This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/SrxtBKnuafF1DQI2OTXBeAjWw0o.roa File: SrxtBKnuafF1DQI2OTXBeAjWw0o.roa (raw, json) Hash identifier: i2/IdcQhZc/jHmRJP8tsNKK+hCbFYPXUB4QHVuXJciY= Subject key identifier: 4A:BC:6D:04:A9:EE:69:F1:75:0D:02:36:39:35:C1:78:08:D6:C3:4A Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Certificate serial: 019BE1E8859C7BB433FEC2DF7E8BFBB3EB1D Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/SrxtBKnuafF1DQI2OTXBeAjWw0o.roa Signing time: Wed 21 Jan 2026 18:54:30 +0000 ROA not before: Wed 21 Jan 2026 18:54:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213482 IP address blocks: 2a12:bec4:1780::/44 maxlen: 44 2a12:bec4:1c50::/44 maxlen: 44 2a12:bec4:1e40::/44 maxlen: 44 2a12:bec4:1e60::/44 maxlen: 44 2a12:bec4:1e70::/44 maxlen: 44 2a12:bec4:1e80::/44 maxlen: 44 2a12:bec4:1f40::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.mft rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e1:e8:85:9c:7b:b4:33:fe:c2:df:7e:8b:fb:b3:eb:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Validity Not Before: Jan 21 18:54:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4abc6d04a9ee69f1750d02363935c17808d6c34a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b9:7f:96:a5:63:67:88:89:31:08:e6:a7:d2: 34:e4:66:1b:79:0b:b6:83:fd:62:07:46:a8:3b:1e: 5a:6d:15:37:b0:a5:54:9b:46:ff:9f:1b:43:86:be: f2:31:b2:30:38:50:24:7c:b7:a2:24:2e:86:e3:6c: a5:b2:fe:a7:50:ca:81:f4:4c:6a:93:cd:23:a5:36: 53:77:52:94:db:f7:4a:7b:01:aa:37:90:20:c3:b0: d9:50:a0:85:e7:18:87:31:c3:6b:f8:9c:5e:9d:ae: 2c:7f:f8:44:81:b5:76:6a:b0:80:8f:e4:aa:8c:d5: 62:20:0a:ea:5b:fe:f8:30:94:39:6c:d4:85:0f:fd: 73:fc:ff:0b:8c:c5:2d:a8:d8:34:8b:49:91:94:86: a6:c0:1d:c4:bd:d1:e6:8d:af:cb:96:94:83:c2:57: 14:0a:2c:b4:d9:fa:cb:e2:3a:6b:d8:47:9a:4c:0f: ee:79:0d:10:48:f5:fc:51:c9:31:d0:2d:0b:61:4d: f3:18:58:d0:37:66:d9:e3:fc:fa:0a:e6:a2:70:2d: 9d:6a:ba:a4:55:b3:28:79:ae:80:88:b4:41:bd:c7: 2b:ff:51:64:ed:87:8e:50:54:af:5c:c9:06:04:c9: db:93:6e:f3:28:b5:71:fc:a6:00:13:59:c1:20:df: 58:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:BC:6D:04:A9:EE:69:F1:75:0D:02:36:39:35:C1:78:08:D6:C3:4A X509v3 Authority Key Identifier: keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/SrxtBKnuafF1DQI2OTXBeAjWw0o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:bec4:1780::/44 2a12:bec4:1c50::/44 2a12:bec4:1e40::/44 