This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/OCTJH5IaMjynsIVxz3KvBQRe4Yg.roa File: OCTJH5IaMjynsIVxz3KvBQRe4Yg.roa (raw, json) Hash identifier: WBh4oCMuuoOrVPtZlhttLvy/jBPttGiwrjQdTSThgV4= Subject key identifier: 38:24:C9:1F:92:1A:32:3C:A7:B0:85:71:CF:72:AF:05:04:5E:E1:88 Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Certificate serial: 019B7D5D68111BFC0E3226BAC2CC167E885B Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/OCTJH5IaMjynsIVxz3KvBQRe4Yg.roa Signing time: Fri 02 Jan 2026 06:20:32 +0000 ROA not before: Fri 02 Jan 2026 06:20:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213929 IP address blocks: 2a0e:97c0:330::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:68:11:1b:fc:0e:32:26:ba:c2:cc:16:7e:88:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Validity Not Before: Jan 2 06:20:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3824c91f921a323ca7b08571cf72af05045ee188 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:58:7f:80:7a:5c:0d:2d:b9:8c:c4:b4:4e:4a: 15:54:fa:62:63:30:1c:cd:33:6c:5a:18:27:43:66: 09:bf:ce:86:63:3e:56:b9:fa:67:3f:25:f5:2b:59: 86:1d:ea:4a:64:0a:ef:e6:7d:51:7f:b2:35:3e:93: 8b:7b:c9:45:83:2c:4b:5f:7b:b7:ee:e1:78:58:62: 44:23:cc:30:5b:f1:b5:bf:85:8e:29:a1:f5:80:cb: 06:8f:39:0e:06:64:a0:6f:58:97:e7:04:8e:19:6d: 62:c1:fd:a3:d0:e6:73:e7:ce:5f:54:09:2a:5a:74: 20:43:f7:6e:24:79:e0:cb:71:95:04:ee:36:95:1a: 9a:d1:71:ce:7b:37:af:00:4f:7d:a4:f7:dd:ed:a6: 21:95:0b:08:83:2e:49:50:a4:eb:a9:5c:c4:b3:7f: a5:4e:f7:c7:40:4b:6c:40:44:86:6a:e7:e9:25:ac: 93:f2:9a:9c:6e:95:55:89:cb:f8:fb:54:b7:8e:33: 13:2f:82:04:74:26:c9:44:b4:14:c6:20:04:e2:29: c0:5d:66:6a:c8:20:93:b5:28:8c:46:cc:b5:ba:1d: be:ad:b6:ff:16:62:d5:1a:26:db:9c:23:41:52:ca: 7a:55:2a:eb:ca:42:9f:a8:9e:29:f0:a5:58:32:0c: 3e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:24:C9:1F:92:1A:32:3C:A7:B0:85:71:CF:72:AF:05:04:5E:E1:88 X509v3 Authority Key Identifier: keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/OCTJH5IaMjynsIVxz3KvBQRe4Yg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:97c0:330::/44 Signature Algorithm: sha256WithRSAEncryption 49:bb:a9:de:1a:11:80:6b:69:4e:57:67:89:da:ed:0b:94:b8: b4:bf:2b:e7:81:4f:11:9f:43:82:35:7e:7f:68:44:24:0a:36: 9b:ac:39:86:11:2a:18:24:fd:2a:76:53:1c:3e:38:78:94:b3: d2:d4:4a:07:c0:61:22:96:c1:e8:6e:a1:fd:81:28:91:c0:d6: c7:55:09:ac:19:b6:6d:36:12:af:07:a2:80:43:6b:4e:69:05: 7f:fd:88:ab:ec:d2:2d:69:ca:b6:ff:31:d7:0e:a9:ac:17:5e: 9c:20:31:1a:49:4f:91:6d:fc:e3:c8:9c:01:47:fe:e0:48:d6: a4:89:27:ed:c8:78:09:95:f6:02:55:44:f8:05:aa:df:33:75: d9:81:fa:6e:a3:ce:3b:ae:f4:f3:69:f3:92:8b:4c:4c:53:a7: 22:5b:8b:b8:18:f7:8f:62:b4:5a:62:4c:61:19:31:eb:e1:45: 84:cf:c0:a9:5d:d8:0f:dd:40:a0:e4:61:47:dc:db:e5:9d:86: 84:11:9d:53:f4:a1:29:89:88:35:57:d4:16:ea:ac:ad:a0:68: 51:93:5f:3b:59:a3:22:28:e2:bf:d3:0a:71:ec:07:5f:c6:b8: a0:05:3a:c1:59:31:15:70:ee:4b:ed:d9:87:6f:0e:22:78:70: be:23:1e:e7 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9XWgRG/wOMia6wswWfohbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw ZmFkOWIwHhcNMjYwMTAyMDYyMDMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzODI0YzkxZjkyMWEzMjNjYTdiMDg1NzFjZjcyYWYwNTA0NWVlMTg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Vh/gHpcDS25jMS0TkoVVPpiYzAc zTNsWhgnQ2YJv86GYz5WufpnPyX1K1mGHepKZArv5n1Rf7I1PpOLe8lFgyxLX3u3 7uF4WGJEI8wwW/G1v4WOKaH1gMsGjzkOBmSgb1iX5wSOGW1iwf2j0OZz585fVAkq WnQgQ/duJHngy3GVBO42lRqa0XHOezevAE99pPfd7aYhlQsIgy5JUKTrqVzEs3+l TvfHQEtsQESGaufpJayT8pqcbpVVicv4+1S3jjMTL4IEdCbJRLQUxiAE4inAXWZq yCCTtSiMRsy1uh2+rbb/FmLVGibbnCNBUsp6VSrrykKfqJ4p8KVYMgw+ZQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFDgkyR+SGjI8p7CFcc9yrwUEXuGIMB8GA1UdIwQY MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt ZGM1ZWM3NDhmNmE1LzEvT0NUSkg1SWFNanluc0lWeHozS3ZCUVJlNFlnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1 LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6XwAMw MA0GCSqGSIb3DQEBCwUAA4IBAQBJu6neGhGAa2lOV2eJ2u0LlLi0vyvngU8Rn0OC NX5/aEQkCjabrDmGESoYJP0qdlMcPjh4lLPS1EoHwGEilsHobqH9gSiRwNbHVQms GbZtNhKvB6KAQ2tOaQV//Yir7NItacq2/zHXDqmsF16cIDEaSU+RbfzjyJwBR/7g SNakiSftyHgJlfYCVUT4BarfM3XZgfpuo847rvTzafOSi0xMU6ciW4u4GPePYrRa YkxhGTHr4UWEz8CpXdgP3UCg5GFH3NvlnYaEEZ1T9KEpiYg1V9QW6qytoGhRk187 WaMiKOK/0wpx7AdfxrigBTrBWTEVcO5L7dmHbw4ieHC+Ix7n -----END CERTIFICATE-----Generated at Fri Jan 9 13:13:09 2026 by rpki-client