This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/af41cb-ff91-459c-9a64-aba113f3e3ae/1/WMExniDkNilW8Ca6K2scKNWFfng.roa File: WMExniDkNilW8Ca6K2scKNWFfng.roa (raw, json) Hash identifier: kFeHB2m2ioqOfBMWJEcpqCW9jakGMmWIYvyS4MtQx1Q= Subject key identifier: 58:C1:31:9E:20:E4:36:29:56:F0:26:BA:2B:6B:1C:28:D5:85:7E:78 Certificate issuer: /CN=48abf29fdef8570502f4b51be5ffc05c4d9b3465 Certificate serial: 019B77C72E4A3751CA5CD542F000376F4521 Authority key identifier: 48:AB:F2:9F:DE:F8:57:05:02:F4:B5:1B:E5:FF:C0:5C:4D:9B:34:65 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SKvyn974VwUC9LUb5f_AXE2bNGU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/af41cb-ff91-459c-9a64-aba113f3e3ae/1/WMExniDkNilW8Ca6K2scKNWFfng.roa Signing time: Thu 01 Jan 2026 04:18:20 +0000 ROA not before: Thu 01 Jan 2026 04:18:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 216344 IP address blocks: 2a11:8a80:9000::/36 maxlen: 36 2a11:8a85:400::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/af41cb-ff91-459c-9a64-aba113f3e3ae/1/SKvyn974VwUC9LUb5f_AXE2bNGU.crl rsync://rpki.ripe.net/repository/DEFAULT/29/af41cb-ff91-459c-9a64-aba113f3e3ae/1/SKvyn974VwUC9LUb5f_AXE2bNGU.mft rsync://rpki.ripe.net/repository/DEFAULT/SKvyn974VwUC9LUb5f_AXE2bNGU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:2e:4a:37:51:ca:5c:d5:42:f0:00:37:6f:45:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=48abf29fdef8570502f4b51be5ffc05c4d9b3465 Validity Not Before: Jan 1 04:18:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=58c1319e20e4362956f026ba2b6b1c28d5857e78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:45:1d:dd:73:80:11:0e:08:4d:93:ec:a7:b3: 66:df:52:dc:24:a4:14:5b:8b:e6:1e:8c:d1:5e:59: 21:f6:79:3e:95:e7:18:10:6e:9a:0d:b4:b9:fd:38: 75:85:0c:fa:32:c8:06:bd:71:06:5f:20:93:16:fd: e8:bf:c4:bf:c7:b0:ed:ce:21:16:35:50:0a:4a:75: 4a:5c:0f:d3:a2:0f:c6:3e:15:18:67:9d:ab:c7:45: a1:b8:4c:a4:7b:68:b7:d6:4a:74:1f:e8:3b:d2:de: 62:2b:8c:f3:20:08:45:83:2e:08:6d:f5:54:ec:01: 8d:3a:e5:83:f6:d9:37:23:a7:c2:f0:97:7d:d6:2c: a5:32:c6:c1:06:ec:55:51:ef:5d:e0:13:98:bf:3d: 04:19:a5:48:db:f4:4a:be:33:04:cb:02:54:d3:c3: c2:16:03:3b:a3:ff:20:9e:a0:52:27:fc:d1:86:6f: bf:fb:5b:4e:8e:d5:09:3c:7d:5f:b5:f1:eb:05:e5: 8a:f9:cf:d9:d5:8c:63:5c:eb:6d:79:ce:a6:49:c2: ae:82:12:3e:c7:2b:88:43:cb:d3:cf:17:6c:ab:7f: 5c:cb:f1:2f:b8:9a:69:fd:da:14:88:f9:07:75:80: 59:ce:de:7b:15:88:95:16:d7:4a:bf:a3:78:ed:0d: 06:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:C1:31:9E:20:E4:36:29:56:F0:26:BA:2B:6B:1C:28:D5:85:7E:78 X509v3 Authority Key Identifier: keyid:48:AB:F2:9F:DE:F8:57:05:02:F4:B5:1B:E5:FF:C0:5C:4D:9B:34:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SKvyn974VwUC9LUb5f_AXE2bNGU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/af41cb-ff91-459c-9a64-aba113f3e3ae/1/WMExniDkNilW8Ca6K2scKNWFfng.