This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/WB4MjGibZE7UPAKBKppI7mbtykg.roa File: WB4MjGibZE7UPAKBKppI7mbtykg.roa (raw, json) Hash identifier: uodhr4uLTH3uG2YqIrdc4iaiOv2sYyQ2pQYPb//WMSk= Subject key identifier: 58:1E:0C:8C:68:9B:64:4E:D4:3C:02:81:2A:9A:48:EE:66:ED:CA:48 Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528 Certificate serial: 019B783445BF8D492AE275BA7C42D73C1B70 Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/WB4MjGibZE7UPAKBKppI7mbtykg.roa Signing time: Thu 01 Jan 2026 06:17:30 +0000 ROA not before: Thu 01 Jan 2026 06:17:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203833 IP address blocks: 2a00:11c0:38::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.mft rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 09:12:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:45:bf:8d:49:2a:e2:75:ba:7c:42:d7:3c:1b:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528 Validity Not Before: Jan 1 06:17:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=581e0c8c689b644ed43c02812a9a48ee66edca48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d7:2e:b2:96:42:d1:82:86:d3:07:6e:e4:4a: 35:3f:03:b7:51:f2:bc:00:58:51:43:39:6e:6d:a6: d8:07:9b:ed:82:03:23:08:0d:69:76:43:23:e0:da: cf:2a:5c:4e:ea:82:87:dd:68:67:30:28:c9:38:ee: 03:c6:24:6a:b1:57:07:54:bf:5b:0d:a1:ed:0a:74: b8:01:e3:f8:05:b6:33:b6:05:bc:a6:5c:57:f0:b6: cc:f4:c3:ac:76:d6:ce:70:56:9a:54:8f:91:7e:4c: 64:c2:f1:49:02:99:10:c2:2d:23:3b:ba:4d:14:33: b6:06:20:bf:96:61:de:6c:3b:87:43:a2:d3:76:34: 36:09:53:a1:f1:f5:72:e3:08:43:db:fb:15:e3:55: 40:27:1e:02:92:8a:de:5d:02:3c:4b:bc:58:dd:f1: 55:d8:1d:f3:33:4c:18:8a:12:11:4e:18:eb:7e:7b: a6:35:42:2a:6f:20:12:a9:8e:09:73:0c:46:60:fc: 52:bf:a2:b8:32:57:e8:94:03:1f:91:86:6f:5f:4d: 78:1a:79:03:5f:d7:11:13:05:aa:42:df:df:22:db: a8:77:96:bc:68:d6:3b:58:01:40:c9:33:a1:06:f4: 8b:3c:a2:7f:2a:f8:5c:9b:cb:13:5f:c7:f0:10:40: d1:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:1E:0C:8C:68:9B:64:4E:D4:3C:02:81:2A:9A:48:EE:66:ED:CA:48 X509v3 Authority Key Identifier: keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/WB4MjGibZE7UPAKBKppI7mbtykg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a00:11c0:38::/48 Signature Algorithm: sha256WithRSAEncryption 4b:0d:8a:a7:17:a5:f5:40:90:92:e1:90:51:5f:47:33:e5:56: 31:b5:03:ae:e7:04:05:90:22:23:92:7d:73:31:f8:aa:4b:2d: ed:8c:76:34:74:9f:5b:ca:1a:14:21:ff:27:33:7a:67:58:f2: 28:2a:a3:16:2c:35:ba:3e:40:5e:4e:57:b9:06:81:57:95:83: 77:22:1b:72:a6:1e:e1:40:ae:fd:be:7f:e1:2b:c1:ff:24:14: ea:79:fb:74:df:bb:33:6e:11:98:df:d0:1b:0c:37:eb:a0:a6: 43:4f:f9:55:2c:8d:13:6b:40:6d:9e:77:b4:fd:7f:f4:63:a8: 3a:8b:be:74:8d:76:c5:1c:fd:78:57:3e:35:c3:2e:56:f9:7a: 75:03:6a:3f:62:88:fa:4e:65:f8:6e:8b:59:2f:ad:df:d0:ef: d9:f9:49:90:a0:d8:d1:c8:69:c8:91:d3:c7:6c:c1:93:8c:5c: cf:3b:46:d4:76:c8:0d:32:22:a7:05:e4:76:10:01:dc:58:b8: 10:56:d6:21:f0:ee:f4:a7:dc:b1:37:22:7f:c1:2e:6d:09:8b: 0e:0a:76:0a:ae:a1:d8:94:55:39:72:e4:89:c5:35:20:50:03: 37:0d:1a:23:fe:81:9a:5c:0e:66:63:14:6b:34:50:8d:86:97: c7:2e:8b:d7 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt4NEW/jUkq4nW6fELXPBtwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1MzlhZmViYWNlODk5YThlZTBiYjRmOGJiNDQ3NWZlMjQ3 YTE1MjgwHhcNMjYwMTAxMDYxNzMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ODFlMGM4YzY4OWI2NDRlZDQzYzAyODEyYTlhNDhlZTY2ZWRjYTQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvtcuspZC0YKG0wdu5Eo1PwO3UfK8 AFhRQzlubabYB5vtggMjCA1pdkMj4NrPKlxO6oKH3WhnMCjJOO4DxiRqsVcHVL9b DaHtCnS4AeP4BbYztgW8plxX8LbM9MOsdtbOcFaaVI+RfkxkwvFJApkQwi0jO7pN FDO2BiC/lmHebDuHQ6LTdjQ2CVOh8fVy4whD2/sV41VAJx4CkoreXQI8S7xY3fFV 2B3zM0wYihIRThjrfnumNUIqbyASqY4JcwxGYPxSv6K4MlfolAMfkYZvX014GnkD X9cREwWqQt/fItuod5a8aNY7WAFAyTOhBvSLPKJ/Kvhcm8sTX8fwEEDRwQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFFgeDIxom2RO1DwCgSqaSO5m7cpIMB8GA1UdIwQY MBaAFKU5r+us6Jmo7gu0+LtEdf4kehUoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFRtdjY2em9tYWp1QzdUNHUwUjFfaVI2RlNnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS85OGM0ZWUtMmY1OS00NWE3LWFkYjYt NzQxMzk1OTEzMTJlLzEvV0I0TWpHaWJaRTdVUEFLQktwcEk3bWJ0eWtnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZS85OGM0ZWUtMmY1OS00NWE3LWFkYjYtNzQxMzk1OTEzMTJl LzEvcFRtdjY2em9tYWp1QzdUNHUwUjFfaVI2RlNnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgARwAA4 MA0GCSqGSIb3DQEBCwUAA4IBAQBLDYqnF6X1QJCS4ZBRX0cz5VYxtQOu5wQFkCIj kn1zMfiqSy3tjHY0dJ9byhoUIf8nM3pnWPIoKqMWLDW6PkBeTle5BoFXlYN3Ihty ph7hQK79vn/hK8H/JBTqeft037szbhGY39AbDDfroKZDT/lVLI0Ta0Btnne0/X/0 Y6g6i750jXbFHP14Vz41wy5W+Xp1A2o/Yoj6TmX4botZL63f0O/Z+UmQoNjRyGnI kdPHbMGTjFzPO0bUdsgNMiKnBeR2EAHcWLgQVtYh8O70p9yxNyJ/wS5tCYsOCnYK rqHYlFU5cuSJxTUgUAM3DRoj/oGaXA5mYxRrNFCNhpfHLovX -----END CERTIFICATE-----Generated at Mon Jan 26 12:21:23 2026 by rpki-client