This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/wkII8mT_euYThV1XwcC1p09SIq8.roa File: wkII8mT_euYThV1XwcC1p09SIq8.roa (raw, json) Hash identifier: KTBmbNMYpZwuYjtqFt1PYs9OEJ/5++AGe1s/9JAMhzA= Subject key identifier: C2:42:08:F2:64:FF:7A:E6:13:85:5D:57:C1:C0:B5:A7:4F:52:22:AF Certificate issuer: /CN=293bc3a5749733104f7b9cc0512dade136d70ad0 Certificate serial: 019B7B355FBFA2A8FD1056E79A638079280E Authority key identifier: 29:3B:C3:A5:74:97:33:10:4F:7B:9C:C0:51:2D:AD:E1:36:D7:0A:D0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KTvDpXSXMxBPe5zAUS2t4TbXCtA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/wkII8mT_euYThV1XwcC1p09SIq8.roa Signing time: Thu 01 Jan 2026 20:17:34 +0000 ROA not before: Thu 01 Jan 2026 20:17:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 196735 IP address blocks: 188.75.128.0/18 maxlen: 24 2a01:b380::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft rsync://rpki.ripe.net/repository/DEFAULT/KTvDpXSXMxBPe5zAUS2t4TbXCtA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:5f:bf:a2:a8:fd:10:56:e7:9a:63:80:79:28:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=293bc3a5749733104f7b9cc0512dade136d70ad0 Validity Not Before: Jan 1 20:17:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c24208f264ff7ae613855d57c1c0b5a74f5222af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b9:f0:6c:15:c9:44:2b:16:de:44:7a:e3:77: 92:d4:69:16:0a:1b:bc:da:c1:a2:a1:20:bb:c2:f5: 2a:ec:55:8a:f5:f0:df:00:26:b1:4c:36:5a:d4:c4: f9:d1:d6:5f:c1:d5:74:44:e5:00:7b:f0:52:b8:d3: ec:8d:41:36:84:c6:11:8a:4a:e8:a8:09:f9:3e:51: 6f:2b:85:c2:1d:a6:47:7f:89:4d:9b:8e:6e:6e:6b: 89:cd:a6:58:ba:a9:b8:f6:de:22:6c:8f:b9:f0:b1: 94:70:56:59:76:af:bc:a3:1c:b3:3c:36:f7:b0:94: 3b:95:4a:e6:48:00:b3:40:28:29:97:a3:ef:1e:33: 97:76:8b:25:c3:1f:7b:f5:10:54:1c:28:dd:56:78: d1:d2:75:5d:3f:22:86:d9:eb:a6:d8:30:7b:25:2e: d8:63:92:4b:e6:2a:92:2f:dd:d2:48:97:cc:62:b0: 0c:78:40:de:68:b6:40:f9:58:91:c2:68:44:3f:f4: af:4b:bf:4c:3e:17:0a:b7:76:86:4d:f1:39:67:46: 43:0b:8b:2a:60:e3:2f:7d:74:9d:c3:34:31:cf:77: 6c:f5:b4:2d:3b:e0:db:e6:db:dd:f1:90:c4:81:8b: a8:33:3f:1c:01:ef:df:9c:92:c0:af:5d:71:8d:aa: 12:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:42:08:F2:64:FF:7A:E6:13:85:5D:57:C1:C0:B5:A7:4F:52:22:AF X509v3 Authority Key Identifier: keyid:29:3B:C3:A5:74:97:33:10:4F:7B:9C:C0:51:2D:AD:E1:36:D7:0A:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KTvDpXSXMxBPe5zAUS2t4TbXCtA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/wkII8mT_euYThV1XwcC1p09SIq8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.75.128.0/18 IPv6: 