This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/ab2389-8d36-43fe-af42-9a3841967181/1/wIc-Rh6w6YDK1W-UeGedBj1DHzA.roa File: wIc-Rh6w6YDK1W-UeGedBj1DHzA.roa (raw, json) Hash identifier: AHq1ZvIykr30MtwSSGLXsUeCsh/Ryu5hRBrmdW7qIMI= Subject key identifier: C0:87:3E:46:1E:B0:E9:80:CA:D5:6F:94:78:67:9D:06:3D:43:1F:30 Certificate issuer: /CN=473163527e83542dce693b16d0aedcd126d3319a Certificate serial: 019B775938D9DF5A38EE865AB9C9171260C7 Authority key identifier: 47:31:63:52:7E:83:54:2D:CE:69:3B:16:D0:AE:DC:D1:26:D3:31:9A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RzFjUn6DVC3OaTsW0K7c0SbTMZo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/ab2389-8d36-43fe-af42-9a3841967181/1/wIc-Rh6w6YDK1W-UeGedBj1DHzA.roa Signing time: Thu 01 Jan 2026 02:18:14 +0000 ROA not before: Thu 01 Jan 2026 02:18:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31479 IP address blocks: 2a04:d700::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/ab2389-8d36-43fe-af42-9a3841967181/1/RzFjUn6DVC3OaTsW0K7c0SbTMZo.crl rsync://rpki.ripe.net/repository/DEFAULT/57/ab2389-8d36-43fe-af42-9a3841967181/1/RzFjUn6DVC3OaTsW0K7c0SbTMZo.mft rsync://rpki.ripe.net/repository/DEFAULT/RzFjUn6DVC3OaTsW0K7c0SbTMZo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 19:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:38:d9:df:5a:38:ee:86:5a:b9:c9:17:12:60:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473163527e83542dce693b16d0aedcd126d3319a Validity Not Before: Jan 1 02:18:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c0873e461eb0e980cad56f9478679d063d431f30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ab:ae:4a:cb:a0:a6:59:98:50:e1:cd:cf:d8: 45:85:74:fc:f1:e2:2b:7b:aa:ba:0a:d9:64:f9:e9: a9:cb:1b:46:08:4f:c0:80:d0:f1:4c:19:4b:df:73: 1f:6e:42:82:71:f8:23:f4:8a:6e:18:22:d1:e8:85: 7b:d1:58:c4:2d:5e:e0:5c:0a:ae:3e:88:91:a6:e6: 55:02:a9:e1:d5:b3:3f:a6:22:60:d8:f6:31:61:ba: 8e:6f:0f:64:82:5b:7c:6b:82:53:eb:bf:f2:f8:ba: 7d:1b:af:9d:9f:e0:fc:1e:82:72:46:d8:54:be:4d: 5c:9d:34:bf:88:62:9c:5d:79:6c:4c:e2:bd:8e:f5: 46:d7:0c:d6:d7:22:49:0d:79:29:62:af:ae:fc:17: b8:db:2b:06:0c:b2:44:c1:a5:dc:96:38:81:48:01: be:db:c1:2f:ff:9a:1c:71:b1:79:f5:8c:d1:2d:e7: 5d:1f:de:8f:e2:36:30:ec:5b:73:5c:7c:b5:37:5d: 43:3b:e0:0b:d9:25:8f:5e:f5:39:c4:02:ef:87:bf: 19:be:30:3e:5f:37:18:c2:b7:16:21:9b:fe:d0:1a: ea:14:a3:ee:8b:21:d2:20:47:0f:d6:0a:e3:e2:79: 3d:e3:47:a8:08:ff:17:41:7f:a5:06:fc:a8:44:0e: b6:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:87:3E:46:1E:B0:E9:80:CA:D5:6F:94:78:67:9D:06:3D:43:1F:30 X509v3 Authority Key Identifier: