This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/W__alkBuZRj8gzkXd-vzfVbHK2Q.roa File: W__alkBuZRj8gzkXd-vzfVbHK2Q.roa (raw, json) Hash identifier: 0kBZjg6sW5SXO3x1fTOof+1+5GjGHO22pAAtjoqsY2Q= Subject key identifier: 5B:FF:DA:96:40:6E:65:18:FC:83:39:17:77:EB:F3:7D:56:C7:2B:64 Certificate issuer: /CN=1c390bff65dcedca813d7a10d7ec328c2f6eac34 Certificate serial: 019B7EA71E2D2AB1F70026B370E43516785B Authority key identifier: 1C:39:0B:FF:65:DC:ED:CA:81:3D:7A:10:D7:EC:32:8C:2F:6E:AC:34 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/W__alkBuZRj8gzkXd-vzfVbHK2Q.roa Signing time: Fri 02 Jan 2026 12:20:39 +0000 ROA not before: Fri 02 Jan 2026 12:20:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35052 IP address blocks: 2001:678:1c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.crl rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.mft rsync://rpki.ripe.net/repository/DEFAULT/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 21:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:1e:2d:2a:b1:f7:00:26:b3:70:e4:35:16:78:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c390bff65dcedca813d7a10d7ec328c2f6eac34 Validity Not Before: Jan 2 12:20:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5bffda96406e6518fc83391777ebf37d56c72b64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:d4:1f:e4:7e:59:0d:7b:63:8a:7f:34:e9:18: 86:a9:07:19:3a:79:72:75:ff:21:0e:ff:b9:f8:cd: c1:dc:4c:ae:57:67:f0:00:57:15:9a:79:2b:e7:ee: d0:43:d5:94:9b:01:cb:ec:9e:7a:f8:8a:f8:20:7c: c3:70:0d:9f:8d:ed:5f:c7:a9:90:07:2d:5b:77:00: ce:60:72:8f:4d:8c:f0:58:e0:72:fa:0d:09:cb:06: 6c:6d:11:ad:86:e9:5a:6f:48:e0:72:f1:ae:46:28: e5:89:00:0b:dc:3c:9c:d3:db:15:df:50:c2:76:9c: 70:95:85:13:f4:31:bf:02:1d:b0:b7:6b:89:1b:df: 21:07:34:88:64:51:98:05:9e:8f:1a:fa:f6:5f:d2: 35:ca:cd:66:c2:cc:11:e1:2e:e2:d9:b4:9e:cf:29: a0:7d:aa:55:86:8e:d6:ad:96:67:61:ec:19:f7:6b: 46:5d:e2:70:a2:4c:cd:66:d7:0f:d5:76:86:ae:2b: 1f:91:e0:55:d7:aa:0a:2e:74:6c:1c:fd:68:5d:98: ac:10:20:f0:91:01:f1:aa:49:ba:b9:e5:00:0b:0c: 0e:aa:44:e7:b1:0e:e5:6f:68:82:06:ad:42:ec:09: 2f:5b:d4:41:39:73:65:35:20:cb:8d:a8:ec:3c:e4: 9b:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:FF:DA:96:40:6E:65:18:FC:83:39:17:77:EB:F3:7D:56:C7:2B:64 X509v3 Authority Key Identifier: keyid:1C:39:0B:FF:65:DC:ED:CA:81:3D:7A:10:D7:EC:32:8C:2F:6E:AC:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/W__alkBuZRj8gzkXd-vzfVbHK2Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:1c::/48 Signature Algorithm: sha256WithRSAEncryption 