This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/wOPB4MUkB2b4q2b35N3PnKYQH3A.roa File: wOPB4MUkB2b4q2b35N3PnKYQH3A.roa (raw, json) Hash identifier: bUIJSLGFX5GF8HArZ93QXqDdsqaB2966bqmXOTcazzk= Subject key identifier: C0:E3:C1:E0:C5:24:07:66:F8:AB:66:F7:E4:DD:CF:9C:A6:10:1F:70 Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde Certificate serial: 019B7C80267B386284DB35F69FB6964D075A Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/wOPB4MUkB2b4q2b35N3PnKYQH3A.roa Signing time: Fri 02 Jan 2026 02:18:51 +0000 ROA not before: Fri 02 Jan 2026 02:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203363 IP address blocks: 2.58.201.0/24 maxlen: 24 2.58.203.0/24 maxlen: 24 45.11.230.0/24 maxlen: 24 45.11.231.0/24 maxlen: 24 45.67.84.0/24 maxlen: 24 45.67.85.0/24 maxlen: 24 45.80.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.mft rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 08:02:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:26:7b:38:62:84:db:35:f6:9f:b6:96:4d:07:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde Validity Not Before: Jan 2 02:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c0e3c1e0c5240766f8ab66f7e4ddcf9ca6101f70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:27:56:6e:6d:66:2c:b7:5c:3f:ed:6a:66:4e: 92:ce:06:e0:7b:2e:7c:f6:2c:bd:0a:63:d2:a2:a7: 34:50:8b:0c:76:95:dc:0f:5f:ac:08:3c:7e:25:e9: de:13:74:dc:e8:1a:a4:e7:97:a4:b6:f5:e2:94:88: 9a:98:d9:70:72:35:98:44:87:9f:17:64:ef:fe:1c: b8:30:4c:cb:1d:8f:61:d6:1a:01:d0:b2:b1:ea:7e: 2d:03:25:b7:1c:c4:76:df:ad:5a:07:c7:08:a6:ed: 77:3c:aa:aa:28:03:eb:e3:08:16:13:40:1e:32:0b: 0c:ad:f4:97:e6:9a:0a:12:6c:ef:7f:f6:d1:2b:d7: 38:c5:31:c7:6b:9d:c7:20:f6:fc:eb:6b:42:56:9c: 19:68:d3:20:80:e1:3f:7f:1d:9c:fd:e3:22:e9:2d: 4f:3f:d5:26:76:45:d3:1f:56:6c:0f:cd:6a:7d:dd: 6b:4b:12:ac:0d:ca:50:9a:4d:1f:07:5d:c8:52:25: e9:b3:e2:43:38:44:f6:e7:09:57:e7:b9:66:96:37: 2b:eb:4a:29:f3:ac:24:0d:18:d6:a7:b7:42:13:fa: e4:50:d3:fe:62:b4:e3:f2:6d:48:92:01:f2:c4:1c: 97:a1:53:fd:42:d1:96:eb:ac:4e:f9:fa:1d:18:30: 4b:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:E3:C1:E0:C5:24:07:66:F8:AB:66:F7:E4:DD:CF:9C:A6:10:1F:70 X509v3 Authority Key Identifier: keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/wOPB4MUkB2b4q2b35N3PnKYQH3A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.58.201.0/24 2.58.203.0/24 45.11.230.0/23 45.67.84.0/23 45.80.193.