This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/939b98-1508-4740-8dbf-24109edf6450/1/wkoUWQPmVypi2JIAAAcr8R61JzQ.roa File: wkoUWQPmVypi2JIAAAcr8R61JzQ.roa (raw, json) Hash identifier: NnrdTpNh2cKf1Rwj81mGLy32o/V9MF6hm/qy5VXigm4= Subject key identifier: C2:4A:14:59:03:E6:57:2A:62:D8:92:00:00:07:2B:F1:1E:B5:27:34 Certificate issuer: /CN=4d94f92adbd1bb45d63f9f947017a2164e9d0efa Certificate serial: 019B78A30BDF72F9B5645102094AEF235FD1 Authority key identifier: 4D:94:F9:2A:DB:D1:BB:45:D6:3F:9F:94:70:17:A2:16:4E:9D:0E:FA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TZT5KtvRu0XWP5-UcBeiFk6dDvo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/939b98-1508-4740-8dbf-24109edf6450/1/wkoUWQPmVypi2JIAAAcr8R61JzQ.roa Signing time: Thu 01 Jan 2026 08:18:29 +0000 ROA not before: Thu 01 Jan 2026 08:18:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1835 IP address blocks: 193.3.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/939b98-1508-4740-8dbf-24109edf6450/1/TZT5KtvRu0XWP5-UcBeiFk6dDvo.crl rsync://rpki.ripe.net/repository/DEFAULT/63/939b98-1508-4740-8dbf-24109edf6450/1/TZT5KtvRu0XWP5-UcBeiFk6dDvo.mft rsync://rpki.ripe.net/repository/DEFAULT/TZT5KtvRu0XWP5-UcBeiFk6dDvo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:0b:df:72:f9:b5:64:51:02:09:4a:ef:23:5f:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4d94f92adbd1bb45d63f9f947017a2164e9d0efa Validity Not Before: Jan 1 08:18:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c24a145903e6572a62d8920000072bf11eb52734 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f9:78:10:ad:84:a8:f4:93:95:79:f7:3f:b8: f4:5e:a0:77:9f:49:54:f0:34:d7:52:5f:76:ed:d2: a0:ea:a0:da:ec:6c:77:12:e2:a1:4b:2e:0d:c8:9d: db:fe:eb:eb:e4:9d:dd:07:14:17:c4:7a:bb:54:19: de:34:fb:70:a0:c3:d2:ba:25:58:6e:bb:2e:c8:2f: b0:f1:83:9f:cf:6c:25:b3:ba:42:ab:4e:d3:71:e2: 50:52:01:95:e8:6f:41:88:58:1e:c9:30:c4:99:a6: 0b:6b:d7:73:0e:0a:6d:f1:9e:0f:07:51:94:b4:dd: 80:e1:7c:da:f2:55:af:a9:06:cd:1b:e5:58:4a:45: b9:df:7e:d9:4d:27:e7:f3:fe:19:ec:c6:c6:4f:77: ef:27:92:2f:64:82:6f:f4:2e:6c:f3:15:7d:14:ce: a3:1c:ba:9e:43:e4:4f:9a:f9:04:e7:c7:c0:fc:21: e4:d6:6d:48:33:e9:17:18:71:f4:4c:d9:74:ab:88: a2:ce:ea:aa:f3:36:ad:46:e7:32:e9:ec:cd:17:9c: 20:4e:ad:49:b6:ba:0b:cc:6b:ea:36:a9:7e:fa:cc: 55:16:4e:49:52:dc:5f:13:50:c6:57:89:64:45:74: e4:b4:e3:ed:99:3f:ac:66:be:30:76:a1:d1:33:a3: de:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:4A:14:59:03:E6:57:2A:62:D8:92:00:00:07:2B:F1:1E:B5:27:34 X509v3 Authority Key Identifier: keyid:4D:94:F9:2A:DB:D1:BB:45:D6:3F:9F:94:70:17:A2:16:4E:9D:0E:FA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TZT5KtvRu0XWP5-UcBeiFk6dDvo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/939b98-1508-4740-8dbf-24109edf6450/1/wkoUWQPmVypi2JIAAAcr8R61JzQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/63/939b98-1508-4740-8dbf-24109edf6450/1/TZT5KtvRu0XWP5-UcBeiFk6dDvo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.3.238.0/24 