This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/H5taWhBiCSJjMAEmLiya1MayaV0.roa File: H5taWhBiCSJjMAEmLiya1MayaV0.roa (raw, json) Hash identifier: ciJTsnurXhTrIGh8i21c4k6fMA/XCsaznszX2cSUsmg= Subject key identifier: 1F:9B:5A:5A:10:62:09:22:63:30:01:26:2E:2C:9A:D4:C6:B2:69:5D Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Certificate serial: 019BFBEB2E4B5F4575426B654A1D37BF54DF Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/H5taWhBiCSJjMAEmLiya1MayaV0.roa Signing time: Mon 26 Jan 2026 20:07:32 +0000 ROA not before: Mon 26 Jan 2026 20:07:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57222 IP address blocks: 2a06:de01:a0::/44 maxlen: 48 2a06:de01:a0::/46 maxlen: 48 2a06:de01:a4::/46 maxlen: 48 2a06:de01:a8::/46 maxlen: 48 2a06:de01:ac::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:23:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fb:eb:2e:4b:5f:45:75:42:6b:65:4a:1d:37:bf:54:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Validity Not Before: Jan 26 20:07:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1f9b5a5a10620922633001262e2c9ad4c6b2695d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:5f:71:34:95:a5:09:55:fd:e4:0b:75:37:68: 9d:1b:cc:c9:5e:30:89:68:1f:fb:58:b8:18:64:1b: 02:de:c2:3b:87:28:82:b0:f6:04:91:8f:c3:80:93: 31:ac:43:7a:bc:f7:ec:03:78:83:8d:1c:18:db:a8: ef:ee:03:27:4d:2f:11:5e:0f:d9:49:5f:c7:c0:d0: 0c:cf:39:41:13:cb:11:16:27:30:30:ff:95:37:ba: e9:e6:b5:cb:c2:25:84:5d:e1:17:2a:d8:1d:60:15: 8e:0a:ca:14:40:ea:a5:f0:aa:3d:e1:56:90:82:f3: 29:de:cb:50:e7:ee:df:2f:5c:76:96:7e:ca:a5:3d: 0e:a4:24:c1:85:5b:5d:ab:0e:f5:5e:ee:f8:79:87: db:e3:07:21:e5:28:82:a2:2a:eb:c3:16:39:6e:3d: 21:39:5f:50:6e:e7:a4:83:3f:0b:8e:38:16:20:72: d1:7d:c8:3b:a7:dc:56:76:88:a9:fc:ce:c4:fe:be: ae:3b:36:cb:36:67:3b:c1:a9:0d:bb:10:90:ae:9a: eb:cb:60:0f:f9:34:1c:ac:fb:02:5f:84:49:a3:1e: 31:09:5a:01:2a:33:66:cd:a7:cc:59:d0:5e:4d:80: bc:90:81:ac:f6:11:1f:52:61:23:b3:f0:ed:6a:af: a9:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:9B:5A:5A:10:62:09:22:63:30:01:26:2E:2C:9A:D4:C6:B2:69:5D X509v3 Authority Key Identifier: keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/H5taWhBiCSJjMAEmLiya1MayaV0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:de01:a0::/44 Signature Algorithm: sha256WithRSAEncryption 7d:8e:f2:bb:e3:cc:69:f0:fa:df:2e:db:a4:f6:f8:06:d5:fb: 7c:ef:fc:92:79:22:3f:be:41:45:9b:84:41:52:ae:81:70:94: 8d:a7:92:10:b4:0d:95:6e:23:84:43:f0:c8:ce:d6:24:c2:1b: 2e:c4:87:94:98:ac:fe:2b:5e:bd:1b:52:e3:c3:aa:72:13:39: 8b:6d:27:31:bc:0a:61:d3:ce:92:63:40:37:62:bb:a3:ce:ad: 2f:6a:5c:65:99:5c:dc:4c:f4:43:b3:8c:2c:0b:19:5f:8d:63: 95:71:51:62:bb:04:f9:25:14:53:83:34:55:5e:ba:f7:36:00: b3:ab:33:49:9b:43:b3:8d:87:43:87:37:c9:74:81:23:9b:90: 0b:57:ec:94:87:41:5c:95:7a:0c:c7:0c:57:95:0d:e4:54:2f: f6:c3:34:fe:40:d1:73:b8:56:fa:9a:3e:f3:82:1e:7b:b4:f3: 31:b1:bd:a1:f8:40:56:01:9f:a1:12:bf:ed:a8:da:ca:97:83: 51:49:3d:77:5e:7e:4e:22:3d:5c:8d:76:cf:d8:a6:f3:c7:76: ff:59:d2:27:25:9d:50:b7:74:1b:12:02:2f:89:5d:bf:00:2c: d7:9d:20:05:87:01:f8:0f:82:74:11:84:f7:0e:6b:e2:70:fc: b3:16:0c:69 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZv76y5LX0V1QmtlSh03v1TfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw ZmFkOWIwHhcNMjYwMTI2MjAwNzMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZjliNWE1YTEwNjIwOTIyNjMzMDAxMjYyZTJjOWFkNGM2YjI2OTVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyV9xNJWlCVX95At1N2idG8zJXjCJ aB/7WLgYZBsC3sI7hyiCsPYEkY/DgJMxrEN6vPfsA3iDjRwY26jv7gMnTS8RXg/Z SV/HwNAMzzlBE8sRFicwMP+VN7rp5rXLwiWEXeEXKtgdYBWOCsoUQOql8Ko94VaQ gvMp3stQ5+7fL1x2ln7KpT0OpCTBhVtdqw71Xu74eYfb4wch5SiCoirrwxY5bj0h OV9Qbuekgz8LjjgWIHLRfcg7p9xWdoip/M7E/r6uOzbLNmc7wakNuxCQrprry2AP +TQcrPsCX4RJox4xCVoBKjNmzafMWdBeTYC8kIGs9hEfUmEjs/Dtaq+psQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFB+bWloQYgkiYzABJi4smtTGsmldMB8GA1UdIwQY MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt ZGM1ZWM3NDhmNmE1LzEvSDV0YVdoQmlDU0pqTUFFbUxpeWExTWF5YVYwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1 LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgbeAQCg MA0GCSqGSIb3DQEBCwUAA4IBAQB9jvK748xp8PrfLtuk9vgG1ft87/ySeSI/vkFF m4RBUq6BcJSNp5IQtA2VbiOEQ/DIztYkwhsuxIeUmKz+K169G1Ljw6pyEzmLbScx vAph086SY0A3Yrujzq0valxlmVzcTPRDs4wsCxlfjWOVcVFiuwT5JRRTgzRVXrr3 NgCzqzNJm0OzjYdDhzfJdIEjm5ALV+yUh0FclXoMxwxXlQ3kVC/2wzT+QNFzuFb6 mj7zgh57tPMxsb2h+EBWAZ+hEr/tqNrKl4NRST13Xn5OIj1cjXbP2Kbzx3b/WdIn JZ1Qt3QbEgIviV2/ACzXnSAFhwH4D4J0EYT3DmvicPyzFgxp -----END CERTIFICATE-----Generated at Tue Jan 27 07:18:01 2026 by rpki-client