This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/fUIpWeF5cknqHUQzvwJyRXxIK9A.roa File: fUIpWeF5cknqHUQzvwJyRXxIK9A.roa (raw, json) Hash identifier: 6idWlAg8f1R4MMS3qO+5MbJ2ps+rKu2W3WbFtLyw76I= Subject key identifier: 7D:42:29:59:E1:79:72:49:EA:1D:44:33:BF:02:72:45:7C:48:2B:D0 Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Certificate serial: 019B7D5D7388ACFE7124B9D7E411700B1CAA Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/fUIpWeF5cknqHUQzvwJyRXxIK9A.roa Signing time: Fri 02 Jan 2026 06:20:35 +0000 ROA not before: Fri 02 Jan 2026 06:20:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215035 IP address blocks: 2a0e:97c0:290::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:73:88:ac:fe:71:24:b9:d7:e4:11:70:0b:1c:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Validity Not Before: Jan 2 06:20:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7d422959e1797249ea1d4433bf0272457c482bd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d6:c4:11:87:52:70:82:a5:3a:93:02:27:d2: 0a:18:92:2c:4d:43:20:4c:46:1b:a3:e9:40:46:06: ee:51:25:87:34:91:44:a0:59:67:c1:58:3e:18:3c: 13:75:a9:17:9c:11:ed:52:2a:15:d7:eb:db:f6:c2: d4:a9:d0:0e:75:f4:33:d8:c9:5e:be:b3:ea:09:5b: b4:d5:bd:75:fc:5d:86:13:50:d6:19:cb:e0:bb:c0: 4a:ac:a2:93:73:96:77:3c:9e:63:0c:d5:de:74:13: 00:06:c3:7b:56:89:ac:7c:d3:82:65:0f:90:e4:00: 32:74:4b:0f:1d:8c:b6:18:70:1f:e1:d7:8f:67:c9: f0:7f:69:a9:db:b4:f4:dc:93:2e:3c:03:40:c1:49: f4:f6:7a:32:85:53:c6:98:9a:c4:3d:4c:fa:e4:c0: 1b:b1:ea:75:f4:0a:52:41:78:55:77:26:ab:fd:16: 55:3d:ca:47:c1:d4:a1:03:f9:31:c8:56:68:14:1e: ab:89:e6:64:42:33:f5:eb:c0:99:04:dc:dc:06:e9: d4:8a:87:5a:b4:73:a0:63:9e:1b:e5:62:f3:45:f2: b0:d9:f3:6c:42:d1:87:42:16:18:14:62:27:6e:14: 24:05:97:c8:8f:22:44:5d:4b:e9:81:2d:a1:b9:e4: 41:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:42:29:59:E1:79:72:49:EA:1D:44:33:BF:02:72:45:7C:48:2B:D0 X509v3 Authority Key Identifier: keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/fUIpWeF5cknqHUQzvwJyRXxIK9A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:97c0:290::/44 Signature Algorithm: sha256WithRSAEncryption 3d:04:a1:63:fe:e1:62:ab:71:5f:ce:9e:1b:b2:ee:49:f1:38: 8d:ce:4e:25:66:2b:d3:60:94:e3:5f:25:c2:29:25:a7:c7:30: 08:7b:f4:8b:dd:67:8c:8c:b0:d7:74:3f:8a:e4:1a:ca:32:41: 4d:94:01:41:a8:8c:68:b3:f2:91:e1:0c:44:c2:4a:b2:1f:f7: d0:87:07:83:61:8b:95:27:11:78:8a:7f:71:62:17:2c:d0:25: 75:0f:96:eb:0f:26:a5:72:6d:07:fe:95:ad:2c:17:71:7e:ed: 6d:56:43:66:e3:3d:82:a3:81:94:8a:a9:47:d6:fb:c1:96:e9: 25:e1:36:9e:b2:29:32:85:cc:55:79:89:9b:97:6b:d3:52:b6: a1:04:48:0a:be:4b:ee:93:b9:0f:84:0a:9e:52:8a:81:0d:b9: d0:57:69:62:af:86:8d:0f:6c:56:c2:dc:f1:ed:1e:26:f0:34: 29:a4:ff:c6:57:91:37:66:46:09:d8:14:60:6b:78:3c:58:6f: de:25:ba:50:de:77:21:d7:08:60:31:6b:b8:64:44:ef:93:57: 32:ca:33:88:ea:a7:de:95:17:5b:ff:a5:06:b9:82:c5:2c:a1: 1d:43:58:6a:a2:30:c2:0d:c3:b2:f1:5f:14:c4:5b:05:8c:88: 2d:88:1b:f6 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9XXOIrP5xJLnX5BFwCxyqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw ZmFkOWIwHhcNMjYwMTAyMDYyMDM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZDQyMjk1OWUxNzk3MjQ5ZWExZDQ0MzNiZjAyNzI0NTdjNDgyYmQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAodbEEYdScIKlOpMCJ9IKGJIsTUMg TEYbo+lARgbuUSWHNJFEoFlnwVg+GDwTdakXnBHtUioV1+vb9sLUqdAOdfQz2Mle vrPqCVu01b11/F2GE1DWGcvgu8BKrKKTc5Z3PJ5jDNXedBMABsN7VomsfNOCZQ+Q 5AAydEsPHYy2GHAf4dePZ8nwf2mp27T03JMuPANAwUn09noyhVPGmJrEPUz65MAb sep19ApSQXhVdyar/RZVPcpHwdShA/kxyFZoFB6rieZkQjP168CZBNzcBunUioda tHOgY54b5WLzRfKw2fNsQtGHQhYYFGInbhQkBZfIjyJEXUvpgS2hueRBKQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFH1CKVnheXJJ6h1EM78CckV8SCvQMB8GA1UdIwQY MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt ZGM1ZWM3NDhmNmE1LzEvZlVJcFdlRjVja25xSFVRenZ3SnlSWHhJSzlBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1 LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6XwAKQ MA0GCSqGSIb3DQEBCwUAA4IBAQA9BKFj/uFiq3Ffzp4bsu5J8TiNzk4lZivTYJTj XyXCKSWnxzAIe/SL3WeMjLDXdD+K5BrKMkFNlAFBqIxos/KR4QxEwkqyH/fQhweD YYuVJxF4in9xYhcs0CV1D5brDyalcm0H/pWtLBdxfu1tVkNm4z2Co4GUiqlH1vvB lukl4TaesikyhcxVeYmbl2vTUrahBEgKvkvuk7kPhAqeUoqBDbnQV2lir4aND2xW wtzx7R4m8DQppP/GV5E3ZkYJ2BRga3g8WG/eJbpQ3nch1whgMWu4ZETvk1cyyjOI 6qfelRdb/6UGuYLFLKEdQ1hqojDCDcOy8V8UxFsFjIgtiBv2 -----END CERTIFICATE-----Generated at Fri Jan 9 13:13:07 2026 by rpki-client