This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/WK4FeKC76gPpIjRhyORnL_0frZU.roa File: WK4FeKC76gPpIjRhyORnL_0frZU.roa (raw, json) Hash identifier: vdHNIiugtJJb19ih4gpWPEIdemNrQgRmwJqyp8Z7ys0= Subject key identifier: 58:AE:05:78:A0:BB:EA:03:E9:22:34:61:C8:E4:67:2F:FD:1F:AD:95 Certificate issuer: /CN=6d23ce7b0c10068fbc44c021943e339013f2aee0 Certificate serial: 019B76EAFC0AC6B6992F59D22F2159ED66B7 Authority key identifier: 6D:23:CE:7B:0C:10:06:8F:BC:44:C0:21:94:3E:33:90:13:F2:AE:E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/WK4FeKC76gPpIjRhyORnL_0frZU.roa Signing time: Thu 01 Jan 2026 00:17:50 +0000 ROA not before: Thu 01 Jan 2026 00:17:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58291 IP address blocks: 45.11.28.0/22 maxlen: 24 2a0e:5700::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.crl rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:fc:0a:c6:b6:99:2f:59:d2:2f:21:59:ed:66:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d23ce7b0c10068fbc44c021943e339013f2aee0 Validity Not Before: Jan 1 00:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=58ae0578a0bbea03e9223461c8e4672ffd1fad95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:90:b5:03:77:fb:a7:a0:54:d3:49:f9:e2:aa: 9a:52:d1:c2:10:5b:15:15:11:ba:5a:a8:4d:94:39: a9:db:50:64:51:6d:e8:c8:8d:ec:13:ab:05:69:06: 67:3d:f3:ea:b1:a7:97:e6:35:79:82:1a:6a:0d:40: 6f:8e:7a:c3:7b:d2:83:5e:50:19:e0:26:74:02:1b: 72:ab:f3:ea:a3:dd:94:cc:fc:7f:9b:7c:b4:33:42: c3:36:78:a9:e1:ad:dd:a2:62:39:e1:60:6c:fc:da: c2:e7:2a:f4:4b:cb:43:16:f3:1a:8a:5e:3c:c2:c8: cd:ed:34:e2:3c:4a:be:18:71:4a:b5:95:75:bc:b9: 65:d6:f8:2a:14:47:dc:eb:67:76:7a:e2:22:b7:1e: 0e:61:ce:b2:8a:74:3e:a0:f8:e2:19:65:d0:b0:b5: 0e:f6:88:ee:4f:7e:9b:bd:5a:87:7a:46:e3:be:b1: 6e:0c:3c:1c:e1:3e:7e:74:94:62:b7:99:f0:d8:45: a6:14:d5:8d:a6:de:8c:bc:9e:75:bb:86:1f:3a:bb: 2c:ac:49:a5:1e:14:ee:24:d9:62:9c:33:7c:93:07: f7:c6:d8:c1:be:59:28:ce:00:4f:2d:3f:82:7c:3a: 35:ad:61:aa:90:88:10:70:31:7d:da:ed:d3:76:09: 42:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:AE:05:78:A0:BB:EA:03:E9:22:34:61:C8:E4:67:2F:FD:1F:AD:95 X509v3 Authority Key Identifier: keyid:6D:23:CE:7B:0C:10:06:8F:BC:44:C0:21:94:3E:33:90:13:F2:AE:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/WK4FeKC76gPpIjRhyORnL_0frZU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.11.28.0/22 IPv6: 2a0e:5700::/32 Signature Algorithm: sha256WithRSAEncryption 91:89:77:41:3d:c8:e8:ec:71:79:91:2c:ba:56:da:e8:d1:6b: fa:c7:a1:75:6f:63:9f:cd:b6:a7:5d:34:4c:bb:43:3a:f4:5b: 1f:83:25:4b:6a:c9:9a:07:25:01:b3:40:03:85:7e:aa:7e:de: 70:72:b8:4a:55:17:da:91:44:dd:7f:12:88:c5:d8:96:bd:0f: 83:29:1c:f8:cf:4f:c2:48:15:25:a0:bd:a4:4e:bb:ee:fb:e8: 68:4e:19:e5:42:e5:2e:45:4c:0c:e5:e0:cd:d7:4e:29:2e:a9: b1:4d:08:a2:be:bc:e1:1d:8f:c7:52:e8:af:78:91:95:99:a0: ae:24:65:55:fa:94:34:f2:26:3c:7c:34:e7:17:ac:fa:1a:29: 7d:c4:11:db:5c:77:41:b0:cb:4b:2d:da:bc:87:9e:fe:05:db: 2d:34:21:88:30:8c:fa:11:b6:ec:25:ff:14:ac:db:6a:cd:c8: b0:47:5c:a1:92:31:dc:d5:fe:c8:18:ce:fd:5b:38:20:3d:03: b2:f3:7e:1c:e6:e5:bb:84:0d:bb:3f:7b:fd:70:0f:72:89:09: 85:c0:b7:bd:7b:31:89:d0:f2:68:07:fb:ab:ec:33:86:80:d5: 09:bf:0e:58:6c:86:27:df:71:a0:91:56:57:4e:2c:e7:f1:49: ed:55:86:be -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt26vwKxraZL1nSLyFZ7Wa3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkMjNjZTdiMGMxMDA2OGZiYzQ0YzAyMTk0M2UzMzkwMTNm MmFlZTAwHhcNMjYwMTAxMDAxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1OGFlMDU3OGEwYmJlYTAzZTkyMjM0NjFjOGU0NjcyZmZkMWZhZDk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArpC1A3f7p6BU00n54qqaUtHCEFsV FRG6WqhNlDmp21BkUW3oyI3sE6sFaQZnPfPqsaeX5jV5ghpqDUBvjnrDe9KDXlAZ 4CZ0Ahtyq/Pqo92UzPx/m3y0M0LDNnip4a3domI54WBs/NrC5yr0S8tDFvMail48 wsjN7TTiPEq+GHFKtZV1vLll1vgqFEfc62d2euIitx4OYc6yinQ+oPjiGWXQsLUO 9ojuT36bvVqHekbjvrFuDDwc4T5+dJRit5nw2EWmFNWNpt6MvJ51u4YfOrssrEml HhTuJNlinDN8kwf3xtjBvlkozgBPLT+CfDo1rWGqkIgQcDF92u3TdglCHwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFFiuBXigu+oD6SI0YcjkZy/9H62VMB8GA1UdIwQY MBaAFG0jznsMEAaPvETAIZQ+M5AT8q7gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlNQT2V3d1FCby04Uk1BaGxENHprQlB5cnVBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My82NmFmMDctMzMxOC00ZjRhLTg5ZmYt NDBjNWViYzZmNzM2LzEvV0s0RmVLQzc2Z1BwSWpSaHlPUm5MXzBmclpVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81My82NmFmMDctMzMxOC00ZjRhLTg5ZmYtNDBjNWViYzZmNzM2 LzEvYlNQT2V3d1FCby04Uk1BaGxENHprQlB5cnVBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCLQscMA0E AgACMAcDBQAqDlcAMA0GCSqGSIb3DQEBCwUAA4IBAQCRiXdBPcjo7HF5kSy6Vtro 0Wv6x6F1b2OfzbanXTRMu0M69FsfgyVLasmaByUBs0ADhX6qft5wcrhKVRfakUTd fxKIxdiWvQ+DKRz4z0/CSBUloL2kTrvu++hoThnlQuUuRUwM5eDN104pLqmxTQii vrzhHY/HUuiveJGVmaCuJGVV+pQ08iY8fDTnF6z6Gil9xBHbXHdBsMtLLdq8h57+ BdstNCGIMIz6EbbsJf8UrNtqzciwR1yhkjHc1f7IGM79WzggPQOy834c5uW7hA27 P3v9cA9yiQmFwLe9ezGJ0PJoB/ur7DOGgNUJvw5YbIYn33GgkVZXTizn8UntVYa+ -----END CERTIFICATE-----Generated at Tue Feb 10 02:27:04 2026 by rpki-client