This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/kTsesydZ13YBG5rw7rZSNwqBj-g.roa File: kTsesydZ13YBG5rw7rZSNwqBj-g.roa (raw, json) Hash identifier: UCgzvaCv5/6zQf6vS6yY0wth3//tZL1jcmDAZNH9NZw= Subject key identifier: 91:3B:1E:B3:27:59:D7:76:01:1B:9A:F0:EE:B6:52:37:0A:81:8F:E8 Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Certificate serial: 019B7D5CC9F1F353978BD9096FA329393011 Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/kTsesydZ13YBG5rw7rZSNwqBj-g.roa Signing time: Fri 02 Jan 2026 06:19:51 +0000 ROA not before: Fri 02 Jan 2026 06:19:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 140961 IP address blocks: 2a0e:b107:2220::/45 maxlen: 48 2a0e:b107:2228::/45 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:c9:f1:f3:53:97:8b:d9:09:6f:a3:29:39:30:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Validity Not Before: Jan 2 06:19:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=913b1eb32759d776011b9af0eeb652370a818fe8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:d1:c9:3a:e8:c9:02:73:1e:14:47:b5:17:b7: f0:b3:f5:d6:62:12:b4:1c:97:ff:78:e0:e4:0d:47: a1:c8:c9:de:60:53:1c:25:18:33:ce:2f:3f:5f:cb: 02:f7:44:3e:26:bc:9c:20:6b:5b:d3:6d:1d:56:94: 4a:66:b4:df:68:b4:a8:3c:e2:dc:fc:ed:10:0d:a8: 74:1a:84:65:20:a8:c6:72:dd:be:79:3f:bc:e9:73: b3:64:f7:63:5b:bd:bb:f0:0c:61:eb:5b:40:10:2c: 37:b0:e5:77:e4:4f:76:b6:cd:99:a1:7c:7a:18:c4: d2:dc:ec:6c:ed:b5:3a:a7:e6:8c:1e:7e:87:84:f0: 4e:38:1d:85:ab:ab:4b:a6:f9:46:99:6b:40:84:9e: 0c:db:8b:17:0a:77:fd:c3:41:e0:fa:9f:54:33:b2: b6:b5:9a:b2:db:2a:bc:c6:15:c0:b5:c4:34:da:97: 84:6a:e0:44:3d:c9:b8:56:ba:83:67:81:1f:57:d0: c8:1e:0f:d1:82:b2:b5:14:98:25:f2:1a:a6:82:e7: bb:9e:71:1a:f7:eb:2c:e2:b8:a4:e2:19:26:04:67: 15:6d:51:ec:d1:62:71:e0:3d:41:24:00:5a:3b:ce: e0:e2:93:e7:03:9f:6f:24:d6:43:a5:75:94:b0:2b: 1d:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:3B:1E:B3:27:59:D7:76:01:1B:9A:F0:EE:B6:52:37:0A:81:8F:E8 X509v3 Authority Key Identifier: keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/kTsesydZ13YBG5rw7rZSNwqBj-g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:b107:2220::/44 Signature Algorithm: sha256WithRSAEncryption 7d:90:79:69:c7:78:1f:a4:7e:86:5d:16:2d:62:47:e8:01:92: 3c:d5:84:ba:88:d7:42:b0:46:40:bf:8c:1f:bb:68:f5:46:70: 04:37:2c:b1:38:08:68:42:6a:f2:6b:3e:aa:ee:d3:51:2d:08: 59:4f:1f:d4:ee:44:fe:45:b4:89:80:6a:d5:7d:5f:87:66:da: 8d:56:e4:eb:96:ff:33:cf:ef:29:d2:c1:c4:ef:c7:3d:6c:a7: 83:ae:56:25:f9:e6:12:3e:ac:29:2d:6b:b5:23:95:b0:08:5b: 71:47:ba:d9:99:99:49:e0:e9:de:ea:23:c8:77:4b:7d:4e:6c: 22:64:ae:4c:04:4e:17:10:37:c9:bc:cf:b8:02:7e:2b:26:29: aa:29:7c:cd:93:c0:f1:8a:73:5f:99:88:b8:df:35:16:e4:1b: 2b:1a:ab:47:4a:6f:91:a0:5e:a4:d1:88:f7:56:a8:79:ed:10: 5e:dd:19:07:82:f7:74:bd:ac:e0:ba:9f:0c:90:f0:50:30:7a: 76:0f:50:d8:90:fa:31:5e:08:2b:74:86:1e:b3:8f:91:7c:d3: 09:e4:96:48:cf:67:f4:87:f3:d5:64:0a:6b:a8:e8:ec:b7:cc: 28:46:9d:f9:f6:be:61:a1:ff:f6:5b:d0:1e:70:f5:18:0c:36: d5:24:02:0f -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9XMnx81OXi9kJb6MpOTARMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw ZmFkOWIwHhcNMjYwMTAyMDYxOTUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MTNiMWViMzI3NTlkNzc2MDExYjlhZjBlZWI2NTIzNzBhODE4ZmU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnNHJOujJAnMeFEe1F7fws/XWYhK0 HJf/eODkDUehyMneYFMcJRgzzi8/X8sC90Q+JrycIGtb020dVpRKZrTfaLSoPOLc /O0QDah0GoRlIKjGct2+eT+86XOzZPdjW7278Axh61tAECw3sOV35E92ts2ZoXx6 GMTS3Oxs7bU6p+aMHn6HhPBOOB2Fq6tLpvlGmWtAhJ4M24sXCnf9w0Hg+p9UM7K2 tZqy2yq8xhXAtcQ02peEauBEPcm4VrqDZ4EfV9DIHg/RgrK1FJgl8hqmgue7nnEa 9+ss4rik4hkmBGcVbVHs0WJx4D1BJABaO87g4pPnA59vJNZDpXWUsCsdmwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFJE7HrMnWdd2ARua8O62UjcKgY/oMB8GA1UdIwQY MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt ZGM1ZWM3NDhmNmE1LzEva1RzZXN5ZFoxM1lCRzVydzdyWlNOd3FCai1nLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1 LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6xByIg MA0GCSqGSIb3DQEBCwUAA4IBAQB9kHlpx3gfpH6GXRYtYkfoAZI81YS6iNdCsEZA v4wfu2j1RnAENyyxOAhoQmryaz6q7tNRLQhZTx/U7kT+RbSJgGrVfV+HZtqNVuTr lv8zz+8p0sHE78c9bKeDrlYl+eYSPqwpLWu1I5WwCFtxR7rZmZlJ4One6iPId0t9 TmwiZK5MBE4XEDfJvM+4An4rJimqKXzNk8DxinNfmYi43zUW5BsrGqtHSm+RoF6k 0Yj3Vqh57RBe3RkHgvd0vazgup8MkPBQMHp2D1DYkPoxXggrdIYes4+RfNMJ5JZI z2f0h/PVZAprqOjst8woRp359r5hof/2W9AecPUYDDbVJAIP -----END CERTIFICATE-----Generated at Sun Jan 11 23:53:29 2026 by rpki-client