This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/sGcaGdS7oj6r1KgWkFInRTS4nLY.roa File: sGcaGdS7oj6r1KgWkFInRTS4nLY.roa (raw, json) Hash identifier: AkTvbFafzUiPrgtIqD2miRhRbsGyfxSYTsuPi32M/Fw= Subject key identifier: B0:67:1A:19:D4:BB:A2:3E:AB:D4:A8:16:90:52:27:45:34:B8:9C:B6 Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Certificate serial: 019B7D5D27DD11EEEAB774A70E1403F2AFB4 Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/sGcaGdS7oj6r1KgWkFInRTS4nLY.roa Signing time: Fri 02 Jan 2026 06:20:15 +0000 ROA not before: Fri 02 Jan 2026 06:20:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210562 IP address blocks: 2a0e:97c0:620::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:27:dd:11:ee:ea:b7:74:a7:0e:14:03:f2:af:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Validity Not Before: Jan 2 06:20:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b0671a19d4bba23eabd4a8169052274534b89cb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:86:b1:11:9b:4e:b8:f5:f6:dc:79:2a:ca:a0: 81:6e:f2:54:c5:09:ab:3c:0e:84:2a:77:35:3f:0d: 2f:e8:4e:59:1d:db:e7:68:e7:5d:e3:90:a4:6c:8d: 57:88:7f:69:17:c6:25:13:08:57:46:fc:81:67:ab: a2:3e:ff:90:8d:2d:96:d1:cb:c6:d5:4f:61:03:d5: 8d:2c:b8:81:07:a4:b9:fa:da:c5:4d:94:14:04:a8: 46:c6:9d:26:23:a6:7c:33:b7:7b:82:e9:f5:ff:1c: da:b8:48:ef:88:59:4b:cb:5b:56:f6:4a:93:51:1a: e0:dd:56:98:02:74:c8:88:f9:31:87:fb:91:8e:a0: f8:f9:f9:75:56:17:ae:f4:75:0a:22:56:b8:f2:0a: e5:19:2b:43:56:76:bc:38:e2:c0:94:a5:75:d3:6f: 4b:9a:47:41:3a:cc:c9:1d:36:bf:87:9a:89:0e:c6: 49:b2:8c:04:f9:99:2b:42:ca:e7:6a:4d:f4:16:c7: 0a:db:9c:44:b2:9a:c7:5f:dd:c2:81:54:b9:4e:12: 8e:35:a9:40:76:5c:6c:c6:dc:8a:57:41:be:b6:85: e5:80:b2:05:e1:a2:f9:b0:ca:3a:8b:15:60:af:42: 3e:05:67:13:01:1d:ab:63:f7:7b:f2:5f:b8:1f:5a: 34:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:67:1A:19:D4:BB:A2:3E:AB:D4:A8:16:90:52:27:45:34:B8:9C:B6 X509v3 Authority Key Identifier: keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/sGcaGdS7oj6r1KgWkFInRTS4nLY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:97c0:620::/44 Signature Algorithm: sha256WithRSAEncryption a2:d6:b9:6f:08:0f:70:96:99:92:f1:f6:c3:4c:2f:85:b5:71: 74:cd:a8:17:41:81:4e:f8:75:c1:a5:d2:08:be:79:9c:ae:f5: 50:5d:86:a9:ac:03:f9:24:8e:43:3d:35:93:5c:eb:65:13:4e: 5c:55:66:1a:3b:3d:d8:08:bf:2b:ff:b8:0f:30:75:b4:9f:3e: 7a:bc:c5:a0:d7:f3:e4:3a:d2:72:a6:d5:ee:54:fc:05:18:e0: 36:af:1b:3c:dc:aa:29:cf:29:50:07:81:92:08:df:79:63:e1: af:16:7b:16:a8:d2:02:56:f5:d0:19:fb:c1:ae:d0:09:ce:e5: 68:4e:7f:c5:8b:45:1b:35:88:42:de:b8:12:ac:38:bb:3c:4f: d1:77:73:17:53:e1:76:26:f0:87:6a:3f:45:64:2f:c2:9c:fc: be:c8:ad:b5:e2:51:42:3c:0d:04:a7:46:5b:ad:56:ef:e6:33: 82:07:cf:88:94:1e:06:4c:21:6d:74:97:98:a5:10:e9:2f:b1: 06:0c:98:d1:68:26:a2:38:16:15:2e:cd:f1:6e:41:b1:53:d8: 93:8a:1a:c6:77:22:bb:9c:34:79:ab:fd:b9:a5:48:60:0f:59: 95:14:f8:43:af:1a:77:0d:b6:5c:15:1d:6b:fb:a1:73:1f:ad: 4b:79:73:bd -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9XSfdEe7qt3SnDhQD8q+0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw ZmFkOWIwHhcNMjYwMTAyMDYyMDE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMDY3MWExOWQ0YmJhMjNlYWJkNGE4MTY5MDUyMjc0NTM0Yjg5Y2I2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyYaxEZtOuPX23HkqyqCBbvJUxQmr PA6EKnc1Pw0v6E5ZHdvnaOdd45CkbI1XiH9pF8YlEwhXRvyBZ6uiPv+QjS2W0cvG 1U9hA9WNLLiBB6S5+trFTZQUBKhGxp0mI6Z8M7d7gun1/xzauEjviFlLy1tW9kqT URrg3VaYAnTIiPkxh/uRjqD4+fl1Vheu9HUKIla48grlGStDVna8OOLAlKV1029L mkdBOszJHTa/h5qJDsZJsowE+ZkrQsrnak30FscK25xEsprHX93CgVS5ThKONalA dlxsxtyKV0G+toXlgLIF4aL5sMo6ixVgr0I+BWcTAR2rY/d78l+4H1o0vwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFLBnGhnUu6I+q9SoFpBSJ0U0uJy2MB8GA1UdIwQY MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt ZGM1ZWM3NDhmNmE1LzEvc0djYUdkUzdvajZyMUtnV2tGSW5SVFM0bkxZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1 LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6XwAYg MA0GCSqGSIb3DQEBCwUAA4IBAQCi1rlvCA9wlpmS8fbDTC+FtXF0zagXQYFO+HXB pdIIvnmcrvVQXYaprAP5JI5DPTWTXOtlE05cVWYaOz3YCL8r/7gPMHW0nz56vMWg 1/PkOtJyptXuVPwFGOA2rxs83KopzylQB4GSCN95Y+GvFnsWqNICVvXQGfvBrtAJ zuVoTn/Fi0UbNYhC3rgSrDi7PE/Rd3MXU+F2JvCHaj9FZC/CnPy+yK214lFCPA0E p0ZbrVbv5jOCB8+IlB4GTCFtdJeYpRDpL7EGDJjRaCaiOBYVLs3xbkGxU9iTihrG dyK7nDR5q/25pUhgD1mVFPhDrxp3DbZcFR1r+6FzH61LeXO9 -----END CERTIFICATE-----Generated at Fri Jan 9 13:13:23 2026 by rpki-client