This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/pRZHZ8dHBFmQ_Ou4E__w4QDQ-K8.roa File: pRZHZ8dHBFmQ_Ou4E__w4QDQ-K8.roa (raw, json) Hash identifier: B+he4MLpFuLouUghc9jf918CwYnm9glZxyPkGXhxNi0= Subject key identifier: A5:16:47:67:C7:47:04:59:90:FC:EB:B8:13:FF:F0:E1:00:D0:F8:AF Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Certificate serial: 019B7D5CBDC153A98AB949B58B2F1412CC5A Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/pRZHZ8dHBFmQ_Ou4E__w4QDQ-K8.roa Signing time: Fri 02 Jan 2026 06:19:48 +0000 ROA not before: Fri 02 Jan 2026 06:19:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58015 IP address blocks: 2a0e:b107:11d0::/47 maxlen: 48 2a0e:b107:11d2::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:bd:c1:53:a9:8a:b9:49:b5:8b:2f:14:12:cc:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Validity Not Before: Jan 2 06:19:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a5164767c747045990fcebb813fff0e100d0f8af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:5c:1d:3d:fa:5f:14:d7:fd:84:32:9b:33:08: 11:7d:ed:b6:9b:f6:9e:fa:eb:b4:db:de:81:0c:38: 8c:fd:04:e9:72:03:69:72:d4:60:8b:f1:3e:d1:c5: f1:51:e7:b3:00:40:da:77:cb:70:ca:3a:8b:cf:c4: 09:55:88:1b:52:05:18:9c:62:9d:89:c6:81:19:c4: c5:4f:56:9b:e1:03:05:f0:df:ec:0e:3d:39:66:50: b9:65:6d:24:1e:3b:97:98:c0:ef:66:d4:06:1b:32: 86:35:ae:36:6d:77:3a:da:1e:6f:64:4d:4b:cf:4d: 67:6d:e8:16:86:2e:d7:35:e3:90:1d:30:aa:e4:ff: 96:60:6f:2c:3a:86:cd:bf:ad:fd:06:30:ec:d6:68: bb:11:c6:56:4d:b8:5a:c5:66:52:5f:63:51:18:a8: e7:87:05:20:99:18:a8:d2:b0:1a:f7:96:9b:49:de: 9a:8d:aa:19:b8:e2:7c:e8:77:b2:be:b8:2d:6b:a6: c1:bf:92:f9:65:08:ab:af:7f:d5:29:b1:03:5b:67: 72:a5:ee:55:a7:46:ab:44:78:73:6b:b9:ee:19:ea: 03:83:72:6d:e5:f6:8e:9b:e8:cc:77:79:ae:cf:a0: 7a:9b:4c:9d:2b:c4:66:88:12:4e:84:71:8a:cb:a0: 15:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:16:47:67:C7:47:04:59:90:FC:EB:B8:13:FF:F0:E1:00:D0:F8:AF X509v3 Authority Key Identifier: keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/pRZHZ8dHBFmQ_Ou4E__w4QDQ-K8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:b107:11d0::/46 Signature Algorithm: sha256WithRSAEncryption 99:49:db:32:c5:2a:07:2a:79:54:f6:c2:29:60:6e:07:0c:da: cb:d1:e2:ff:bf:42:3c:f2:42:8a:4f:47:f8:e9:5c:9b:13:85: 1a:64:ee:68:d9:89:b5:4e:64:77:3a:dc:c2:c3:a2:db:3c:cc: 37:c7:e1:8e:d1:50:e8:89:f0:3b:07:77:3b:bf:18:fc:bb:fd: 20:da:69:cf:28:7c:8b:ec:7e:96:af:e7:68:45:6e:51:84:90: 54:aa:91:32:5d:06:7f:be:03:33:51:d1:4e:53:68:06:5f:67: 6f:bc:87:b3:54:c1:32:cc:54:92:6e:8c:e1:da:b5:02:b3:3e: fc:51:20:7b:64:3c:05:f4:50:1b:87:9d:f4:f3:91:e4:f8:a8: bd:42:6f:3c:b7:e7:77:47:4d:87:a5:96:c2:d4:81:2b:f3:3b: 53:4f:39:9a:97:aa:0e:63:39:ad:c7:b7:42:67:9a:9e:29:71: f9:0a:5d:02:82:cc:d4:b7:90:f0:38:c3:ae:a4:01:62:a3:2c: 62:1f:dd:c5:68:c0:c2:9c:87:2f:3b:de:da:79:be:45:c6:11: c8:04:e5:78:0b:e2:c8:4a:25:92:65:1c:21:a5:f4:4c:1e:f5: 3a:a8:2f:9b:70:76:5c:ab:bd:7c:d7:63:28:7a:98:b0:0b:e8: 09:06:1a:5d -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9XL3BU6mKuUm1iy8UEsxaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw ZmFkOWIwHhcNMjYwMTAyMDYxOTQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNTE2NDc2N2M3NDcwNDU5OTBmY2ViYjgxM2ZmZjBlMTAwZDBmOGFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4lwdPfpfFNf9hDKbMwgRfe22m/ae +uu0296BDDiM/QTpcgNpctRgi/E+0cXxUeezAEDad8twyjqLz8QJVYgbUgUYnGKd icaBGcTFT1ab4QMF8N/sDj05ZlC5ZW0kHjuXmMDvZtQGGzKGNa42bXc62h5vZE1L z01nbegWhi7XNeOQHTCq5P+WYG8sOobNv639BjDs1mi7EcZWTbhaxWZSX2NRGKjn hwUgmRio0rAa95abSd6ajaoZuOJ86Heyvrgta6bBv5L5ZQirr3/VKbEDW2dype5V p0arRHhza7nuGeoDg3Jt5faOm+jMd3muz6B6m0ydK8RmiBJOhHGKy6AVbwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFKUWR2fHRwRZkPzruBP/8OEA0PivMB8GA1UdIwQY MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt ZGM1ZWM3NDhmNmE1LzEvcFJaSFo4ZEhCRm1RX091NEVfX3c0UURRLUs4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1 LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcCKg6xBxHQ MA0GCSqGSIb3DQEBCwUAA4IBAQCZSdsyxSoHKnlU9sIpYG4HDNrL0eL/v0I88kKK T0f46VybE4UaZO5o2Ym1TmR3OtzCw6LbPMw3x+GO0VDoifA7B3c7vxj8u/0g2mnP KHyL7H6Wr+doRW5RhJBUqpEyXQZ/vgMzUdFOU2gGX2dvvIezVMEyzFSSbozh2rUC sz78USB7ZDwF9FAbh53085Hk+Ki9Qm88t+d3R02HpZbC1IEr8ztTTzmal6oOYzmt x7dCZ5qeKXH5Cl0CgszUt5DwOMOupAFioyxiH93FaMDCnIcvO97aeb5FxhHIBOV4 C+LISiWSZRwhpfRMHvU6qC+bcHZcq71812MoepiwC+gJBhpd -----END CERTIFICATE-----Generated at Fri Jan 9 13:13:09 2026 by rpki-client