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:7b:e0:b8:e7:4e:a9:53:08:5a:03:85:de:b2:a1:13:bd:55: e9:5b:98:62:4d:fa:bc:0e:1b:24:6c:de:f6:ba:ef:4e:9b:49: 68:25:12:bb:11:e7:00:f7:f7:bd:8f:21:c4:13:1d:ca:54:bc: 78:67:90:13:a5:7b:6e:d1:70:6d:0d:57:6c:b0:1d:c8:10:ae: c7:d0:f7:d0:6b:94:14:65:f1:70:f4:c3:98:0c:2c:42:ec:2d: 14:cf:50:6b:67:5c:b9:fb:c7:be:14:78:20:4b:4f:fb:a6:c3: a8:31:00:36:cd:63:9a:a6:1a:cc:48:5f:bd:2f:5e:61:fa:3f: 5f:54:70:02:95:97:9b:d0:7f:9a:9b:f2:80:d6:54:87:d0:3e: 4b:b8:fd:93:bf:6a:68:a2:e9:05:3e:9f:d1:de:c6:cd:ab:28: 3b:b8:ec:b0:94:52:0b:97:35:05:cb:65:e6:40:a8:c0:f2:94: 67:c2:5e:a1:a3:8c:01:8b:5d:39:fe:93:65:2f:e2:7a:ab:a1: c7:d8:54:76:f8:b4:3e:e9:69:f9:03:b3:f8:b5:6f:2b:7c:5f: df:80:da:fe:b0:1f:59:8c:17:22:02:59:b5:cd:2d:c3:ff:f3: d9:f4:c5:8b:d6:15:b7:9a:09:9a:99:8f:6c:e0:31:fb:90:57: 61:5b:78:aa -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZt8gCZ7OGKE2zX2n7aWTQdaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiMDQxNWJmYzQzYjM4ZTljZmQxYTEyOTk1MjAyZTg3NjM3 NTJmZGUwHhcNMjYwMTAyMDIxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjMGUzYzFlMGM1MjQwNzY2ZjhhYjY2ZjdlNGRkY2Y5Y2E2MTAxZjcwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqidWbm1mLLdcP+1qZk6Szgbgey58 9iy9CmPSoqc0UIsMdpXcD1+sCDx+JeneE3Tc6Bqk55ektvXilIiamNlwcjWYRIef F2Tv/hy4MEzLHY9h1hoB0LKx6n4tAyW3HMR2361aB8cIpu13PKqqKAPr4wgWE0Ae MgsMrfSX5poKEmzvf/bRK9c4xTHHa53HIPb862tCVpwZaNMggOE/fx2c/eMi6S1P P9UmdkXTH1ZsD81qfd1rSxKsDcpQmk0fB13IUiXps+JDOET25wlX57lmljcr60op 86wkDRjWp7dCE/rkUNP+YrTj8m1IkgHyxByXoVP9QtGW66xO+fodGDBL2wIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFMDjweDFJAdm+Ktm9+Tdz5ymEB9wMB8GA1UdIwQY MBaAFBsEFb/EOzjpz9GhKZUgLodjdS/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1Nzgt YTNjYTBkYjgzMjU0LzEvd09QQjRNVWtCMmI0cTJiMzVOM1BuS1lRSDNBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1NzgtYTNjYTBkYjgzMjU0 LzEvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAAjrJAwQA AjrLAwQBLQvmAwQBLUNUAwQALVDBMA0GCSqGSIb3DQEBCwUAA4IBAQB8e+C4506p UwhaA4XesqETvVXpW5hiTfq8DhskbN72uu9Om0loJRK7EecA9/e9jyHEEx3KVLx4 Z5ATpXtu0XBtDVdssB3IEK7H0PfQa5QUZfFw9MOYDCxC7C0Uz1BrZ1y5+8e+FHgg S0/7psOoMQA2zWOaphrMSF+9L15h+j9fVHAClZeb0H+am/KA1lSH0D5LuP2Tv2po oukFPp/R3sbNqyg7uOywlFILlzUFy2XmQKjA8pRnwl6ho4wBi105/pNlL+J6q6HH 2FR2+LQ+6Wn5A7P4tW8rfF/fgNr+sB9ZjBciAlm1zS3D//PZ9MWL1hW3mgmamY9s 4DH7kFdhW3iq -----END CERTIFICATE-----Generated at Mon Jan 19 16:51:42 2026 by rpki-client