This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/2jxyLZvIr2TRH8uDvO1YJyifQkA.roa File: 2jxyLZvIr2TRH8uDvO1YJyifQkA.roa (raw, json) Hash identifier: 4zNZ8YlfhySYPV84kzeR1fQZl6PBNShSwFH+z7NCOu8= Subject key identifier: DA:3C:72:2D:9B:C8:AF:64:D1:1F:CB:83:BC:ED:58:27:28:9F:42:40 Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Certificate serial: 019AFD07E98C884484642D7E359A5F8AC726 Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/2jxyLZvIr2TRH8uDvO1YJyifQkA.roa Signing time: Mon 08 Dec 2025 08:15:45 +0000 ROA not before: Mon 08 Dec 2025 08:15:45 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 20473 IP address blocks: 2a06:de01:140::/44 maxlen: 48 2a06:de01:141::/48 maxlen: 48 2a06:de01:142::/48 maxlen: 48 2a06:de01:143::/48 maxlen: 48 2a06:de01:144::/48 maxlen: 48 2a06:de01:145::/48 maxlen: 48 2a0c:3b87:ff00::/40 maxlen: 48 2a0c:3b87:ffff::/48 maxlen: 48 2a0e:97c0:791::/48 maxlen: 48 2a0e:97c0:792::/48 maxlen: 48 2a0e:b107:9f4::/48 maxlen: 48 2a0e:b107:9f6::/48 maxlen: 48 2a0e:b107:df2::/48 maxlen: 48 2a0e:b107:1870::/48 maxlen: 48 2a0e:b107:1b9e::/48 maxlen: 48 2a0e:b107:278b::/48 maxlen: 48 2a10:ccc1:400::/38 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 10 Dec 2025 16:15:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:fd:07:e9:8c:88:44:84:64:2d:7e:35:9a:5f:8a:c7:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Validity Not Before: Dec 8 08:15:45 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=da3c722d9bc8af64d11fcb83bced5827289f4240 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:d2:e4:d0:5c:d1:e3:37:44:3c:ef:ce:7c:f5: 78:00:60:89:27:08:5d:8d:06:0a:0a:20:2b:8c:93: 56:14:27:07:de:a3:eb:1d:64:46:39:59:56:9d:8e: 1a:e0:af:33:ae:97:da:c9:7e:b5:7d:35:1f:bc:f2: 01:b7:21:ee:8b:c2:e5:8f:1b:24:cb:ea:7a:22:b0: c7:8d:42:be:96:f6:73:fd:49:48:ae:60:2f:f7:8a: a0:50:d1:59:6c:ad:f3:31:7e:8e:b5:6b:74:d0:04: 48:22:01:55:b8:5e:5f:ff:9a:61:4f:a6:ad:8b:52: b1:20:ff:8e:62:f8:7b:31:67:d8:9f:4f:9a:a0:71: 8a:52:66:42:1e:c1:4b:89:31:33:1c:2d:b9:da:f4: b1:f7:ea:2c:dd:4b:bd:7c:87:40:03:e3:73:e8:0f: 8e:40:fc:f7:0e:b9:50:2b:9a:bc:ec:12:46:9f:9d: 24:ac:04:c2:0d:ab:29:44:98:a0:77:61:61:cd:db: 8f:80:6a:e0:93:1b:28:82:be:5c:2a:5f:a5:05:d4: 09:dc:e3:27:0e:3c:0f:d1:66:b9:94:9d:b9:70:26: 55:74:f3:37:45:de:94:de:4c:29:8d:35:96:7e:f8: c8:78:29:ea:f4:37:31:5b:97:d0:c0:bf:ed:33:ac: 70:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:3C:72:2D:9B:C8:AF:64:D1:1F:CB:83:BC:ED:58:27:28:9F:42:40 X509v3 Authority Key Identifier: keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/2jxyLZvIr2TRH8uDvO1YJyifQkA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:de01:140::/44 