This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/9H-02qNFDOYScR2Zng46AW4gKMw.roa File: 9H-02qNFDOYScR2Zng46AW4gKMw.roa (raw, json) Hash identifier: fuWq9HSA6ZHZEQVL0TJZ/C3fltituAwwqf5nz7Ho9uc= Subject key identifier: F4:7F:B4:DA:A3:45:0C:E6:12:71:1D:99:9E:0E:3A:01:6E:20:28:CC Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Certificate serial: 019B7D5D6850F12CBAEFADDA6DE5F5E6617C Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/9H-02qNFDOYScR2Zng46AW4gKMw.roa Signing time: Fri 02 Jan 2026 06:20:32 +0000 ROA not before: Fri 02 Jan 2026 06:20:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213971 IP address blocks: 2a0e:97c0:230::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:68:50:f1:2c:ba:ef:ad:da:6d:e5:f5:e6:61:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Validity Not Before: Jan 2 06:20:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f47fb4daa3450ce612711d999e0e3a016e2028cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:f3:ed:19:a0:90:9e:6d:8b:35:56:6b:c9:46: a8:7f:df:c4:a7:71:89:d5:ef:d8:4d:a3:7c:8a:ab: bc:06:d3:78:2e:69:f3:ff:77:3e:a7:f8:cc:ee:14: 54:5c:82:cd:fb:d9:07:99:2c:f3:d6:ed:e1:34:f7: 44:fa:77:56:c1:de:68:8f:3e:6d:b8:de:c7:f7:bd: 6a:5c:0e:75:82:b5:80:fa:4e:6f:0d:74:60:4b:90: 72:f7:34:78:56:94:7e:50:09:7e:98:47:ed:d6:65: 93:1c:6c:ef:4c:2a:83:bb:d3:2a:8d:07:3b:51:4f: 1f:12:45:03:66:8a:aa:a2:f5:bb:bb:3e:66:46:65: 60:61:6e:cf:c9:16:95:3f:76:b0:42:17:d2:bc:53: 60:93:be:14:ce:c7:63:1b:e1:7a:64:40:ab:e5:1d: 2e:3a:d7:b0:1f:b8:41:26:2d:c5:45:6a:4d:f8:dd: 60:cd:3d:48:70:0d:eb:cb:5a:e6:12:b5:f2:d4:0d: 8d:7a:a9:a9:5b:91:7c:a4:05:52:82:fe:7c:09:79: 4d:96:f4:89:f2:c3:f4:b3:43:33:62:be:7b:82:14: d5:59:71:d4:f2:7d:bc:fa:97:69:67:97:f0:d9:ec: 47:da:fe:88:9d:d6:66:e5:67:c9:95:a6:32:f7:6d: 2d:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:7F:B4:DA:A3:45:0C:E6:12:71:1D:99:9E:0E:3A:01:6E:20:28:CC X509v3 Authority Key Identifier: keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/9H-02qNFDOYScR2Zng46AW4gKMw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:97c0:230::/44 Signature Algorithm: sha256WithRSAEncryption 67:54:d5:95:c6:50:fd:8e:44:1d:15:59:53:b8:3e:21:02:a6: 9b:52:7d:74:fe:4e:f4:fb:b2:01:f5:ba:4c:d5:20:29:e6:f7: f4:26:da:ad:f3:b7:bf:6f:24:74:a3:eb:56:bd:41:4b:e7:2b: 68:97:55:d2:23:42:7c:75:e8:a9:94:87:f4:bb:97:f8:11:31: dc:f9:16:da:59:f2:d0:26:87:01:1a:2f:c4:2d:43:79:09:4b: 2a:9b:7d:ac:38:2e:69:5b:b5:06:37:6a:7f:3d:9e:32:df:1c: 72:89:4b:c9:fe:71:a0:da:55:d8:ea:be:84:3d:3c:ef:a4:6a: 65:8d:19:77:5a:e8:89:41:85:f7:bb:35:72:41:05:f4:26:19: 6b:b5:fb:7c:00:3b:ce:c6:5b:0b:48:90:b2:d0:02:06:9a:3b: b0:aa:ea:0a:ea:d8:9c:5b:70:51:4c:45:2e:95:25:9f:e9:4f: e2:19:ef:28:f1:3a:bb:37:42:e7:dd:8d:29:3a:83:b5:49:c5: 0f:70:7f:3c:8f:ad:0b:39:12:22:d4:0c:3a:b9:e9:f3:f3:b2: de:1f:b7:e2:09:74:20:55:23:06:7a:4c:a4:46:62:81:6c:ca: fe:9d:74:d3:af:56:5b:5d:f3:fb:92:ed:a6:dd:83:0a:ac:67: de:84:cc:a4 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9XWhQ8Sy6763abeX15mF8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw ZmFkOWIwHhcNMjYwMTAyMDYyMDMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNDdmYjRkYWEzNDUwY2U2MTI3MTFkOTk5ZTBlM2EwMTZlMjAyOGNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7fPtGaCQnm2LNVZryUaof9/Ep3GJ 1e/YTaN8iqu8BtN4Lmnz/3c+p/jM7hRUXILN+9kHmSzz1u3hNPdE+ndWwd5ojz5t uN7H971qXA51grWA+k5vDXRgS5By9zR4VpR+UAl+mEft1mWTHGzvTCqDu9MqjQc7 UU8fEkUDZoqqovW7uz5mRmVgYW7PyRaVP3awQhfSvFNgk74UzsdjG+F6ZECr5R0u OtewH7hBJi3FRWpN+N1gzT1IcA3ry1rmErXy1A2NeqmpW5F8pAVSgv58CXlNlvSJ 8sP0s0MzYr57ghTVWXHU8n28+pdpZ5fw2exH2v6IndZm5WfJlaYy920tMwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFPR/tNqjRQzmEnEdmZ4OOgFuICjMMB8GA1UdIwQY MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt ZGM1ZWM3NDhmNmE1LzEvOUgtMDJxTkZET1lTY1IyWm5nNDZBVzRnS013LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1 LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6XwAIw MA0GCSqGSIb3DQEBCwUAA4IBAQBnVNWVxlD9jkQdFVlTuD4hAqabUn10/k70+7IB 9bpM1SAp5vf0Jtqt87e/byR0o+tWvUFL5ytol1XSI0J8deiplIf0u5f4ETHc+Rba WfLQJocBGi/ELUN5CUsqm32sOC5pW7UGN2p/PZ4y3xxyiUvJ/nGg2lXY6r6EPTzv pGpljRl3WuiJQYX3uzVyQQX0Jhlrtft8ADvOxlsLSJCy0AIGmjuwquoK6ticW3BR TEUulSWf6U/iGe8o8Tq7N0Ln3Y0pOoO1ScUPcH88j60LORIi1Aw6uenz87LeH7fi CXQgVSMGekykRmKBbMr+nXTTr1ZbXfP7ku2m3YMKrGfehMyk -----END CERTIFICATE-----Generated at Fri Jan 9 13:12:04 2026 by rpki-client