This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/WskagO6bCwTQcwB7d_fzf3cdeI0.roa File: WskagO6bCwTQcwB7d_fzf3cdeI0.roa (raw, json) Hash identifier: uVNMY6xrkiM26LXeGtpPm7fSn/FV5Pa+qtC9Vr6WBRk= Subject key identifier: 5A:C9:1A:80:EE:9B:0B:04:D0:73:00:7B:77:F7:F3:7F:77:1D:78:8D Certificate issuer: /CN=baa0f258eef4b2bf4bbaa8430c1e58ca8c188ea7 Certificate serial: 019B77C6B12EEE0A3AF7FA51DD1CE22974BE Authority key identifier: BA:A0:F2:58:EE:F4:B2:BF:4B:BA:A8:43:0C:1E:58:CA:8C:18:8E:A7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/WskagO6bCwTQcwB7d_fzf3cdeI0.roa Signing time: Thu 01 Jan 2026 04:17:48 +0000 ROA not before: Thu 01 Jan 2026 04:17:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211852 IP address blocks: 2a12:2fc7::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.crl rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.mft rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:b1:2e:ee:0a:3a:f7:fa:51:dd:1c:e2:29:74:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=baa0f258eef4b2bf4bbaa8430c1e58ca8c188ea7 Validity Not Before: Jan 1 04:17:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5ac91a80ee9b0b04d073007b77f7f37f771d788d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:1c:be:5b:b9:fd:90:21:a3:bb:cf:c2:74:f1: 25:36:b1:bd:87:d6:e0:d3:4c:ba:c2:09:3d:93:03: 84:61:90:6f:07:d0:ae:29:e6:a5:65:f6:51:61:f8: 3c:a8:e6:d7:91:b9:26:c9:87:eb:d5:54:01:d9:d1: 8e:1b:f1:c6:7a:96:9d:93:1a:5f:7d:39:17:8f:a3: 2e:ef:af:eb:e2:82:ef:3c:b0:d2:56:1b:c8:5c:2f: 52:65:c1:8d:2b:68:ae:bb:ed:71:28:78:8c:4e:08: 37:1f:f0:5d:a9:bf:dc:5b:97:97:e5:b6:aa:16:8f: 19:88:ca:a7:c9:97:ca:ec:1f:6d:0b:06:db:9e:cd: e8:d0:9f:1d:62:cc:cf:5d:9d:48:c9:06:69:f5:a5: 75:32:dd:9b:1f:ab:1e:d9:fa:22:03:7e:99:34:2d: 96:2f:77:46:8f:10:a3:1a:e6:6c:a5:7e:96:df:4d: 3e:7c:e7:a9:1d:ba:b6:26:a9:65:c4:03:58:9f:4b: 83:c3:52:dd:74:db:07:7b:78:95:ee:b3:83:38:63: cb:c8:ac:71:69:f0:6a:47:04:46:2f:42:dd:30:4c: 37:2a:34:87:80:4d:67:81:62:30:ec:da:f2:c5:65: 1c:67:0a:42:c4:e0:8d:68:9c:c6:a3:b0:67:aa:f7: a5:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:C9:1A:80:EE:9B:0B:04:D0:73:00:7B:77:F7:F3:7F:77:1D:78:8D X509v3 Authority Key Identifier: keyid:BA:A0:F2:58:EE:F4:B2:BF:4B:BA:A8:43:0C:1E:58:CA:8C:18:8E:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/WskagO6bCwTQcwB7d_fzf3cdeI0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:2fc7::/32 Signature Algorithm: sha256WithRSAEncryption 96:66:e7:ad:c8:19:53:a5:e1:d7:b0:45:7b:02:08:75:ad:82: 