keyid:47:31:63:52:7E:83:54:2D:CE:69:3B:16:D0:AE:DC:D1:26:D3:31:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RzFjUn6DVC3OaTsW0K7c0SbTMZo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/ab2389-8d36-43fe-af42-9a3841967181/1/wIc-Rh6w6YDK1W-UeGedBj1DHzA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/ab2389-8d36-43fe-af42-9a3841967181/1/RzFjUn6DVC3OaTsW0K7c0SbTMZo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a04:d700::/29 Signature Algorithm: sha256WithRSAEncryption d9:00:f1:4c:fe:87:fb:90:58:d7:6a:66:00:18:1e:73:83:a2: 35:1a:9f:64:62:8b:c0:d5:1b:85:62:80:11:5c:19:c9:9c:ee: 77:97:7e:66:81:bc:c5:3d:75:db:c6:88:b6:1b:21:e1:d6:9e: f4:9a:64:f8:21:16:56:6d:6f:e2:4f:fb:a2:04:38:76:86:97: a4:29:05:39:d9:96:eb:3f:a1:8c:95:5c:01:2c:a2:3b:ca:d3: c0:d7:20:e0:ce:1a:5e:94:ad:06:f5:26:5a:c1:13:2c:01:bb: ad:be:46:26:ed:c4:56:f2:d2:81:fb:b9:f9:64:d0:9d:fe:00: 63:e2:fc:f8:60:58:3f:c7:0e:01:b8:63:70:02:6d:ff:3a:eb: 70:d9:d0:3e:03:83:8d:cc:91:f2:3e:b1:34:31:5e:11:b9:99: 5f:00:bb:fc:04:12:eb:f1:b8:63:dc:45:51:4d:f5:a1:e9:1b: d7:63:82:22:21:d2:ff:fa:39:07:50:a4:93:e3:60:8a:f2:22: 20:18:40:58:bb:26:01:9c:a6:57:6b:e0:11:73:9c:58:da:fc: 34:da:65:c3:3a:49:1c:0d:18:7c:e4:04:2c:9c:2b:ed:e0:e2: 57:e2:62:07:0f:f5:fc:2b:9d:8c:e2:78:80:be:62:11:95:55: ad:2b:c5:ca -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt3WTjZ31o47oZauckXEmDHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ3MzE2MzUyN2U4MzU0MmRjZTY5M2IxNmQwYWVkY2QxMjZk MzMxOWEwHhcNMjYwMTAxMDIxODE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjMDg3M2U0NjFlYjBlOTgwY2FkNTZmOTQ3ODY3OWQwNjNkNDMxZjMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzauuSsugplmYUOHNz9hFhXT88eIr e6q6Ctlk+empyxtGCE/AgNDxTBlL33MfbkKCcfgj9IpuGCLR6IV70VjELV7gXAqu PoiRpuZVAqnh1bM/piJg2PYxYbqObw9kglt8a4JT67/y+Lp9G6+dn+D8HoJyRthU vk1cnTS/iGKcXXlsTOK9jvVG1wzW1yJJDXkpYq+u/Be42ysGDLJEwaXcljiBSAG+ 28Ev/5occbF59YzRLeddH96P4jYw7FtzXHy1N11DO+AL2SWPXvU5xALvh78ZvjA+ XzcYwrcWIZv+0BrqFKPuiyHSIEcP1grj4nk940eoCP8XQX+lBvyoRA628wIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFMCHPkYesOmAytVvlHhnnQY9Qx8wMB8GA1UdIwQY MBaAFEcxY1J+g1Qtzmk7FtCu3NEm0zGaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUnpGalVuNkRWQzNPYVRzVzBLN2MwU2JUTVpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9hYjIzODktOGQzNi00M2ZlLWFmNDIt OWEzODQxOTY3MTgxLzEvd0ljLVJoNnc2WURLMVctVWVHZWRCajFESHpBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny9hYjIzODktOGQzNi00M2ZlLWFmNDItOWEzODQxOTY3MTgx LzEvUnpGalVuNkRWQzNPYVRzVzBLN2MwU2JUTVpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgTXADAN BgkqhkiG9w0BAQsFAAOCAQEA2QDxTP6H+5BY12pmABgec4OiNRqfZGKLwNUbhWKA EVwZyZzud5d+ZoG8xT1128aIthsh4dae9Jpk+CEWVm1v4k/7ogQ4doaXpCkFOdmW 6z+hjJVcASyiO8rTwNcg4M4aXpStBvUmWsETLAG7rb5GJu3EVvLSgfu5+WTQnf4A Y+L8+GBYP8cOAbhjcAJt/zrrcNnQPgODjcyR8j6xNDFeEbmZXwC7/AQS6/G4Y9xF UU31oekb12OCIiHS//o5B1Ckk+NgivIiIBhAWLsmAZymV2vgEXOcWNr8NNplwzpJ HA0YfOQELJwr7eDiV+JiBw/1/CudjOJ4gL5iEZVVrSvFyg== -----END CERTIFICATE-----Generated at Sat Jan 24 00:28:25 2026 by rpki-client