This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/445228-b442-4e16-ad69-8ffddb5e3c26/1/wOkpHSGw-U8KI9tK8aag-rxFIFI.roa File: wOkpHSGw-U8KI9tK8aag-rxFIFI.roa (raw, json) Hash identifier: eMuVT13Zj6Uew2bZcSNq7VO8ffPMy9zKzbd96LA2Eac= Subject key identifier: C0:E9:29:1D:21:B0:F9:4F:0A:23:DB:4A:F1:A6:A0:FA:BC:45:20:52 Certificate issuer: /CN=6417b1e13d32ed3a64a7c3522751623eefabe5f3 Certificate serial: 019B7CEE53A8A88C5DBC3795DAAAA928D7CF Authority key identifier: 64:17:B1:E1:3D:32:ED:3A:64:A7:C3:52:27:51:62:3E:EF:AB:E5:F3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZBex4T0y7Tpkp8NSJ1FiPu-r5fM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/445228-b442-4e16-ad69-8ffddb5e3c26/1/wOkpHSGw-U8KI9tK8aag-rxFIFI.roa Signing time: Fri 02 Jan 2026 04:19:12 +0000 ROA not before: Fri 02 Jan 2026 04:19:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31656 IP address blocks: 195.69.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/445228-b442-4e16-ad69-8ffddb5e3c26/1/ZBex4T0y7Tpkp8NSJ1FiPu-r5fM.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/445228-b442-4e16-ad69-8ffddb5e3c26/1/ZBex4T0y7Tpkp8NSJ1FiPu-r5fM.mft rsync://rpki.ripe.net/repository/DEFAULT/ZBex4T0y7Tpkp8NSJ1FiPu-r5fM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:53:a8:a8:8c:5d:bc:37:95:da:aa:a9:28:d7:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6417b1e13d32ed3a64a7c3522751623eefabe5f3 Validity Not Before: Jan 2 04:19:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c0e9291d21b0f94f0a23db4af1a6a0fabc452052 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:72:2f:41:db:49:cf:7c:e7:3e:9c:ed:47:9e: c3:1c:4f:ca:f1:e0:97:ae:d4:a1:04:a1:22:82:9e: ea:0b:3c:d6:ac:ec:d6:9a:57:f3:e7:e3:b3:6f:75: 9f:c3:a1:71:59:57:3c:77:72:6c:35:d6:e7:84:41: 6e:ed:37:e9:f9:5a:91:61:08:69:1b:7a:dd:94:4a: 95:1a:f9:a3:b0:9f:2e:b2:04:87:8e:77:80:86:eb: d2:17:12:43:8a:83:62:b7:74:3b:6d:d4:e9:94:38: 1f:d4:53:11:cd:05:7e:b0:17:01:19:d5:04:66:23: 30:3a:1b:76:1a:c1:d1:b1:8d:77:b5:ed:1b:0d:f5: 30:c6:e0:0e:6f:05:ec:dd:32:20:34:8c:60:71:44: 97:ff:16:c2:85:5a:83:c3:69:80:20:f9:2d:f3:ed: 76:ee:fa:46:53:b4:fd:fa:24:7d:d3:54:57:7e:ee: 0e:9b:d0:2a:66:0a:88:2a:5d:c0:37:68:ab:da:89: 7a:17:31:c2:ee:b2:45:23:3e:c6:b2:6f:aa:46:f7: 86:28:fc:9a:8c:cb:70:97:c5:c1:a0:e0:a0:e0:02: 1e:ba:b0:9d:f4:6e:1a:26:7e:81:1e:45:af:78:07: 8a:29:12:50:c9:8f:90:03:61:93:f5:ed:99:b5:9f: 7a:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:E9:29:1D:21:B0:F9:4F:0A:23:DB:4A:F1:A6:A0:FA:BC:45:20:52 X509v3 Authority Key Identifier: keyid:64:17:B1:E1:3D:32:ED:3A:64:A7:C3:52:27:51:62:3E:EF:AB:E5:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZBex4T0y7Tpkp8NSJ1FiPu-r5fM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/445228-b442-4e16-ad69-8ffddb5e3c26/1/wOkpHSGw-U8KI9tK8aag-rxFIFI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/445228-b442-4e16-ad69-8ffddb5e3c26/1/ZBex4T0y7Tpkp8NSJ1FiPu-r5fM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.69.158.0/24 