2a12:bec4:1e60::-2a12:bec4:1e8f:ffff:ffff:ffff:ffff:ffff 2a12:bec4:1f40::/44 Signature Algorithm: sha256WithRSAEncryption aa:1e:6e:63:84:fa:58:be:73:7c:b3:11:cc:2c:cb:48:8e:90: a5:32:7b:5c:e6:91:68:3e:9b:53:9e:e7:b0:16:11:e7:f0:54: 49:1c:09:a0:1a:16:89:72:7a:dd:b0:71:0a:51:10:8f:b7:2b: b5:c8:b2:73:f9:cc:27:68:54:95:f6:22:43:97:53:00:06:c6: be:db:23:6b:f3:2f:91:79:7a:1d:8b:0f:66:ed:ef:de:d9:cf: 29:a9:2d:c2:09:ab:07:a7:ef:17:ea:0f:a9:43:2b:08:c6:38: 0a:df:52:fd:49:db:b3:45:4c:50:25:0e:a9:2f:c6:0c:3c:80: ac:52:e9:89:89:b7:1f:b0:23:c7:b0:82:8a:26:5a:67:81:ac: fd:96:02:63:57:c8:01:1f:b0:1a:28:13:54:1f:a3:f9:1c:fe: 2e:af:ff:6d:1f:43:c5:d4:6d:57:60:2d:2d:45:ab:84:db:7d: c6:78:2f:00:52:08:93:af:9c:59:62:cb:b7:51:a6:eb:70:d6: ba:57:2d:9a:aa:46:2c:8e:53:83:23:c2:ad:a2:8e:3a:27:d8: 19:94:a3:8b:fd:2c:9b:11:70:00:29:a8:9c:42:9d:85:f6:74: 5d:e2:58:18:f5:6f:92:3b:e2:3c:34:a3:ac:62:78:1e:ef:33: 1c:06:96:e9 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgISAZvh6IWce7Qz/sLffov7s+sdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj M2Q2NmYwHhcNMjYwMTIxMTg1NDMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YWJjNmQwNGE5ZWU2OWYxNzUwZDAyMzYzOTM1YzE3ODA4ZDZjMzRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArrl/lqVjZ4iJMQjmp9I05GYbeQu2 g/1iB0aoOx5abRU3sKVUm0b/nxtDhr7yMbIwOFAkfLeiJC6G42ylsv6nUMqB9Exq k80jpTZTd1KU2/dKewGqN5Agw7DZUKCF5xiHMcNr+Jxena4sf/hEgbV2arCAj+Sq jNViIArqW/74MJQ5bNSFD/1z/P8LjMUtqNg0i0mRlIamwB3EvdHmja/LlpSDwlcU Ciy02frL4jpr2EeaTA/ueQ0QSPX8Uckx0C0LYU3zGFjQN2bZ4/z6CuaicC2darqk VbMoea6AiLRBvccr/1Fk7YeOUFSvXMkGBMnbk27zKLVx/KYAE1nBIN9YXwIDAQAB o4ICOzCCAjcwHQYDVR0OBBYEFEq8bQSp7mnxdQ0CNjk1wXgI1sNKMB8GA1UdIwQY MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt NTUzNjljZjUwN2VlLzEvU3J4dEJLbnVhZkYxRFFJMk9UWEJlQWpXdzBvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFEGCCsGAQUFBwEHAQH/BEIwQDA+BAIAAjA4AwcEKhK+xBeA AwcEKhK+xBxQAwcEKhK+xB5AMBIDBwUqEr7EHmADBwQqEr7EHoADBwQqEr7EH0Aw DQYJKoZIhvcNAQELBQADggEBAKoebmOE+li+c3yzEcwsy0iOkKUye1zmkWg+m1Oe 57AWEefwVEkcCaAaFolyet2wcQpREI+3K7XIsnP5zCdoVJX2IkOXUwAGxr7bI2vz L5F5eh2LD2bt797ZzympLcIJqwen7xfqD6lDKwjGOArfUv1J27NFTFAlDqkvxgw8 gKxS6YmJtx+wI8ewgoomWmeBrP2WAmNXyAEfsBooE1Qfo/kc/i6v/20fQ8XUbVdg LS1Fq4TbfcZ4LwBSCJOvnFliy7dRputw1rpXLZqqRiyOU4Mjwq2ijjon2BmUo4v9 LJsRcAApqJxCnYX2dF3iWBj1b5I74jw0o6xieB7vMxwGluk= -----END CERTIFICATE-----Generated at Sun Jan 25 07:36:34 2026 by rpki-client