This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/iNLv1hWuO4_pSFmroAhYxED2a2Q.roa File: iNLv1hWuO4_pSFmroAhYxED2a2Q.roa (raw, json) Hash identifier: nZVOS/MJbO3U0mpgsNYuZqoPP+HevvEaDiFp8ohASbs= Subject key identifier: 88:D2:EF:D6:15:AE:3B:8F:E9:48:59:AB:A0:08:58:C4:40:F6:6B:64 Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Certificate serial: 019B7D5CEBEB12197F8EA7C8A3F980B7F570 Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/iNLv1hWuO4_pSFmroAhYxED2a2Q.roa Signing time: Fri 02 Jan 2026 06:20:00 +0000 ROA not before: Fri 02 Jan 2026 06:20:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202256 IP address blocks: 2a06:de02:400::/38 maxlen: 48 2a10:ccc1:400::/38 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:eb:eb:12:19:7f:8e:a7:c8:a3:f9:80:b7:f5:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Validity Not Before: Jan 2 06:20:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=88d2efd615ae3b8fe94859aba00858c440f66b64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f7:b0:42:55:c0:e7:37:b4:ae:11:b7:d6:5e: 9f:79:18:4a:2d:d2:5f:22:b2:b4:e1:cf:3f:72:ee: bd:ec:ad:77:cc:32:2e:4f:d9:08:13:91:8d:da:13: 82:d1:58:17:f5:35:c7:14:ed:0a:c3:0d:f1:7a:ea: 10:52:ee:a1:99:7e:19:5c:0f:4a:3d:eb:ed:b2:02: f1:7f:7a:3b:77:cd:27:40:f7:78:3e:a8:8a:3c:e2: 4f:f9:2d:8d:eb:e9:e9:ac:bf:0a:99:6b:ef:e1:6d: ed:dd:c0:15:e0:ff:24:33:93:96:64:c8:dc:2a:ca: 03:65:38:e3:aa:45:be:01:47:d9:4a:30:34:8e:6a: 57:9a:75:8b:06:b2:5c:bf:a0:66:4b:a0:18:ae:c9: 32:f0:b8:d0:93:75:43:26:d3:5a:de:55:fd:a1:8e: e3:3a:ab:5e:f7:b7:29:f3:3e:46:9b:4f:e0:98:76: f8:0d:5a:5c:b6:4c:d8:3d:55:58:cb:73:c0:fe:e2: 87:ea:1b:0f:9e:88:a4:6b:52:38:fb:0c:13:1e:a2: 23:ca:f5:aa:f3:96:e8:9f:11:1e:05:93:f9:ba:c6: 6f:5d:76:3d:7d:cd:c2:50:f8:bc:68:dd:f7:ea:5c: 0a:ab:16:97:7d:21:d5:13:4c:f1:49:f9:fc:6b:43: cc:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:D2:EF:D6:15:AE:3B:8F:E9:48:59:AB:A0:08:58:C4:40:F6:6B:64 X509v3 Authority Key Identifier: keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/iNLv1hWuO4_pSFmroAhYxED2a2Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:de02:400::/38 2a10:ccc1:400::/38 Signature Algorithm: sha256WithRSAEncryption 8e:25:b6:44:69:f3:e9:5e:c8:4d:80:e5:42:5c:fe:31:84:cc: db:52:8c:54:4d:3d:1c:2a:9a:14:40:49:e6:9f:67:6d:2a:ae: b0:c9:ce:a9:8c:da:6f:4d:84:0c:6f:f7:7c:ae:3a:a3:93:e0: 38:31:4e:b2:95:98:3a:8c:0f:47:c9:28:3c:55:e7:a4:3a:73: 94:4c:50:81:d2:24:74:40:67:82:fb:72:06:d6:a1:0a:d8:cd: 09:5f:e2:07:30:10:38:7c:4b:0e:f4:92:fc:34:18:42:57:fe: 27:99:23:f7:71:2e:39:eb:cf:2a:c3:bf:e1:a5:d4:d9:17:e3: 25:7b:3c:7f:6e:e8:50:a5:49:4e:f4:b1:cc:2f:ec:3f:e8:c7: 9b:8e:c2:96:36:b2:95:cb:d5:e5:fc:77:3e:c5:34:b8:0b:88: 4e:22:eb:32:ec:f3:78:20:a0:3e:fb:b0:91:f9:d3:33:cf:3d: 49:e7:85:26:d1:09:f0:30:aa:3d:93:3e:21:6e:92:6b:e1:e4: 9a:33:39:d8:eb:31:59:12:66:de:22:2b:dc:f6:a2:22:ac:e6: 3e:72:56:51:88:c7:ec:97:ca:44:45:95:ed:16:1c:1b:6b:6a: 87:8c:21:90:a4:0e:94:86:55:55:e8:6d:69:8f:c0:2d:e8:1a: 30:94:8e:68 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgISAZt9XOvrEhl/jqfIo/mAt/VwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw ZmFkOWIwHhcNMjYwMTAyMDYyMDAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OGQyZWZkNjE1YWUzYjhmZTk0ODU5YWJhMDA4NThjNDQwZjY2YjY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqvewQlXA5ze0rhG31l6feRhKLdJf IrK04c8/cu697K13zDIuT9kIE5GN2hOC0VgX9TXHFO0Kww3xeuoQUu6hmX4ZXA9K PevtsgLxf3o7d80nQPd4PqiKPOJP+S2N6+nprL8KmWvv4W3t3cAV4P8kM5OWZMjc KsoDZTjjqkW+AUfZSjA0jmpXmnWLBrJcv6BmS6AYrsky8LjQk3VDJtNa3lX9oY7j Oqte97cp8z5Gm0/gmHb4DVpctkzYPVVYy3PA/uKH6hsPnoika1I4+wwTHqIjyvWq 85bonxEeBZP5usZvXXY9fc3CUPi8aN336lwKqxaXfSHVE0zxSfn8a0PMiQIDAQAB o4ICEzCCAg8wHQYDVR0OBBYEFIjS79YVrjuP6UhZq6AIWMRA9mtkMB8GA1UdIwQY MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt ZGM1ZWM3NDhmNmE1LzEvaU5MdjFoV3VPNF9wU0Ztcm9BaFl4RUQyYTJRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1 LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCkGCCsGAQUFBwEHAQH/BBowGDAWBAIAAjAQAwYCKgbeAgQD BgIqEMzBBDANBgkqhkiG9w0BAQsFAAOCAQEAjiW2RGnz6V7ITYDlQlz+MYTM21KM VE09HCqaFEBJ5p9nbSqusMnOqYzab02EDG/3fK46o5PgODFOspWYOowPR8koPFXn pDpzlExQgdIkdEBngvtyBtahCtjNCV/iBzAQOHxLDvSS/DQYQlf+J5kj93EuOevP KsO/4aXU2RfjJXs8f27oUKVJTvSxzC/sP+jHm47CljaylcvV5fx3PsU0uAuITiLr MuzzeCCgPvuwkfnTM889SeeFJtEJ8DCqPZM+IW6Sa+HkmjM52OsxWRJm3iIr3Pai IqzmPnJWUYjH7JfKREWV7RYcG2tqh4whkKQOlIZVVehtaY/ALegaMJSOaA== -----END CERTIFICATE-----Generated at Fri Jan 9 13:13:11 2026 by rpki-client