This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/W7YsCZQwvWZL9jT_42JNqve4Y6g.roa File: W7YsCZQwvWZL9jT_42JNqve4Y6g.roa (raw, json) Hash identifier: uZNbW4mHULktIuWq3sfIsd0IxlKljMHHny8uAoqMh4c= Subject key identifier: 5B:B6:2C:09:94:30:BD:66:4B:F6:34:FF:E3:62:4D:AA:F7:B8:63:A8 Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da Certificate serial: 019B7E37B66E0354F8EC03326C9A013FB806 Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/W7YsCZQwvWZL9jT_42JNqve4Y6g.roa Signing time: Fri 02 Jan 2026 10:18:59 +0000 ROA not before: Fri 02 Jan 2026 10:18:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42689 IP address blocks: 158.173.194.0/24 maxlen: 24 158.173.196.0/24 maxlen: 24 158.173.201.0/24 maxlen: 24 158.173.209.0/24 maxlen: 24 158.173.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.mft rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:02:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:b6:6e:03:54:f8:ec:03:32:6c:9a:01:3f:b8:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da Validity Not Before: Jan 2 10:18:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5bb62c099430bd664bf634ffe3624daaf7b863a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:1d:1f:af:d0:7e:da:15:41:b7:47:c2:ec:74: 2f:2e:f9:14:e0:48:ce:6c:52:9a:b8:b4:e0:2a:aa: f2:4e:b9:39:78:94:da:14:27:6a:c9:30:0c:ea:de: 79:d1:b3:f9:33:df:70:47:5e:fa:9a:99:9a:a7:1e: c9:45:65:43:8f:48:f3:90:92:95:ed:45:db:c8:54: 11:f8:18:97:3b:be:52:a1:ec:f2:33:08:92:c1:52: 58:3b:6d:74:a6:70:6c:3b:9a:36:5a:04:de:4b:26: dc:2e:95:30:de:33:54:58:04:14:89:76:30:0f:f9: 5d:23:58:f0:37:22:ab:1b:b1:4e:76:c6:cd:d8:fe: 91:6e:17:87:e8:92:bd:2c:be:7c:d7:0b:24:bb:43: a2:71:00:c0:a1:ce:08:2f:a6:fe:54:2e:88:5e:0b: 24:72:41:fd:88:8a:fd:84:46:d5:bc:b3:83:0a:6c: 5d:4c:dd:65:0e:22:87:7b:dd:42:c9:04:9a:ab:ad: 39:60:c3:b1:dd:08:4c:1d:db:7a:e4:62:75:a7:ed: b9:6f:39:de:22:6d:14:19:2d:07:ce:c5:01:a6:e9: b4:d5:73:a2:d2:c2:b3:7a:32:39:54:d0:08:97:fb: 5f:68:af:98:2d:6a:6a:96:60:25:22:d8:25:7e:07: aa:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:B6:2C:09:94:30:BD:66:4B:F6:34:FF:E3:62:4D:AA:F7:B8:63:A8 X509v3 Authority Key Identifier: keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/W7YsCZQwvWZL9jT_42JNqve4Y6g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.173.194.0/24 158.173.196.0/24 158.173.201.0/24 158.173.209.0/24 158.173.212.0/24 Signature Algorithm: sha256WithRSAEncryption 30:91:8e:85:7e:ec:3b:bb:f9:59:b9:b1:be:bb:39:20:19:6f: 6e:8a:f3:68:78:0a:50:09:26:a4:70:6e:06:db:f9:81:1e:c9: 55:8a:8c:3e:15:59:43:68:cd:7e:19:15:75:b3:0d:72:a3:37: 1b:76:f4:ef:f1:18:99:54:f8:ad:69:0c:86:68:65:e3:1a:ec: 21:3f:73:01:95:f7:36:15:5c:b0:f5:b2:21:f9:b2:6d:b3:d4: da:48:9f:11:fc:f1:7c:a6:21:54:1e:50:44:73:df:7e:6a:b2: cb:25:12:db:17:ad:8e:b3:1f:a3:aa:9a:e9:10:64:a9:ea:3d: 7e:43:f3:0b:72:72:aa:95:8e:ad:39:9a:b0:a7:36:b8:52:84: 44:8a:1a:a5:b5:5f:38:36:53:83:85:67:2c:3f:dd:a6:fd:fc: 16:2e:21:44:d6:40:b7:14:62:e5:11:96:a2:9d:1f:a8:24:83: f0:91:ca:7f:d8:dd:51:00:c5:9f:38:f2:88:7d:b4:a0:fc:0c: 9b:37:4b:a7:bf:09:a8:70:b5:f6:6f:d5:d3:fa:f4:dc:1b:d7: 2e:23:bc:8a:20:bc:98:da:ab:2e:f7:71:ab:1b:61:95:83:60: 68:f3:40:2a:40:d5:5e:dd:85:7e:6c:40:cc:34:21:96:d8:13: 55:c8:51:57 -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZt+N7ZuA1T47AMybJoBP7gGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwNGE1ODA0N2YzN2JiYzA1Nzk0NGJiZjhjYWQ4NzQyODc5 NTkyZGEwHhcNMjYwMTAyMTAxODU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YmI2MmMwOTk0MzBiZDY2NGJmNjM0ZmZlMzYyNGRhYWY3Yjg2M2E4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqx0fr9B+2hVBt0fC7HQvLvkU4EjO bFKauLTgKqryTrk5eJTaFCdqyTAM6t550bP5M99wR176mpmapx7JRWVDj0jzkJKV 7UXbyFQR+BiXO75SoezyMwiSwVJYO210pnBsO5o2WgTeSybcLpUw3jNUWAQUiXYw D/ldI1jwNyKrG7FOdsbN2P6RbheH6JK9LL581wsku0OicQDAoc4IL6b+VC6IXgsk ckH9iIr9hEbVvLODCmxdTN1lDiKHe91CyQSaq605YMOx3QhMHdt65GJ1p+25bzne Im0UGS0HzsUBpum01XOi0sKzejI5VNAIl/tfaK+YLWpqlmAlItglfgeqkQIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFFu2LAmUML1mS/Y0/+NiTar3uGOoMB8GA1UdIwQY MBaAFPBKWAR/N7vAV5RLv4yth0KHlZLaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYt ZjVmYjcxYjlhNTFmLzEvVzdZc0NaUXd2V1pMOWpUXzQySk5xdmU0WTZnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYtZjVmYjcxYjlhNTFm LzEvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAnq3CAwQA nq3EAwQAnq3JAwQAnq3RAwQAnq3UMA0GCSqGSIb3DQEBCwUAA4IBAQAwkY6Ffuw7 u/lZubG+uzkgGW9uivNoeApQCSakcG4G2/mBHslViow+FVlDaM1+GRV1sw1yozcb dvTv8RiZVPitaQyGaGXjGuwhP3MBlfc2FVyw9bIh+bJts9TaSJ8R/PF8piFUHlBE c99+arLLJRLbF62Osx+jqprpEGSp6j1+Q/MLcnKqlY6tOZqwpza4UoREihqltV84 NlODhWcsP92m/fwWLiFE1kC3FGLlEZainR+oJIPwkcp/2N1RAMWfOPKIfbSg/Ayb N0unvwmocLX2b9XT+vTcG9cuI7yKILyY2qsu93GrG2GVg2Bo80AqQNVe3YV+bEDM NCGW2BNVyFFX -----END CERTIFICATE-----Generated at Mon Jan 19 23:23:23 2026 by rpki-client