2a0c:3b87:ff00::/40 2a0e:97c0:791::-2a0e:97c0:792:ffff:ffff:ffff:ffff:ffff 2a0e:b107:9f4::/48 2a0e:b107:9f6::/48 2a0e:b107:df2::/48 2a0e:b107:1870::/48 2a0e:b107:1b9e::/48 2a0e:b107:278b::/48 2a10:ccc1:400::/38 Signature Algorithm: sha256WithRSAEncryption 33:be:31:e5:35:7f:99:a1:5c:02:41:e6:b4:69:6a:03:90:b4: 60:09:6f:2b:eb:4a:c3:3a:7e:bf:2e:a1:6f:49:e8:49:3b:8f: 4b:70:f1:25:51:39:df:45:9e:7b:04:f8:b0:1c:c1:63:32:13: 89:e5:48:2a:30:a3:75:cf:bc:63:48:1d:b4:e4:07:8b:c1:c8: 4b:67:fe:ee:30:21:39:f1:dc:b5:ef:09:d6:b9:95:ca:a9:6f: de:b2:74:9a:d7:b4:cc:ff:0a:d4:b6:79:9e:d8:be:c2:fc:de: be:60:55:bd:1b:38:c7:11:1b:79:04:55:52:1b:b1:58:6e:f9: 96:7d:d0:75:07:73:b6:c1:04:38:a3:a7:e3:e3:0f:6a:df:f9: 1a:8e:5f:2b:7f:15:38:1b:64:44:7b:ac:7c:55:88:a9:6a:35: ed:db:0f:20:b1:74:cd:ac:62:33:27:89:94:97:37:fe:15:2b: e6:ff:a9:17:41:92:e9:37:a1:53:86:a6:14:1d:a5:03:5b:d1: 25:25:08:84:4a:91:90:40:dc:61:06:3f:52:13:0c:91:95:85: 4b:fe:38:d6:fc:54:b5:9d:62:2a:6e:4b:26:e3:14:8d:a5:2e: be:74:0e:b0:3b:eb:4a:39:ec:19:ff:28:67:81:d8:90:ce:5b: 3e:38:fa:79 -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgISAZr9B+mMiESEZC1+NZpfiscmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw ZmFkOWIwHhcNMjUxMjA4MDgxNTQ1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYTNjNzIyZDliYzhhZjY0ZDExZmNiODNiY2VkNTgyNzI4OWY0MjQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiNLk0FzR4zdEPO/OfPV4AGCJJwhd jQYKCiArjJNWFCcH3qPrHWRGOVlWnY4a4K8zrpfayX61fTUfvPIBtyHui8Lljxsk y+p6IrDHjUK+lvZz/UlIrmAv94qgUNFZbK3zMX6OtWt00ARIIgFVuF5f/5phT6at i1KxIP+OYvh7MWfYn0+aoHGKUmZCHsFLiTEzHC252vSx9+os3Uu9fIdAA+Nz6A+O QPz3DrlQK5q87BJGn50krATCDaspRJigd2FhzduPgGrgkxsogr5cKl+lBdQJ3OMn DjwP0Wa5lJ25cCZVdPM3Rd6U3kwpjTWWfvjIeCnq9DcxW5fQwL/tM6xwMwIDAQAB o4ICZjCCAmIwHQYDVR0OBBYEFNo8ci2byK9k0R/Lg7ztWCcon0JAMB8GA1UdIwQY MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt ZGM1ZWM3NDhmNmE1LzEvMmp4eUxadklyMlRSSDh1RHZPMVlKeWlmUWtBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1 LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMHwGCCsGAQUFBwEHAQH/BG0wazBpBAIAAjBjAwcEKgbeAQFA AwYAKgw7h/8wEgMHACoOl8AHkQMHACoOl8AHkgMHACoOsQcJ9AMHACoOsQcJ9gMH ACoOsQcN8gMHACoOsQcYcAMHACoOsQcbngMHACoOsQcniwMGAioQzMEEMA0GCSqG SIb3DQEBCwUAA4IBAQAzvjHlNX+ZoVwCQea0aWoDkLRgCW8r60rDOn6/LqFvSehJ O49LcPElUTnfRZ57BPiwHMFjMhOJ5UgqMKN1z7xjSB205AeLwchLZ/7uMCE58dy1 7wnWuZXKqW/esnSa17TM/wrUtnme2L7C/N6+YFW9GzjHERt5BFVSG7FYbvmWfdB1 B3O2wQQ4o6fj4w9q3/kajl8rfxU4G2REe6x8VYipajXt2w8gsXTNrGIzJ4mUlzf+ FSvm/6kXQZLpN6FThqYUHaUDW9ElJQiESpGQQNxhBj9SEwyRlYVL/jjW/FS1nWIq bksm4xSNpS6+dA6wO+tKOewZ/yhngdiQzls+OPp5 -----END CERTIFICATE-----Generated at Wed Dec 10 01:24:47 2025 by rpki-client