f:f4:27:dd:af:c4:a1:21: b2:e6:b0:7f:50:13:b8:e7:78:c1:c4:f5:ff:d3:86:73:4e:b7: be:bc:98:fa -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3WOnM5UJMN+9YjsHk5KvZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5OTU0NDk5OTc3Mjc4YTc1NTcwYjM0MDNmNGQzYWEwMGIx YjM2ZTgwHhcNMjYwMTAxMDIxNzU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0OTdkNzYyNzExYzhkNzI2ZmI1YTFhZmQyNWMwZjA1MDBjNTQyZTlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtiXtNkocPqxo+yZRj0vFZELimG14 ZjhoKsau/o+OgarVDs40loffl+CXAdtE2LDI/OU/n7dJI/DsS3d3fUHf6aaI/Wli HbxQpj8Xb+8BN3LOoHP1dI5Pya8WnMG1rIRdmZEMFtl0U6phYQCm2SAxjmhYxBc3 y05SD9zC9u2aXdZChYBHQXFo2ieVYx2fO77fM4rXbif6LZX+AAmPk+w5/1juy2Ml Is1jgYsZEmkKrympzIlSb8eufmaxEIyeBwnnHGQ+/s3zzGg2gaBZH8SBs/l8urH+ SClR3mu9JIdhmemZODtVP2emuGSwAw5CkZSdAm1gzE3JPp9gCqBOmAZKqwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEl9dicRyNcm+1oa/SXA8FAMVC6fMB8GA1UdIwQY MBaAFLmVRJmXcninVXCzQD9NOqALGzboMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdVpWRW1aZHllS2RWY0xOQVAwMDZvQXNiTnVnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny83ODg4MDMtYmUxMi00MzNmLWE4ZDAt MDI0YjE2NTVjMjQ3LzEvU1gxMkp4SEkxeWI3V2hyOUpjRHdVQXhVTHA4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ny83ODg4MDMtYmUxMi00MzNmLWE4ZDAtMDI0YjE2NTVjMjQ3 LzEvdVpWRW1aZHllS2RWY0xOQVAwMDZvQXNiTnVnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBVco4MA0G CSqGSIb3DQEBCwUAA4IBAQBVJrwdM6gJYVQbPdu2BXwVyL/Hf39+yZr7ADCrVJ8P IVlpzyhM1bsMixptbGO2MEGNU0m40TxneEqibY2Nqxqa7yhBPDyfdCLM9QEcZYsk 7IjpapNtJxLSTjb8lSq6SYaI7Q/I/AxpTznsVJT0vNTeF43RMhAfMYh4mtcCKsfy U5tuuCPFTj4Py0dj+iVc3TzqC6PcKtH/W3Fwi57OqUuGh6pTQLBckVRP6jCzz5kk JzfR0X0NQEW6nN3AucECDJi9ppqO2kb17K1sHBhli8HcHrdyWM2JwuvOifrx5Z0q eXGGL/Qn3a/EoSGy5rB/UBO453jBxPX/04ZzTre+vJj6 -----END CERTIFICATE-----Generated at Sun Jan 25 20:29:40 2026 by rpki-client