This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/XMbxSExnt2fDsOR3N-qiZesR3gs.roa File: XMbxSExnt2fDsOR3N-qiZesR3gs.roa (raw, json) Hash identifier: EfWKo++VJJ+025Q3Q/2t0zwzO1tk1UzDmNPRmSoxfNI= Subject key identifier: 5C:C6:F1:48:4C:67:B7:67:C3:B0:E4:77:37:EA:A2:65:EB:11:DE:0B Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Certificate serial: 019B7D5CC63EDF6D263F706C24CB0DD888ED Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/XMbxSExnt2fDsOR3N-qiZesR3gs.roa Signing time: Fri 02 Jan 2026 06:19:50 +0000 ROA not before: Fri 02 Jan 2026 06:19:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 138211 IP address blocks: 2a0e:b107:6d0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:c6:3e:df:6d:26:3f:70:6c:24:cb:0d:d8:88:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Validity Not Before: Jan 2 06:19:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5cc6f1484c67b767c3b0e47737eaa265eb11de0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c5:e2:59:29:17:71:7c:11:81:ae:71:20:aa: f4:c6:a3:18:61:be:dc:64:73:8f:42:7f:ad:f3:52: 9c:7f:c9:3f:de:8f:a6:4c:5b:fe:c6:f7:ce:dd:74: a2:8c:2f:94:aa:e5:73:80:04:bb:59:b6:82:2a:5b: 31:eb:63:bc:f0:14:c8:c0:ff:75:c7:3b:46:08:bf: 14:5e:10:a0:41:7b:68:30:49:d7:d3:25:71:32:ae: d9:5d:fc:aa:4e:63:65:54:62:cd:01:c9:d4:44:cd: 87:c7:13:e9:e8:2f:ba:10:e4:fd:a5:d7:e0:87:31: 42:1a:ef:6c:39:ed:8f:92:af:d5:ef:15:01:e2:52: 2f:47:66:1a:cc:0a:24:7c:f8:da:f5:40:d7:f5:4d: c5:58:00:b2:f8:ff:d1:5b:42:92:d4:91:bf:d3:96: a2:47:bd:56:1a:1a:71:59:5e:b0:a9:f8:6a:7a:70: 71:7e:19:1e:59:9d:4e:27:0d:c9:b3:b9:bc:ed:d1: e8:52:18:4d:21:88:41:b6:11:89:40:9b:e9:b7:44: 75:53:6f:2a:22:90:88:42:54:ca:41:bb:79:46:d8: db:ad:85:da:1e:49:46:e2:b6:7f:4c:cf:b4:f7:26: e8:1b:ed:e2:a9:32:dd:82:e1:14:b3:32:4f:79:45: 37:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:C6:F1:48:4C:67:B7:67:C3:B0:E4:77:37:EA:A2:65:EB:11:DE:0B X509v3 Authority Key Identifier: keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/XMbxSExnt2fDsOR3N-qiZesR3gs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:b107:6d0::/44 Signature Algorithm: sha256WithRSAEncryption cb:d0:86:c8:d7:d3:c7:96:c2:8c:de:48:1b:42:04:3a:ea:47: 8b:3e:e3:30:10:db:77:65:65:1a:90:0c:80:9d:ed:65:ac:8e: c7:65:75:d6:c7:4c:fe:4f:ab:27:60:06:7e:39:dc:e4:0e:e4: e1:b9:62:9e:d9:d0:18:bf:aa:b6:ee:df:7e:91:2e:88:7f:1d: 47:08:6d:a8:bd:af:d0:c2:67:97:68:90:39:36:d9:48:70:70: 07:d4:98:e5:57:7d:33:a4:c0:67:97:d2:79:05:c8:a2:b4:bf: db:72:c2:b6:26:b1:1f:1d:e1:66:11:22:2c:78:d2:4c:c8:d8: 44:94:ff:f0:b8:03:e1:bb:f0:38:ee:66:5b:5a:ea:07:55:34: 2a:83:bd:85:6d:64:6b:cf:3b:3d:36:36:94:39:a2:85:8a:a0: be:63:8e:8c:05:b4:0b:5c:61:f4:7a:e9:b6:40:22:2b:f1:bc: 6b:7b:7a:de:33:a5:c9:93:5e:7e:ff:78:bf:04:8d:45:c0:22: 80:5c:ab:d1:06:38:cd:42:f7:69:30:36:c6:ea:a5:29:e9:fb: f1:d7:f8:ac:a0:af:da:6a:9b:b0:52:f7:34:5e:dd:58:da:8c: d9:7d:f6:d7:82:e9:e0:cc:55:a2:d0:8c:1c:58:65:79:ee:87: c8:8b:b2:fd -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9XMY+320mP3BsJMsN2IjtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw ZmFkOWIwHhcNMjYwMTAyMDYxOTUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1Y2M2ZjE0ODRjNjdiNzY3YzNiMGU0NzczN2VhYTI2NWViMTFkZTBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAssXiWSkXcXwRga5xIKr0xqMYYb7c ZHOPQn+t81Kcf8k/3o+mTFv+xvfO3XSijC+UquVzgAS7WbaCKlsx62O88BTIwP91 xztGCL8UXhCgQXtoMEnX0yVxMq7ZXfyqTmNlVGLNAcnURM2HxxPp6C+6EOT9pdfg hzFCGu9sOe2Pkq/V7xUB4lIvR2YazAokfPja9UDX9U3FWACy+P/RW0KS1JG/05ai R71WGhpxWV6wqfhqenBxfhkeWZ1OJw3Js7m87dHoUhhNIYhBthGJQJvpt0R1U28q IpCIQlTKQbt5RtjbrYXaHklG4rZ/TM+09yboG+3iqTLdguEUszJPeUU3+QIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFFzG8UhMZ7dnw7DkdzfqomXrEd4LMB8GA1UdIwQY MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt ZGM1ZWM3NDhmNmE1LzEvWE1ieFNFeG50MmZEc09SM04tcWlaZXNSM2dzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1 LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6xBwbQ MA0GCSqGSIb3DQEBCwUAA4IBAQDL0IbI19PHlsKM3kgbQgQ66keLPuMwENt3ZWUa kAyAne1lrI7HZXXWx0z+T6snYAZ+OdzkDuThuWKe2dAYv6q27t9+kS6Ifx1HCG2o va/QwmeXaJA5NtlIcHAH1JjlV30zpMBnl9J5BciitL/bcsK2JrEfHeFmESIseNJM yNhElP/wuAPhu/A47mZbWuoHVTQqg72FbWRrzzs9NjaUOaKFiqC+Y46MBbQLXGH0 eum2QCIr8bxre3reM6XJk15+/3i/BI1FwCKAXKvRBjjNQvdpMDbG6qUp6fvx1/is oK/aapuwUvc0Xt1Y2ozZffbXgungzFWi0IwcWGV57ofIi7L9 -----END CERTIFICATE-----Generated at Sun Jan 11 23:53:54 2026 by rpki-client