This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/5yhoftgvI5hCy2iv_kBDucrbOsE.roa File: 5yhoftgvI5hCy2iv_kBDucrbOsE.roa (raw, json) Hash identifier: RkV+N+V8xxNwDAABt6tlqvstShlw1tyd6XwmY5keuZU= Subject key identifier: E7:28:68:7E:D8:2F:23:98:42:CB:68:AF:FE:40:43:B9:CA:DB:3A:C1 Certificate issuer: /CN=58b3de5f9adb50fe41f6dc78ffd0a2c9086d2512 Certificate serial: 019BE07A4FAF4F4FCF31B4D20A1827793EE7 Authority key identifier: 58:B3:DE:5F:9A:DB:50:FE:41:F6:DC:78:FF:D0:A2:C9:08:6D:25:12 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WLPeX5rbUP5B9tx4_9CiyQhtJRI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/5yhoftgvI5hCy2iv_kBDucrbOsE.roa Signing time: Wed 21 Jan 2026 12:14:30 +0000 ROA not before: Wed 21 Jan 2026 12:14:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 401776 IP address blocks: 2a14:c380:23::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/WLPeX5rbUP5B9tx4_9CiyQhtJRI.crl rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/WLPeX5rbUP5B9tx4_9CiyQhtJRI.mft rsync://rpki.ripe.net/repository/DEFAULT/WLPeX5rbUP5B9tx4_9CiyQhtJRI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e0:7a:4f:af:4f:4f:cf:31:b4:d2:0a:18:27:79:3e:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58b3de5f9adb50fe41f6dc78ffd0a2c9086d2512 Validity Not Before: Jan 21 12:14:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e728687ed82f239842cb68affe4043b9cadb3ac1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:3b:6b:2f:06:7b:1c:f5:34:b8:3c:38:da:65: c3:23:f5:4e:d5:4a:e8:9a:52:f8:9f:7c:fb:10:7f: c3:04:8d:45:22:8f:b7:4b:d6:9a:b4:8c:fb:0e:be: 66:69:d8:35:2a:a7:7c:7f:9d:64:91:95:b7:ec:a0: e4:1b:eb:62:1a:f3:4f:a5:65:2c:c4:08:f0:10:80: 54:d5:f4:f0:a6:02:f4:31:7b:7a:f9:b8:69:20:66: e4:93:c5:72:a7:e5:66:4c:77:b2:bc:6a:12:88:cb: a9:78:d0:2a:ec:37:e7:d0:80:e1:3e:ac:6d:6e:d0: a8:6f:ac:e5:31:61:d1:92:ef:b5:01:fb:b4:17:95: 50:6a:82:18:59:b4:9a:80:f1:1f:7f:52:59:e3:5a: 63:4b:d8:cf:33:ff:a7:cb:06:0e:0c:8b:4a:e4:08: fe:29:2f:f5:60:82:c9:31:bb:fa:e8:4e:3c:06:ef: d4:af:a7:32:06:f4:72:83:f5:fe:1c:e0:4d:95:7e: 93:0e:ae:be:10:a9:db:3b:46:8e:13:47:d6:67:32: e7:66:6d:77:84:4a:ec:62:66:88:dd:42:df:86:29: f5:24:de:55:fa:06:43:19:c6:10:e2:86:8a:5c:11: 2e:58:61:db:7d:8f:50:57:22:51:99:81:bd:a3:fe: 3c:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:28:68:7E:D8:2F:23:98:42:CB:68:AF:FE:40:43:B9:CA:DB:3A:C1 X509v3 Authority Key Identifier: keyid:58:B3:DE:5F:9A:DB:50:FE:41:F6:DC:78:FF:D0:A2:C9:08:6D:25:12 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WLPeX5rbUP5B9tx4_9CiyQhtJRI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/5yhoftgvI5hCy2iv_kBDucrbOsE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/WLPeX5rbUP5B9tx4_9CiyQhtJRI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:c380:23::/48 