Signature Algorithm: sha256WithRSAEncryption cd:24:e6:a7:54:89:b6:0e:ec:04:10:51:9c:e2:04:5f:b3:6a: 7b:41:5b:14:27:71:7e:5c:bd:ec:21:06:6a:f9:cd:ad:eb:2f: e9:54:5f:57:f8:c9:87:64:b9:39:be:e5:2a:6c:53:0c:22:e8: 6d:ad:39:25:95:86:2b:aa:65:eb:59:52:18:33:dc:f3:95:a1: 51:a4:d5:f0:70:2d:85:5b:0b:d0:49:70:ac:df:49:0d:e2:e1: b3:23:4c:68:3a:3f:db:53:a7:df:83:f7:d6:ff:a9:d6:d2:d8: 7c:f5:6a:29:2d:8f:90:81:a3:92:4c:aa:b4:61:eb:7c:bf:77: e1:78:f6:dd:71:50:57:46:69:38:dd:cb:1e:a4:5b:65:8d:dc: 1a:a2:0c:fa:26:59:fa:2c:71:a8:45:dd:e1:f6:81:b6:bc:9a: fb:bc:eb:13:99:6d:c8:d6:e8:86:75:4c:8f:80:85:86:54:19: 78:3d:d8:c3:8d:f4:c9:45:9a:3f:e3:9e:92:9b:e4:68:91:e8: d2:9f:7e:a4:33:2a:d2:b3:21:d7:32:7f:77:a9:3f:03:93:5d: 4a:52:41:95:aa:22:ed:a3:95:19:d0:39:a6:8c:07:d8:79:d9: a2:56:39:f2:5b:a6:92:5e:80:31:c0:e1:29:85:42:0e:8c:7a: d1:e4:82:c3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4owvfcvm1ZFECCUrvI1/RMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkOTRmOTJhZGJkMWJiNDVkNjNmOWY5NDcwMTdhMjE2NGU5 ZDBlZmEwHhcNMjYwMTAxMDgxODI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjMjRhMTQ1OTAzZTY1NzJhNjJkODkyMDAwMDA3MmJmMTFlYjUyNzM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArfl4EK2EqPSTlXn3P7j0XqB3n0lU 8DTXUl927dKg6qDa7Gx3EuKhSy4NyJ3b/uvr5J3dBxQXxHq7VBneNPtwoMPSuiVY brsuyC+w8YOfz2wls7pCq07TceJQUgGV6G9BiFgeyTDEmaYLa9dzDgpt8Z4PB1GU tN2A4Xza8lWvqQbNG+VYSkW5337ZTSfn8/4Z7MbGT3fvJ5IvZIJv9C5s8xV9FM6j HLqeQ+RPmvkE58fA/CHk1m1IM+kXGHH0TNl0q4iizuqq8zatRucy6ezNF5wgTq1J troLzGvqNql++sxVFk5JUtxfE1DGV4lkRXTktOPtmT+sZr4wdqHRM6PeuwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMJKFFkD5lcqYtiSAAAHK/EetSc0MB8GA1UdIwQY MBaAFE2U+Srb0btF1j+flHAXohZOnQ76MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFpUNUt0dlJ1MFhXUDUtVWNCZWlGazZkRHZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My85MzliOTgtMTUwOC00NzQwLThkYmYt MjQxMDllZGY2NDUwLzEvd2tvVVdRUG1WeXBpMkpJQUFBY3I4UjYxSnpRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82My85MzliOTgtMTUwOC00NzQwLThkYmYtMjQxMDllZGY2NDUw LzEvVFpUNUt0dlJ1MFhXUDUtVWNCZWlGazZkRHZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwQPuMA0G CSqGSIb3DQEBCwUAA4IBAQDNJOanVIm2DuwEEFGc4gRfs2p7QVsUJ3F+XL3sIQZq +c2t6y/pVF9X+MmHZLk5vuUqbFMMIuhtrTkllYYrqmXrWVIYM9zzlaFRpNXwcC2F WwvQSXCs30kN4uGzI0xoOj/bU6ffg/fW/6nW0th89WopLY+QgaOSTKq0Yet8v3fh ePbdcVBXRmk43csepFtljdwaogz6Jln6LHGoRd3h9oG2vJr7vOsTmW3I1uiGdUyP gIWGVBl4PdjDjfTJRZo/456Sm+RokejSn36kMyrSsyHXMn93qT8Dk11KUkGVqiLt o5UZ0DmmjAfYedmiVjnyW6aSXoAxwOEphUIOjHrR5ILD -----END CERTIFICATE-----Generated at Tue Feb 10 04:26:31 2026 by rpki-client