This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/wet2iRU-DIcI7ecq9nOLNfx3URM.roa File: wet2iRU-DIcI7ecq9nOLNfx3URM.roa (raw, json) Hash identifier: ukbv/ID6Q3IjhclCaom/PoiMdbvmxstujbtE/kfKRtw= Subject key identifier: C1:EB:76:89:15:3E:0C:87:08:ED:E7:2A:F6:73:8B:35:FC:77:51:13 Certificate issuer: /CN=db239685409f64ba1c3a54a8ef141c924e71d892 Certificate serial: 019B7F834BC9221B7AFFF96DF396D8C02B6D Authority key identifier: DB:23:96:85:40:9F:64:BA:1C:3A:54:A8:EF:14:1C:92:4E:71:D8:92 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2yOWhUCfZLocOlSo7xQckk5x2JI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/wet2iRU-DIcI7ecq9nOLNfx3URM.roa Signing time: Fri 02 Jan 2026 16:21:09 +0000 ROA not before: Fri 02 Jan 2026 16:21:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34948 IP address blocks: 78.109.80.0/20 maxlen: 20 193.189.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/2yOWhUCfZLocOlSo7xQckk5x2JI.crl rsync://rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/2yOWhUCfZLocOlSo7xQckk5x2JI.mft rsync://rpki.ripe.net/repository/DEFAULT/2yOWhUCfZLocOlSo7xQckk5x2JI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:4b:c9:22:1b:7a:ff:f9:6d:f3:96:d8:c0:2b:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=db239685409f64ba1c3a54a8ef141c924e71d892 Validity Not Before: Jan 2 16:21:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c1eb7689153e0c8708ede72af6738b35fc775113 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:64:8f:36:c1:9b:a0:c8:44:9d:58:d2:68:95: 08:a4:b5:27:ef:95:ed:d7:29:80:81:aa:02:64:30: 8b:61:fb:88:f8:c7:77:69:82:3f:6c:a9:67:e3:5d: aa:0f:a9:b2:93:cd:41:2b:c4:c0:9b:f9:07:8c:b2: 64:d4:55:93:e0:2a:32:32:ae:3f:7b:2b:eb:a0:3a: c0:b6:90:cd:f5:42:a3:29:29:fa:dc:ba:28:51:1f: 15:bb:fd:54:51:10:9d:f1:bd:25:66:44:43:4c:8e: 38:77:68:5b:53:b0:ae:46:88:04:2d:08:bc:57:79: 78:e3:ff:53:ad:82:06:62:d1:66:42:07:9d:f6:d2: 37:b7:7f:f0:a1:50:30:71:37:83:4f:fd:35:5b:d3: bc:7e:bd:fb:6a:18:6a:38:bc:c5:8a:82:ce:cb:e0: c8:57:25:6a:e7:d0:54:75:c1:f7:e0:d3:42:9b:6e: 48:98:0f:12:44:a1:3e:14:5c:ba:fb:c3:b8:49:0b: 5f:78:a9:5d:2f:54:59:3e:54:8c:43:de:a5:60:d7: 69:86:51:c0:ae:4f:52:aa:2f:e7:4a:0a:90:32:32: 3a:6d:6f:2e:60:d0:79:ac:a2:5d:75:ff:2d:08:55: df:88:83:a7:b3:f5:1e:7f:9f:98:8e:e3:84:35:2c: 9c:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:EB:76:89:15:3E:0C:87:08:ED:E7:2A:F6:73:8B:35:FC:77:51:13 X509v3 Authority Key Identifier: keyid:DB:23:96:85:40:9F:64:BA:1C:3A:54:A8:EF:14:1C:92:4E:71:D8:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2yOWhUCfZLocOlSo7xQckk5x2JI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/wet2iRU-DIcI7ecq9nOLNfx3URM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/2yOWhUCfZLocOlSo7xQckk5x2JI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.109.80.0/20 193.189.143.