This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/We9JlhRC7AnuKdXNeDiRVJR3cSQ.roa File: We9JlhRC7AnuKdXNeDiRVJR3cSQ.roa (raw, json) Hash identifier: aCm3hVdiPu8wrcYehfXy6dGkmo0BNiZb3dnL5cg7bd0= Subject key identifier: 59:EF:49:96:14:42:EC:09:EE:29:D5:CD:78:38:91:54:94:77:71:24 Certificate issuer: /CN=a0df7f5b6618bda23c83bed11b442041f1fb456d Certificate serial: 019B78A354636419D6A59C8B0D146E8F76F4 Authority key identifier: A0:DF:7F:5B:66:18:BD:A2:3C:83:BE:D1:1B:44:20:41:F1:FB:45:6D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/We9JlhRC7AnuKdXNeDiRVJR3cSQ.roa Signing time: Thu 01 Jan 2026 08:18:48 +0000 ROA not before: Thu 01 Jan 2026 08:18:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9384 IP address blocks: 2a12:e100:100::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.mft rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:54:63:64:19:d6:a5:9c:8b:0d:14:6e:8f:76:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0df7f5b6618bda23c83bed11b442041f1fb456d Validity Not Before: Jan 1 08:18:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=59ef49961442ec09ee29d5cd7838915494777124 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:02:35:09:7c:2e:73:33:cc:96:83:5d:15:df: 5e:5c:59:84:a6:7c:05:75:cf:15:34:6b:32:96:7d: 27:b8:bd:e2:51:94:46:00:c6:9e:f4:c1:ad:ff:88: 88:b8:51:12:e0:9a:f6:49:5b:b0:ec:dd:01:22:24: 3e:50:e5:c8:b6:57:7c:3f:ac:c2:17:04:58:d2:c6: 93:66:24:56:67:c8:72:2a:d2:52:25:9b:63:70:1e: b2:e8:0e:cf:8a:06:c2:90:dc:1f:64:cf:8c:44:4d: a2:d7:e3:de:62:99:23:33:d2:a9:3c:3b:e5:45:11: ba:a7:e9:34:92:a1:af:5d:b9:49:7e:5d:68:ff:db: b7:e0:45:72:d1:6e:4f:69:90:2a:0d:db:13:d4:d9: 0e:f1:b6:13:fc:c6:29:f8:8f:e0:35:0d:d3:51:26: 15:95:15:fd:a4:0d:48:2d:78:48:19:e0:44:ce:07: e4:32:db:40:52:08:72:4a:ff:2c:92:86:7b:fe:ae: 48:88:43:23:a3:4c:27:f8:4a:f5:8f:af:d0:12:d9: 9c:b4:74:ad:f7:ef:93:31:56:7b:e2:a1:6e:e4:44: b8:53:7a:6d:46:31:71:84:07:c1:e2:88:e6:68:95: 1b:bd:6f:a2:82:8e:83:c9:ff:11:9b:93:a1:6b:8b: af:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:EF:49:96:14:42:EC:09:EE:29:D5:CD:78:38:91:54:94:77:71:24 X509v3 Authority Key Identifier: keyid:A0:DF:7F:5B:66:18:BD:A2:3C:83:BE:D1:1B:44:20:41:F1:FB:45:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/We9JlhRC7AnuKdXNeDiRVJR3cSQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:e100:100::/44 Signature Algorithm: sha256WithRSAEncryption 75:e1:cd:0e:6c:4b:02:b1:4e:26:f6:e2:50:b9:1c:09:14:14: 