This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/WAWNpiY2vwMuD_j8ek6kZ6L9jDw.roa File: WAWNpiY2vwMuD_j8ek6kZ6L9jDw.roa (raw, json) Hash identifier: Aqg/w+ScPNsoJT+d0QU5LliDLOZxPSYw1XwmYdmE6pI= Subject key identifier: 58:05:8D:A6:26:36:BF:03:2E:0F:F8:FC:7A:4E:A4:67:A2:FD:8C:3C Certificate issuer: /CN=0321bfea0305c48e949e6c249f4810b46905c886 Certificate serial: 019B7AC7F7C18D30C3142424C787E29AF95F Authority key identifier: 03:21:BF:EA:03:05:C4:8E:94:9E:6C:24:9F:48:10:B4:69:05:C8:86 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AyG_6gMFxI6Unmwkn0gQtGkFyIY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/WAWNpiY2vwMuD_j8ek6kZ6L9jDw.roa Signing time: Thu 01 Jan 2026 18:18:03 +0000 ROA not before: Thu 01 Jan 2026 18:18:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 393262 IP address blocks: 45.10.131.0/24 maxlen: 24 77.81.141.0/24 maxlen: 24 78.159.151.0/24 maxlen: 24 89.44.34.0/24 maxlen: 24 91.92.32.0/24 maxlen: 24 91.92.36.0/24 maxlen: 24 91.92.37.0/24 maxlen: 24 91.231.3.0/24 maxlen: 24 95.214.76.0/24 maxlen: 24 95.214.77.0/24 maxlen: 24 95.214.78.0/24 maxlen: 24 95.214.79.0/24 maxlen: 24 194.147.64.0/24 maxlen: 24 194.147.65.0/24 maxlen: 24 212.11.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.mft rsync://rpki.ripe.net/repository/DEFAULT/AyG_6gMFxI6Unmwkn0gQtGkFyIY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:f7:c1:8d:30:c3:14:24:24:c7:87:e2:9a:f9:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321bfea0305c48e949e6c249f4810b46905c886 Validity Not Before: Jan 1 18:18:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=58058da62636bf032e0ff8fc7a4ea467a2fd8c3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:38:4d:86:7f:dc:4a:ec:89:ed:9d:49:2d:e4: 14:1a:00:03:80:b1:c9:47:2e:f8:2b:a7:04:77:39: 5d:ea:a5:c9:a2:26:6c:7f:12:93:8f:19:e3:4f:c3: 17:02:a5:c0:40:d7:3b:ae:96:66:94:d8:51:c8:c5: bc:fe:b2:ec:5b:fa:2b:eb:8e:10:ca:8c:a6:26:8b: 23:44:23:2b:7d:e2:0f:a9:5b:a0:8e:fb:31:fd:a2: 22:fc:02:a3:20:05:45:0b:90:43:6f:37:d1:dc:f7: 62:39:09:f8:1f:b0:a4:29:52:4f:e7:eb:8a:57:6a: 87:1b:c3:54:df:2b:6a:86:2a:7b:d8:4a:3c:23:0f: b8:63:16:b0:6c:8b:cb:bc:c6:ce:e8:a3:12:1f:59: f7:ee:0c:30:d7:af:5e:3c:8b:ce:d6:0a:37:72:19: 82:ba:68:bf:e7:eb:64:ec:bd:9c:fb:a2:96:78:4f: 90:0b:6d:58:55:f7:c9:02:94:80:c5:a2:f6:e9:c3: 0a:82:58:f1:7a:ed:7b:8b:15:8c:27:0c:30:03:84: 04:ff:32:cf:8a:cc:a9:65:75:a8:a0:5c:ff:f3:92: fa:66:76:94:64:b4:ed:89:d7:b0:dd:17:5d:03:58: 38:e9:21:c5:5e:13:61:0e:5c:59:f3:a0:df:67:32: a4:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:05:8D:A6:26:36:BF:03:2E:0F:F8:FC:7A:4E:A4:67:A2:FD:8C:3C X509v3 Authority Key Identifier: keyid:03:21:BF:EA:03:05:C4:8E:94:9E:6C:24:9F:48:10:B4:69:05:C8:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AyG_6gMFxI6Unmwkn0gQtGkFyIY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/WAWNpiY2vwMuD_j8ek6kZ6L9jDw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.10.131.0/24 77.81.141.0/24 78.159.151.0/24 89.44.34.0/24 91.92.32.0/24 91.92.36.0/23 91.231.3.0/24 95.214.76.0/22 194.147.64.0/23 212.11.95.