This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/BkGZSFiSN3zA8YKeu6odkrlNuYQ.roa File: BkGZSFiSN3zA8YKeu6odkrlNuYQ.roa (raw, json) Hash identifier: PkDoRYVA3BnVClC8sodCxsrDjBJ99NDZwbk6oTioAHM= Subject key identifier: 06:41:99:48:58:92:37:7C:C0:F1:82:9E:BB:AA:1D:92:B9:4D:B9:84 Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Certificate serial: 019B7D5D1BC31211A50F66A24507ED4383ED Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/BkGZSFiSN3zA8YKeu6odkrlNuYQ.roa Signing time: Fri 02 Jan 2026 06:20:12 +0000 ROA not before: Fri 02 Jan 2026 06:20:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209294 IP address blocks: 2a0e:b107:110::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:1b:c3:12:11:a5:0f:66:a2:45:07:ed:43:83:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Validity Not Before: Jan 2 06:20:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=064199485892377cc0f1829ebbaa1d92b94db984 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:53:79:f6:30:6b:37:50:26:4e:50:c2:8c:a4: fe:44:64:f9:28:51:48:c0:7d:65:57:cf:0a:7b:8b: b4:a2:62:ac:36:93:fb:f3:ca:f0:67:c5:33:ed:b9: 62:57:c5:f4:c3:28:03:ee:82:d6:c3:83:c5:8b:d1: 87:47:1b:9f:fa:5b:09:f6:49:6e:f2:93:a5:d9:ab: 95:37:06:13:d9:31:f9:4a:28:67:fb:7b:3e:04:97: f2:61:6e:95:d1:28:de:1a:ee:04:60:7c:a9:dd:69: 1e:5f:40:c4:7e:87:94:b2:06:25:81:ed:0c:66:b8: b2:83:c2:ca:3c:64:3d:65:48:5a:17:44:7c:8e:e4: 53:7f:3a:50:8a:61:34:16:7e:f7:f5:7c:bf:82:e4: c6:7f:7e:0f:54:77:fd:61:06:19:5e:d6:c1:b5:b4: f8:3a:6f:2d:25:db:0b:a2:e6:bd:2c:ba:6e:fd:0b: 40:00:db:ad:77:c2:24:2f:e9:19:e0:2e:4d:e6:f8: 34:af:29:c3:72:1f:3e:c5:8c:f0:07:5d:43:9b:e9: ad:06:c1:8d:8f:11:ff:bf:30:30:ba:53:4c:42:c1: f0:7d:3f:25:de:4f:62:9f:b5:5f:21:66:94:01:9d: 5e:c8:1b:77:3d:8e:5f:95:6d:dc:3e:80:4e:ba:ff: 16:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:41:99:48:58:92:37:7C:C0:F1:82:9E:BB:AA:1D:92:B9:4D:B9:84 X509v3 Authority Key Identifier: keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/BkGZSFiSN3zA8YKeu6odkrlNuYQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:b107:110::/44 Signature Algorithm: sha256WithRSAEncryption b9:61:b5:01:66:4c:49:3d:f5:08:3a:20:84:4e:07:5a:3e:47: cd:79:98:7e:72:a0:f4:10:8d:9f:a4:f2:5c:21:10:46:0c:63: a3:cf:48:be:de:90:62:ce:43:0b:f5:ff:d1:a0:9a:90:ad:73: db:3b:5a:ef:17:5f:5b:9a:c0:76:8d:99:b4:2f:ac:1c:8a:80: 4e:08:58:55:0e:79:6d:6e:fd:92:50:21:1e:9f:56:80:13:1b: 7a:ea:cb:b1:91:9e:bc:ca:11:f7:0f:44:1a:04:b3:c1:0f:44: ad:e8:39:ad:24:fd:9c:66:1c:ea:d7:4c:8a:43:90:61:00:75: c8:d1:7b:99:1c:53:65:56:59:15:9f:61:26:a8:91:82:b3:95: 56:0a:62:ac:4b:08:b7:a2:bd:de:d6:a2:63:e5:09:9b:71:a6: 26:71:e7:d0:61:d3:69:95:01:b1:7c:c8:35:35:28:97:51:b8: 1d:9c:0d:9c:86:e9:e0:a7:3c:59:51:f3:75:9b:b2:1a:1e:19: 36:02:b5:53:90:59:7d:13:35:54:54:6f:31:61:06:a6:fa:4c: a8:10:f1:70:75:d2:37:d1:0f:ea:5f:42:ac:36:8f:91:af:5e: 3c:2b:6c:db:ac:1e:76:1e:8e:1a:e2:cb:68:cc:36:f6:13:26: 20:b0:c0:ff -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9XRvDEhGlD2aiRQftQ4PtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw ZmFkOWIwHhcNMjYwMTAyMDYyMDEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNjQxOTk0ODU4OTIzNzdjYzBmMTgyOWViYmFhMWQ5MmI5NGRiOTg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA11N59jBrN1AmTlDCjKT+RGT5KFFI wH1lV88Ke4u0omKsNpP788rwZ8Uz7bliV8X0wygD7oLWw4PFi9GHRxuf+lsJ9klu 8pOl2auVNwYT2TH5Sihn+3s+BJfyYW6V0SjeGu4EYHyp3WkeX0DEfoeUsgYlge0M Zriyg8LKPGQ9ZUhaF0R8juRTfzpQimE0Fn739Xy/guTGf34PVHf9YQYZXtbBtbT4 Om8tJdsLoua9LLpu/QtAANutd8IkL+kZ4C5N5vg0rynDch8+xYzwB11Dm+mtBsGN jxH/vzAwulNMQsHwfT8l3k9in7VfIWaUAZ1eyBt3PY5flW3cPoBOuv8WAQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFAZBmUhYkjd8wPGCnruqHZK5TbmEMB8GA1UdIwQY MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt ZGM1ZWM3NDhmNmE1LzEvQmtHWlNGaVNOM3pBOFlLZXU2b2RrcmxOdVlRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1 LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6xBwEQ MA0GCSqGSIb3DQEBCwUAA4IBAQC5YbUBZkxJPfUIOiCETgdaPkfNeZh+cqD0EI2f pPJcIRBGDGOjz0i+3pBizkML9f/RoJqQrXPbO1rvF19bmsB2jZm0L6wcioBOCFhV Dnltbv2SUCEen1aAExt66suxkZ68yhH3D0QaBLPBD0St6DmtJP2cZhzq10yKQ5Bh AHXI0XuZHFNlVlkVn2EmqJGCs5VWCmKsSwi3or3e1qJj5QmbcaYmcefQYdNplQGx fMg1NSiXUbgdnA2chungpzxZUfN1m7IaHhk2ArVTkFl9EzVUVG8xYQam+kyoEPFw ddI30Q/qX0KsNo+Rr148K2zbrB52Ho4a4stozDb2EyYgsMD/ -----END CERTIFICATE-----Generated at Fri Jan 9 13:13:48 2026 by rpki-client