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/af41cb-ff91-459c-9a64-aba113f3e3ae/1/SKvyn974VwUC9LUb5f_AXE2bNGU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:8a80:9000::/36 2a11:8a85:400::/38 Signature Algorithm: sha256WithRSAEncryption 12:ad:c7:d7:5f:e6:6a:43:1a:bb:fc:7e:75:27:54:87:15:87: c9:5f:c2:04:7d:26:d2:93:12:35:af:78:92:25:4c:01:af:c3: 3b:a0:77:cc:c6:17:22:33:94:4b:87:ff:9d:4c:c7:1d:86:e1: 2f:82:d2:d3:33:a9:d5:6c:15:9d:51:e6:6a:70:b5:25:81:97: 4d:5b:c1:16:e8:f0:d9:65:40:61:a4:e2:ca:17:6f:6f:93:a1: db:07:30:16:cb:3d:b0:d3:63:30:33:d5:b6:60:82:5f:57:18: c9:70:f6:64:0c:06:0f:1a:ef:b6:ca:7d:35:eb:4f:69:a4:a6: c5:2f:ec:74:04:58:2d:50:30:6f:f3:e6:38:5e:24:37:a9:9a: 98:1d:3f:06:b2:7f:99:25:94:66:1b:01:cd:ca:6b:b7:df:32: 7b:3f:a2:b4:46:25:d1:04:6f:14:e8:b2:f5:e3:72:5b:8a:c6: d0:d1:28:20:81:d6:7c:1f:0f:b2:d3:11:e5:a6:dd:70:97:4c: 95:14:52:ed:88:7d:85:7d:e3:d0:21:3e:d2:cb:fb:d9:20:24: 64:64:63:38:df:c0:da:b2:f2:19:b5:ad:73:24:2d:a2:b4:9e: 48:c4:23:4a:b4:e4:8c:6b:3a:b5:6f:a8:70:63:cd:1c:a3:26: 73:e5:5e:39 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgISAZt3xy5KN1HKXNVC8AA3b0UhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ4YWJmMjlmZGVmODU3MDUwMmY0YjUxYmU1ZmZjMDVjNGQ5 YjM0NjUwHhcNMjYwMTAxMDQxODIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1OGMxMzE5ZTIwZTQzNjI5NTZmMDI2YmEyYjZiMWMyOGQ1ODU3ZTc4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApUUd3XOAEQ4ITZPsp7Nm31LcJKQU W4vmHozRXlkh9nk+lecYEG6aDbS5/Th1hQz6MsgGvXEGXyCTFv3ov8S/x7DtziEW NVAKSnVKXA/Tog/GPhUYZ52rx0WhuEyke2i31kp0H+g70t5iK4zzIAhFgy4IbfVU 7AGNOuWD9tk3I6fC8Jd91iylMsbBBuxVUe9d4BOYvz0EGaVI2/RKvjMEywJU08PC FgM7o/8gnqBSJ/zRhm+/+1tOjtUJPH1ftfHrBeWK+c/Z1YxjXOttec6mScKughI+ xyuIQ8vTzxdsq39cy/EvuJpp/doUiPkHdYBZzt57FYiVFtdKv6N47Q0GZwIDAQAB o4ICEzCCAg8wHQYDVR0OBBYEFFjBMZ4g5DYpVvAmuitrHCjVhX54MB8GA1UdIwQY MBaAFEir8p/e+FcFAvS1G+X/wFxNmzRlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU0t2eW45NzRWd1VDOUxVYjVmX0FYRTJiTkdVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9hZjQxY2ItZmY5MS00NTljLTlhNjQt YWJhMTEzZjNlM2FlLzEvV01FeG5pRGtOaWxXOENhNksyc2NLTldGZm5nLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS9hZjQxY2ItZmY5MS00NTljLTlhNjQtYWJhMTEzZjNlM2Fl LzEvU0t2eW45NzRWd1VDOUxVYjVmX0FYRTJiTkdVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCkGCCsGAQUFBwEHAQH/BBowGDAWBAIAAjAQAwYEKhGKgJAD BgIqEYqFBDANBgkqhkiG9w0BAQsFAAOCAQEAEq3H11/makMau/x+dSdUhxWHyV/C BH0m0pMSNa94kiVMAa/DO6B3zMYXIjOUS4f/nUzHHYbhL4LS0zOp1WwVnVHmanC1 JYGXTVvBFujw2WVAYaTiyhdvb5Oh2wcwFss9sNNjMDPVtmCCX1cYyXD2ZAwGDxrv tsp9NetPaaSmxS/sdARYLVAwb/PmOF4kN6mamB0/BrJ/mSWUZhsBzcprt98yez+i tEYl0QRvFOiy9eNyW4rG0NEoIIHWfB8PstMR5abdcJdMlRRS7Yh9hX3j0CE+0sv7 2SAkZGRjON/A2rLyGbWtcyQtorSeSMQjSrTkjGs6tW+ocGPNHKMmc+VeOQ== -----END CERTIFICATE-----Generated at Sun Jan 25 23:48:40 2026 by rpki-client