This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/0bhODhGVDy0GA0NDdbT14EKKu70.roa File: 0bhODhGVDy0GA0NDdbT14EKKu70.roa (raw, json) Hash identifier: pM1Du7aUTPIXDMHGila1IXrfIhMxhOJr+j5EXcsT5Is= Subject key identifier: D1:B8:4E:0E:11:95:0F:2D:06:03:43:43:75:B4:F5:E0:42:8A:BB:BD Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Certificate serial: 019B7D5D25F395393F6621B5202B789C4470 Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/0bhODhGVDy0GA0NDdbT14EKKu70.roa Signing time: Fri 02 Jan 2026 06:20:15 +0000 ROA not before: Fri 02 Jan 2026 06:20:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210490 IP address blocks: 2a0e:b107:17b0::/48 maxlen: 48 2a0e:b107:17b1::/48 maxlen: 48 2a0e:b107:17b2::/48 maxlen: 48 2a0e:b107:17b3::/48 maxlen: 48 2a0e:b107:17b4::/48 maxlen: 48 2a0e:b107:17b5::/48 maxlen: 48 2a0e:b107:17b6::/48 maxlen: 48 2a0e:b107:17b7::/48 maxlen: 48 2a0e:b107:17b8::/48 maxlen: 48 2a0e:b107:17b9::/48 maxlen: 48 2a0e:b107:17ba::/48 maxlen: 48 2a0e:b107:17bb::/48 maxlen: 48 2a0e:b107:17bc::/48 maxlen: 48 2a0e:b107:17bd::/48 maxlen: 48 2a0e:b107:17be::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 17:27:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:25:f3:95:39:3f:66:21:b5:20:2b:78:9c:44:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Validity Not Before: Jan 2 06:20:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d1b84e0e11950f2d0603434375b4f5e0428abbbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:42:40:fc:01:56:1d:e1:fb:a1:bd:93:c6:d7: 7a:28:9c:93:d5:e7:6f:1f:0f:e5:b2:89:b6:b6:31: 17:17:f2:8b:6a:a2:1c:12:a2:be:79:bc:23:8b:82: 3d:8d:72:2a:13:30:8f:d2:09:73:e3:bc:01:46:b9: 16:3b:6d:fd:1a:3d:0b:06:83:57:a8:88:23:e8:67: d3:2b:9a:5b:7d:16:d4:b5:f5:e9:f6:34:a0:40:90: 19:49:eb:ce:09:32:0a:5e:5e:83:c9:56:ae:98:8a: 79:8d:e9:6e:58:ac:3c:b2:0c:58:d1:08:3f:11:c8: 85:a9:19:05:f5:87:83:0f:32:4d:e1:15:f4:d4:d5: dc:1a:8f:d0:23:ed:fc:b9:47:3a:d7:0e:a3:cf:b9: ce:57:b0:06:e3:29:57:2c:20:10:cd:ec:29:0d:13: db:8b:bc:d4:d2:88:2a:88:47:84:6f:75:96:3e:26: c4:96:9c:d9:9a:be:34:01:83:b0:21:9c:23:5e:5b: 71:2a:e0:12:c3:62:8d:99:a2:80:23:bb:bc:22:5b: d2:87:c6:91:a9:3a:9f:24:21:2b:db:a0:ce:ce:b5: 97:a7:b9:94:ec:38:ef:01:36:11:77:a6:04:b7:53: 64:bd:80:69:cd:aa:35:8e:c6:6e:bf:67:a7:54:6d: 86:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:B8:4E:0E:11:95:0F:2D:06:03:43:43:75:B4:F5:E0:42:8A:BB:BD X509v3 Authority Key Identifier: keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/0bhODhGVDy0GA0NDdbT14EKKu70.