Signature Algorithm: sha256WithRSAEncryption 31:aa:9a:4c:b1:0b:ad:12:f2:b7:a6:cc:f1:fe:95:eb:f6:ab: de:a4:c1:09:ff:ec:41:02:3f:df:e0:cc:40:ba:70:d1:0c:69: 69:d8:12:1a:cd:ae:85:d6:da:f7:bd:25:f9:14:3f:49:a8:18: af:d1:34:1b:09:18:e0:50:79:e5:69:09:6e:f1:e9:4c:1e:be: 8b:4c:e7:e7:11:5e:c3:71:70:63:7a:08:d8:ab:88:0c:a8:5c: 74:13:92:cc:83:a6:5c:99:e5:c7:3e:19:e7:ad:0f:6c:0a:6b: 94:95:75:90:44:57:ff:3a:7e:3d:82:93:90:9b:54:76:43:72: fe:5e:6e:9a:14:33:1a:37:ac:1c:4c:ad:61:4a:c9:3e:4e:96: f5:65:71:ac:82:c0:ca:a2:40:83:79:8f:06:10:b5:3a:e2:0d: ef:d6:da:f7:e3:2a:35:71:08:32:61:15:9b:87:f2:ee:e7:8f: 4e:42:bd:6e:4f:21:5f:e0:01:1a:1f:c1:19:bb:db:86:ee:01: bf:e7:66:0e:04:be:64:0a:52:6f:a8:a8:6a:d4:55:2c:28:a6: 99:01:1e:fb:97:ed:15:50:17:03:4e:e1:d9:e0:4f:21:90:eb: 06:5b:61:81:b0:b2:04:a0:d1:51:04:bb:64:31:b6:e3:b6:ef: bb:30:bd:4a -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZvgek+vT0/PMbTSChgneT7nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4YjNkZTVmOWFkYjUwZmU0MWY2ZGM3OGZmZDBhMmM5MDg2 ZDI1MTIwHhcNMjYwMTIxMTIxNDMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNzI4Njg3ZWQ4MmYyMzk4NDJjYjY4YWZmZTQwNDNiOWNhZGIzYWMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuDtrLwZ7HPU0uDw42mXDI/VO1Uro mlL4n3z7EH/DBI1FIo+3S9aatIz7Dr5madg1Kqd8f51kkZW37KDkG+tiGvNPpWUs xAjwEIBU1fTwpgL0MXt6+bhpIGbkk8Vyp+VmTHeyvGoSiMupeNAq7Dfn0IDhPqxt btCob6zlMWHRku+1Afu0F5VQaoIYWbSagPEff1JZ41pjS9jPM/+nywYODItK5Aj+ KS/1YILJMbv66E48Bu/Ur6cyBvRyg/X+HOBNlX6TDq6+EKnbO0aOE0fWZzLnZm13 hErsYmaI3ULfhin1JN5V+gZDGcYQ4oaKXBEuWGHbfY9QVyJRmYG9o/48qwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFOcoaH7YLyOYQstor/5AQ7nK2zrBMB8GA1UdIwQY MBaAFFiz3l+a21D+QfbceP/QoskIbSUSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0xQZVg1cmJVUDVCOXR4NF85Q2l5UWh0SlJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC82Yjc0OTAtZTEwYS00MmUwLTllMmUt NTMyMWQ2OWQ5NzlkLzEvNXlob2Z0Z3ZJNWhDeTJpdl9rQkR1Y3JiT3NFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZC82Yjc0OTAtZTEwYS00MmUwLTllMmUtNTMyMWQ2OWQ5Nzlk LzEvV0xQZVg1cmJVUDVCOXR4NF85Q2l5UWh0SlJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhTDgAAj MA0GCSqGSIb3DQEBCwUAA4IBAQAxqppMsQutEvK3pszx/pXr9qvepMEJ/+xBAj/f 4MxAunDRDGlp2BIaza6F1tr3vSX5FD9JqBiv0TQbCRjgUHnlaQlu8elMHr6LTOfn EV7DcXBjegjYq4gMqFx0E5LMg6ZcmeXHPhnnrQ9sCmuUlXWQRFf/On49gpOQm1R2 Q3L+Xm6aFDMaN6wcTK1hSsk+Tpb1ZXGsgsDKokCDeY8GELU64g3v1tr34yo1cQgy YRWbh/Lu549OQr1uTyFf4AEaH8EZu9uG7gG/52YOBL5kClJvqKhq1FUsKKaZAR77 l+0VUBcDTuHZ4E8hkOsGW2GBsLIEoNFRBLtkMbbjtu+7ML1K -----END CERTIFICATE-----Generated at Sun Jan 25 16:09:48 2026 by rpki-client