This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/DWB1etHBfw_OLMc4SAYvI8bsf8A.roa File: DWB1etHBfw_OLMc4SAYvI8bsf8A.roa (raw, json) Hash identifier: N1HraCKNKokFduTxfK9H5cwUbj4xJFX4TQlkRQTE3WM= Subject key identifier: 0D:60:75:7A:D1:C1:7F:0F:CE:2C:C7:38:48:06:2F:23:C6:EC:7F:C0 Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe Certificate serial: 019BA812F9C2355B12EE2E8E18B2533FF8D4 Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/DWB1etHBfw_OLMc4SAYvI8bsf8A.roa Signing time: Sat 10 Jan 2026 13:22:54 +0000 ROA not before: Sat 10 Jan 2026 13:22:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 401819 IP address blocks: 109.72.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.mft rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:a8:12:f9:c2:35:5b:12:ee:2e:8e:18:b2:53:3f:f8:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe Validity Not Before: Jan 10 13:22:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0d60757ad1c17f0fce2cc73848062f23c6ec7fc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:e4:5d:b3:f5:81:31:fb:2a:08:75:33:8a:c6: 53:6e:76:f4:bc:14:d5:b5:5e:de:ad:75:c9:23:6b: da:97:06:69:13:a1:6e:96:be:74:df:d5:f0:b4:e3: c1:63:1f:86:d7:23:d2:cd:ce:fa:9f:dd:21:cf:a7: c4:d9:9e:41:06:b8:07:8c:23:ef:2a:b5:23:06:00: 5c:51:0b:5e:c8:c5:b1:36:12:2f:3b:af:9b:58:ad: 14:84:bf:ef:66:e8:56:f6:b1:4b:97:3c:47:c3:59: 76:06:bb:ad:c4:3e:77:ad:0a:fe:cd:13:64:61:db: fd:5a:26:b5:92:c7:96:59:c7:37:d4:d9:b8:7b:fe: a8:18:37:54:a3:45:7b:49:9c:4e:9a:58:3a:84:ee: e0:c0:44:2c:2e:1c:b7:fb:3c:5c:61:63:6f:0c:e4: 3c:17:2f:47:11:10:71:da:7b:0d:17:2b:7d:80:0e: 29:88:81:ee:c9:27:5c:2d:ce:78:99:d1:a8:f3:91: ea:77:d9:7b:6a:09:03:20:58:53:38:85:2b:6f:1b: ef:35:8b:a9:02:4b:4c:8d:ac:38:de:2c:63:5e:8a: a1:87:9f:4b:6b:96:e3:5e:82:21:8b:dd:63:20:2c: 00:e0:95:85:1f:2c:59:f6:10:7a:a5:57:bf:83:6f: b2:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:60:75:7A:D1:C1:7F:0F:CE:2C:C7:38:48:06:2F:23:C6:EC:7F:C0 X509v3 Authority Key Identifier: keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/DWB1etHBfw_OLMc4SAYvI8bsf8A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.72.120.0/24 Signature Algorithm: sha256WithRSAEncryption 49:4b:7c:09:a2:92:e6:4c:b6:b5:26:7f:99:30:f8:a8:f5:54: 03:df:d8:97:fa:e6:4b:4d:29:28:02:cb:e1:db:aa:61:e7:7a: e4:6a:f7:0c:f8:fd:1a:11:5a:d8:78:5d:02:b6:6c:89:b1:cf: af:d5:4d:e3:fe:46:ea:fb:11:e1:a0:10:e7:26:96:1a:12:11: 87:b3:27:a0:74:3f:d2:58:54:b5:54:7d:b6:73:96:ad:de:01: 29:3f:17:79:03:00:5b:07:1a:f6:c9:dd:1c:a7:ab:fd:82:59: 8e:0d:b8:27:0e:f8:f4:45:86:6b:65:85:7a:d5:a3:14:cb:12: 81:5a:3d:16:64:7e:25:2d:28:2a:9d:79:c3:98:24:ae:a9:03: 2d:58:cb:90:ba:ba:b7:3f:41:3c:aa:00:ec:5a:85:01:90:b4: b5:5a:96:bb:4b:2d:9b:ff:3e:47:35:0f:44:48:b4:c6:ec:ac: c9:e3:84:48:7a:70:4d:7d:2e:5f:72:70:73:e9:38:c0:91:f1: 22:52:1b:ff:4f:8f:88:b2:37:f2:74:41:5e:80:05:bd:e3:c4: b9:cc:0a:0b:36:09:32:ff:81:01:48:ca:2d:1e:9e:cd:43:5a: 0b:7c:a1:93:7e:11:38:8a:24:93:fa:9b:53:3a:1d:fe:5e:af: 13:4b:c7:e1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZuoEvnCNVsS7i6OGLJTP/jUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk4MmNmODA5YzBlM2U4ZTU1NTJmOWQwZGQyZTI3ZTBkZDJk OGRhYmUwHhcNMjYwMTEwMTMyMjU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZDYwNzU3YWQxYzE3ZjBmY2UyY2M3Mzg0ODA2MmYyM2M2ZWM3ZmMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo+Rds/WBMfsqCHUzisZTbnb0vBTV tV7erXXJI2valwZpE6Fulr5039XwtOPBYx+G1yPSzc76n90hz6fE2Z5BBrgHjCPv KrUjBgBcUQteyMWxNhIvO6+bWK0UhL/vZuhW9rFLlzxHw1l2BrutxD53rQr+zRNk Ydv9Wia1kseWWcc31Nm4e/6oGDdUo0V7SZxOmlg6hO7gwEQsLhy3+zxcYWNvDOQ8 Fy9HERBx2nsNFyt9gA4piIHuySdcLc54mdGo85Hqd9l7agkDIFhTOIUrbxvvNYup AktMjaw43ixjXoqhh59La5bjXoIhi91jICwA4JWFHyxZ9hB6pVe/g2+y0QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFA1gdXrRwX8PzizHOEgGLyPG7H/AMB8GA1UdIwQY MBaAFJgs+AnA4+jlVS+dDdLifg3S2Nq+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEt ODJhZDE0NTU1ZWFhLzEvRFdCMWV0SEJmd19PTE1jNFNBWXZJOGJzZjhBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEtODJhZDE0NTU1ZWFh LzEvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbUh4MA0G CSqGSIb3DQEBCwUAA4IBAQBJS3wJopLmTLa1Jn+ZMPio9VQD39iX+uZLTSkoAsvh 26ph53rkavcM+P0aEVrYeF0CtmyJsc+v1U3j/kbq+xHhoBDnJpYaEhGHsyegdD/S WFS1VH22c5at3gEpPxd5AwBbBxr2yd0cp6v9glmODbgnDvj0RYZrZYV61aMUyxKB Wj0WZH4lLSgqnXnDmCSuqQMtWMuQurq3P0E8qgDsWoUBkLS1Wpa7Sy2b/z5HNQ9E SLTG7KzJ44RIenBNfS5fcnBz6TjAkfEiUhv/T4+IsjfydEFegAW948S5zAoLNgky /4EBSMotHp7NQ1oLfKGTfhE4iiST+ptTOh3+Xq8TS8fh -----END CERTIFICATE-----Generated at Sun Jan 25 10:09:24 2026 by rpki-client