This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/pxvwZ83GQsd2xDFU232Uh7bybX4.roa File: pxvwZ83GQsd2xDFU232Uh7bybX4.roa (raw, json) Hash identifier: wTQyNgjrlPNNWRBqCTTjBvEsBojPl8WoXlgNibVwY1s= Subject key identifier: A7:1B:F0:67:CD:C6:42:C7:76:C4:31:54:DB:7D:94:87:B6:F2:6D:7E Certificate issuer: /CN=2631166de785a3531bdc8361f1190a8369a7ed6a Certificate serial: 019B77C737E8A4137D8677395CE420850955 Authority key identifier: 26:31:16:6D:E7:85:A3:53:1B:DC:83:61:F1:19:0A:83:69:A7:ED:6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/pxvwZ83GQsd2xDFU232Uh7bybX4.roa Signing time: Thu 01 Jan 2026 04:18:23 +0000 ROA not before: Thu 01 Jan 2026 04:18:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211623 IP address blocks: 2a00:1ca8:56::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.mft rsync://rpki.ripe.net/repository/DEFAULT/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:37:e8:a4:13:7d:86:77:39:5c:e4:20:85:09:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2631166de785a3531bdc8361f1190a8369a7ed6a Validity Not Before: Jan 1 04:18:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a71bf067cdc642c776c43154db7d9487b6f26d7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:71:c8:b8:61:d0:a7:f9:49:7f:6f:7f:fa:68: ed:a2:f1:22:77:7c:ba:1c:a6:90:3c:d5:f0:c0:d9: c6:e6:b7:6f:8e:47:ac:a1:01:f9:b3:c0:9a:fd:5c: 04:5f:68:cc:3a:59:c9:e8:fd:d7:fc:da:75:eb:8c: e3:aa:82:e9:c8:59:99:69:e1:9b:73:82:e2:77:b4: 91:2a:94:06:52:8c:87:b0:12:9c:82:51:5e:ee:bd: 73:cd:04:b6:0a:af:63:1e:f3:9e:bd:13:d5:69:b5: ad:86:c4:eb:cf:38:7d:2c:cd:eb:2a:3d:f9:cf:ae: 34:f8:1d:10:25:f0:b1:0c:82:84:8c:ab:44:8e:58: 9f:e0:29:fc:a6:74:a5:eb:5a:99:93:cf:bb:29:5e: b5:6e:b2:23:e0:fc:25:98:10:4d:75:a7:c8:a6:e2: 89:be:80:03:73:73:a1:de:7e:44:37:e8:d0:16:c4: 32:c4:9d:c7:2c:dc:b2:33:87:21:5e:53:8f:83:d9: 73:26:27:a2:de:4a:f7:37:09:95:1f:36:ba:98:fc: 4c:a4:7d:9c:d2:95:b7:49:9a:06:ec:23:c1:a7:fd: 21:08:a9:75:ca:46:ce:9a:f0:6c:ac:66:d0:31:b2: bc:f7:9c:7c:ca:f1:bd:fc:2b:30:09:73:7b:c8:b8: b2:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:1B:F0:67:CD:C6:42:C7:76:C4:31:54:DB:7D:94:87:B6:F2:6D:7E X509v3 Authority Key Identifier: keyid:26:31:16:6D:E7:85:A3:53:1B:DC:83:61:F1:19:0A:83:69:A7:ED:6A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/pxvwZ83GQsd2xDFU232Uh7bybX4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a00:1ca8:56::/48 Signature Algorithm: sha256WithRSAEncryption 42:0e:24:a0:13:01:6c:8b:e3:df:93:30:7a:14:04:81:d2:a4: 