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:e5:65:05:33:93:9a:aa:6a:72:6d:f3:c4:0f:b5:14:63:0d: 20:4b:4d:ed:0e:9d:55:d2:a7:86:bc:e3:ef:be:87:dc:9d:29: 29:81:74:9e:21:03:82:da:7a:ea:41:fd:2a:ee:03:bf:6b:b3: 6e:4a:b1:22:6a:b3:52:ef:89:28:00:74:3e:05:04:5c:ea:98: 2b:56:ec:c8:3d:56:c7:40:07:21:cf:39:f2:8b:81:b5:ff:b4: 08:c0:0b:73:68:2f:f3:ac:1a:d3:a3:37:17:0a:27:19:cd:0a: 5a:fa:57:aa:91:5c:d3:8f:b4:17:9b:af:26:cc:a3:27:c9:a3: ff:76:ce:85:97:be:f0:e0:44:3e:2a:d4:7c:2b:b2:78:5b:44: 21:15:64:6e:e4:14:30:8f:f3:fb:7e:9e:74:04:fe:65:0b:ce: 30:92:7b:4a:5d:64:ba:f8:44:27:04:ef:43:1c:2e:27:11:eb: 81:b8:07:33:60:98:80:61:5c:0d:47:59:03:9f:d4:7a:7c:6c: f2:db:2d:3b:20:e3:d7:9f:9d:ae:27:de:e9:d4:af:11:f4:c3: ec:66:f2:86:56:28:de:fc:89:4f:65:f0:d8:28:78:b0:e3:b5: e0:ab:c7:ed:9a:90:e4:98:82:d1:4b:fb:f0:ee:e1:93:b1:c1: 8d:02:e1:c4 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgISAZt6x/fBjTDDFCQkx4fimvlfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAzMjFiZmVhMDMwNWM0OGU5NDllNmMyNDlmNDgxMGI0Njkw NWM4ODYwHhcNMjYwMTAxMTgxODAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ODA1OGRhNjI2MzZiZjAzMmUwZmY4ZmM3YTRlYTQ2N2EyZmQ4YzNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtDhNhn/cSuyJ7Z1JLeQUGgADgLHJ Ry74K6cEdzld6qXJoiZsfxKTjxnjT8MXAqXAQNc7rpZmlNhRyMW8/rLsW/or644Q yoymJosjRCMrfeIPqVugjvsx/aIi/AKjIAVFC5BDbzfR3PdiOQn4H7CkKVJP5+uK V2qHG8NU3ytqhip72Eo8Iw+4YxawbIvLvMbO6KMSH1n37gww169ePIvO1go3chmC umi/5+tk7L2c+6KWeE+QC21YVffJApSAxaL26cMKgljxeu17ixWMJwwwA4QE/zLP isypZXWooFz/85L6ZnaUZLTtidew3RddA1g46SHFXhNhDlxZ86DfZzKkwQIDAQAB o4ICPzCCAjswHQYDVR0OBBYEFFgFjaYmNr8DLg/4/HpOpGei/Yw8MB8GA1UdIwQY MBaAFAMhv+oDBcSOlJ5sJJ9IELRpBciGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQXlHXzZnTUZ4STZVbm13a24wZ1F0R2tGeUlZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS8xMWRhMmItNzdiZC00MWM3LWJiZjMt NTYwYzllN2MwNzQ3LzEvV0FXTnBpWTJ2d011RF9qOGVrNmtaNkw5akR3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS8xMWRhMmItNzdiZC00MWM3LWJiZjMtNTYwYzllN2MwNzQ3 LzEvQXlHXzZnTUZ4STZVbm13a24wZ1F0R2tGeUlZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFUGCCsGAQUFBwEHAQH/BEYwRDBCBAIAATA8AwQALQqDAwQA TVGNAwQATp+XAwQAWSwiAwQAW1wgAwQBW1wkAwQAW+cDAwQCX9ZMAwQBwpNAAwQA 1AtfMA0GCSqGSIb3DQEBCwUAA4IBAQA65WUFM5OaqmpybfPED7UUYw0gS03tDp1V 0qeGvOPvvofcnSkpgXSeIQOC2nrqQf0q7gO/a7NuSrEiarNS74koAHQ+BQRc6pgr VuzIPVbHQAchzznyi4G1/7QIwAtzaC/zrBrTozcXCicZzQpa+leqkVzTj7QXm68m zKMnyaP/ds6Fl77w4EQ+KtR8K7J4W0QhFWRu5BQwj/P7fp50BP5lC84wkntKXWS6 +EQnBO9DHC4nEeuBuAczYJiAYVwNR1kDn9R6fGzy2y07IOPXn52uJ97p1K8R9MPs ZvKGVije/IlPZfDYKHiw47Xgq8ftmpDkmILRS/vw7uGTscGNAuHE -----END CERTIFICATE-----Generated at Sun Jan 25 23:16:33 2026 by rpki-client