This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/e50b83-b292-4117-8991-b67d320990c6/1/wxYzOEFFE7ZvQ_jUpzfcf7qWdJY.roa File: wxYzOEFFE7ZvQ_jUpzfcf7qWdJY.roa (raw, json) Hash identifier: zi/D1IuQaIKBqfBUtIU/P0ojOtlc8op63UfckXGc4cA= Subject key identifier: C3:16:33:38:41:45:13:B6:6F:43:F8:D4:A7:37:DC:7F:BA:96:74:96 Certificate issuer: /CN=f57d9c8ffc204b6dbde01205303bdf8b50638aa6 Certificate serial: 019B7C121E9E467BC9BE90CF54B4ECEAF160 Authority key identifier: F5:7D:9C:8F:FC:20:4B:6D:BD:E0:12:05:30:3B:DF:8B:50:63:8A:A6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9X2cj_wgS2294BIFMDvfi1BjiqY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/e50b83-b292-4117-8991-b67d320990c6/1/wxYzOEFFE7ZvQ_jUpzfcf7qWdJY.roa Signing time: Fri 02 Jan 2026 00:18:40 +0000 ROA not before: Fri 02 Jan 2026 00:18:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49556 IP address blocks: 109.70.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/e50b83-b292-4117-8991-b67d320990c6/1/9X2cj_wgS2294BIFMDvfi1BjiqY.crl rsync://rpki.ripe.net/repository/DEFAULT/05/e50b83-b292-4117-8991-b67d320990c6/1/9X2cj_wgS2294BIFMDvfi1BjiqY.mft rsync://rpki.ripe.net/repository/DEFAULT/9X2cj_wgS2294BIFMDvfi1BjiqY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:1e:9e:46:7b:c9:be:90:cf:54:b4:ec:ea:f1:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f57d9c8ffc204b6dbde01205303bdf8b50638aa6 Validity Not Before: Jan 2 00:18:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c3163338414513b66f43f8d4a737dc7fba967496 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:63:31:63:4c:81:07:e3:63:21:b1:ee:35:9e: 83:0f:a0:b1:af:2f:5c:4e:d4:bd:9a:9c:25:04:ba: a4:fb:21:43:3f:ff:20:ac:b4:ac:63:b1:9f:d5:f1: 26:9d:53:f6:be:1c:6c:d7:90:c6:4b:a6:71:da:1e: 77:d8:bd:e3:ad:ac:e7:d1:52:a0:4a:2b:80:ad:97: 41:a5:26:37:5b:fe:c6:06:c1:7c:b0:05:0b:e6:9b: a6:b7:8c:55:51:50:6d:a6:74:18:f5:48:30:d1:ae: 2e:61:62:c2:de:e1:94:fd:ce:13:81:4c:74:58:00: ce:0b:a0:2e:16:8f:6e:44:10:8d:27:b1:2d:9d:e3: 72:98:03:3a:cf:34:6a:bf:49:1d:0b:c6:69:4a:66: cc:19:da:79:5a:c7:3c:e0:0f:a3:33:72:b1:26:b4: 6b:96:25:f7:96:df:fd:0c:d1:ea:4e:4b:b2:76:3b: 23:42:d8:47:2b:b7:94:2b:33:3f:2c:06:c6:69:5f: d4:aa:ff:13:ce:71:6a:85:55:b7:c4:08:c0:f4:83: 81:80:d3:bd:04:2e:b7:be:ac:4c:26:5e:e3:46:0f: fc:02:7c:f4:59:ef:fe:81:80:4b:2b:12:9a:e1:09: d9:92:a5:4b:f6:24:0e:6f:5a:35:8f:da:2a:bd:85: 11:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:16:33:38:41:45:13:B6:6F:43:F8:D4:A7:37:DC:7F:BA:96:74:96 X509v3 Authority Key Identifier: keyid:F5:7D:9C:8F:FC:20:4B:6D:BD:E0:12:05:30:3B:DF:8B:50:63:8A:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9X2cj_wgS2294BIFMDvfi1BjiqY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/e50b83-b292-4117-8991-b67d320990c6/1/wxYzOEFFE7ZvQ_jUpzfcf7qWdJY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/e50b83-b292-4117-8991-b67d320990c6/1/9X2cj_wgS2294BIFMDvfi1BjiqY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.70.78.0/24 