This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/c91ec3-2820-417b-9aad-bacab475e6cc/1/WKFrMc20v_3_nvwsEfVZ3pt8UJA.roa File: WKFrMc20v_3_nvwsEfVZ3pt8UJA.roa (raw, json) Hash identifier: YVkbD8xPvWUS+BrYDoNJSYcp18Mk8k9LeJimBd71qQY= Subject key identifier: 58:A1:6B:31:CD:B4:BF:FD:FF:9E:FC:2C:11:F5:59:DE:9B:7C:50:90 Certificate issuer: /CN=1cee91296c94992d151a232240e6cf3a176d2039 Certificate serial: 019B7CEE3371016090CCFDFB689280472C17 Authority key identifier: 1C:EE:91:29:6C:94:99:2D:15:1A:23:22:40:E6:CF:3A:17:6D:20:39 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HO6RKWyUmS0VGiMiQObPOhdtIDk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/c91ec3-2820-417b-9aad-bacab475e6cc/1/WKFrMc20v_3_nvwsEfVZ3pt8UJA.roa Signing time: Fri 02 Jan 2026 04:19:04 +0000 ROA not before: Fri 02 Jan 2026 04:19:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9205 IP address blocks: 2a04:5e40:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/c91ec3-2820-417b-9aad-bacab475e6cc/1/HO6RKWyUmS0VGiMiQObPOhdtIDk.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/c91ec3-2820-417b-9aad-bacab475e6cc/1/HO6RKWyUmS0VGiMiQObPOhdtIDk.mft rsync://rpki.ripe.net/repository/DEFAULT/HO6RKWyUmS0VGiMiQObPOhdtIDk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 19:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:33:71:01:60:90:cc:fd:fb:68:92:80:47:2c:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1cee91296c94992d151a232240e6cf3a176d2039 Validity Not Before: Jan 2 04:19:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=58a16b31cdb4bffdff9efc2c11f559de9b7c5090 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:9b:a0:02:49:f2:77:3f:21:55:c6:da:5c:90: a1:2f:e5:80:51:3b:47:de:d7:00:fc:99:53:ad:4b: e5:91:55:84:bc:2d:22:ee:c4:14:91:35:98:1a:50: 65:90:98:27:f8:fd:cd:e5:b0:30:7f:49:a9:3d:65: d5:89:04:f5:cc:60:25:74:60:9d:43:b4:cb:96:33: 4c:c1:78:34:c9:e0:87:bf:13:64:81:95:b6:3b:ed: bb:64:fa:e5:5d:00:3f:78:27:67:ae:ba:7d:b2:d4: 81:7c:aa:02:fc:e8:fe:3a:56:d9:c4:d5:b5:31:f5: 50:2e:6b:2f:d1:92:90:f4:99:bd:bc:8a:fe:25:f6: 8b:6b:cb:03:00:d5:bc:73:45:18:d5:1c:da:b0:cf: 29:f1:ff:6c:60:4a:f1:38:59:55:c8:54:f9:d3:a6: 31:62:c6:83:4f:0e:ae:04:bc:b6:2d:40:9f:01:f7: 86:b3:59:e1:4d:1f:c1:76:63:dc:fd:ed:f9:0d:7d: 08:a2:47:f3:3f:e6:3c:15:2f:9b:64:4c:00:0e:a0: 6c:db:3a:21:c3:bc:67:c7:ba:bb:b1:09:a2:06:bf: c2:df:27:2d:8d:82:1c:a1:2d:23:9d:d8:0e:89:64: 8f:e7:f8:90:c1:ac:3a:c6:08:6c:c7:96:6d:23:dc: 46:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:A1:6B:31:CD:B4:BF:FD:FF:9E:FC:2C:11:F5:59:DE:9B:7C:50:90 X509v3 Authority Key Identifier: