This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/wnKKZs8CL5sITpd1bsL8mCN_whw.roa File: wnKKZs8CL5sITpd1bsL8mCN_whw.roa (raw, json) Hash identifier: x/oWyELUEfox1cdM+OjmJcPeW5wZ59veRKaEMseu1OM= Subject key identifier: C2:72:8A:66:CF:02:2F:9B:08:4E:97:75:6E:C2:FC:98:23:7F:C2:1C Certificate issuer: /CN=e5a8865914deccdc9807241fd70b6bb083a444b3 Certificate serial: 019B79ECC5AE09D7DB5049C65D2FD21C95D2 Authority key identifier: E5:A8:86:59:14:DE:CC:DC:98:07:24:1F:D7:0B:6B:B0:83:A4:44:B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5aiGWRTezNyYByQf1wtrsIOkRLM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/wnKKZs8CL5sITpd1bsL8mCN_whw.roa Signing time: Thu 01 Jan 2026 14:18:38 +0000 ROA not before: Thu 01 Jan 2026 14:18:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 24620 IP address blocks: 2001:67c:958::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.mft rsync://rpki.ripe.net/repository/DEFAULT/5aiGWRTezNyYByQf1wtrsIOkRLM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 20:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:c5:ae:09:d7:db:50:49:c6:5d:2f:d2:1c:95:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e5a8865914deccdc9807241fd70b6bb083a444b3 Validity Not Before: Jan 1 14:18:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c2728a66cf022f9b084e97756ec2fc98237fc21c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:12:02:7d:d5:94:fe:ff:29:1b:4e:4e:9d:3b: 3e:4a:99:5a:f8:bc:23:61:78:0e:6e:4e:f7:be:0c: 8d:ac:f8:b9:2a:f0:9b:89:49:39:89:f0:bc:53:94: a6:0d:b2:df:d8:11:08:fd:37:08:99:83:97:30:ce: ad:29:05:1f:22:46:bf:85:4c:f3:29:8f:2f:47:c5: 9f:1a:bb:40:ac:4a:a0:80:ca:9a:24:0e:17:e7:c8: af:3b:af:0a:e5:38:ac:42:db:41:9f:1b:52:c9:dc: 24:26:eb:2a:b9:c1:67:fd:01:d7:a1:9b:2e:1b:2c: 49:b7:64:ea:63:88:63:7f:9b:29:68:e1:b0:73:48: e9:fb:3e:d9:0e:86:6b:27:19:6e:50:a6:bc:c5:2e: 0b:79:93:1c:ba:84:01:a8:82:ae:f6:1e:fc:a2:d8: b5:c8:05:95:71:0e:d7:be:4a:54:6e:ed:ea:29:db: 54:29:68:58:9f:42:ae:c0:51:74:fb:f7:43:d3:35: 44:1a:d5:7b:d7:be:fd:e0:8a:f2:ff:2e:f6:eb:75: df:3d:8e:f3:70:1b:d2:63:95:7f:f6:1a:db:a2:a4: 22:c1:be:e7:55:c0:fd:5f:30:dc:1c:e7:16:78:4f: 3b:08:2c:27:1f:7e:77:29:c7:3e:07:8d:63:3a:49: d0:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:72:8A:66:CF:02:2F:9B:08:4E:97:75:6E:C2:FC:98:23:7F:C2:1C X509v3 Authority Key Identifier: keyid:E5:A8:86:59:14:DE:CC:DC:98:07:24:1F:D7:0B:6B:B0:83:A4:44:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5aiGWRTezNyYByQf1wtrsIOkRLM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/wnKKZs8CL5sITpd1bsL8mCN_whw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:958::/48 