This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/i28CBCG0zXE3U1ONHVhBCPt_Ahs.roa File: i28CBCG0zXE3U1ONHVhBCPt_Ahs.roa (raw, json) Hash identifier: rrR3bsi76JO4MVO7o6LMMr1FR0qSqCCRGIa0Jl/OUxk= Subject key identifier: 8B:6F:02:04:21:B4:CD:71:37:53:53:8D:1D:58:41:08:FB:7F:02:1B Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Certificate serial: 019B7D5CA39FDE24AA7BAB6E57A18474191A Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/i28CBCG0zXE3U1ONHVhBCPt_Ahs.roa Signing time: Fri 02 Jan 2026 06:19:41 +0000 ROA not before: Fri 02 Jan 2026 06:19:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20473 IP address blocks: 2a0c:3b87:ff00::/40 maxlen: 48 2a0c:3b87:ffff::/48 maxlen: 48 2a0e:97c0:791::/48 maxlen: 48 2a0e:97c0:792::/48 maxlen: 48 2a0e:b107:9f4::/48 maxlen: 48 2a0e:b107:9f6::/48 maxlen: 48 2a0e:b107:df2::/48 maxlen: 48 2a0e:b107:1870::/48 maxlen: 48 2a0e:b107:1b9e::/48 maxlen: 48 2a0e:b107:278b::/48 maxlen: 48 2a10:ccc1:400::/38 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:a3:9f:de:24:aa:7b:ab:6e:57:a1:84:74:19:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Validity Not Before: Jan 2 06:19:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8b6f020421b4cd713753538d1d584108fb7f021b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:1c:ad:34:90:e2:19:ac:99:4b:0c:81:7a:80: 3b:56:8f:9c:13:3d:93:f4:42:14:4d:4e:4f:cf:2b: c7:dd:a9:37:c1:be:f5:e6:85:7f:dc:0a:53:42:ce: b7:0a:c0:d1:11:b2:fe:b7:ea:7d:96:5d:1d:52:06: 21:31:82:e3:55:cd:23:a9:2a:28:3c:ca:51:a6:73: 34:da:a1:13:37:1a:d3:74:81:dc:79:a0:aa:13:09: c1:b3:19:b9:13:c0:75:a7:07:4c:79:38:fa:60:a6: 43:06:37:e3:a6:ba:1b:b7:ff:d3:7b:20:cf:10:42: 08:b4:97:d3:06:42:a0:2d:3b:2f:3f:fb:40:43:9a: d4:5a:c3:e5:39:52:5c:26:90:ab:2e:fe:43:03:23: f8:96:a0:60:19:b5:4f:2e:61:48:7c:11:28:18:6a: 3d:9e:13:43:88:a9:c3:bc:33:36:ed:26:f8:5e:b0: e2:8a:18:ed:da:65:ab:17:ee:d2:27:f1:c7:9f:0e: 21:44:f3:16:ac:9e:1a:0b:fc:f1:f0:4f:09:be:91: 43:7e:62:e6:ee:61:80:eb:31:a0:43:77:b3:46:d8: 00:40:db:8a:00:4d:ba:8d:66:a1:ec:d8:40:11:5b: 61:0a:c2:aa:29:f3:6f:e6:5d:11:f5:87:3f:77:fd: 7c:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:6F:02:04:21:B4:CD:71:37:53:53:8D:1D:58:41:08:FB:7F:02:1B X509v3 Authority Key Identifier: keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/i28CBCG0zXE3U1ONHVhBCPt_Ahs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:3b87:ff00::/40 2a0e:97c0:791::-2a0e:97c0:792:ffff:ffff:ffff:ffff:ffff 2a0e:b107:9f4::/48 2a0e:b107:9f6::/48 2a0e:b107:df2::/48 