This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/kwWZWud0oDxj9bqRYQSnO1fTRms.roa File: kwWZWud0oDxj9bqRYQSnO1fTRms.roa (raw, json) Hash identifier: pxOltO+Vbwb+oDFmvBF+y18EOaW3vQK3U1vDji5y33Q= Subject key identifier: 93:05:99:5A:E7:74:A0:3C:63:F5:BA:91:61:04:A7:3B:57:D3:46:6B Certificate issuer: /CN=4cf8ffc088591e4f243baafa21b4298bfb366026 Certificate serial: 019B7C11F96239E1CC9045575AB0005FB05B Authority key identifier: 4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/kwWZWud0oDxj9bqRYQSnO1fTRms.roa Signing time: Fri 02 Jan 2026 00:18:31 +0000 ROA not before: Fri 02 Jan 2026 00:18:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60845 IP address blocks: 62.96.212.0/24 maxlen: 24 212.121.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/TPj_wIhZHk8kO6r6IbQpi_s2YCY.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/TPj_wIhZHk8kO6r6IbQpi_s2YCY.mft rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:f9:62:39:e1:cc:90:45:57:5a:b0:00:5f:b0:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4cf8ffc088591e4f243baafa21b4298bfb366026 Validity Not Before: Jan 2 00:18:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9305995ae774a03c63f5ba916104a73b57d3466b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:0b:ac:3e:a6:5c:8b:6f:f4:7a:75:ea:90:8d: e8:56:57:66:59:c8:d5:a1:d9:2f:cd:d7:6c:03:ae: a3:79:41:1c:2b:59:88:7d:0e:29:fc:c8:52:d5:77: 24:54:89:75:0e:be:b5:9c:90:2c:ed:9e:da:e7:2b: 82:cd:55:b7:a5:37:7a:8b:a9:c9:c3:6d:2a:8b:ad: bc:4f:39:9d:97:fc:7d:21:b9:bf:b4:7d:cd:b2:cc: c6:5f:21:66:3b:b0:b2:1b:93:d7:d4:e3:47:45:ab: bb:7c:a5:65:83:71:9d:61:6d:6f:83:a4:c1:54:ea: 63:9c:e7:ea:12:ef:52:f0:cb:ca:f5:dd:6d:2c:8e: 14:1a:6e:67:27:49:b9:0d:cb:07:2b:8a:b0:f3:f2: 64:af:04:96:e4:1a:f8:e9:74:37:44:ff:e7:4e:d1: 1e:3f:1e:28:93:9b:a2:a1:a2:14:db:4d:92:2d:11: fc:8f:92:00:4d:52:f8:71:dd:80:39:33:17:72:24: 8b:f9:d5:db:57:f3:94:a6:66:6c:ae:29:fa:3b:84: fe:4c:52:4f:15:57:ba:55:67:0e:77:21:ce:87:c7: f0:6e:63:4e:b4:50:88:e9:e4:df:23:ec:44:c4:a9: 08:33:7e:c7:12:1c:23:83:15:c1:b4:cd:47:d2:b6: 5c:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:05:99:5A:E7:74:A0:3C:63:F5:BA:91:61:04:A7:3B:57:D3:46:6B X509v3 Authority Key Identifier: keyid:4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/kwWZWud0oDxj9bqRYQSnO1fTRms.