This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ObfOEhkmtnxLKfHz98037sgHnGY.roa File: ObfOEhkmtnxLKfHz98037sgHnGY.roa (raw, json) Hash identifier: D4VY714w+tQuqogYBcVQiQVRJ7BSRO6EzlaVTQLQU6A= Subject key identifier: 39:B7:CE:12:19:26:B6:7C:4B:29:F1:F3:F7:CD:37:EE:C8:07:9C:66 Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Certificate serial: 019B7D5CE08C15A22018B780D524DE8BCCB0 Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ObfOEhkmtnxLKfHz98037sgHnGY.roa Signing time: Fri 02 Jan 2026 06:19:57 +0000 ROA not before: Fri 02 Jan 2026 06:19:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199518 IP address blocks: 2a0e:b107:b14::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:e0:8c:15:a2:20:18:b7:80:d5:24:de:8b:cc:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Validity Not Before: Jan 2 06:19:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=39b7ce121926b67c4b29f1f3f7cd37eec8079c66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f6:f3:2a:25:7f:81:8a:38:23:fe:b5:73:58: 61:43:45:8b:72:6f:03:97:b9:f4:74:5f:aa:47:26: 73:4b:6d:37:0f:4a:24:30:47:b2:1b:7f:28:f8:49: 5d:17:0d:d9:65:04:18:bc:ef:a1:6a:e4:cd:8f:e3: 52:27:b1:41:dc:9c:d1:5d:74:fc:a9:63:0c:99:fc: 12:e6:65:6c:e7:07:f7:24:aa:90:62:b3:07:d2:b7: cc:26:7c:38:21:ad:5e:a0:36:04:17:7b:9a:36:33: 2c:45:d5:8d:24:9c:08:03:88:a0:41:bd:9f:b0:04: e3:40:4a:4b:b7:a9:fc:55:a1:79:5a:ca:56:55:a4: e0:2c:c6:0c:f0:9b:38:58:ec:1e:09:46:36:59:e5: 00:94:a7:ee:cd:87:53:c1:bc:2c:98:a7:d8:38:3c: f8:e0:b9:89:76:b1:fd:be:3f:d2:95:17:f7:64:47: 0b:7e:2c:af:26:91:04:fd:47:aa:37:02:88:da:72: a0:f3:a4:f8:77:39:d4:b1:f5:72:1b:9e:ac:70:bb: 02:cb:f8:c2:d5:5f:ac:0a:44:a3:ee:83:19:7a:ad: fa:e0:81:85:8f:27:08:0f:a1:9f:52:92:61:17:34: 3b:9e:8e:0e:dc:80:83:0c:a1:56:16:69:56:26:a4: df:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:B7:CE:12:19:26:B6:7C:4B:29:F1:F3:F7:CD:37:EE:C8:07:9C:66 X509v3 Authority Key Identifier: keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ObfOEhkmtnxLKfHz98037sgHnGY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:b107:b14::/48 Signature Algorithm: sha256WithRSAEncryption 2a:3f:07:b9:b0:9f:94:03:85:c9:d3:3b:8a:af:20:7c:29:56: 5a:62:27:c6:0d:69:af:b1:c8:21:2f:b7:0f:98:22:6c:20:d6: 0b:96:37:fd:60:34:83:82:27:1b:a0:2a:0e:2b:38:b0:c3:78: 35:82:42:24:2d:66:d1:ad:a8:48:a2:2c:a8:51:b5:d9:fc:16: 11:9c:7c:b1:03:da:9b:fa:8f:33:d7:c3:8b:dc:be:a1:38:89: d8:14:c2:18:ba:69:83:b4:4d:ca:e3:35:ef:72:0d:2b:57:ff: 40:e8:0e:e7:46:9c:34:e5:d8:25:8e:d2:df:b7:59:42:ef:c9: 41:59:df:e0:be:4a:0b:1f:14:60:2f:27:5f:a7:66:74:63:5d: 1a:d6:34:88:79:92:88:e5:3e:64:1b:2e:52:e3:f7:30:16:58: 09:66:e1:81:8d:e4:11:66:99:8b:63:5c:98:80:1b:7f:05:50: cc:9b:31:b7:8f:71:c3:5b:59:29:8b:43:ff:82:b0:3d:6c:f3: 19:e7:90:c3:f2:bc:53:19:c5:34:89:89:a6:bf:9f:9c:ac:4a: 28:80:0d:04:12:72:1b:3f:46:4c:55:de:21:db:04:b7:85:f6: d1:9b:75:18:6b:7a:da:84:ba:0f:cf:2b:a1:cd:34:fd:8f:93: 53:57:df:84 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9XOCMFaIgGLeA1STei8ywMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw ZmFkOWIwHhcNMjYwMTAyMDYxOTU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzOWI3Y2UxMjE5MjZiNjdjNGIyOWYxZjNmN2NkMzdlZWM4MDc5YzY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvPbzKiV/gYo4I/61c1hhQ0WLcm8D l7n0dF+qRyZzS203D0okMEeyG38o+EldFw3ZZQQYvO+hauTNj+NSJ7FB3JzRXXT8 qWMMmfwS5mVs5wf3JKqQYrMH0rfMJnw4Ia1eoDYEF3uaNjMsRdWNJJwIA4igQb2f sATjQEpLt6n8VaF5WspWVaTgLMYM8Js4WOweCUY2WeUAlKfuzYdTwbwsmKfYODz4 4LmJdrH9vj/SlRf3ZEcLfiyvJpEE/UeqNwKI2nKg86T4dznUsfVyG56scLsCy/jC 1V+sCkSj7oMZeq364IGFjycID6GfUpJhFzQ7no4O3ICDDKFWFmlWJqTf9QIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFDm3zhIZJrZ8Synx8/fNN+7IB5xmMB8GA1UdIwQY MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt ZGM1ZWM3NDhmNmE1LzEvT2JmT0Voa210bnhMS2ZIejk4MDM3c2dIbkdZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1 LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg6xBwsU MA0GCSqGSIb3DQEBCwUAA4IBAQAqPwe5sJ+UA4XJ0zuKryB8KVZaYifGDWmvscgh L7cPmCJsINYLljf9YDSDgicboCoOKziww3g1gkIkLWbRrahIoiyoUbXZ/BYRnHyx A9qb+o8z18OL3L6hOInYFMIYummDtE3K4zXvcg0rV/9A6A7nRpw05dgljtLft1lC 78lBWd/gvkoLHxRgLydfp2Z0Y10a1jSIeZKI5T5kGy5S4/cwFlgJZuGBjeQRZpmL Y1yYgBt/BVDMmzG3j3HDW1kpi0P/grA9bPMZ55DD8rxTGcU0iYmmv5+crEoogA0E EnIbP0ZMVd4h2wS3hfbRm3UYa3rahLoPzyuhzTT9j5NTV9+E -----END CERTIFICATE-----Generated at Fri Jan 9 13:11:55 2026 by rpki-client