2a01:b380::/32 Signature Algorithm: sha256WithRSAEncryption 3b:45:50:5e:5d:ef:15:24:d6:84:30:95:bf:de:4c:3f:b6:73: 45:a5:80:73:b8:9c:83:bd:59:44:b2:cc:c1:fc:55:4a:27:0b: 00:f3:8a:9f:da:86:ad:90:89:bd:96:f0:12:c2:7f:5b:e7:a2: e3:d1:ac:4b:45:a2:56:1e:b9:6a:92:d6:38:ea:4a:7b:c1:70: a2:34:5f:2d:a1:f8:4a:ee:5d:ed:5a:fe:65:ee:5e:39:a6:16: f5:19:22:62:3a:7e:31:2f:7d:e0:e7:74:20:7f:a3:16:9a:21: 33:05:37:68:fe:9d:04:31:a8:77:9e:d7:00:61:87:d6:fa:1c: 67:96:6f:ce:57:83:cd:f3:f4:8d:b0:78:2f:5e:f3:37:f4:a2: 74:d9:d2:d9:14:9c:90:ca:0b:f0:9a:8a:08:1d:de:42:30:31: dd:f7:38:ce:f2:5f:a0:e1:3e:62:57:6e:3f:97:66:6c:75:56: 9a:9b:57:85:71:35:9d:7f:27:12:db:dd:29:21:fe:5a:34:61: cf:bd:d0:8a:20:84:cb:89:48:ce:04:20:e8:3a:64:07:a1:1d: da:ac:b4:bf:fb:61:3b:87:1e:7b:23:51:17:b8:98:dc:b2:6a: 29:1c:f9:4c:ec:12:d1:ea:ee:9f:fb:9d:85:51:89:d5:fb:d1: 68:64:c4:0e -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt7NV+/oqj9EFbnmmOAeSgOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5M2JjM2E1NzQ5NzMzMTA0ZjdiOWNjMDUxMmRhZGUxMzZk NzBhZDAwHhcNMjYwMTAxMjAxNzM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjMjQyMDhmMjY0ZmY3YWU2MTM4NTVkNTdjMWMwYjVhNzRmNTIyMmFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs7nwbBXJRCsW3kR643eS1GkWChu8 2sGioSC7wvUq7FWK9fDfACaxTDZa1MT50dZfwdV0ROUAe/BSuNPsjUE2hMYRikro qAn5PlFvK4XCHaZHf4lNm45ubmuJzaZYuqm49t4ibI+58LGUcFZZdq+8oxyzPDb3 sJQ7lUrmSACzQCgpl6PvHjOXdoslwx979RBUHCjdVnjR0nVdPyKG2eum2DB7JS7Y Y5JL5iqSL93SSJfMYrAMeEDeaLZA+ViRwmhEP/SvS79MPhcKt3aGTfE5Z0ZDC4sq YOMvfXSdwzQxz3ds9bQtO+Db5tvd8ZDEgYuoMz8cAe/fnJLAr11xjaoS/wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFMJCCPJk/3rmE4VdV8HAtadPUiKvMB8GA1UdIwQY MBaAFCk7w6V0lzMQT3ucwFEtreE21wrQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1R2RHBYU1hNeEJQZTV6QVVTMnQ0VGJYQ3RBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC9iYjdmOWUtMTVjMC00ZDU1LTgyMmIt NjA5YTFlODYyN2ZkLzEvd2tJSThtVF9ldVlUaFYxWHdjQzFwMDlTSXE4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC9iYjdmOWUtMTVjMC00ZDU1LTgyMmItNjA5YTFlODYyN2Zk LzEvS1R2RHBYU1hNeEJQZTV6QVVTMnQ0VGJYQ3RBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQGvEuAMA0E AgACMAcDBQAqAbOAMA0GCSqGSIb3DQEBCwUAA4IBAQA7RVBeXe8VJNaEMJW/3kw/ tnNFpYBzuJyDvVlEsszB/FVKJwsA84qf2oatkIm9lvASwn9b56Lj0axLRaJWHrlq ktY46kp7wXCiNF8tofhK7l3tWv5l7l45phb1GSJiOn4xL33g53Qgf6MWmiEzBTdo /p0EMah3ntcAYYfW+hxnlm/OV4PN8/SNsHgvXvM39KJ02dLZFJyQygvwmooIHd5C MDHd9zjO8l+g4T5iV24/l2ZsdVaam1eFcTWdfycS290pIf5aNGHPvdCKIITLiUjO BCDoOmQHoR3arLS/+2E7hx57I1EXuJjcsmopHPlM7BLR6u6f+52FUYnV+9FoZMQO -----END CERTIFICATE-----Generated at Mon Feb 9 21:00:52 2026 by rpki-client