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:9e:84:20:81:86:6b:33:da:18:99:b4:06:b7:88:1b:6a:78: ac:cf:93:5e:04:fe:0f:c4:6f:f2:0c:01:67:a3:84:23:6b:ff: e0:12:db:53:3a:52:62:30:78:79:6b:83:ed:24:9d:f9:3f:48: 02:fe:86:89:57:d8:0a:77:55:d0:61:94:1c:71:ad:7d:2b:c8: b2:d9:f4:59:8c:a5:e0:9e:d0:1e:f1:22:df:39:f2:cd:00:eb: 7f:dd:d4:9c:49:ef:9d:70:be:19:b8:44:3f:cf:73:74:3a:3c: 87:ba:27:55:a7:e2:b4:e2:0a:73:21:af:36:2c:00:65:d2:7d: 76:89:f7:1d:af:12:ca:5c:7a:15:ea:e3:84:68:74:5e:da:46: ae:1f:aa:e6:74:09:dd:d6:ac:28:dc:08:8c:ce:f2:11:50:8b: 38:40:e8:72:5b:8f:8f:f6:d4:7d:b6:d3:a6:96:3a:16:94:99: bc:28:ff:65:49:f7:83:68:69:30:f5:77:2e:b4:2d:db:d5:6d: bc:09:07:a8:31:38:90:87:7b:46:93:94:3f:9c:3f:91:3a:1f: ae:c6:d5:fe:a6:fb:90:15:27:61:df:bd:da:d7:ac:6a:4a:8a: a4:ba:99:3e:4b:94:55:a2:41:5c:6e:bd:43:4e:80:1a:4b:20: 59:c1:63:76 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/g0vJIht6//lt85bYwCttMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiMjM5Njg1NDA5ZjY0YmExYzNhNTRhOGVmMTQxYzkyNGU3 MWQ4OTIwHhcNMjYwMTAyMTYyMTA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjMWViNzY4OTE1M2UwYzg3MDhlZGU3MmFmNjczOGIzNWZjNzc1MTEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApGSPNsGboMhEnVjSaJUIpLUn75Xt 1ymAgaoCZDCLYfuI+Md3aYI/bKln412qD6myk81BK8TAm/kHjLJk1FWT4CoyMq4/ eyvroDrAtpDN9UKjKSn63LooUR8Vu/1UURCd8b0lZkRDTI44d2hbU7CuRogELQi8 V3l44/9TrYIGYtFmQged9tI3t3/woVAwcTeDT/01W9O8fr37ahhqOLzFioLOy+DI VyVq59BUdcH34NNCm25ImA8SRKE+FFy6+8O4SQtfeKldL1RZPlSMQ96lYNdphlHA rk9Sqi/nSgqQMjI6bW8uYNB5rKJddf8tCFXfiIOns/Uef5+YjuOENSyccQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFMHrdokVPgyHCO3nKvZzizX8d1ETMB8GA1UdIwQY MBaAFNsjloVAn2S6HDpUqO8UHJJOcdiSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnlPV2hVQ2ZaTG9jT2xTbzd4UWNrazV4MkpJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC84ZDZmZDctMWNiMy00MTNjLWEzMmIt MmVmNDQ3ZTFiMDhjLzEvd2V0MmlSVS1ESWNJN2VjcTluT0xOZngzVVJNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMC84ZDZmZDctMWNiMy00MTNjLWEzMmItMmVmNDQ3ZTFiMDhj LzEvMnlPV2hVQ2ZaTG9jT2xTbzd4UWNrazV4MkpJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQETm1QAwQA wb2PMA0GCSqGSIb3DQEBCwUAA4IBAQAvnoQggYZrM9oYmbQGt4gbanisz5NeBP4P xG/yDAFno4Qja//gEttTOlJiMHh5a4PtJJ35P0gC/oaJV9gKd1XQYZQcca19K8iy 2fRZjKXgntAe8SLfOfLNAOt/3dScSe+dcL4ZuEQ/z3N0OjyHuidVp+K04gpzIa82 LABl0n12ifcdrxLKXHoV6uOEaHRe2kauH6rmdAnd1qwo3AiMzvIRUIs4QOhyW4+P 9tR9ttOmljoWlJm8KP9lSfeDaGkw9XcutC3b1W28CQeoMTiQh3tGk5Q/nD+ROh+u xtX+pvuQFSdh373a16xqSoqkupk+S5RVokFcbr1DToAaSyBZwWN2 -----END CERTIFICATE-----Generated at Sun Jan 25 19:59:12 2026 by rpki-client