This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/OR__XszIIRTLQp-PImMcoiecYMw.roa File: OR__XszIIRTLQp-PImMcoiecYMw.roa (raw, json) Hash identifier: 31v/DK1PRqi9FobSSRP/a0XOcQpNNeLE+sv5F0cXKvA= Subject key identifier: 39:1F:FF:5E:CC:C8:21:14:CB:42:9F:8F:22:63:1C:A2:27:9C:60:CC Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Certificate serial: 019B7D5CEDFEDB2F0A9718AB3E18C14B808F Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/OR__XszIIRTLQp-PImMcoiecYMw.roa Signing time: Fri 02 Jan 2026 06:20:00 +0000 ROA not before: Fri 02 Jan 2026 06:20:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202647 IP address blocks: 2a10:2f00:18c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:ed:fe:db:2f:0a:97:18:ab:3e:18:c1:4b:80:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Validity Not Before: Jan 2 06:20:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=391fff5eccc82114cb429f8f22631ca2279c60cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:38:57:c8:2a:58:e5:a9:96:8b:a5:60:2e:51: ad:19:4d:8e:62:39:cf:0e:6d:02:19:b9:35:07:ab: 61:33:ff:0a:d6:ce:10:0a:75:5d:10:e4:db:3a:b9: bd:5e:49:93:dd:7b:77:9b:3c:80:1c:ff:bf:2f:8e: e8:3b:47:31:14:2d:73:fd:dd:c6:01:77:7c:4e:d5: 3b:0a:b6:1d:42:ca:ba:d8:6f:ae:54:b3:6c:95:b1: 2f:c9:53:29:93:76:4f:ab:e4:cc:df:80:00:8c:05: ab:1d:ba:74:e9:60:ba:7b:e9:e2:8d:a2:ad:af:ea: 1f:58:34:23:2c:5d:14:19:0e:59:fd:7b:7c:ea:83: 65:63:47:a0:ae:d0:5a:6d:d7:c0:e6:73:ce:d6:53: c0:9f:4d:93:7a:72:68:1d:a2:4b:c6:eb:46:eb:22: 0c:07:19:d2:51:d0:5a:2d:5a:f1:21:59:d4:67:9f: c7:00:24:dc:35:91:b2:c2:52:74:25:b2:44:b7:fa: 7d:bb:bc:f2:80:47:17:bd:27:11:38:dc:4e:a4:59: 2d:b2:17:48:03:92:23:1c:58:73:ba:ea:b8:a3:b9: 92:79:5b:58:ff:1f:a7:72:08:31:ca:dc:4f:08:a0: f8:d1:56:ad:17:39:20:5a:35:ba:59:c9:ac:e2:5f: 74:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:1F:FF:5E:CC:C8:21:14:CB:42:9F:8F:22:63:1C:A2:27:9C:60:CC X509v3 Authority Key Identifier: keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/OR__XszIIRTLQp-PImMcoiecYMw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a10:2f00:18c::/48 Signature Algorithm: sha256WithRSAEncryption 51:23:e7:16:45:7a:7a:50:31:1f:9f:34:48:47:48:bb:c2:d8: 11:53:81:80:f8:1a:d9:c3:65:19:e9:5f:68:47:1c:51:96:83: 59:e6:02:3a:e2:bc:40:d4:eb:5b:a3:08:a6:0f:be:e8:33:b8: 68:8d:f6:9f:4c:9e:72:53:31:c4:d5:89:5f:08:32:29:3b:37: f3:db:a9:32:d9:b3:af:91:f3:85:70:a1:07:75:63:c5:f3:9b: 8c:fa:f9:c4:94:4e:00:d3:8c:94:a0:07:55:b0:e5:8c:ae:07: 48:54:35:23:6c:f2:00:d4:d5:32:81:7a:e5:15:db:78:ca:61: c5:58:cd:7c:41:13:3d:de:16:a1:f2:03:da:13:11:0e:36:b7: b4:36:2a:63:1c:83:86:93:39:01:06:7c:b7:4d:0c:a1:01:6f: 3d:5a:db:8f:4e:af:df:13:60:82:fc:70:27:2d:c3:dc:c0:3b: 5a:ef:b1:c0:28:d5:bf:0a:b8:ed:34:05:80:ca:e6:a0:8e:a4: 09:5d:85:b8:6a:79:2d:fe:be:9c:e6:6e:80:01:f2:f7:bd:9b: 66:5b:a9:f5:8f:83:88:ab:d6:74:e5:75:95:c2:52:df:6c:e5: 76:da:d4:38:fa:ed:a6:b5:3b:cd:f8:a0:0b:91:b9:d6:d2:62: c4:e1:fe:58 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9XO3+2y8KlxirPhjBS4CPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw ZmFkOWIwHhcNMjYwMTAyMDYyMDAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzOTFmZmY1ZWNjYzgyMTE0Y2I0MjlmOGYyMjYzMWNhMjI3OWM2MGNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvDhXyCpY5amWi6VgLlGtGU2OYjnP Dm0CGbk1B6thM/8K1s4QCnVdEOTbOrm9XkmT3Xt3mzyAHP+/L47oO0cxFC1z/d3G AXd8TtU7CrYdQsq62G+uVLNslbEvyVMpk3ZPq+TM34AAjAWrHbp06WC6e+nijaKt r+ofWDQjLF0UGQ5Z/Xt86oNlY0egrtBabdfA5nPO1lPAn02TenJoHaJLxutG6yIM BxnSUdBaLVrxIVnUZ5/HACTcNZGywlJ0JbJEt/p9u7zygEcXvScRONxOpFktshdI A5IjHFhzuuq4o7mSeVtY/x+ncggxytxPCKD40VatFzkgWjW6Wcms4l90/wIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFDkf/17MyCEUy0KfjyJjHKInnGDMMB8GA1UdIwQY MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt ZGM1ZWM3NDhmNmE1LzEvT1JfX1hzeklJUlRMUXAtUEltTWNvaWVjWU13LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1 LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhAvAAGM MA0GCSqGSIb3DQEBCwUAA4IBAQBRI+cWRXp6UDEfnzRIR0i7wtgRU4GA+BrZw2UZ 6V9oRxxRloNZ5gI64rxA1OtbowimD77oM7hojfafTJ5yUzHE1YlfCDIpOzfz26ky 2bOvkfOFcKEHdWPF85uM+vnElE4A04yUoAdVsOWMrgdIVDUjbPIA1NUygXrlFdt4 ymHFWM18QRM93hah8gPaExEONre0NipjHIOGkzkBBny3TQyhAW89WtuPTq/fE2CC /HAnLcPcwDta77HAKNW/CrjtNAWAyuagjqQJXYW4ankt/r6c5m6AAfL3vZtmW6n1 j4OIq9Z05XWVwlLfbOV22tQ4+u2mtTvN+KALkbnW0mLE4f5Y -----END CERTIFICATE-----Generated at Sun Jan 11 23:53:52 2026 by rpki-client