This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/WMaXfRf-RFKZGI9jfe80US59tDA.roa File: WMaXfRf-RFKZGI9jfe80US59tDA.roa (raw, json) Hash identifier: oSG4X6QE7Zo0M5rFiT40os6MT1Li/W/ODtM/SHLn50w= Subject key identifier: 58:C6:97:7D:17:FE:44:52:99:18:8F:63:7D:EF:34:51:2E:7D:B4:30 Certificate issuer: /CN=a7fd3f89335dcf828666b28fad8ae993bd448878 Certificate serial: 019B7F153B841AD7291BB769E3EBC0CE4600 Authority key identifier: A7:FD:3F:89:33:5D:CF:82:86:66:B2:8F:AD:8A:E9:93:BD:44:88:78 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p_0_iTNdz4KGZrKPrYrpk71EiHg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/WMaXfRf-RFKZGI9jfe80US59tDA.roa Signing time: Fri 02 Jan 2026 14:20:56 +0000 ROA not before: Fri 02 Jan 2026 14:20:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203038 IP address blocks: 2a0a:3507:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/p_0_iTNdz4KGZrKPrYrpk71EiHg.crl rsync://rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/p_0_iTNdz4KGZrKPrYrpk71EiHg.mft rsync://rpki.ripe.net/repository/DEFAULT/p_0_iTNdz4KGZrKPrYrpk71EiHg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:3b:84:1a:d7:29:1b:b7:69:e3:eb:c0:ce:46:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a7fd3f89335dcf828666b28fad8ae993bd448878 Validity Not Before: Jan 2 14:20:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=58c6977d17fe445299188f637def34512e7db430 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:82:34:db:55:0a:3d:dc:f4:a2:f9:fe:e6:40: 2b:e3:5b:1f:c1:f4:6d:2f:c5:3e:ee:e9:42:35:82: 2d:e6:b6:58:c6:e7:74:1b:e2:6d:d5:83:95:38:59: 9d:1e:ce:1f:49:1c:fb:58:d9:60:1b:47:cd:16:05: 0c:73:5e:a7:f1:8a:57:46:7c:dc:53:61:6d:9d:76: 34:49:c7:c0:0d:7e:06:af:59:65:26:e2:81:98:84: 57:26:68:75:23:ef:cd:25:77:f3:61:53:38:8f:2c: ce:cd:a6:0d:05:c6:dd:63:33:a4:9c:28:b2:4a:8b: cc:6e:b3:31:9e:3b:3e:74:dd:3d:30:33:74:92:dc: 68:7a:89:d9:05:1a:bc:30:79:79:d7:90:64:66:a8: 6f:bc:bc:f5:82:90:be:d3:6a:ec:6c:cb:47:2f:60: 45:58:bc:46:44:88:1a:ec:76:2a:33:83:21:b8:5c: 7f:a5:57:c8:73:27:79:b5:ae:99:09:5c:b2:bc:b2: 03:3d:52:98:a5:98:89:77:1d:0a:c4:db:53:85:e6: cd:b4:bd:1a:fc:6d:51:5c:a0:70:bf:4c:d1:10:fb: 16:87:4a:1d:b3:0e:2a:34:78:55:43:f1:ac:8a:48: cd:38:81:07:77:d8:99:ba:ae:d2:b6:20:96:bb:f8: a4:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:C6:97:7D:17:FE:44:52:99:18:8F:63:7D:EF:34:51:2E:7D:B4:30 X509v3 Authority Key Identifier: keyid:A7:FD:3F:89:33:5D:CF:82:86:66:B2:8F:AD:8A:E9:93:BD:44:88:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p_0_iTNdz4KGZrKPrYrpk71EiHg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/WMaXfRf-RFKZGI9jfe80US59tDA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/p_0_iTNdz4KGZrKPrYrpk71EiHg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:3507:1::/48 