23:f7:70:a8:18:89:9a:ed:86:15:05:6a:71:fc:3c:fc:84:e1: a5:ff:64:d2:7a:ab:78:a0:00:61:78:54:b8:f8:86:4f:0f:5e: f5:c4:79:8e:3c:7b:94:ec:8d:ea:24:1c:73:67:05:f9:77:45: f0:a5:73:0d:19:c2:6c:77:9b:dd:b9:70:e5:fc:4a:41:49:62: 6f:2c:19:7b:1b:ec:95:22:05:94:c9:20:57:80:42:37:3f:79: 26:4b:21:4e:f4:7f:dc:08:0e:13:c4:5f:95:86:32:46:34:82: 29:1d:6e:f8:41:ba:5b:21:25:3d:34:ab:57:07:84:dc:02:c7: 3d:2c:5e:cb:eb:61:25:e3:e7:4f:17:de:77:13:6c:c5:9b:37: f3:6e:24:f0:01:a4:cd:bc:4e:05:ab:64:6d:0a:27:cd:3c:4b: c4:f7:de:60:75:ef:ba:09:8b:dc:85:70:0f:69:75:06:f4:4f: 08:9d:73:ed:4d:56:7b:c5:59:88:eb:83:d5:34:c4:6d:d5:cd: 7f:26:c8:60:30:2f:6e:4f:3e:f1:a3:1a:c2:53:a0:b8:02:cc: c0:4b:6b:8e:f7:77:b3:29:36:99:46:6a:bc:23:31:d5:e5:3c: 3f:9a:ce:8e -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt3xzfopBN9hnc5XOQghQlVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI2MzExNjZkZTc4NWEzNTMxYmRjODM2MWYxMTkwYTgzNjlh N2VkNmEwHhcNMjYwMTAxMDQxODIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNzFiZjA2N2NkYzY0MmM3NzZjNDMxNTRkYjdkOTQ4N2I2ZjI2ZDdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA03HIuGHQp/lJf29/+mjtovEid3y6 HKaQPNXwwNnG5rdvjkesoQH5s8Ca/VwEX2jMOlnJ6P3X/Np164zjqoLpyFmZaeGb c4Lid7SRKpQGUoyHsBKcglFe7r1zzQS2Cq9jHvOevRPVabWthsTrzzh9LM3rKj35 z640+B0QJfCxDIKEjKtEjlif4Cn8pnSl61qZk8+7KV61brIj4PwlmBBNdafIpuKJ voADc3Oh3n5EN+jQFsQyxJ3HLNyyM4chXlOPg9lzJiei3kr3NwmVHza6mPxMpH2c 0pW3SZoG7CPBp/0hCKl1ykbOmvBsrGbQMbK895x8yvG9/CswCXN7yLiydwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFKcb8GfNxkLHdsQxVNt9lIe28m1+MB8GA1UdIwQY MBaAFCYxFm3nhaNTG9yDYfEZCoNpp+1qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSmpFV2JlZUZvMU1iM0lOaDhSa0tnMm1uN1dvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS9mYjAxNTctNjc0Ni00YjAwLThmOGUt Yjg5YTI2MTk5OTc2LzEvcHh2d1o4M0dRc2QyeERGVTIzMlVoN2J5Ylg0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS9mYjAxNTctNjc0Ni00YjAwLThmOGUtYjg5YTI2MTk5OTc2 LzEvSmpFV2JlZUZvMU1iM0lOaDhSa0tnMm1uN1dvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgAcqABW MA0GCSqGSIb3DQEBCwUAA4IBAQBCDiSgEwFsi+PfkzB6FASB0qQj93CoGIma7YYV BWpx/Dz8hOGl/2TSeqt4oABheFS4+IZPD171xHmOPHuU7I3qJBxzZwX5d0XwpXMN GcJsd5vduXDl/EpBSWJvLBl7G+yVIgWUySBXgEI3P3kmSyFO9H/cCA4TxF+VhjJG NIIpHW74QbpbISU9NKtXB4TcAsc9LF7L62El4+dPF953E2zFmzfzbiTwAaTNvE4F q2RtCifNPEvE995gde+6CYvchXAPaXUG9E8InXPtTVZ7xVmI64PVNMRt1c1/Jshg MC9uTz7xoxrCU6C4AszAS2uO93ezKTaZRmq8IzHV5Tw/ms6O -----END CERTIFICATE-----Generated at Wed Jan 21 15:36:55 2026 by rpki-client