This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/BmRIDtxT8cAueW8rx8VfuahcFPo.roa File: BmRIDtxT8cAueW8rx8VfuahcFPo.roa (raw, json) Hash identifier: U+2oG9sT9CN7JPaWszFQkNiZgceZ9qWv+wb4G2kBawM= Subject key identifier: 06:64:48:0E:DC:53:F1:C0:2E:79:6F:2B:C7:C5:5F:B9:A8:5C:14:FA Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Certificate serial: 019B7D5CB3732BF37943C0993FCC8B46BEE7 Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/BmRIDtxT8cAueW8rx8VfuahcFPo.roa Signing time: Fri 02 Jan 2026 06:19:45 +0000 ROA not before: Fri 02 Jan 2026 06:19:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48987 IP address blocks: 2a0e:97c0:700::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:b3:73:2b:f3:79:43:c0:99:3f:cc:8b:46:be:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Validity Not Before: Jan 2 06:19:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0664480edc53f1c02e796f2bc7c55fb9a85c14fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:e4:57:3b:0c:a0:79:c0:22:c1:07:9e:b3:9c: c0:c4:84:17:6a:4d:50:c5:f0:76:61:a0:25:a9:46: 43:23:26:c2:4d:72:6c:db:cc:eb:e9:45:b8:13:f4: cf:ff:79:65:da:0a:70:d8:93:87:be:82:80:6b:ef: 09:1a:e2:c3:87:ce:30:bc:c7:56:93:43:ef:c5:81: d4:4a:2d:75:60:57:5b:58:f9:63:1d:5b:eb:36:86: ed:60:ee:35:01:ad:80:5c:47:c4:4f:a1:38:8f:2b: 80:66:f0:38:3a:7e:92:75:5a:09:37:c5:16:40:d4: 3c:09:ea:a1:7b:b2:3c:bc:af:2f:f0:e6:d0:db:4b: 11:41:5a:a7:50:85:88:ad:a9:37:14:ee:da:94:97: 71:f0:c0:9c:a3:99:0b:69:3b:0d:fd:1d:2c:d5:63: f4:e0:cc:3e:ec:ca:8c:dc:ad:72:c6:68:2a:35:0b: fa:29:59:b3:47:43:55:05:ca:0e:08:9f:53:03:b6: b1:6b:88:bf:25:51:cd:77:ca:a8:d9:d9:6a:0d:20: 51:9f:0b:f0:c0:cf:e2:16:04:cd:50:01:fd:36:fa: f1:3a:a0:ab:e2:c9:b6:cb:6b:90:aa:14:3f:97:75: 09:98:60:4b:f1:6d:4e:dd:3f:66:f6:97:b6:ba:90: 81:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:64:48:0E:DC:53:F1:C0:2E:79:6F:2B:C7:C5:5F:B9:A8:5C:14:FA X509v3 Authority Key Identifier: keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/BmRIDtxT8cAueW8rx8VfuahcFPo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:97c0:700::/44 Signature Algorithm: sha256WithRSAEncryption ca:ba:22:b9:f6:bb:f0:39:4a:98:95:fb:38:8c:33:81:c4:0b: 14:46:d0:c5:b2:a5:0c:41:dd:69:8a:91:8e:26:6e:36:ef:85: 82:59:06:be:5b:bc:3e:77:6c:d5:68:5c:7f:11:47:9e:94:1a: a9:62:0b:b2:8a:a9:25:bf:be:c2:b5:76:65:c4:16:99:ab:08: a1:50:6f:ba:34:c6:44:8c:bb:0f:87:24:e4:4a:c0:b8:f9:ff: 7b:eb:38:b0:aa:ef:b3:dc:db:33:47:8c:04:4e:cd:50:17:23: d7:63:7e:f9:62:86:41:87:b1:82:74:f4:0e:7d:ad:b7:4b:a8: 47:ad:2b:12:25:16:18:51:98:73:63:b3:f8:47:f2:0e:fa:d5: 78:8c:57:b1:c5:f1:bb:65:81:4f:4a:fb:e6:16:4b:8e:20:43: 0d:f1:ca:9b:d2:fa:e4:0d:f2:1d:0d:9e:63:f2:36:a3:bb:48: 50:01:f6:f4:1b:d1:03:65:0d:70:93:bf:4e:9d:e4:5d:11:9d: 22:fb:52:db:01:09:2a:08:bd:d0:48:6f:15:18:85:81:a3:73: ce:04:c1:f4:19:da:e9:6d:6d:82:c9:02:80:37:e5:e7:7f:53: d7:34:5a:6f:e5:a2:72:12:4e:76:87:70:10:33:fa:07:89:5a: 39:0c:cc:88 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9XLNzK/N5Q8CZP8yLRr7nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw ZmFkOWIwHhcNMjYwMTAyMDYxOTQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNjY0NDgwZWRjNTNmMWMwMmU3OTZmMmJjN2M1NWZiOWE4NWMxNGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAleRXOwygecAiwQees5zAxIQXak1Q xfB2YaAlqUZDIybCTXJs28zr6UW4E/TP/3ll2gpw2JOHvoKAa+8JGuLDh84wvMdW k0PvxYHUSi11YFdbWPljHVvrNobtYO41Aa2AXEfET6E4jyuAZvA4On6SdVoJN8UW QNQ8Ceqhe7I8vK8v8ObQ20sRQVqnUIWIrak3FO7alJdx8MCco5kLaTsN/R0s1WP0 4Mw+7MqM3K1yxmgqNQv6KVmzR0NVBcoOCJ9TA7axa4i/JVHNd8qo2dlqDSBRnwvw wM/iFgTNUAH9NvrxOqCr4sm2y2uQqhQ/l3UJmGBL8W1O3T9m9pe2upCBKQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFAZkSA7cU/HALnlvK8fFX7moXBT6MB8GA1UdIwQY MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt ZGM1ZWM3NDhmNmE1LzEvQm1SSUR0eFQ4Y0F1ZVc4cng4VmZ1YWhjRlBvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1 LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6XwAcA MA0GCSqGSIb3DQEBCwUAA4IBAQDKuiK59rvwOUqYlfs4jDOBxAsURtDFsqUMQd1p ipGOJm4274WCWQa+W7w+d2zVaFx/EUeelBqpYguyiqklv77CtXZlxBaZqwihUG+6 NMZEjLsPhyTkSsC4+f976ziwqu+z3NszR4wETs1QFyPXY375YoZBh7GCdPQOfa23 S6hHrSsSJRYYUZhzY7P4R/IO+tV4jFexxfG7ZYFPSvvmFkuOIEMN8cqb0vrkDfId DZ5j8jaju0hQAfb0G9EDZQ1wk79OneRdEZ0i+1LbAQkqCL3QSG8VGIWBo3POBMH0 GdrpbW2CyQKAN+Xnf1PXNFpv5aJyEk52h3AQM/oHiVo5DMyI -----END CERTIFICATE-----Generated at Fri Jan 9 13:12:06 2026 by rpki-client