keyid:1C:EE:91:29:6C:94:99:2D:15:1A:23:22:40:E6:CF:3A:17:6D:20:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HO6RKWyUmS0VGiMiQObPOhdtIDk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/c91ec3-2820-417b-9aad-bacab475e6cc/1/WKFrMc20v_3_nvwsEfVZ3pt8UJA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/c91ec3-2820-417b-9aad-bacab475e6cc/1/HO6RKWyUmS0VGiMiQObPOhdtIDk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a04:5e40:4::/48 Signature Algorithm: sha256WithRSAEncryption 32:c2:f5:46:03:50:a8:21:93:dd:29:7a:00:4e:18:ee:95:e1: 20:b5:a5:85:47:ed:3f:5c:d5:17:f8:1f:0c:bb:93:56:8e:da: e3:99:d8:08:41:17:42:3b:3d:4d:0e:ac:a7:a8:2d:55:3d:d8: ce:d7:da:5e:99:e9:2c:36:a7:f9:ab:74:d2:cf:fd:31:9c:3e: cf:5f:be:24:8b:2b:f6:15:45:03:37:0e:6c:d7:70:af:5a:ec: 64:84:46:a9:ff:ce:42:77:a7:be:4d:dc:44:a9:00:57:79:ca: e9:a3:d4:e9:65:cb:95:65:db:f4:95:1a:b7:05:41:d5:23:4f: 6e:00:94:9e:8c:08:ca:97:69:25:28:ea:dd:78:86:23:57:ee: 39:03:fe:c3:61:9c:d0:11:a6:06:0c:a3:56:ea:97:3a:71:8d: 77:ca:61:2a:dd:a4:13:da:44:04:f4:4f:dd:1d:c0:cf:a1:b0: ff:20:63:8c:14:8f:00:23:34:35:e0:c7:30:d9:aa:53:ff:18: 64:48:9a:e2:44:1b:3f:6c:69:2b:7e:1c:5f:49:5a:b2:d6:22: 71:0e:67:44:78:1f:3d:05:68:d9:b8:3d:f1:53:86:42:f1:92: 31:44:8c:bf:0b:1b:f5:d9:80:60:02:52:d2:d2:78:b4:e5:99: a8:6b:57:83 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt87jNxAWCQzP37aJKARywXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjZWU5MTI5NmM5NDk5MmQxNTFhMjMyMjQwZTZjZjNhMTc2 ZDIwMzkwHhcNMjYwMTAyMDQxOTA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1OGExNmIzMWNkYjRiZmZkZmY5ZWZjMmMxMWY1NTlkZTliN2M1MDkwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArpugAknydz8hVcbaXJChL+WAUTtH 3tcA/JlTrUvlkVWEvC0i7sQUkTWYGlBlkJgn+P3N5bAwf0mpPWXViQT1zGAldGCd Q7TLljNMwXg0yeCHvxNkgZW2O+27ZPrlXQA/eCdnrrp9stSBfKoC/Oj+OlbZxNW1 MfVQLmsv0ZKQ9Jm9vIr+JfaLa8sDANW8c0UY1RzasM8p8f9sYErxOFlVyFT506Yx YsaDTw6uBLy2LUCfAfeGs1nhTR/BdmPc/e35DX0IokfzP+Y8FS+bZEwADqBs2zoh w7xnx7q7sQmiBr/C3yctjYIcoS0jndgOiWSP5/iQwaw6xghsx5ZtI9xGdwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFFihazHNtL/9/578LBH1Wd6bfFCQMB8GA1UdIwQY MBaAFBzukSlslJktFRojIkDmzzoXbSA5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSE82UktXeVVtUzBWR2lNaVFPYlBPaGR0SURrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS9jOTFlYzMtMjgyMC00MTdiLTlhYWQt YmFjYWI0NzVlNmNjLzEvV0tGck1jMjB2XzNfbnZ3c0VmVlozcHQ4VUpBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS9jOTFlYzMtMjgyMC00MTdiLTlhYWQtYmFjYWI0NzVlNmNj LzEvSE82UktXeVVtUzBWR2lNaVFPYlBPaGR0SURrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgReQAAE MA0GCSqGSIb3DQEBCwUAA4IBAQAywvVGA1CoIZPdKXoAThjuleEgtaWFR+0/XNUX +B8Mu5NWjtrjmdgIQRdCOz1NDqynqC1VPdjO19pemeksNqf5q3TSz/0xnD7PX74k iyv2FUUDNw5s13CvWuxkhEap/85Cd6e+TdxEqQBXecrpo9TpZcuVZdv0lRq3BUHV I09uAJSejAjKl2klKOrdeIYjV+45A/7DYZzQEaYGDKNW6pc6cY13ymEq3aQT2kQE 9E/dHcDPobD/IGOMFI8AIzQ14Mcw2apT/xhkSJriRBs/bGkrfhxfSVqy1iJxDmdE eB89BWjZuD3xU4ZC8ZIxRIy/Cxv12YBgAlLS0ni05Zmoa1eD -----END CERTIFICATE-----Generated at Mon Jan 26 04:20:22 2026 by rpki-client