Signature Algorithm: sha256WithRSAEncryption 20:06:94:8c:0a:8f:cd:b6:f5:8e:2a:ac:00:34:0b:0b:3b:c1: 14:d5:87:83:e5:8d:e5:80:f2:24:40:8b:a2:51:b0:48:59:0e: 22:dc:83:ff:fc:bb:61:68:4b:a8:6a:20:b0:f3:23:17:63:92: a2:3a:8b:f8:e0:1a:fa:7d:2d:23:ff:e7:b3:12:a8:e8:4e:c9: 8d:3e:fe:a0:d7:68:5e:d7:b5:9b:6b:9b:00:34:b7:ff:3d:c9: 80:89:c1:c6:75:24:d2:a3:a0:4d:fc:78:44:6f:c4:5c:ab:77: 05:91:e5:81:d6:80:9a:e6:a3:4c:b1:20:95:1a:74:b4:3f:79: 6e:3e:5c:c7:6e:7c:51:f7:7a:5f:43:3f:af:76:0b:19:a8:f7: 88:f8:cd:c5:7f:fb:21:3f:f4:d5:6a:14:a3:82:1e:51:7b:9e: 62:12:cf:ab:a8:3e:dc:b5:9d:1b:1e:d8:d6:d7:db:50:52:b1: 9f:45:a4:a1:32:2c:52:e1:18:bd:60:c8:65:1a:c8:99:47:8f: a8:42:31:8c:77:d5:00:2b:c0:6f:16:83:dd:5d:b5:56:27:b8: cb:4f:d5:a3:1b:67:14:5e:07:58:4d:56:65:f2:6a:37:a9:a1: 13:c7:ba:d4:6f:84:00:c8:13:48:5c:49:3f:45:a6:47:ca:e7: a1:c3:10:1e -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt57MWuCdfbUEnGXS/SHJXSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1YTg4NjU5MTRkZWNjZGM5ODA3MjQxZmQ3MGI2YmIwODNh NDQ0YjMwHhcNMjYwMTAxMTQxODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjMjcyOGE2NmNmMDIyZjliMDg0ZTk3NzU2ZWMyZmM5ODIzN2ZjMjFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuxICfdWU/v8pG05OnTs+Spla+Lwj YXgObk73vgyNrPi5KvCbiUk5ifC8U5SmDbLf2BEI/TcImYOXMM6tKQUfIka/hUzz KY8vR8WfGrtArEqggMqaJA4X58ivO68K5TisQttBnxtSydwkJusqucFn/QHXoZsu GyxJt2TqY4hjf5spaOGwc0jp+z7ZDoZrJxluUKa8xS4LeZMcuoQBqIKu9h78oti1 yAWVcQ7XvkpUbu3qKdtUKWhYn0KuwFF0+/dD0zVEGtV717794Iry/y7263XfPY7z cBvSY5V/9hrboqQiwb7nVcD9XzDcHOcWeE87CCwnH353Kcc+B41jOknQfwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFMJyimbPAi+bCE6XdW7C/Jgjf8IcMB8GA1UdIwQY MBaAFOWohlkU3szcmAckH9cLa7CDpESzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNWFpR1dSVGV6TnlZQnlRZjF3dHJzSU9rUkxNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8zYWZjODEtMzBlNi00YjhlLThkM2It NTdmNTRlYTQzZTE2LzEvd25LS1pzOENMNXNJVHBkMWJzTDhtQ05fd2h3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi8zYWZjODEtMzBlNi00YjhlLThkM2ItNTdmNTRlYTQzZTE2 LzEvNWFpR1dSVGV6TnlZQnlRZjF3dHJzSU9rUkxNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAlY MA0GCSqGSIb3DQEBCwUAA4IBAQAgBpSMCo/NtvWOKqwANAsLO8EU1YeD5Y3lgPIk QIuiUbBIWQ4i3IP//LthaEuoaiCw8yMXY5KiOov44Br6fS0j/+ezEqjoTsmNPv6g 12he17Wba5sANLf/PcmAicHGdSTSo6BN/HhEb8Rcq3cFkeWB1oCa5qNMsSCVGnS0 P3luPlzHbnxR93pfQz+vdgsZqPeI+M3Ff/shP/TVahSjgh5Re55iEs+rqD7ctZ0b HtjW19tQUrGfRaShMixS4Ri9YMhlGsiZR4+oQjGMd9UAK8BvFoPdXbVWJ7jLT9Wj G2cUXgdYTVZl8mo3qaETx7rUb4QAyBNIXEk/RaZHyuehwxAe -----END CERTIFICATE-----Generated at Tue Jan 20 06:03:12 2026 by rpki-client