Signature Algorithm: sha256WithRSAEncryption 1d:d9:aa:29:36:ad:e9:19:f2:c1:7a:6a:9b:05:18:4e:00:44: 8d:ec:b7:e4:81:03:bc:56:b0:94:51:1b:ad:fa:83:f2:26:88: b8:22:83:f8:fe:38:59:99:c2:f7:e2:52:16:99:07:7a:7c:57: 3b:ae:d0:a1:69:b8:e0:c9:63:af:cb:98:82:f7:a3:af:a6:17: 8e:a7:ee:03:49:c9:03:17:62:d2:d5:c0:0f:a1:3b:39:ba:aa: 95:9a:49:64:94:cd:ed:d9:fe:aa:26:54:aa:68:f1:30:12:98: 80:46:b4:14:90:7a:bb:eb:55:30:28:17:87:31:99:7d:f4:24: 05:49:92:31:9b:c5:a1:20:78:5a:64:97:c5:34:35:c7:2e:dc: 38:98:0a:1f:2a:2e:46:27:af:9e:07:81:23:91:92:8d:10:62: 1a:99:9e:31:4d:71:12:0f:be:c3:18:f0:12:28:b0:ee:b1:10: 71:04:cc:99:e6:95:61:1b:45:d6:c9:96:be:46:2a:c0:48:5d: 32:16:ec:3f:98:58:40:98:4b:c3:62:72:c3:ac:04:60:45:86: db:7e:80:b9:31:84:22:9c:d1:06:3f:2f:ea:57:16:02:4a:8d: a5:db:28:48:dc:f2:1e:df:8c:d9:88:d6:fa:23:fe:be:4e:63: df:c2:d3:f2 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/FTuEGtcpG7dp4+vAzkYAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3ZmQzZjg5MzM1ZGNmODI4NjY2YjI4ZmFkOGFlOTkzYmQ0 NDg4NzgwHhcNMjYwMTAyMTQyMDU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1OGM2OTc3ZDE3ZmU0NDUyOTkxODhmNjM3ZGVmMzQ1MTJlN2RiNDMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0YI021UKPdz0ovn+5kAr41sfwfRt L8U+7ulCNYIt5rZYxud0G+Jt1YOVOFmdHs4fSRz7WNlgG0fNFgUMc16n8YpXRnzc U2FtnXY0ScfADX4Gr1llJuKBmIRXJmh1I+/NJXfzYVM4jyzOzaYNBcbdYzOknCiy SovMbrMxnjs+dN09MDN0ktxoeonZBRq8MHl515BkZqhvvLz1gpC+02rsbMtHL2BF WLxGRIga7HYqM4MhuFx/pVfIcyd5ta6ZCVyyvLIDPVKYpZiJdx0KxNtThebNtL0a /G1RXKBwv0zREPsWh0odsw4qNHhVQ/GsikjNOIEHd9iZuq7StiCWu/ikowIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFFjGl30X/kRSmRiPY33vNFEufbQwMB8GA1UdIwQY MBaAFKf9P4kzXc+Chmayj62K6ZO9RIh4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcF8wX2lUTmR6NEtHWnJLUHJZcnBrNzFFaUhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC8zODhmZDgtYzgxZi00ZTcxLWFmNTIt YzBiMWFkNDM1Yjk1LzEvV01hWGZSZi1SRktaR0k5amZlODBVUzU5dERBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83ZC8zODhmZDgtYzgxZi00ZTcxLWFmNTItYzBiMWFkNDM1Yjk1 LzEvcF8wX2lUTmR6NEtHWnJLUHJZcnBrNzFFaUhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgo1BwAB MA0GCSqGSIb3DQEBCwUAA4IBAQAd2aopNq3pGfLBemqbBRhOAESN7LfkgQO8VrCU URut+oPyJoi4IoP4/jhZmcL34lIWmQd6fFc7rtChabjgyWOvy5iC96OvpheOp+4D SckDF2LS1cAPoTs5uqqVmklklM3t2f6qJlSqaPEwEpiARrQUkHq761UwKBeHMZl9 9CQFSZIxm8WhIHhaZJfFNDXHLtw4mAofKi5GJ6+eB4EjkZKNEGIamZ4xTXESD77D GPASKLDusRBxBMyZ5pVhG0XWyZa+RirASF0yFuw/mFhAmEvDYnLDrARgRYbbfoC5 MYQinNEGPy/qVxYCSo2l2yhI3PIe34zZiNb6I/6+TmPfwtPy -----END CERTIFICATE-----Generated at Sun Jan 25 15:48:49 2026 by rpki-client