2a0e:b107:1870::/48 2a0e:b107:1b9e::/48 2a0e:b107:278b::/48 2a10:ccc1:400::/38 Signature Algorithm: sha256WithRSAEncryption c9:b1:92:ae:f6:e5:ad:27:2b:76:81:97:93:dc:b3:22:9b:e6: 14:28:15:73:54:ff:78:35:18:44:6e:4b:c4:72:48:1a:6d:7a: 19:05:b6:a2:e4:b8:f7:8b:f9:83:93:f4:4e:ac:80:5f:24:f6: 63:6f:67:61:9e:77:24:51:38:8d:03:a1:9b:36:07:99:ad:96: 62:03:d0:db:fa:5b:80:b9:44:51:c1:63:ba:6c:3d:72:9e:b5: 5c:8a:67:0d:45:91:40:77:c0:b8:68:79:a5:27:fb:a1:ac:69: 7f:6a:70:a3:0d:97:82:bd:e9:b2:9b:99:7c:d7:8d:91:45:6c: 4b:16:cc:a2:12:be:b9:e5:64:81:46:c1:c8:0c:00:48:87:d2: f2:bf:d5:75:b1:be:90:29:b3:16:ae:d9:75:51:60:90:06:df: 14:8f:84:27:6a:71:60:93:f3:74:4a:85:fc:60:6f:f4:da:d5: ea:f7:97:7c:97:ea:11:bb:a1:e7:33:7f:a1:a5:93:da:93:20: ab:d5:cc:71:cc:c4:77:f1:ec:01:78:b9:cc:b3:52:39:5a:cd: ca:4b:09:70:02:46:3b:f5:b1:ce:de:25:99:21:5b:a3:0b:92: b1:45:e2:ff:25:d6:74:80:10:9a:e0:05:02:d1:33:d8:b6:e7: 48:e8:1b:b5 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgISAZt9XKOf3iSqe6tuV6GEdBkaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw ZmFkOWIwHhcNMjYwMTAyMDYxOTQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YjZmMDIwNDIxYjRjZDcxMzc1MzUzOGQxZDU4NDEwOGZiN2YwMjFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6hytNJDiGayZSwyBeoA7Vo+cEz2T 9EIUTU5PzyvH3ak3wb715oV/3ApTQs63CsDREbL+t+p9ll0dUgYhMYLjVc0jqSoo PMpRpnM02qETNxrTdIHceaCqEwnBsxm5E8B1pwdMeTj6YKZDBjfjprobt//TeyDP EEIItJfTBkKgLTsvP/tAQ5rUWsPlOVJcJpCrLv5DAyP4lqBgGbVPLmFIfBEoGGo9 nhNDiKnDvDM27Sb4XrDiihjt2mWrF+7SJ/HHnw4hRPMWrJ4aC/zx8E8JvpFDfmLm 7mGA6zGgQ3ezRtgAQNuKAE26jWah7NhAEVthCsKqKfNv5l0R9Yc/d/18VwIDAQAB o4ICXTCCAlkwHQYDVR0OBBYEFItvAgQhtM1xN1NTjR1YQQj7fwIbMB8GA1UdIwQY MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt ZGM1ZWM3NDhmNmE1LzEvaTI4Q0JDRzB6WEUzVTFPTkhWaEJDUHRfQWhzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1 LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMHMGCCsGAQUFBwEHAQH/BGQwYjBgBAIAAjBaAwYAKgw7h/8w EgMHACoOl8AHkQMHACoOl8AHkgMHACoOsQcJ9AMHACoOsQcJ9gMHACoOsQcN8gMH ACoOsQcYcAMHACoOsQcbngMHACoOsQcniwMGAioQzMEEMA0GCSqGSIb3DQEBCwUA A4IBAQDJsZKu9uWtJyt2gZeT3LMim+YUKBVzVP94NRhEbkvEckgabXoZBbai5Lj3 i/mDk/ROrIBfJPZjb2dhnnckUTiNA6GbNgeZrZZiA9Db+luAuURRwWO6bD1ynrVc imcNRZFAd8C4aHmlJ/uhrGl/anCjDZeCvemym5l8142RRWxLFsyiEr655WSBRsHI DABIh9Lyv9V1sb6QKbMWrtl1UWCQBt8Uj4QnanFgk/N0SoX8YG/02tXq95d8l+oR u6HnM3+hpZPakyCr1cxxzMR38ewBeLnMs1I5Ws3KSwlwAkY79bHO3iWZIVujC5Kx ReL/JdZ0gBCa4AUC0TPYtudI6Bu1 -----END CERTIFICATE-----Generated at Fri Jan 9 13:13:48 2026 by rpki-client