This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/brOPRHZE8w8OlykjjLgAfmNZ_2E.roa File: brOPRHZE8w8OlykjjLgAfmNZ_2E.roa (raw, json) Hash identifier: KdHvIOBRCGI/cneTU0VrbKbHmdpXYBJ4OfKXRKTAahs= Subject key identifier: 6E:B3:8F:44:76:44:F3:0F:0E:97:29:23:8C:B8:00:7E:63:59:FF:61 Certificate issuer: /CN=1e5703846d7a8364bec303034db91acbff42da0c Certificate serial: 019B7C113AB9325A2A5407CC64F2278D8E16 Authority key identifier: 1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/brOPRHZE8w8OlykjjLgAfmNZ_2E.roa Signing time: Fri 02 Jan 2026 00:17:42 +0000 ROA not before: Fri 02 Jan 2026 00:17:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 13127 IP address blocks: 2001:67c:14b0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 00:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:3a:b9:32:5a:2a:54:07:cc:64:f2:27:8d:8e:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e5703846d7a8364bec303034db91acbff42da0c Validity Not Before: Jan 2 00:17:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6eb38f447644f30f0e9729238cb8007e6359ff61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:83:5f:8e:3b:b2:86:82:ed:fc:6a:87:26:5e: 30:6d:83:43:e7:c7:73:1d:14:af:aa:e7:79:73:5d: b1:c7:91:7c:ef:ed:8f:1c:9c:d2:3c:28:50:a2:9d: 8b:60:c7:d1:2d:49:26:39:13:30:c7:9b:de:cd:c6: 17:9c:c3:ee:d4:a3:c2:64:40:c8:8e:9e:b8:29:4a: e0:01:1e:0d:00:2c:0d:a0:be:b1:03:17:40:15:08: 11:cb:98:13:2b:66:0a:12:1b:98:8d:f9:c9:7d:2a: e7:6d:25:71:45:f6:05:88:87:b9:f6:fb:b3:4b:ed: 38:8f:dc:88:52:89:b1:85:f6:0f:9f:4b:23:d6:bf: 9a:aa:50:98:bb:6d:5c:74:75:0e:32:d1:f9:67:75: 0b:28:eb:dd:34:ed:fd:78:5e:38:90:9c:dd:0b:6b: 65:e0:66:bb:c5:0d:98:22:24:e6:4c:44:54:bd:38: 92:ff:b6:10:51:13:e8:77:3f:ec:25:f9:a6:cc:c8: d4:59:b8:5e:90:2f:69:8a:37:bc:b5:04:bc:9d:15: cd:46:3f:a1:3a:99:52:d5:1e:c3:50:1a:d5:55:98: b0:be:95:f9:ca:9b:84:68:f6:0d:b0:fe:03:67:61: 08:65:5d:f6:3b:66:67:68:c5:23:fb:8b:dd:24:5b: 09:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:B3:8F:44:76:44:F3:0F:0E:97:29:23:8C:B8:00:7E:63:59:FF:61 X509v3 Authority Key Identifier: keyid:1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/brOPRHZE8w8OlykjjLgAfmNZ_2E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:14b0::/48 Signature Algorithm: sha256WithRSAEncryption 0b:51:61:7b:99:e5:d0:7e:4b:cf:f0:4b:f2:18:80:c8:a3:a9: 5c:bf:d3:7a:e5:8b:b6:ea:99:ae:a5:61:54:d8:0b:29:ee:71: b3:00:6f:34:27:e3:64:cc:45:fe:c6:50:66:04:12:82:57:4d: ae:ca:59:c6:54:5e:1f:7d:98:52:19:e9:8d:90:58:ec:13:0f: 4c:74:01:40:07:f5:32:b6:50:49:43:cf:16:d5:30:46:98:15: 40:27:05:68:2e:c1:e2:4e:28:f9:34:1d:45:50:e4:7c:11:e0: 2d:d8:92:65:be:81:d0:39:38:c1:b4:85:d2:ac:be:ab:64:6c: c5:d1:db:5b:be:ba:6f:21:92:20:54:97:95:5d:a3:71:a0:35: 8f:a2:58:4d:88:f3:f6:4b:97:52:de:ae:a5:c9:98:5f:09:cb: c0:b3:49:9a:6c:15:40:20:64:31:19:42:31:6e:f4:7b:83:97: 1c:96:b1:1b:fd:ff:27:44:40:d7:4e:f1:5e:7c:c2:99:63:99: 4f:1f:27:66:c6:16:54:88:e8:9b:7e:c4:f1:a2:d3:49:23:38: a2:d1:69:da:0b:0d:57:bd:d3:85:70:01:74:87:62:27:1f:e7: 80:6d:6d:bf:03:b6:7e:e9:1d:2f:2a:b4:5c:e8:f6:7b:ec:52: cb:08:c1:1e -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt8ETq5MloqVAfMZPInjY4WMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlNTcwMzg0NmQ3YTgzNjRiZWMzMDMwMzRkYjkxYWNiZmY0 MmRhMGMwHhcNMjYwMTAyMDAxNzQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZWIzOGY0NDc2NDRmMzBmMGU5NzI5MjM4Y2I4MDA3ZTYzNTlmZjYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnoNfjjuyhoLt/GqHJl4wbYND58dz HRSvqud5c12xx5F87+2PHJzSPChQop2LYMfRLUkmORMwx5vezcYXnMPu1KPCZEDI jp64KUrgAR4NACwNoL6xAxdAFQgRy5gTK2YKEhuYjfnJfSrnbSVxRfYFiIe59vuz S+04j9yIUomxhfYPn0sj1r+aqlCYu21cdHUOMtH5Z3ULKOvdNO39eF44kJzdC2tl 4Ga7xQ2YIiTmTERUvTiS/7YQURPodz/sJfmmzMjUWbhekC9pije8tQS8nRXNRj+h OplS1R7DUBrVVZiwvpX5ypuEaPYNsP4DZ2EIZV32O2ZnaMUj+4vdJFsJ+QIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFG6zj0R2RPMPDpcpI4y4AH5jWf9hMB8GA1UdIwQY MBaAFB5XA4RteoNkvsMDA025Gsv/QtoMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGxjRGhHMTZnMlMtd3dNRFRia2F5XzlDMmd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9iYzY1OGYtYTUyOC00MzYwLWI1OGMt MDdiMDllNDY1MTE5LzEvYnJPUFJIWkU4dzhPbHlrampMZ0FmbU5aXzJFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC9iYzY1OGYtYTUyOC00MzYwLWI1OGMtMDdiMDllNDY1MTE5 LzEvSGxjRGhHMTZnMlMtd3dNRFRia2F5XzlDMmd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfBSw MA0GCSqGSIb3DQEBCwUAA4IBAQALUWF7meXQfkvP8EvyGIDIo6lcv9N65Yu26pmu pWFU2Asp7nGzAG80J+NkzEX+xlBmBBKCV02uylnGVF4ffZhSGemNkFjsEw9MdAFA B/UytlBJQ88W1TBGmBVAJwVoLsHiTij5NB1FUOR8EeAt2JJlvoHQOTjBtIXSrL6r ZGzF0dtbvrpvIZIgVJeVXaNxoDWPolhNiPP2S5dS3q6lyZhfCcvAs0mabBVAIGQx GUIxbvR7g5cclrEb/f8nREDXTvFefMKZY5lPHydmxhZUiOibfsTxotNJIzii0Wna Cw1XvdOFcAF0h2InH+eAbW2/A7Z+6R0vKrRc6PZ77FLLCMEe -----END CERTIFICATE-----Generated at Tue Jan 20 07:47:59 2026 by rpki-client