This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/d0a0a0-d25a-4746-9139-a71456df9997/1/wVHWp3M4ey0oV4Vvt4IVxUGWwHU.roa File: wVHWp3M4ey0oV4Vvt4IVxUGWwHU.roa (raw, json) Hash identifier: bGvl7Pnh00VzisoVUojSHZYeOEdkkKp2OdrZk5Xs+9U= Subject key identifier: C1:51:D6:A7:73:38:7B:2D:28:57:85:6F:B7:82:15:C5:41:96:C0:75 Certificate issuer: /CN=35135b81b6c1edd2f6f5bc1c608a5fc9fe926474 Certificate serial: 019B77591D686B65143A9478E6AADC822A69 Authority key identifier: 35:13:5B:81:B6:C1:ED:D2:F6:F5:BC:1C:60:8A:5F:C9:FE:92:64:74 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRNbgbbB7dL29bwcYIpfyf6SZHQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/d0a0a0-d25a-4746-9139-a71456df9997/1/wVHWp3M4ey0oV4Vvt4IVxUGWwHU.roa Signing time: Thu 01 Jan 2026 02:18:07 +0000 ROA not before: Thu 01 Jan 2026 02:18:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57366 IP address blocks: 178.215.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/d0a0a0-d25a-4746-9139-a71456df9997/1/NRNbgbbB7dL29bwcYIpfyf6SZHQ.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/d0a0a0-d25a-4746-9139-a71456df9997/1/NRNbgbbB7dL29bwcYIpfyf6SZHQ.mft rsync://rpki.ripe.net/repository/DEFAULT/NRNbgbbB7dL29bwcYIpfyf6SZHQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:1d:68:6b:65:14:3a:94:78:e6:aa:dc:82:2a:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35135b81b6c1edd2f6f5bc1c608a5fc9fe926474 Validity Not Before: Jan 1 02:18:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c151d6a773387b2d2857856fb78215c54196c075 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:72:e5:9f:1a:e2:b0:46:57:a6:f2:66:d6:ce: 87:60:0a:43:de:e4:31:a1:b7:b3:5f:9d:03:bd:3c: 3c:0b:e5:c4:1a:a9:4e:64:8a:15:dc:b9:55:a1:ec: eb:b5:55:42:6b:07:5d:a4:3e:9b:e3:87:08:89:e2: ed:ee:25:62:b5:65:7b:dd:74:51:6d:c8:67:d2:a5: 7e:31:a3:3a:00:ff:6a:fd:1a:a6:43:de:46:df:16: c1:ee:8f:29:55:19:d4:c5:74:fb:e4:77:7b:5f:3a: 68:fa:4a:42:0c:01:61:e9:7f:46:e5:c8:23:4f:da: c0:ee:99:7e:ed:30:34:3b:ca:63:6e:62:e6:b7:7d: 97:af:1f:4c:46:bb:d9:29:dc:f3:59:5d:71:4f:4a: 47:4a:5e:d9:69:39:ea:f2:42:54:ea:73:2b:3b:fa: 65:26:94:be:dc:32:7f:88:2a:e5:c7:8d:43:52:84: 53:56:31:47:36:22:8b:c7:90:6b:af:11:a4:3f:c2: dd:5a:47:fd:7f:53:aa:9c:6d:3a:e6:d7:78:21:f0: cb:61:46:94:97:a4:6b:69:d3:06:b2:bb:08:fa:82: 05:15:d8:8d:4f:30:1a:35:f7:19:fc:19:26:20:4e: d4:9c:ab:5a:56:d7:25:43:06:0a:9f:43:93:b1:c8: 49:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:51:D6:A7:73:38:7B:2D:28:57:85:6F:B7:82:15:C5:41:96:C0:75 X509v3 Authority Key Identifier: keyid:35:13:5B:81:B6:C1:ED:D2:F6:F5:BC:1C:60:8A:5F:C9:FE:92:64:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRNbgbbB7dL29bwcYIpfyf6SZHQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d0a0a0-d25a-4746-9139-a71456df9997/1/wVHWp3M4ey0oV4Vvt4IVxUGWwHU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d0a0a0-d25a-4746-9139-a71456df9997/1/NRNbgbbB7dL29bwcYIpfyf6SZHQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.215.3.