This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/JK5sH9-Ua06wsYCTp-IhW7rH_eo.roa File: JK5sH9-Ua06wsYCTp-IhW7rH_eo.roa (raw, json) Hash identifier: mrHcbkkYbJm9Hg+AnygS0KrBf+qjFE0EZNmRVaxZBD4= Subject key identifier: 24:AE:6C:1F:DF:94:6B:4E:B0:B1:80:93:A7:E2:21:5B:BA:C7:FD:EA Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Certificate serial: 019C23FC2570341BF45DE5D826CA617BEED3 Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/JK5sH9-Ua06wsYCTp-IhW7rH_eo.roa Signing time: Tue 03 Feb 2026 14:50:53 +0000 ROA not before: Tue 03 Feb 2026 14:50:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61317 IP address blocks: 2a0e:97c0:b33::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Feb 2026 18:00:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:23:fc:25:70:34:1b:f4:5d:e5:d8:26:ca:61:7b:ee:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Validity Not Before: Feb 3 14:50:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=24ae6c1fdf946b4eb0b18093a7e2215bbac7fdea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:68:fa:10:2f:d6:f6:f9:f8:cc:0c:76:73:e7: a6:28:bb:d4:c3:69:36:56:af:1b:d7:fd:7b:be:97: c3:87:44:e3:ff:0b:cd:56:96:f6:7e:61:bf:7f:5e: a8:1c:e6:1c:5f:2d:17:68:9c:2f:fc:cf:95:ad:73: 26:84:72:22:0f:1a:54:58:49:ef:18:42:c1:e6:37: 33:68:1a:1c:e1:49:a1:e5:93:2f:75:ec:65:49:61: 51:1f:d1:27:82:10:f6:54:b8:69:63:57:08:0c:6a: e7:1e:d8:ad:44:73:c9:fe:0c:8a:06:56:d9:ce:88: 82:79:13:26:12:4a:1b:69:f6:4c:51:ae:9e:10:5c: d5:bd:e4:fa:5a:48:67:41:1f:88:d8:9c:9b:97:35: f5:f8:65:4a:ba:83:cc:d9:b3:75:c1:1d:9a:21:c1: fd:4a:74:d7:66:ef:3c:a8:36:33:6f:69:01:ce:fc: 5b:b1:a6:d8:ce:42:ec:5c:4b:f7:15:c1:0e:3f:99: 5b:d6:87:77:ac:18:c7:4f:2d:fe:9c:df:31:5e:47: 27:04:ee:ea:d2:b6:bb:ab:d7:65:9b:c3:5b:af:21: 95:50:23:6d:53:3f:4e:7b:1f:53:7e:25:46:e3:40: 4e:e1:78:02:67:f3:fa:61:1a:8c:fe:75:08:ae:24: 78:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:AE:6C:1F:DF:94:6B:4E:B0:B1:80:93:A7:E2:21:5B:BA:C7:FD:EA X509v3 Authority Key Identifier: keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/JK5sH9-Ua06wsYCTp-IhW7rH_eo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:97c0:b33::/48 Signature Algorithm: sha256WithRSAEncryption b1:f1:0d:20:fb:df:e5:f1:28:e2:2f:43:19:3e:70:a0:62:54: db:3b:db:8a:66:be:60:37:53:91:d1:bb:33:48:28:32:48:b8: 3c:e4:d3:a8:8a:df:b6:d6:1b:14:14:b8:6b:8b:93:2d:08:c2: a8:02:87:e1:fd:3a:d7:f9:fc:c6:69:eb:67:29:e1:01:96:e1: 58:5c:9e:2b:91:7d:d8:e0:a1:01:d4:21:c9:7f:c8:2b:4a:48: 10:57:6c:2a:22:fc:84:ac:01:7f:0a:2e:b8:52:11:3e:94:9f: 40:2c:2f:1f:1c:91:a0:59:1a:ae:cd:db:a3:b0:98:22:51:72: 07:46:f7:83:96:51:42:0d:de:f2:39:e3:fe:6f:e1:75:81:1b: ce:e4:4e:b1:fa:e9:81:c8:6a:9c:be:18:9e:d1:99:48:56:75: 5e:72:01:3d:e1:a1:7c:56:12:6e:57:48:71:cf:c3:82:16:a3: 18:00:09:ae:63:6d:cb:cb:43:ce:27:74:4e:1b:f8:f2:47:0e: bc:16:da:c1:c0:ce:46:50:5b:c6:71:76:90:ce:24:b7:7a:43: a0:2c:66:8c:b5:f1:26:b0:02:ca:a4:69:64:12:6d:59:5d:c9: 59:3f:bf:fb:8d:a2:ab:53:a4:8b:d1:46:6e:db:1d:72:0a:91: 02:5d:b3:cd -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZwj/CVwNBv0XeXYJsphe+7TMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw ZmFkOWIwHhcNMjYwMjAzMTQ1MDUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNGFlNmMxZmRmOTQ2YjRlYjBiMTgwOTNhN2UyMjE1YmJhYzdmZGVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp2j6EC/W9vn4zAx2c+emKLvUw2k2 Vq8b1/17vpfDh0Tj/wvNVpb2fmG/f16oHOYcXy0XaJwv/M+VrXMmhHIiDxpUWEnv GELB5jczaBoc4Umh5ZMvdexlSWFRH9EnghD2VLhpY1cIDGrnHtitRHPJ/gyKBlbZ zoiCeRMmEkobafZMUa6eEFzVveT6WkhnQR+I2JyblzX1+GVKuoPM2bN1wR2aIcH9 SnTXZu88qDYzb2kBzvxbsabYzkLsXEv3FcEOP5lb1od3rBjHTy3+nN8xXkcnBO7q 0ra7q9dlm8NbryGVUCNtUz9Oex9TfiVG40BO4XgCZ/P6YRqM/nUIriR48QIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFCSubB/flGtOsLGAk6fiIVu6x/3qMB8GA1UdIwQY MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt ZGM1ZWM3NDhmNmE1LzEvSks1c0g5LVVhMDZ3c1lDVHAtSWhXN3JIX2VvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1 LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg6XwAsz MA0GCSqGSIb3DQEBCwUAA4IBAQCx8Q0g+9/l8SjiL0MZPnCgYlTbO9uKZr5gN1OR 0bszSCgySLg85NOoit+21hsUFLhri5MtCMKoAofh/TrX+fzGaetnKeEBluFYXJ4r kX3Y4KEB1CHJf8grSkgQV2wqIvyErAF/Ci64UhE+lJ9ALC8fHJGgWRquzdujsJgi UXIHRveDllFCDd7yOeP+b+F1gRvO5E6x+umByGqcvhie0ZlIVnVecgE94aF8VhJu V0hxz8OCFqMYAAmuY23Ly0POJ3ROG/jyRw68FtrBwM5GUFvGcXaQziS3ekOgLGaM tfEmsALKpGlkEm1ZXclZP7/7jaKrU6SL0UZu2x1yCpECXbPN -----END CERTIFICATE-----Generated at Thu Feb 5 01:10:52 2026 by rpki-client