Signature Algorithm: sha256WithRSAEncryption 80:20:bf:dd:90:50:e2:85:9c:7d:98:9d:85:35:da:94:3d:25: 0d:0b:e4:dc:e2:36:79:11:48:bf:25:9b:2c:45:95:f5:13:97: 0a:f9:6d:75:df:4b:60:36:82:7a:13:ce:f5:30:03:d7:08:56: fc:2f:aa:bf:a8:00:1a:e6:82:bc:8c:86:7e:28:dc:0f:ec:18: 87:e6:59:19:99:1f:48:fe:49:50:9e:19:0e:05:0e:b6:f6:1d: 43:34:8a:db:6f:49:c1:c3:0d:e7:2e:bb:9b:8f:1b:cc:28:1e: 6b:c5:25:8a:4d:f0:4b:ea:32:2d:5f:92:c5:90:64:f8:0d:39: f3:98:85:e4:5b:11:9b:af:f8:34:dd:12:8b:a4:ef:45:86:cb: e5:1a:9f:5c:ad:58:5e:61:ab:b0:ca:9c:55:71:16:5e:d8:d3: e1:7a:43:3b:db:a8:a9:d4:6f:74:dc:37:aa:b1:69:38:c3:a6: e2:6f:b9:4e:fd:9a:14:d6:bc:25:47:f1:bb:79:13:ab:ce:80: cb:98:ed:22:b0:da:c0:10:3f:6c:c0:0c:8d:e0:79:97:5b:27: 37:16:bc:68:1b:4c:f2:f3:14:ff:43:d6:31:fb:bb:52:8b:ec: 08:fd:ca:6d:ba:1c:26:67:2d:63:32:79:fd:c6:79:65:be:4c: 4a:ea:fa:bb -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87lOoqIxdvDeV2qqpKNfPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY0MTdiMWUxM2QzMmVkM2E2NGE3YzM1MjI3NTE2MjNlZWZh YmU1ZjMwHhcNMjYwMTAyMDQxOTEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjMGU5MjkxZDIxYjBmOTRmMGEyM2RiNGFmMWE2YTBmYWJjNDUyMDUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxXIvQdtJz3znPpztR57DHE/K8eCX rtShBKEigp7qCzzWrOzWmlfz5+Ozb3Wfw6FxWVc8d3JsNdbnhEFu7Tfp+VqRYQhp G3rdlEqVGvmjsJ8usgSHjneAhuvSFxJDioNit3Q7bdTplDgf1FMRzQV+sBcBGdUE ZiMwOht2GsHRsY13te0bDfUwxuAObwXs3TIgNIxgcUSX/xbChVqDw2mAIPkt8+12 7vpGU7T9+iR901RXfu4Om9AqZgqIKl3AN2ir2ol6FzHC7rJFIz7Gsm+qRveGKPya jMtwl8XBoOCg4AIeurCd9G4aJn6BHkWveAeKKRJQyY+QA2GT9e2ZtZ96PwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMDpKR0hsPlPCiPbSvGmoPq8RSBSMB8GA1UdIwQY MBaAFGQXseE9Mu06ZKfDUidRYj7vq+XzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWkJleDRUMHk3VHBrcDhOU0oxRmlQdS1yNWZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS80NDUyMjgtYjQ0Mi00ZTE2LWFkNjkt OGZmZGRiNWUzYzI2LzEvd09rcEhTR3ctVThLSTl0SzhhYWctcnhGSUZJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS80NDUyMjgtYjQ0Mi00ZTE2LWFkNjktOGZmZGRiNWUzYzI2 LzEvWkJleDRUMHk3VHBrcDhOU0oxRmlQdS1yNWZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw0WeMA0G CSqGSIb3DQEBCwUAA4IBAQCAIL/dkFDihZx9mJ2FNdqUPSUNC+Tc4jZ5EUi/JZss RZX1E5cK+W1130tgNoJ6E871MAPXCFb8L6q/qAAa5oK8jIZ+KNwP7BiH5lkZmR9I /klQnhkOBQ629h1DNIrbb0nBww3nLrubjxvMKB5rxSWKTfBL6jItX5LFkGT4DTnz mIXkWxGbr/g03RKLpO9FhsvlGp9crVheYauwypxVcRZe2NPhekM726ip1G903Deq sWk4w6bib7lO/ZoU1rwlR/G7eROrzoDLmO0isNrAED9swAyN4HmXWyc3FrxoG0zy 8xT/Q9Yx+7tSi+wI/cptuhwmZy1jMnn9xnllvkxK6vq7 -----END CERTIFICATE-----Generated at Mon Jan 26 11:28:12 2026 by rpki-client