12:e8:65:df:92:4d:7c:c0:ae:e7:5b:83:68:c4:f8:9e:be:91: 1c:a5:ca:55:84:a0:cb:a4:2f:01:f6:a6:1c:ca:99:cf:78:a1: bb:02:a8:88:25:39:48:7b:ec:b0:57:fd:34:73:98:f7:5c:a1: 13:80:7f:5c:32:4e:78:32:0a:5e:91:a2:6b:c7:7c:8a:3f:0a: 82:2e:1b:a7:6d:be:8b:6e:ae:04:2d:5a:0e:10:94:99:d7:8b: a1:b4:f4:96:b5:19:03:cb:47:8f:b0:e9:07:41:ae:4e:34:48: 3e:59:f9:f3:ce:d3:44:21:32:f9:bb:fa:a8:50:63:ac:83:7d: 18:0f:a2:c6:0b:59:91:4a:8e:75:98:d9:eb:4d:69:0f:71:68: 09:5e:19:a5:02:6c:12:6a:55:5e:37:03:a0:bd:4e:95:cb:96: 8a:6b:6c:dc:96:84:e6:21:2e:af:5b:32:a4:a9:43:27:26:da: 40:c9:53:0a:d7:47:93:1c:33:18:68:bf:9f:5e:66:12:5f:09: d6:a0:77:60:eb:72:a6:58:14:a2:5a:e1:fe:4a:8a:ef:6c:62: e6:9a:59:30:89:23:bb:23:3c:0d:16:8f:ee:e6:bc:d5:32:d3: c3:b5:94:51 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt3xrEu7go69/pR3RziKXS+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhYTBmMjU4ZWVmNGIyYmY0YmJhYTg0MzBjMWU1OGNhOGMx ODhlYTcwHhcNMjYwMTAxMDQxNzQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YWM5MWE4MGVlOWIwYjA0ZDA3MzAwN2I3N2Y3ZjM3Zjc3MWQ3ODhkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+By+W7n9kCGju8/CdPElNrG9h9bg 00y6wgk9kwOEYZBvB9CuKealZfZRYfg8qObXkbkmyYfr1VQB2dGOG/HGepadkxpf fTkXj6Mu76/r4oLvPLDSVhvIXC9SZcGNK2iuu+1xKHiMTgg3H/Bdqb/cW5eX5baq Fo8ZiMqnyZfK7B9tCwbbns3o0J8dYszPXZ1IyQZp9aV1Mt2bH6se2foiA36ZNC2W L3dGjxCjGuZspX6W300+fOepHbq2JqllxANYn0uDw1LddNsHe3iV7rODOGPLyKxx afBqRwRGL0LdMEw3KjSHgE1ngWIw7NryxWUcZwpCxOCNaJzGo7BnqveleQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFFrJGoDumwsE0HMAe3f38393HXiNMB8GA1UdIwQY MBaAFLqg8lju9LK/S7qoQwweWMqMGI6nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXFEeVdPNzBzcjlMdXFoRERCNVl5b3dZanFjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS81ZTBlZTEtYzgzMy00MjQxLTk2MGEt ZTU3NjhkNmIxODJjLzEvV3NrYWdPNmJDd1RRY3dCN2RfZnpmM2NkZUkwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS81ZTBlZTEtYzgzMy00MjQxLTk2MGEtZTU3NjhkNmIxODJj LzEvdXFEeVdPNzBzcjlMdXFoRERCNVl5b3dZanFjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhIvxzAN BgkqhkiG9w0BAQsFAAOCAQEAlmbnrcgZU6Xh17BFewIIda2CEuhl35JNfMCu51uD aMT4nr6RHKXKVYSgy6QvAfamHMqZz3ihuwKoiCU5SHvssFf9NHOY91yhE4B/XDJO eDIKXpGia8d8ij8Kgi4bp22+i26uBC1aDhCUmdeLobT0lrUZA8tHj7DpB0GuTjRI Pln5887TRCEy+bv6qFBjrIN9GA+ixgtZkUqOdZjZ601pD3FoCV4ZpQJsEmpVXjcD oL1OlcuWimts3JaE5iEur1sypKlDJybaQMlTCtdHkxwzGGi/n15mEl8J1qB3YOty plgUolrh/kqK72xi5ppZMIkjuyM8DRaP7ua81TLTw7WUUQ== -----END CERTIFICATE-----Generated at Sun Jan 25 20:48:22 2026 by rpki-client