Signature Algorithm: sha256WithRSAEncryption 54:a0:6f:15:bd:36:4c:7c:2d:10:9c:7b:fa:0f:ff:24:9d:6e: 31:5d:31:0a:1d:2c:f3:0d:93:4e:a4:96:14:51:a1:84:8a:78: b4:96:21:9b:f5:ff:90:6d:e8:44:de:79:64:f6:d8:b6:8f:17: ee:d6:56:9d:67:28:b4:df:98:f2:ee:8b:68:f0:e5:8c:94:66: f0:65:b5:46:5f:ad:ad:80:82:d7:cc:56:f8:cf:fb:13:76:05: 62:95:09:08:2a:48:93:52:85:d3:10:c9:a1:24:1a:47:50:23: 57:09:98:db:de:9e:b5:aa:61:d3:c0:fc:1e:7e:31:eb:54:05: 12:57:a8:18:c3:4f:a7:a0:50:7c:82:09:09:1a:5c:13:28:91: ce:7a:e5:59:c1:35:46:99:f0:79:cc:0b:46:7d:59:da:11:ee: ec:b0:e5:6b:f9:b7:cd:c1:b9:83:2c:24:40:4e:c0:5b:fd:4d: ac:4d:1a:21:a2:30:87:22:2b:a5:75:e6:76:5c:c3:b7:35:af: db:cb:35:ed:60:dd:68:59:02:0a:d8:57:69:ba:16:41:c7:9e: 04:58:ba:f7:a4:9f:74:ab:02:b3:02:af:1f:c8:70:8a:73:74: 25:2d:89:b5:11:31:f8:f7:92:3b:dc:9c:3c:86:3f:a3:7c:a1: db:ea:12:f3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8Eh6eRnvJvpDPVLTs6vFgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY1N2Q5YzhmZmMyMDRiNmRiZGUwMTIwNTMwM2JkZjhiNTA2 MzhhYTYwHhcNMjYwMTAyMDAxODQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjMzE2MzMzODQxNDUxM2I2NmY0M2Y4ZDRhNzM3ZGM3ZmJhOTY3NDk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApmMxY0yBB+NjIbHuNZ6DD6Cxry9c TtS9mpwlBLqk+yFDP/8grLSsY7Gf1fEmnVP2vhxs15DGS6Zx2h532L3jrazn0VKg SiuArZdBpSY3W/7GBsF8sAUL5pumt4xVUVBtpnQY9Ugw0a4uYWLC3uGU/c4TgUx0 WADOC6AuFo9uRBCNJ7EtneNymAM6zzRqv0kdC8ZpSmbMGdp5Wsc84A+jM3KxJrRr liX3lt/9DNHqTkuydjsjQthHK7eUKzM/LAbGaV/Uqv8TznFqhVW3xAjA9IOBgNO9 BC63vqxMJl7jRg/8Anz0We/+gYBLKxKa4QnZkqVL9iQOb1o1j9oqvYURawIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMMWMzhBRRO2b0P41Kc33H+6lnSWMB8GA1UdIwQY MBaAFPV9nI/8IEttveASBTA734tQY4qmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOVgyY2pfd2dTMjI5NEJJRk1EdmZpMUJqaXFZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS9lNTBiODMtYjI5Mi00MTE3LTg5OTEt YjY3ZDMyMDk5MGM2LzEvd3hZek9FRkZFN1p2UV9qVXB6ZmNmN3FXZEpZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS9lNTBiODMtYjI5Mi00MTE3LTg5OTEtYjY3ZDMyMDk5MGM2 LzEvOVgyY2pfd2dTMjI5NEJJRk1EdmZpMUJqaXFZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbUZOMA0G CSqGSIb3DQEBCwUAA4IBAQBUoG8VvTZMfC0QnHv6D/8knW4xXTEKHSzzDZNOpJYU UaGEini0liGb9f+QbehE3nlk9ti2jxfu1ladZyi035jy7oto8OWMlGbwZbVGX62t gILXzFb4z/sTdgVilQkIKkiTUoXTEMmhJBpHUCNXCZjb3p61qmHTwPwefjHrVAUS V6gYw0+noFB8ggkJGlwTKJHOeuVZwTVGmfB5zAtGfVnaEe7ssOVr+bfNwbmDLCRA TsBb/U2sTRohojCHIiuldeZ2XMO3Na/byzXtYN1oWQIK2FdpuhZBx54EWLr3pJ90 qwKzAq8fyHCKc3QlLYm1ETH495I73Jw8hj+jfKHb6hLz -----END CERTIFICATE-----Generated at Mon Jan 26 23:24:05 2026 by rpki-client