3f:33:7f:81:cb:62:6a:19:7e:10:43:d0:03:32:ce:6a:a3:f9: 31:63:0a:4d:a0:f6:a3:29:69:b4:8a:8c:df:8c:3c:c2:9f:73: f3:d3:a9:74:31:09:87:df:98:f3:bd:0c:04:60:93:8c:c8:02: 13:41:f8:03:51:55:43:91:3f:8d:35:8f:9f:5a:72:a5:5d:ae: 07:46:4d:d6:5c:1d:0a:35:68:12:48:9a:59:cd:50:68:2f:e5: ef:82:4d:b0:7c:b5:e3:0d:c2:5c:10:49:e3:c4:6e:b5:7b:51: 2d:f2:85:9b:d6:33:15:ff:2e:ce:38:fb:10:a0:a6:9a:04:9e: fb:aa:03:dd:33:4b:a2:22:b0:4f:71:f8:99:be:c7:d5:39:c5: 85:70:24:c6:96:a9:7e:89:94:f2:82:6c:02:fc:92:4c:22:09: fa:e9:04:53:0b:29:72:e7:d5:b9:4b:97:ce:b4:57:ab:b8:e8: f6:9f:da:a8:4f:f1:e2:8d:48:3f:97:e1:18:6e:a7:0b:dc:18: f8:3e:ff:7e:ef:6d:67:07:8e:0e:9f:41:85:bd:9c:07:2f:d7: 8a:8d:dc:6e:08:2e:7f:89:29:80:32:9c:f9:0d:5a:a7:c7:56: 0a:49:c2:5a:a2:2a:0f:94:20:8d:62:55:e2:ea:bc:cc:4c:0d: 59:41:26:fb -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+px4tKrH3ACazcOQ1FnhbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjMzkwYmZmNjVkY2VkY2E4MTNkN2ExMGQ3ZWMzMjhjMmY2 ZWFjMzQwHhcNMjYwMTAyMTIyMDM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YmZmZGE5NjQwNmU2NTE4ZmM4MzM5MTc3N2ViZjM3ZDU2YzcyYjY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmdQf5H5ZDXtjin806RiGqQcZOnly df8hDv+5+M3B3EyuV2fwAFcVmnkr5+7QQ9WUmwHL7J56+Ir4IHzDcA2fje1fx6mQ By1bdwDOYHKPTYzwWOBy+g0JywZsbRGthulab0jgcvGuRijliQAL3Dyc09sV31DC dpxwlYUT9DG/Ah2wt2uJG98hBzSIZFGYBZ6PGvr2X9I1ys1mwswR4S7i2bSezymg fapVho7WrZZnYewZ92tGXeJwokzNZtcP1XaGrisfkeBV16oKLnRsHP1oXZisECDw kQHxqkm6ueUACwwOqkTnsQ7lb2iCBq1C7AkvW9RBOXNlNSDLjajsPOSbkQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFFv/2pZAbmUY/IM5F3fr831WxytkMB8GA1UdIwQY MBaAFBw5C/9l3O3KgT16ENfsMowvbqw0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSERrTF8yWGM3Y3FCUFhvUTEtd3lqQzl1ckRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi8zNDgxMDQtOGE0MS00OTQ5LTg1NTIt YTk3NjVlZGM3OTVjLzEvV19fYWxrQnVaUmo4Z3prWGQtdnpmVmJISzJRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNi8zNDgxMDQtOGE0MS00OTQ5LTg1NTItYTk3NjVlZGM3OTVj LzEvSERrTF8yWGM3Y3FCUFhvUTEtd3lqQzl1ckRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAAc MA0GCSqGSIb3DQEBCwUAA4IBAQA/M3+By2JqGX4QQ9ADMs5qo/kxYwpNoPajKWm0 iozfjDzCn3Pz06l0MQmH35jzvQwEYJOMyAITQfgDUVVDkT+NNY+fWnKlXa4HRk3W XB0KNWgSSJpZzVBoL+Xvgk2wfLXjDcJcEEnjxG61e1Et8oWb1jMV/y7OOPsQoKaa BJ77qgPdM0uiIrBPcfiZvsfVOcWFcCTGlql+iZTygmwC/JJMIgn66QRTCyly59W5 S5fOtFeruOj2n9qoT/HijUg/l+EYbqcL3Bj4Pv9+721nB44On0GFvZwHL9eKjdxu CC5/iSmAMpz5DVqnx1YKScJaoioPlCCNYlXi6rzMTA1ZQSb7 -----END CERTIFICATE-----Generated at Tue Jan 27 07:13:44 2026 by rpki-client