This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/a5kYHScaInG0Y3X9zIPcaSYDdiw.roa File: a5kYHScaInG0Y3X9zIPcaSYDdiw.roa (raw, json) Hash identifier: k/R/1mPi3TLbIU79OaWs63DGaFRv06gGGiDB0LVC04g= Subject key identifier: 6B:99:18:1D:27:1A:22:71:B4:63:75:FD:CC:83:DC:69:26:03:76:2C Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Certificate serial: 019B7D5D1567580DC5248F7679C4610F9849 Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/a5kYHScaInG0Y3X9zIPcaSYDdiw.roa Signing time: Fri 02 Jan 2026 06:20:10 +0000 ROA not before: Fri 02 Jan 2026 06:20:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208680 IP address blocks: 2a0e:b107:790::/48 maxlen: 48 2a0e:b107:791::/48 maxlen: 48 2a0e:b107:792::/48 maxlen: 48 2a0e:b107:793::/48 maxlen: 48 2a0e:b107:794::/48 maxlen: 48 2a0e:b107:795::/48 maxlen: 48 2a0e:b107:796::/48 maxlen: 48 2a0e:b107:797::/48 maxlen: 48 2a0e:b107:798::/48 maxlen: 48 2a0e:b107:799::/48 maxlen: 48 2a0e:b107:79a::/48 maxlen: 48 2a0e:b107:79b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:15:67:58:0d:c5:24:8f:76:79:c4:61:0f:98:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Validity Not Before: Jan 2 06:20:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6b99181d271a2271b46375fdcc83dc692603762c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:fd:dc:7a:27:b0:30:06:a9:45:82:03:af:3a: bb:ca:8b:14:87:e5:05:54:75:93:cc:7a:4c:bb:8c: a2:32:69:9d:f8:85:c4:4a:f8:4c:ab:8d:9e:41:80: d8:58:72:33:ae:87:70:08:99:80:9e:10:87:bd:fb: 35:36:da:d9:66:b1:84:f0:c7:c8:ce:54:1c:b9:93: 86:93:66:74:72:bf:a3:87:a1:ff:8d:c4:b6:0e:16: b1:d6:b6:96:d4:95:ad:86:f3:11:f0:df:09:b9:e6: 82:7e:f2:96:48:e9:fc:08:e6:52:2b:70:33:aa:b6: 85:42:f2:2f:34:16:04:85:03:54:1b:59:23:f6:66: e1:27:46:46:c9:77:84:da:3b:01:34:6b:4e:cd:16: 33:2f:0e:5d:0d:e6:68:98:c6:30:a5:80:10:7a:68: 13:ad:10:99:fc:92:8e:07:35:f8:22:95:38:86:99: 83:18:98:d3:d1:d2:bd:31:92:5c:a5:b9:0f:21:26: 8d:08:bb:e5:62:69:78:17:4d:ae:8d:62:90:31:c2: 1f:d5:88:71:4b:d2:30:66:3b:b5:b8:4e:2a:09:bb: 4d:8c:0d:f0:f3:8a:01:4f:4b:80:b1:05:33:74:2c: 98:73:fa:98:84:e7:20:73:b3:c5:01:fe:a5:51:25: 5e:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:99:18:1D:27:1A:22:71:B4:63:75:FD:CC:83:DC:69:26:03:76:2C X509v3 Authority Key Identifier: keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/a5kYHScaInG0Y3X9zIPcaSYDdiw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:b107:790::-2a0e:b107:79b:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 21:36:5b:ef:3d:dd:4b:66:3b:08:84:54:c8:43:45:1c:83:ce: 6a:f4:2e:da:96:98:5d:40:79:b6:a5:a2:44:1e:87:bc:51:e8: c9:48:ad:fb:8c:e0:05:d4:61:b1:70:c5:1c:fd:e1:d9:03:5a: 9b:db:a6:c1:1f:bf:21:e8:21:be:40:77:12:75:d8:cd:d8:d9: 7d:2d:d4:8e:8b:27:7f:e9:16:6f:83:6f:17:a8:62:88:7b:3c: c9:2d:b9:9b:1c:b0:97:14:75:ce:c0:48:31:2c:37:da:ac:00: ba:cb:9f:ef:7a:ba:1f:72:cf:ce:ce:54:23:b1:97:01:a5:01: e3:c6:b1:09:76:a2:11:42:16:1a:c9:0a:79:de:ac:49:6d:e5: 55:64:48:bb:36:7f:74:04:3c:38:bf:10:9a:80:68:66:d3:75: 99:01:d6:5d:41:d3:e5:6f:bc:59:ec:a1:9b:95:d2:5e:41:fc: 49:bb:ac:5d:43:ff:50:9b:37:ad:25:b8:20:13:e3:3d:67:4a: 02:52:4c:18:a9:9d:9b:2b:56:69:0b:d1:8b:25:2f:56:b9:23: 1d:6e:26:3e:58:5b:42:19:6b:d6:31:40:55:1b:b0:c4:75:a8: cc:2d:df:f9:c4:b7:5e:06:7e:f8:8f:90:58:ad:73:72:db:9a: 7e:9e:35:d3 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZt9XRVnWA3FJI92ecRhD5hJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw ZmFkOWIwHhcNMjYwMTAyMDYyMDEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2Yjk5MTgxZDI3MWEyMjcxYjQ2Mzc1ZmRjYzgzZGM2OTI2MDM3NjJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo/3ceiewMAapRYIDrzq7yosUh+UF VHWTzHpMu4yiMmmd+IXESvhMq42eQYDYWHIzrodwCJmAnhCHvfs1NtrZZrGE8MfI zlQcuZOGk2Z0cr+jh6H/jcS2Dhax1raW1JWthvMR8N8JueaCfvKWSOn8COZSK3Az qraFQvIvNBYEhQNUG1kj9mbhJ0ZGyXeE2jsBNGtOzRYzLw5dDeZomMYwpYAQemgT rRCZ/JKOBzX4IpU4hpmDGJjT0dK9MZJcpbkPISaNCLvlYml4F02ujWKQMcIf1Yhx S9IwZju1uE4qCbtNjA3w84oBT0uAsQUzdCyYc/qYhOcgc7PFAf6lUSVeUQIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFGuZGB0nGiJxtGN1/cyD3GkmA3YsMB8GA1UdIwQY MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt ZGM1ZWM3NDhmNmE1LzEvYTVrWUhTY2FJbkcwWTNYOXpJUGNhU1lEZGl3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1 LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUMBIDBwQqDrEH B5ADBwIqDrEHB5gwDQYJKoZIhvcNAQELBQADggEBACE2W+893UtmOwiEVMhDRRyD zmr0LtqWmF1AebalokQeh7xR6MlIrfuM4AXUYbFwxRz94dkDWpvbpsEfvyHoIb5A dxJ12M3Y2X0t1I6LJ3/pFm+DbxeoYoh7PMktuZscsJcUdc7ASDEsN9qsALrLn+96 uh9yz87OVCOxlwGlAePGsQl2ohFCFhrJCnnerElt5VVkSLs2f3QEPDi/EJqAaGbT dZkB1l1B0+VvvFnsoZuV0l5B/Em7rF1D/1CbN60luCAT4z1nSgJSTBipnZsrVmkL 0YslL1a5Ix1uJj5YW0IZa9YxQFUbsMR1qMwt3/nEt14GfviPkFitc3Lbmn6eNdM= -----END CERTIFICATE-----Generated at Sun Jan 11 23:53:51 2026 by rpki-client