This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/WHgfjvGzKH29ds1cDht62d8G1m0.roa File: WHgfjvGzKH29ds1cDht62d8G1m0.roa (raw, json) Hash identifier: rkRmnoPgMbtjq4y7XLzZBLGJEm3Ux1FGcLt4AnttpoA= Subject key identifier: 58:78:1F:8E:F1:B3:28:7D:BD:76:CD:5C:0E:1B:7A:D9:DF:06:D6:6D Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467 Certificate serial: 019B7C1345777D8DF290B698AB031914B7B0 Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/WHgfjvGzKH29ds1cDht62d8G1m0.roa Signing time: Fri 02 Jan 2026 00:19:56 +0000 ROA not before: Fri 02 Jan 2026 00:19:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 273192 IP address blocks: 201.77.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.mft rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 11:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:45:77:7d:8d:f2:90:b6:98:ab:03:19:14:b7:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467 Validity Not Before: Jan 2 00:19:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=58781f8ef1b3287dbd76cd5c0e1b7ad9df06d66d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:2b:30:fa:22:60:35:43:12:ff:a2:7b:b7:a8: 93:3d:2b:70:e6:56:38:a5:ff:4e:78:d3:f7:29:42: 9f:43:fa:d8:dc:85:b6:ec:62:87:39:65:c9:ca:dc: 93:cc:8c:c8:17:6a:4b:18:26:7f:8e:82:6d:b9:59: 58:0e:15:f6:a3:d7:d9:8e:f5:ee:8b:a0:62:7e:29: a3:06:89:ff:48:16:f3:05:c5:c3:80:a3:19:7f:0a: 51:4d:ee:a7:f2:2d:47:32:b0:8b:c2:24:82:b0:4b: 59:b0:e5:35:fb:b4:1f:8b:ff:da:fe:96:9e:2c:cf: 64:49:7a:2d:9a:36:fe:37:5d:27:3e:0c:a6:2e:91: a4:67:30:a6:c5:9b:dc:95:fa:6f:cd:62:7d:97:18: 82:ab:7e:da:42:11:41:4c:63:26:56:6b:73:db:bf: 3f:61:e4:8d:0a:3b:97:83:32:d2:75:3f:e0:84:1b: 37:26:4f:0e:90:d5:83:92:5f:31:65:6d:8b:07:f9: 2b:17:40:ad:12:a0:0b:9d:42:ed:da:28:03:d7:c2: 7b:eb:4a:d4:5f:64:13:bf:d8:60:f4:c4:73:d7:90: e7:65:c9:b0:8c:4c:96:d3:1c:2d:c6:ce:fe:fe:38: 55:b9:7b:4f:14:74:66:db:48:cd:a9:56:7c:4f:b8: 0a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:78:1F:8E:F1:B3:28:7D:BD:76:CD:5C:0E:1B:7A:D9:DF:06:D6:6D X509v3 Authority Key Identifier: keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/WHgfjvGzKH29ds1cDht62d8G1m0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 201.77.49.0/24 Signature Algorithm: sha256WithRSAEncryption 84:98:fa:ca:cc:b1:e1:8a:30:c6:a2:77:dd:de:92:f2:91:c6: 57:a4:80:fa:ec:07:c4:a5:1e:7a:bb:c9:23:8a:7f:55:d9:d6: ad:84:4c:b3:b7:83:6f:d9:3c:f3:7d:50:6e:fa:ee:78:af:1d: dc:de:2e:85:78:af:69:28:8f:c6:e5:c9:66:e3:3b:a6:35:ca: ff:f3:6e:f4:d8:df:7b:8c:9f:ab:2a:3f:f1:3d:73:50:46:06: 85:56:10:f4:c2:cf:3c:20:d7:06:02:ee:86:55:d2:d5:83:06: 55:85:aa:51:69:62:40:50:52:45:5d:78:66:d4:3a:ea:c2:c8: 08:fa:64:19:63:ca:46:72:55:33:9a:5f:ec:a8:ca:4d:72:c4: 40:43:dc:76:8b:45:92:f5:ef:04:aa:88:1d:c1:e7:be:4b:85: a8:55:2d:40:40:ae:0b:de:9f:b1:31:d4:71:81:3f:2b:ee:e0: 98:bc:d0:00:48:da:53:07:de:05:60:4b:07:2f:5e:40:f9:ab: 2a:05:b1:a0:98:ff:0c:1f:33:ed:6b:80:d3:83:49:b1:39:50: 4f:85:ef:2e:96:00:42:ec:87:2c:c7:40:e5:9d:b6:d1:ef:c0: 38:76:99:aa:38:7a:cc:e4:23:c6:30:f0:5c:20:55:0f:b7:5a: 22:8d:a5:5c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8E0V3fY3ykLaYqwMZFLewMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1MzRjNDlmY2ZhOGE0NTA0MWQ5NWVkNGQ4ZDRmYzY5Yzcy N2E0NjcwHhcNMjYwMTAyMDAxOTU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ODc4MWY4ZWYxYjMyODdkYmQ3NmNkNWMwZTFiN2FkOWRmMDZkNjZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArSsw+iJgNUMS/6J7t6iTPStw5lY4 pf9OeNP3KUKfQ/rY3IW27GKHOWXJytyTzIzIF2pLGCZ/joJtuVlYDhX2o9fZjvXu i6BifimjBon/SBbzBcXDgKMZfwpRTe6n8i1HMrCLwiSCsEtZsOU1+7Qfi//a/pae LM9kSXotmjb+N10nPgymLpGkZzCmxZvclfpvzWJ9lxiCq37aQhFBTGMmVmtz278/ YeSNCjuXgzLSdT/ghBs3Jk8OkNWDkl8xZW2LB/krF0CtEqALnULt2igD18J760rU X2QTv9hg9MRz15DnZcmwjEyW0xwtxs7+/jhVuXtPFHRm20jNqVZ8T7gKNQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFh4H47xsyh9vXbNXA4betnfBtZtMB8GA1UdIwQY MBaAFAU0xJ/PqKRQQdle1NjU/GnHJ6RnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYt Y2Q3ZTA2Y2JiNTMxLzEvV0hnZmp2R3pLSDI5ZHMxY0RodDYyZDhHMW0wLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYtY2Q3ZTA2Y2JiNTMx LzEvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyU0xMA0G CSqGSIb3DQEBCwUAA4IBAQCEmPrKzLHhijDGonfd3pLykcZXpID67AfEpR56u8kj in9V2dathEyzt4Nv2TzzfVBu+u54rx3c3i6FeK9pKI/G5clm4zumNcr/82702N97 jJ+rKj/xPXNQRgaFVhD0ws88INcGAu6GVdLVgwZVhapRaWJAUFJFXXhm1DrqwsgI +mQZY8pGclUzml/sqMpNcsRAQ9x2i0WS9e8Eqogdwee+S4WoVS1AQK4L3p+xMdRx gT8r7uCYvNAASNpTB94FYEsHL15A+asqBbGgmP8MHzPta4DTg0mxOVBPhe8ulgBC 7Icsx0DlnbbR78A4dpmqOHrM5CPGMPBcIFUPt1oijaVc -----END CERTIFICATE-----Generated at Fri Jan 23 21:37:04 2026 by rpki-client