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:af:cd:c2:73:91:8b:d7:a3:a6:f7:f9:8c:a2:0d:28:15:da: de:16:b8:7d:08:04:86:fa:b7:ac:a7:ba:61:a2:7d:0d:9e:e3: f1:6d:c3:64:4d:ef:13:2b:33:fe:8c:ab:78:98:35:df:c9:23: 2a:8a:db:22:9a:19:f8:e1:b0:32:7e:fa:be:63:96:53:fb:f5: 5c:09:0a:9b:7e:7e:bf:77:62:9d:87:e6:c2:a2:be:ab:aa:a9: 1f:9a:4c:60:66:89:1d:db:2b:2d:06:6c:0e:ee:fd:b4:f6:e5: 0b:62:a3:6f:f0:c2:4d:6e:14:ea:66:07:c7:22:41:d5:e3:f1: 2f:17:3a:44:b5:5e:a3:66:d3:75:25:5d:3c:4d:65:fe:f1:dc: ab:c1:8a:6b:83:b1:8a:f1:45:93:ae:11:9a:80:5b:8e:d3:fd: 22:a8:24:41:f5:ec:ff:22:38:6a:86:15:09:a0:f3:3c:89:2c: 79:29:db:eb:c4:89:ed:31:44:e4:d5:48:64:d3:6d:79:51:85: 6d:70:22:fd:a7:d9:8f:fb:be:42:8c:ca:28:dd:07:42:d2:64: d3:2e:0c:e9:0c:c4:2e:27:18:15:67:04:3d:1d:ad:56:ff:34: f1:b7:a9:28:0a:59:a2:e1:0a:4a:84:38:3a:d8:0f:b0:1c:d4: 5d:c7:72:99 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3WR1oa2UUOpR45qrcgippMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1MTM1YjgxYjZjMWVkZDJmNmY1YmMxYzYwOGE1ZmM5ZmU5 MjY0NzQwHhcNMjYwMTAxMDIxODA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjMTUxZDZhNzczMzg3YjJkMjg1Nzg1NmZiNzgyMTVjNTQxOTZjMDc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn3LlnxrisEZXpvJm1s6HYApD3uQx obezX50DvTw8C+XEGqlOZIoV3LlVoezrtVVCawddpD6b44cIieLt7iVitWV73XRR bchn0qV+MaM6AP9q/RqmQ95G3xbB7o8pVRnUxXT75Hd7Xzpo+kpCDAFh6X9G5cgj T9rA7pl+7TA0O8pjbmLmt32Xrx9MRrvZKdzzWV1xT0pHSl7ZaTnq8kJU6nMrO/pl JpS+3DJ/iCrlx41DUoRTVjFHNiKLx5BrrxGkP8LdWkf9f1OqnG065td4IfDLYUaU l6RradMGsrsI+oIFFdiNTzAaNfcZ/BkmIE7UnKtaVtclQwYKn0OTschJJwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMFR1qdzOHstKFeFb7eCFcVBlsB1MB8GA1UdIwQY MBaAFDUTW4G2we3S9vW8HGCKX8n+kmR0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTlJOYmdiYkI3ZEwyOWJ3Y1lJcGZ5ZjZTWkhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi9kMGEwYTAtZDI1YS00NzQ2LTkxMzkt YTcxNDU2ZGY5OTk3LzEvd1ZIV3AzTTRleTBvVjRWdnQ0SVZ4VUdXd0hVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi9kMGEwYTAtZDI1YS00NzQ2LTkxMzktYTcxNDU2ZGY5OTk3 LzEvTlJOYmdiYkI3ZEwyOWJ3Y1lJcGZ5ZjZTWkhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAstcDMA0G CSqGSIb3DQEBCwUAA4IBAQAKr83Cc5GL16Om9/mMog0oFdreFrh9CASG+resp7ph on0NnuPxbcNkTe8TKzP+jKt4mDXfySMqitsimhn44bAyfvq+Y5ZT+/VcCQqbfn6/ d2Kdh+bCor6rqqkfmkxgZokd2ystBmwO7v209uULYqNv8MJNbhTqZgfHIkHV4/Ev FzpEtV6jZtN1JV08TWX+8dyrwYprg7GK8UWTrhGagFuO0/0iqCRB9ez/IjhqhhUJ oPM8iSx5KdvrxIntMUTk1Uhk0215UYVtcCL9p9mP+75CjMoo3QdC0mTTLgzpDMQu JxgVZwQ9Ha1W/zTxt6koClmi4QpKhDg62A+wHNRdx3KZ -----END CERTIFICATE-----Generated at Mon Feb 9 18:23:43 2026 by rpki-client