This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/M3cn9JiJEaMp9CIWWHThjRHMuwU.roa File: M3cn9JiJEaMp9CIWWHThjRHMuwU.roa (raw, json) Hash identifier: Pb5XceGmLc3b+UlFwmsZNC8RqeQH7xm4QOBuNEHJXUI= Subject key identifier: 33:77:27:F4:98:89:11:A3:29:F4:22:16:58:74:E1:8D:11:CC:BB:05 Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Certificate serial: 019B7D5D482B4298E49FD9E132FDC075273E Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/M3cn9JiJEaMp9CIWWHThjRHMuwU.roa Signing time: Fri 02 Jan 2026 06:20:23 +0000 ROA not before: Fri 02 Jan 2026 06:20:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211972 IP address blocks: 2a0e:97c0:130::/44 maxlen: 48 2a0e:b107:100::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:48:2b:42:98:e4:9f:d9:e1:32:fd:c0:75:27:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Validity Not Before: Jan 2 06:20:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=337727f4988911a329f422165874e18d11ccbb05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f9:58:09:90:59:bd:19:e0:60:f0:58:16:ea: e7:94:cd:24:34:59:a7:69:42:83:ea:86:5c:9c:05: 71:98:e5:44:92:d1:4d:83:ac:a5:25:68:69:e1:1f: 38:c1:63:13:06:da:ac:04:be:14:c3:08:c9:85:86: a6:15:66:64:87:c9:84:c1:a2:d8:47:5e:57:84:e6: 4c:f0:f3:aa:d1:6c:48:76:c3:9c:1d:3a:5a:d1:1d: b6:c9:69:ba:2f:55:2c:25:32:a0:22:ff:77:ba:74: 15:97:85:c9:f4:be:d3:0d:f0:97:dd:0d:e1:20:1b: 5a:1d:88:25:d6:58:76:78:07:4f:49:87:a4:d2:03: d7:3b:40:de:4a:16:4f:39:f4:7d:1d:10:15:d2:79: 33:1d:de:e8:57:3e:54:11:e3:14:89:2c:a1:e0:5c: 34:f9:e3:06:2d:4d:dd:81:1a:b7:d0:40:70:d6:6a: 64:3d:84:9d:72:c3:b7:38:b9:54:8e:34:67:8e:7e: 98:5e:6b:a2:b4:f7:a6:19:84:1f:66:55:6e:e1:3a: 30:31:0b:52:40:0d:7c:3e:75:1c:9e:d8:6f:df:a5: 9a:09:f8:f0:c7:a1:51:e2:9f:9c:41:2c:67:c2:47: 78:c4:b4:d1:e2:9e:0c:25:b9:c1:86:cf:06:9b:65: 36:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:77:27:F4:98:89:11:A3:29:F4:22:16:58:74:E1:8D:11:CC:BB:05 X509v3 Authority Key Identifier: keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/M3cn9JiJEaMp9CIWWHThjRHMuwU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:97c0:130::/44 2a0e:b107:100::/44 Signature Algorithm: sha256WithRSAEncryption 88:b2:16:08:30:5d:cf:e9:0d:05:e8:89:bd:8a:9a:25:80:9c: 5b:e3:ba:35:06:36:1a:13:b6:b1:1d:8a:46:f5:62:09:28:6b: ba:19:ab:2e:a8:be:58:93:41:bc:93:a4:b5:f4:41:43:36:7e: 52:51:66:33:2c:39:a0:0a:0c:86:9e:c7:d5:21:61:d6:74:b8: 68:9f:a7:40:3e:85:eb:ab:50:fe:03:a5:48:24:d2:4c:24:06: 37:32:aa:42:5d:5b:fb:ae:a3:32:20:cd:54:56:d5:45:3d:08: 23:f0:ed:51:98:55:12:f9:3d:24:23:83:4b:65:e5:f4:81:1b: e5:a2:ff:2c:53:63:78:36:22:03:a4:07:71:eb:1c:4a:df:ed: 77:a2:1c:ae:a8:d5:0a:c8:24:1a:c1:05:54:4b:a5:3c:25:bb: 07:42:73:94:fc:0c:bd:ae:fd:e4:aa:ef:92:ff:23:36:d9:9c: 1d:bf:1d:b7:d4:58:ea:b6:dd:21:b7:e1:b7:ee:f3:10:d5:ad: 46:94:9a:0e:f7:7b:4e:14:a9:41:bb:0d:65:5f:89:aa:7f:8c: 0f:79:7a:db:c3:21:3f:25:50:15:ae:49:85:20:71:bf:f8:94: 49:3a:f6:c9:fe:8a:b5:70:40:18:15:e6:dd:41:6d:a9:a7:0c: 18:d9:ed:5f -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt9XUgrQpjkn9nhMv3AdSc+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw ZmFkOWIwHhcNMjYwMTAyMDYyMDIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMzc3MjdmNDk4ODkxMWEzMjlmNDIyMTY1ODc0ZTE4ZDExY2NiYjA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp/lYCZBZvRngYPBYFurnlM0kNFmn aUKD6oZcnAVxmOVEktFNg6ylJWhp4R84wWMTBtqsBL4UwwjJhYamFWZkh8mEwaLY R15XhOZM8POq0WxIdsOcHTpa0R22yWm6L1UsJTKgIv93unQVl4XJ9L7TDfCX3Q3h IBtaHYgl1lh2eAdPSYek0gPXO0DeShZPOfR9HRAV0nkzHd7oVz5UEeMUiSyh4Fw0 +eMGLU3dgRq30EBw1mpkPYSdcsO3OLlUjjRnjn6YXmuitPemGYQfZlVu4TowMQtS QA18PnUcnthv36WaCfjwx6FR4p+cQSxnwkd4xLTR4p4MJbnBhs8Gm2U24wIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFDN3J/SYiRGjKfQiFlh04Y0RzLsFMB8GA1UdIwQY MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt ZGM1ZWM3NDhmNmE1LzEvTTNjbjlKaUpFYU1wOUNJV1dIVGhqUkhNdXdVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1 LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcEKg6XwAEw AwcEKg6xBwEAMA0GCSqGSIb3DQEBCwUAA4IBAQCIshYIMF3P6Q0F6Im9ipolgJxb 47o1BjYaE7axHYpG9WIJKGu6GasuqL5Yk0G8k6S19EFDNn5SUWYzLDmgCgyGnsfV IWHWdLhon6dAPoXrq1D+A6VIJNJMJAY3MqpCXVv7rqMyIM1UVtVFPQgj8O1RmFUS +T0kI4NLZeX0gRvlov8sU2N4NiIDpAdx6xxK3+13ohyuqNUKyCQawQVUS6U8JbsH QnOU/Ay9rv3kqu+S/yM22Zwdvx231Fjqtt0ht+G37vMQ1a1GlJoO93tOFKlBuw1l X4mqf4wPeXrbwyE/JVAVrkmFIHG/+JRJOvbJ/oq1cEAYFebdQW2ppwwY2e1f -----END CERTIFICATE-----Generated at Fri Jan 9 13:12:08 2026 by rpki-client