59:b2:11:1e:be:98:9b:90:4c:c1:c0:b0:05:4c:1c:48:c0:82: 98:9a:68:47:ba:90:40:d2:d5:c1:f4:97:cf:7b:c7:97:35:c9: ee:f8:ab:0a:d5:6d:40:d3:26:0c:32:d6:e5:08:a2:da:1b:f4: 9d:e4:88:f0:9c:49:35:8a:53:24:c9:36:91:57:4f:69:f9:4e: 3c:14:28:96:12:b4:d4:55:67:83:2e:6f:0e:58:3b:e0:a0:88: f8:d7:ff:1d:1e:dd:c2:12:ab:96:b3:f1:b3:75:51:c0:f2:f0: 91:2c:43:14:2e:ad:ba:d8:f4:84:d6:12:80:f3:35:40:29:3a: 8a:64:b5:86:33:da:26:56:70:5f:aa:eb:e5:3b:4b:17:47:67: cf:1c:09:44:a4:d0:55:11:97:6c:40:d1:67:03:25:b0:5a:47: 1f:63:7e:26:fc:d8:a5:cb:46:40:ff:10:cc:91:73:82:c1:db: d5:d5:45:86:c4:1a:dd:21:4d:5e:43:cb:2c:b8:53:82:a9:e7: 79:52:25:2c:b4:e2:e3:ff:05:2b:66:f4:89:de:b8:c0:f0:d2: 60:eb:38:62:20:6c:00:fe:07:11:54:d2:c2:b8:a7:63:48:df: 3b:bb:32:e4 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt4o1RjZBnWpZyLDRRuj3b0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwZGY3ZjViNjYxOGJkYTIzYzgzYmVkMTFiNDQyMDQxZjFm YjQ1NmQwHhcNMjYwMTAxMDgxODQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1OWVmNDk5NjE0NDJlYzA5ZWUyOWQ1Y2Q3ODM4OTE1NDk0Nzc3MTI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0gI1CXwuczPMloNdFd9eXFmEpnwF dc8VNGsyln0nuL3iUZRGAMae9MGt/4iIuFES4Jr2SVuw7N0BIiQ+UOXItld8P6zC FwRY0saTZiRWZ8hyKtJSJZtjcB6y6A7PigbCkNwfZM+MRE2i1+PeYpkjM9KpPDvl RRG6p+k0kqGvXblJfl1o/9u34EVy0W5PaZAqDdsT1NkO8bYT/MYp+I/gNQ3TUSYV lRX9pA1ILXhIGeBEzgfkMttAUghySv8skoZ7/q5IiEMjo0wn+Er1j6/QEtmctHSt 9++TMVZ74qFu5ES4U3ptRjFxhAfB4ojmaJUbvW+igo6Dyf8Rm5Oha4uvVQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFFnvSZYUQuwJ7inVzXg4kVSUd3EkMB8GA1UdIwQY MBaAFKDff1tmGL2iPIO+0RtEIEHx+0VtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb045X1cyWVl2YUk4Zzc3UkcwUWdRZkg3UlcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi9hNTcyOGItYTM2ZC00ZmJhLTkzYWEt NWY0YmM5MDBjMDNkLzEvV2U5SmxoUkM3QW51S2RYTmVEaVJWSlIzY1NRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi9hNTcyOGItYTM2ZC00ZmJhLTkzYWEtNWY0YmM5MDBjMDNk LzEvb045X1cyWVl2YUk4Zzc3UkcwUWdRZkg3UlcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhLhAAEA MA0GCSqGSIb3DQEBCwUAA4IBAQB14c0ObEsCsU4m9uJQuRwJFBRZshEevpibkEzB wLAFTBxIwIKYmmhHupBA0tXB9JfPe8eXNcnu+KsK1W1A0yYMMtblCKLaG/Sd5Ijw nEk1ilMkyTaRV09p+U48FCiWErTUVWeDLm8OWDvgoIj41/8dHt3CEquWs/GzdVHA 8vCRLEMULq262PSE1hKA8zVAKTqKZLWGM9omVnBfquvlO0sXR2fPHAlEpNBVEZds QNFnAyWwWkcfY34m/Nily0ZA/xDMkXOCwdvV1UWGxBrdIU1eQ8ssuFOCqed5UiUs tOLj/wUrZvSJ3rjA8NJg6zhiIGwA/gcRVNLCuKdjSN87uzLk -----END CERTIFICATE-----Generated at Mon Jan 26 05:03:12 2026 by rpki-client