This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/aBsTR_2tylx2NlVqWMrfuvO-0yA.roa File: aBsTR_2tylx2NlVqWMrfuvO-0yA.roa (raw, json) Hash identifier: f568CoNyySv5/GHz49M6rgZuJ2pbUscVSo1ftmctUEw= Subject key identifier: 68:1B:13:47:FD:AD:CA:5C:76:36:55:6A:58:CA:DF:BA:F3:BE:D3:20 Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Certificate serial: 019B7D5CEB1FEF62C2E15DDB89C6F0BBFF4F Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/aBsTR_2tylx2NlVqWMrfuvO-0yA.roa Signing time: Fri 02 Jan 2026 06:20:00 +0000 ROA not before: Fri 02 Jan 2026 06:20:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202184 IP address blocks: 2a0e:97c0:c20::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:eb:1f:ef:62:c2:e1:5d:db:89:c6:f0:bb:ff:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Validity Not Before: Jan 2 06:20:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=681b1347fdadca5c7636556a58cadfbaf3bed320 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f3:8c:5e:69:47:e6:17:e8:64:9d:5c:d5:6a: c3:bf:cb:e8:3e:3e:00:12:38:ac:3e:30:8b:26:a9: da:82:01:07:7f:7a:28:af:87:37:39:34:b1:2f:49: e3:0d:9e:a8:2e:09:51:7e:eb:28:31:7a:94:86:02: 5b:01:b5:1f:d1:f4:09:3a:67:3f:75:ba:71:d0:c0: 24:d2:0f:44:94:22:ac:44:72:04:96:bb:c7:22:d9: 36:cd:a3:0c:d5:90:16:3a:31:63:94:75:94:67:36: 7a:86:23:e9:dd:50:c0:a9:01:80:44:36:bb:4f:e8: 01:c7:38:3f:4d:ac:11:87:db:c2:03:6a:13:41:51: 7c:20:06:4f:1d:63:e4:62:a8:c1:61:c4:5d:0d:c6: f1:88:cc:be:0b:7b:d8:5c:d4:9f:cb:91:10:7f:14: 10:c9:a2:8b:60:68:00:54:45:04:42:7f:8d:74:2d: 17:a6:2c:51:94:ee:0d:b6:6c:32:61:1c:c2:6f:7c: 7d:7a:73:04:dc:63:ba:a6:8e:54:1b:0b:57:70:d9: 7b:e8:97:d3:26:14:11:7e:06:9b:b6:ac:38:8d:bb: a4:11:33:5c:69:3b:fd:39:cc:1b:78:c1:52:1b:15: 14:c8:91:5e:69:7c:c4:0b:78:3e:fa:ca:69:23:e4: ab:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:1B:13:47:FD:AD:CA:5C:76:36:55:6A:58:CA:DF:BA:F3:BE:D3:20 X509v3 Authority Key Identifier: keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/aBsTR_2tylx2NlVqWMrfuvO-0yA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:97c0:c20::/44 Signature Algorithm: sha256WithRSAEncryption 53:aa:15:98:7a:55:8e:03:ac:76:8a:c6:a7:3d:52:7d:1c:9c: 35:66:c2:5e:b0:09:0f:f1:e4:27:1a:c4:59:63:55:c4:e5:fc: 51:d6:ac:5a:3d:d9:4f:6a:47:1f:25:38:b7:c8:ee:90:95:de: 37:3b:5c:00:0f:1c:ee:e0:1e:c8:21:f2:dd:d1:d1:2c:41:56: ed:0d:21:d5:d5:52:2a:ab:17:13:5c:b3:20:33:a9:5c:78:a1: 4b:ce:28:fe:03:50:66:53:4f:96:74:fd:5d:00:21:98:fa:b0: bf:c6:4a:7c:c7:39:97:dd:c3:98:d6:27:11:6c:ad:17:5f:0e: d4:3f:bf:c4:91:f5:6f:ce:03:7c:52:57:20:32:cd:31:5a:15: 23:7b:65:97:3f:e4:21:01:b7:da:91:b6:77:f6:0a:f4:cc:48: e7:71:8d:f5:f5:34:6f:81:3f:a9:bb:74:73:eb:54:fd:32:59: 2c:d1:aa:1e:a9:c8:93:35:a6:c6:76:0c:a9:5a:6c:47:23:28: 4a:d1:1e:76:e7:0d:25:3f:81:69:21:1f:19:8d:51:ff:86:50: ec:b2:ae:90:b2:cc:e9:d2:7a:17:d3:26:53:6f:a6:08:24:03: c3:1a:e3:9a:be:48:87:41:00:db:32:88:41:83:19:6f:31:01: c4:07:44:c4 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9XOsf72LC4V3bicbwu/9PMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw ZmFkOWIwHhcNMjYwMTAyMDYyMDAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ODFiMTM0N2ZkYWRjYTVjNzYzNjU1NmE1OGNhZGZiYWYzYmVkMzIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwvOMXmlH5hfoZJ1c1WrDv8voPj4A EjisPjCLJqnaggEHf3oor4c3OTSxL0njDZ6oLglRfusoMXqUhgJbAbUf0fQJOmc/ dbpx0MAk0g9ElCKsRHIElrvHItk2zaMM1ZAWOjFjlHWUZzZ6hiPp3VDAqQGARDa7 T+gBxzg/TawRh9vCA2oTQVF8IAZPHWPkYqjBYcRdDcbxiMy+C3vYXNSfy5EQfxQQ yaKLYGgAVEUEQn+NdC0XpixRlO4NtmwyYRzCb3x9enME3GO6po5UGwtXcNl76JfT JhQRfgabtqw4jbukETNcaTv9OcwbeMFSGxUUyJFeaXzEC3g++sppI+SrDQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFGgbE0f9rcpcdjZValjK37rzvtMgMB8GA1UdIwQY MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt ZGM1ZWM3NDhmNmE1LzEvYUJzVFJfMnR5bHgyTmxWcVdNcmZ1dk8tMHlBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1 LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6XwAwg MA0GCSqGSIb3DQEBCwUAA4IBAQBTqhWYelWOA6x2isanPVJ9HJw1ZsJesAkP8eQn GsRZY1XE5fxR1qxaPdlPakcfJTi3yO6Qld43O1wADxzu4B7IIfLd0dEsQVbtDSHV 1VIqqxcTXLMgM6lceKFLzij+A1BmU0+WdP1dACGY+rC/xkp8xzmX3cOY1icRbK0X Xw7UP7/EkfVvzgN8UlcgMs0xWhUje2WXP+QhAbfakbZ39gr0zEjncY319TRvgT+p u3Rz61T9Mlks0aoeqciTNabGdgypWmxHIyhK0R525w0lP4FpIR8ZjVH/hlDssq6Q sszp0noX0yZTb6YIJAPDGuOavkiHQQDbMohBgxlvMQHEB0TE -----END CERTIFICATE-----Generated at Fri Jan 9 13:11:38 2026 by rpki-client