This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/DhOCkjzW9MgsGj78hHdeaiB4bzI.roa File: DhOCkjzW9MgsGj78hHdeaiB4bzI.roa (raw, json) Hash identifier: eDiKC/dbSM8dPyrgc80+JS/0/yBQ/FZpk7ENo3a0Boo= Subject key identifier: 0E:13:82:92:3C:D6:F4:C8:2C:1A:3E:FC:84:77:5E:6A:20:78:6F:32 Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Certificate serial: 019B7D5CFC7FA938DFEBCB5274AD9C90B77E Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/DhOCkjzW9MgsGj78hHdeaiB4bzI.roa Signing time: Fri 02 Jan 2026 06:20:04 +0000 ROA not before: Fri 02 Jan 2026 06:20:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204617 IP address blocks: 2a0e:97c0:b40::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:fc:7f:a9:38:df:eb:cb:52:74:ad:9c:90:b7:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Validity Not Before: Jan 2 06:20:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0e1382923cd6f4c82c1a3efc84775e6a20786f32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:b6:bf:28:5a:6f:27:45:be:85:7a:51:31:9e: 8e:e4:2b:b1:21:72:0e:57:9a:d0:72:84:ea:05:7f: e9:76:a2:77:3e:32:0e:3e:15:5e:14:9b:e6:e2:ea: f9:00:92:e4:53:2f:63:e5:33:dd:14:c8:4a:45:c2: 22:a6:3b:77:36:4f:9b:a1:40:4d:d3:f1:a5:bd:b8: 5f:ff:ba:b2:d9:61:59:29:ca:40:43:4c:c9:ab:ef: b1:41:f9:f4:2f:10:c9:49:35:9e:84:93:56:27:43: f4:e3:3a:f3:ac:35:ae:87:54:65:b3:c6:5b:87:f7: 70:be:31:5d:f0:e3:28:2d:13:79:cd:83:a4:c7:fc: 29:91:75:1e:79:61:87:ca:25:7f:3d:22:e8:fc:8f: b7:96:6f:12:d9:16:32:aa:e5:08:71:32:cd:ca:b0: 28:1f:e4:cc:dd:4b:07:0d:43:c0:20:d0:f1:5d:6e: cd:e6:4f:fe:4a:ef:31:e4:22:4e:9b:4e:3c:be:17: 3b:2d:1f:fa:ba:aa:30:92:b9:b6:12:18:7f:42:3d: 17:b8:9c:db:99:0b:15:ff:0a:f8:df:44:19:ba:4d: db:0d:2a:93:6d:99:ea:3e:7f:a5:a0:c8:3b:aa:4c: 6c:24:b0:fe:9c:0d:f1:f2:e4:34:5b:c9:14:1d:c3: d7:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:13:82:92:3C:D6:F4:C8:2C:1A:3E:FC:84:77:5E:6A:20:78:6F:32 X509v3 Authority Key Identifier: keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/DhOCkjzW9MgsGj78hHdeaiB4bzI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:97c0:b40::/44 Signature Algorithm: sha256WithRSAEncryption 9f:f4:ab:2d:c6:f0:c5:8e:db:5b:41:c7:d3:13:6b:7f:d2:cb: a5:47:97:1a:08:eb:11:dd:30:f3:73:24:8e:ac:60:7a:a3:e4: e4:d5:f7:99:7a:48:38:64:82:6c:11:b3:da:18:44:43:60:43: 88:52:99:60:04:2f:1c:72:82:56:02:60:c8:b3:fc:92:85:35: ce:41:00:14:7c:be:33:dc:89:7f:cb:34:b0:ff:b4:06:c5:66: cc:4d:32:26:ce:1e:21:c0:ab:3e:14:d7:63:e3:d6:e3:9d:1c: 57:ed:57:f6:2d:f6:46:3d:61:85:d5:82:72:68:e5:be:07:8d: ef:8a:fa:b4:bd:f3:23:cf:0f:0e:cf:72:66:55:3e:f1:0d:d0: 10:ae:46:fa:3a:1a:c6:5b:bc:24:2d:e6:d4:31:98:16:b9:21: 84:19:53:f5:f9:e8:77:1f:98:33:69:ff:94:87:c0:0c:06:46: 37:eb:94:09:d4:a6:5a:04:6b:6a:44:37:39:ac:10:25:9a:a7: 97:56:41:10:a0:90:95:b2:81:bb:12:5f:19:33:f2:c2:3d:04: 39:8c:d0:48:0b:fd:9c:68:13:0f:8c:c7:75:40:4d:18:6f:c6: 33:2a:56:1f:d0:0f:cf:2f:0d:a1:9a:15:1a:4d:d8:37:72:7d: 6b:b1:bc:96 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9XPx/qTjf68tSdK2ckLd+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw ZmFkOWIwHhcNMjYwMTAyMDYyMDA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZTEzODI5MjNjZDZmNGM4MmMxYTNlZmM4NDc3NWU2YTIwNzg2ZjMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl7a/KFpvJ0W+hXpRMZ6O5CuxIXIO V5rQcoTqBX/pdqJ3PjIOPhVeFJvm4ur5AJLkUy9j5TPdFMhKRcIipjt3Nk+boUBN 0/Glvbhf/7qy2WFZKcpAQ0zJq++xQfn0LxDJSTWehJNWJ0P04zrzrDWuh1Rls8Zb h/dwvjFd8OMoLRN5zYOkx/wpkXUeeWGHyiV/PSLo/I+3lm8S2RYyquUIcTLNyrAo H+TM3UsHDUPAINDxXW7N5k/+Su8x5CJOm048vhc7LR/6uqowkrm2Ehh/Qj0XuJzb mQsV/wr430QZuk3bDSqTbZnqPn+loMg7qkxsJLD+nA3x8uQ0W8kUHcPXEwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFA4TgpI81vTILBo+/IR3XmogeG8yMB8GA1UdIwQY MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt ZGM1ZWM3NDhmNmE1LzEvRGhPQ2tqelc5TWdzR2o3OGhIZGVhaUI0YnpJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1 LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6XwAtA MA0GCSqGSIb3DQEBCwUAA4IBAQCf9KstxvDFjttbQcfTE2t/0sulR5caCOsR3TDz cySOrGB6o+Tk1feZekg4ZIJsEbPaGERDYEOIUplgBC8ccoJWAmDIs/yShTXOQQAU fL4z3Il/yzSw/7QGxWbMTTImzh4hwKs+FNdj49bjnRxX7Vf2LfZGPWGF1YJyaOW+ B43vivq0vfMjzw8Oz3JmVT7xDdAQrkb6OhrGW7wkLebUMZgWuSGEGVP1+eh3H5gz af+Uh8AMBkY365QJ1KZaBGtqRDc5rBAlmqeXVkEQoJCVsoG7El8ZM/LCPQQ5jNBI C/2caBMPjMd1QE0Yb8YzKlYf0A/PLw2hmhUaTdg3cn1rsbyW -----END CERTIFICATE-----Generated at Sun Jan 11 23:53:26 2026 by rpki-client