This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/pvkeumZZEvxuDNdT83dgVOfDzMI.roa File: pvkeumZZEvxuDNdT83dgVOfDzMI.roa (raw, json) Hash identifier: d7HgsNTda3wZs9ahfVTdCLL5F7OEC0GTLDfGDtKuu3c= Subject key identifier: A6:F9:1E:BA:66:59:12:FC:6E:0C:D7:53:F3:77:60:54:E7:C3:CC:C2 Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Certificate serial: 019B7D5D677427DCD450F403985E39980A24 Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/pvkeumZZEvxuDNdT83dgVOfDzMI.roa Signing time: Fri 02 Jan 2026 06:20:31 +0000 ROA not before: Fri 02 Jan 2026 06:20:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213901 IP address blocks: 2a0e:97c0:430::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:67:74:27:dc:d4:50:f4:03:98:5e:39:98:0a:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Validity Not Before: Jan 2 06:20:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a6f91eba665912fc6e0cd753f3776054e7c3ccc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:16:df:06:69:b8:7b:c1:f7:5f:72:bf:29:03: 5e:f1:87:24:33:17:ee:6a:92:a6:64:3b:da:42:3a: ba:20:33:b3:1d:29:de:1c:97:8c:dd:89:11:f4:49: 99:c9:cc:1a:18:5b:0a:ad:bb:cb:d9:21:bc:28:23: 2f:4d:72:08:1f:cc:f6:9c:64:78:c6:34:c0:62:48: f5:b0:5a:82:0a:31:30:8b:dd:1e:dc:c9:cf:eb:56: f8:54:b1:37:81:a6:4f:49:9d:10:fd:01:cb:9d:a6: 12:9c:0d:25:c8:77:49:f6:53:17:ab:e2:e0:4f:ac: e5:80:c8:5b:99:5b:cd:a8:27:ae:85:e0:f2:dc:65: f8:a9:3c:77:da:cd:e7:8c:ba:34:60:97:49:4c:e4: 33:77:d0:5c:34:53:2e:78:a2:df:1a:7f:25:9d:d0: 14:d3:71:b1:d7:2f:f6:d8:0b:99:c2:c4:e2:8b:3c: 78:4d:d0:aa:e4:4e:45:00:37:a6:3e:1c:ad:8a:49: b1:26:04:73:00:6f:47:2d:4c:2d:89:6d:d7:51:f3: b2:97:b1:f5:8f:23:9c:44:81:54:09:f0:24:ea:28: c9:25:e1:39:84:78:a5:28:1a:c8:97:0d:91:f8:a8: 50:5d:1a:86:32:c3:4a:17:4d:00:d8:1d:14:99:02: 8f:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:F9:1E:BA:66:59:12:FC:6E:0C:D7:53:F3:77:60:54:E7:C3:CC:C2 X509v3 Authority Key Identifier: keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/pvkeumZZEvxuDNdT83dgVOfDzMI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:97c0:430::/44 Signature Algorithm: sha256WithRSAEncryption 1c:01:be:51:5c:c9:c0:0c:10:a6:07:8b:de:d7:ec:cb:ee:5f: bf:c2:67:ed:80:aa:07:cf:f3:7e:5b:7f:4c:f1:1a:bb:ed:dc: 7a:bb:d4:68:d4:c0:17:3a:3a:77:cf:06:d1:3f:92:ee:9d:35: 55:77:9c:be:d0:05:28:a2:04:fe:53:64:bf:6a:01:a0:7b:4c: 6e:e9:b8:ba:55:86:dc:33:1e:d4:d8:1a:4a:84:71:13:73:ca: 49:a6:c8:7e:9a:f9:b3:08:ae:ee:fc:3c:f5:a8:1e:17:d7:8b: 08:5f:01:7f:43:57:14:47:92:ab:08:c0:20:5a:c0:52:c9:82: 84:e1:4a:cd:35:f6:73:0a:88:0b:2e:66:a7:7b:94:c9:d7:83: 87:0b:91:a6:08:02:a1:40:0d:34:54:e3:31:bb:67:9f:ee:03: bc:74:09:a4:39:bd:ca:7d:c4:a3:b8:0a:86:49:d0:bd:94:73: e5:a7:d7:f0:f3:17:6f:6c:6a:bb:a4:cf:85:05:a1:89:f4:11: a2:9d:69:ef:72:f2:23:67:cb:14:5c:ff:a4:d1:b7:3a:e0:98: b7:2a:a6:a2:bd:cf:4b:92:a0:1c:96:3f:f7:92:85:b3:d4:8a: 51:9f:c7:d3:05:32:8a:3f:82:f6:8a:35:29:05:3c:a5:77:de: 87:43:96:70 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9XWd0J9zUUPQDmF45mAokMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw ZmFkOWIwHhcNMjYwMTAyMDYyMDMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNmY5MWViYTY2NTkxMmZjNmUwY2Q3NTNmMzc3NjA1NGU3YzNjY2MyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5RbfBmm4e8H3X3K/KQNe8YckMxfu apKmZDvaQjq6IDOzHSneHJeM3YkR9EmZycwaGFsKrbvL2SG8KCMvTXIIH8z2nGR4 xjTAYkj1sFqCCjEwi90e3MnP61b4VLE3gaZPSZ0Q/QHLnaYSnA0lyHdJ9lMXq+Lg T6zlgMhbmVvNqCeuheDy3GX4qTx32s3njLo0YJdJTOQzd9BcNFMueKLfGn8lndAU 03Gx1y/22AuZwsTiizx4TdCq5E5FADemPhytikmxJgRzAG9HLUwtiW3XUfOyl7H1 jyOcRIFUCfAk6ijJJeE5hHilKBrIlw2R+KhQXRqGMsNKF00A2B0UmQKPCQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFKb5HrpmWRL8bgzXU/N3YFTnw8zCMB8GA1UdIwQY MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt ZGM1ZWM3NDhmNmE1LzEvcHZrZXVtWlpFdnh1RE5kVDgzZGdWT2ZEek1JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1 LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6XwAQw MA0GCSqGSIb3DQEBCwUAA4IBAQAcAb5RXMnADBCmB4ve1+zL7l+/wmftgKoHz/N+ W39M8Rq77dx6u9Ro1MAXOjp3zwbRP5LunTVVd5y+0AUoogT+U2S/agGge0xu6bi6 VYbcMx7U2BpKhHETc8pJpsh+mvmzCK7u/Dz1qB4X14sIXwF/Q1cUR5KrCMAgWsBS yYKE4UrNNfZzCogLLmane5TJ14OHC5GmCAKhQA00VOMxu2ef7gO8dAmkOb3KfcSj uAqGSdC9lHPlp9fw8xdvbGq7pM+FBaGJ9BGinWnvcvIjZ8sUXP+k0bc64Ji3Kqai vc9LkqAclj/3koWz1IpRn8fTBTKKP4L2ijUpBTyld96HQ5Zw -----END CERTIFICATE-----Generated at Sun Jan 11 23:53:23 2026 by rpki-client