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:b107:17b0::-2a0e:b107:17be:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 09:1c:2b:72:70:02:50:42:59:46:69:d0:93:2b:9f:26:ea:bf: 81:1d:e6:bb:16:39:df:c5:c0:f7:19:be:44:58:ca:e7:60:72: 82:8d:1c:f5:e9:3e:33:62:7e:8d:6b:dd:6c:4d:a5:4a:98:c8: 19:34:f7:ee:33:4d:f1:57:2f:f9:13:37:a5:f5:10:e1:03:34: 22:4e:4d:87:00:6f:c5:db:a5:63:42:24:aa:84:1a:d0:85:c8: 17:29:8a:17:26:5b:e9:f3:df:e3:89:62:71:c8:50:40:13:5a: d7:28:ec:72:c2:af:21:2b:d2:e7:c7:0a:f9:f5:c0:4a:ac:14: c3:8a:47:0d:bf:b9:a8:e4:cb:7a:81:41:5b:17:b8:1c:77:c5: 5e:a0:25:b1:8f:b8:f1:c4:f8:39:7c:3b:aa:d9:d6:52:38:d8: 26:66:16:c3:24:44:8c:b6:77:be:6d:eb:f7:70:3c:5d:1e:23: 51:34:67:b3:bd:25:c6:78:0f:92:21:3c:e9:53:1d:2e:f9:39: 4b:2b:06:35:b1:b1:6e:ae:0a:75:0d:54:e6:e9:4e:c6:d6:2a: 4d:18:6d:3d:02:7b:ba:6d:57:3c:2a:7e:dc:b7:fc:0b:47:e2: 81:93:0d:a8:76:47:85:da:c6:85:fc:3f:ac:40:e1:05:19:02: 9f:c2:40:22 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZt9XSXzlTk/ZiG1ICt4nERwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw ZmFkOWIwHhcNMjYwMTAyMDYyMDE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMWI4NGUwZTExOTUwZjJkMDYwMzQzNDM3NWI0ZjVlMDQyOGFiYmJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0UJA/AFWHeH7ob2Txtd6KJyT1edv Hw/lsom2tjEXF/KLaqIcEqK+ebwji4I9jXIqEzCP0glz47wBRrkWO239Gj0LBoNX qIgj6GfTK5pbfRbUtfXp9jSgQJAZSevOCTIKXl6DyVaumIp5jeluWKw8sgxY0Qg/ EciFqRkF9YeDDzJN4RX01NXcGo/QI+38uUc61w6jz7nOV7AG4ylXLCAQzewpDRPb i7zU0ogqiEeEb3WWPibElpzZmr40AYOwIZwjXltxKuASw2KNmaKAI7u8IlvSh8aR qTqfJCEr26DOzrWXp7mU7DjvATYRd6YEt1NkvYBpzao1jsZuv2enVG2G2wIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFNG4Tg4RlQ8tBgNDQ3W09eBCiru9MB8GA1UdIwQY MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt ZGM1ZWM3NDhmNmE1LzEvMGJoT0RoR1ZEeTBHQTBORGRiVDE0RUtLdTcwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1 LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUMBIDBwQqDrEH F7ADBwAqDrEHF74wDQYJKoZIhvcNAQELBQADggEBAAkcK3JwAlBCWUZp0JMrnybq v4Ed5rsWOd/FwPcZvkRYyudgcoKNHPXpPjNifo1r3WxNpUqYyBk09+4zTfFXL/kT N6X1EOEDNCJOTYcAb8XbpWNCJKqEGtCFyBcpihcmW+nz3+OJYnHIUEATWtco7HLC ryEr0ufHCvn1wEqsFMOKRw2/uajky3qBQVsXuBx3xV6gJbGPuPHE+Dl8O6rZ1lI4 2CZmFsMkRIy2d75t6/dwPF0eI1E0Z7O9JcZ4D5IhPOlTHS75OUsrBjWxsW6uCnUN VObpTsbWKk0YbT0Ce7ptVzwqfty3/AtH4oGTDah2R4XaxoX8P6xA4QUZAp/CQCI= -----END CERTIFICATE-----Generated at Sat Jan 10 02:19:47 2026 by rpki-client