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/TPj_wIhZHk8kO6r6IbQpi_s2YCY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.96.212.0/24 212.121.139.0/24 Signature Algorithm: sha256WithRSAEncryption 71:72:fa:e2:9b:bf:b0:3f:d1:77:61:e8:92:98:67:95:1f:25: f8:1f:f9:9e:c6:a6:f7:7c:8e:b5:00:b7:51:68:cf:ba:8c:2b: a5:9b:51:73:cf:04:32:6c:01:1f:33:e9:d1:0b:ca:b5:29:87: 76:a3:c8:10:76:7a:5e:ed:3b:07:2a:8a:f8:b1:3f:7a:84:d9: ff:9a:d9:ee:9e:49:9c:0f:9e:db:9b:91:e6:5a:2b:5b:88:09: 5b:fa:0e:9a:50:49:09:09:de:1f:3f:1b:32:44:3b:f5:a9:76: 0f:3a:22:ff:14:26:55:d4:26:52:cb:1f:da:b0:35:1e:6e:74: a5:ae:2f:39:8a:14:36:73:8f:90:64:33:da:13:65:63:b2:57: 8c:f9:55:84:ea:45:09:8d:09:37:80:5a:44:4e:01:31:72:ed: 24:31:3d:b6:2b:7f:74:c2:d3:7c:07:8c:02:f7:53:c3:6e:8d: 84:50:8e:b9:9f:d6:4a:38:0d:97:61:ac:0d:c2:40:d7:ad:a3: f8:47:0a:48:a3:01:a9:ea:bd:5e:40:65:fb:63:df:69:dc:01: 9c:9e:34:55:59:bd:5c:41:77:cd:ca:f0:5e:20:4b:51:c9:55: ca:44:c7:f9:71:10:dc:2b:5f:67:b1:be:11:32:67:67:4f:be: ca:7d:44:f6 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8EfliOeHMkEVXWrAAX7BbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjZjhmZmMwODg1OTFlNGYyNDNiYWFmYTIxYjQyOThiZmIz NjYwMjYwHhcNMjYwMTAyMDAxODMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MzA1OTk1YWU3NzRhMDNjNjNmNWJhOTE2MTA0YTczYjU3ZDM0NjZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsgusPqZci2/0enXqkI3oVldmWcjV odkvzddsA66jeUEcK1mIfQ4p/MhS1XckVIl1Dr61nJAs7Z7a5yuCzVW3pTd6i6nJ w20qi628Tzmdl/x9Ibm/tH3NsszGXyFmO7CyG5PX1ONHRau7fKVlg3GdYW1vg6TB VOpjnOfqEu9S8MvK9d1tLI4UGm5nJ0m5DcsHK4qw8/JkrwSW5Br46XQ3RP/nTtEe Px4ok5uioaIU202SLRH8j5IATVL4cd2AOTMXciSL+dXbV/OUpmZsrin6O4T+TFJP FVe6VWcOdyHOh8fwbmNOtFCI6eTfI+xExKkIM37HEhwjgxXBtM1H0rZc1wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFJMFmVrndKA8Y/W6kWEEpztX00ZrMB8GA1UdIwQY MBaAFEz4/8CIWR5PJDuq+iG0KYv7NmAmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFBqX3dJaFpIazhrTzZyNkliUXBpX3MyWUNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9hMGEzOWMtYmUwMy00N2JiLWJkYjMt YjNiNzhiMGI2NmVhLzEva3dXWld1ZDBvRHhqOWJxUllRU25PMWZUUm1zLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi9hMGEzOWMtYmUwMy00N2JiLWJkYjMtYjNiNzhiMGI2NmVh LzEvVFBqX3dJaFpIazhrTzZyNkliUXBpX3MyWUNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAPmDUAwQA 1HmLMA0GCSqGSIb3DQEBCwUAA4IBAQBxcvrim7+wP9F3YeiSmGeVHyX4H/mexqb3 fI61ALdRaM+6jCulm1FzzwQybAEfM+nRC8q1KYd2o8gQdnpe7TsHKor4sT96hNn/ mtnunkmcD57bm5HmWitbiAlb+g6aUEkJCd4fPxsyRDv1qXYPOiL/FCZV1CZSyx/a sDUebnSlri85ihQ2c4+QZDPaE2VjsleM+VWE6kUJjQk3gFpETgExcu0kMT22K390 wtN8B4wC91PDbo2EUI65n9ZKOA2XYawNwkDXraP4RwpIowGp6r1eQGX7Y99p3AGc njRVWb1cQXfNyvBeIEtRyVXKRMf5cRDcK19nsb4RMmdnT77KfUT2 -----END CERTIFICATE-----Generated at Mon Jan 26 23:42:48 2026 by rpki-client