This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/wCMCzmGItEBLiq2zhCPR7XIYkCc.roa File: wCMCzmGItEBLiq2zhCPR7XIYkCc.roa (raw, json) Hash identifier: nQv2a3Px/0ZD2/O010YD46BOn/AzS13ORg3ozlLVCtY= Subject key identifier: C0:23:02:CE:61:88:B4:40:4B:8A:AD:B3:84:23:D1:ED:72:18:90:27 Certificate issuer: /CN=a4f00aae577e7451f88ea604bf6a33734cd03009 Certificate serial: 019B7A5AD00B46E5E92345422076A01CA1D6 Authority key identifier: A4:F0:0A:AE:57:7E:74:51:F8:8E:A6:04:BF:6A:33:73:4C:D0:30:09 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPAKrld-dFH4jqYEv2ozc0zQMAk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/wCMCzmGItEBLiq2zhCPR7XIYkCc.roa Signing time: Thu 01 Jan 2026 16:18:50 +0000 ROA not before: Thu 01 Jan 2026 16:18:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29479 IP address blocks: 91.237.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.crl rsync://rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.mft rsync://rpki.ripe.net/repository/DEFAULT/pPAKrld-dFH4jqYEv2ozc0zQMAk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 04:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:d0:0b:46:e5:e9:23:45:42:20:76:a0:1c:a1:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a4f00aae577e7451f88ea604bf6a33734cd03009 Validity Not Before: Jan 1 16:18:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c02302ce6188b4404b8aadb38423d1ed72189027 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:7a:dc:5b:25:e1:f9:73:53:3d:02:2d:85:b4: 05:bb:4a:03:4c:16:5e:a8:8b:fc:4a:83:c1:17:0d: 9c:e2:24:c1:ba:2b:22:45:86:5a:f1:05:8d:cb:64: eb:f2:66:3e:86:52:47:f9:2d:f6:54:16:cf:99:44: 99:a4:ab:db:98:bf:8a:d7:25:19:bf:8c:86:5d:0c: 92:b7:e7:ad:3a:76:f3:be:c5:af:7f:10:0b:64:77: f1:9d:b6:0b:a5:32:c9:1d:dc:46:1e:3c:d6:54:6e: 7f:77:d8:83:ed:3b:c8:3b:c7:1c:9f:3f:07:bb:f5: bb:9a:ab:21:2b:9d:2d:ee:e9:57:67:bb:de:df:e5: 69:e4:65:db:2c:b9:c5:e3:d2:e4:1c:5d:37:4b:13: 88:08:44:85:78:01:f7:7f:9d:3b:89:4c:e4:88:b4: 42:b5:58:77:54:78:bf:20:2b:fb:2e:3a:fc:f6:d6: 90:d1:22:f6:19:b9:ed:44:12:1f:59:81:45:15:4f: 0d:c7:16:30:32:06:91:e6:f2:93:4e:64:aa:aa:6e: 92:c8:70:00:01:c9:ce:8c:c5:79:73:43:e8:3d:e7: 9b:cc:ed:fa:fa:85:9c:d7:d4:c6:57:51:9d:5b:df: 32:d0:00:d1:aa:b5:53:cc:06:2e:fb:9b:50:00:79: 79:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:23:02:CE:61:88:B4:40:4B:8A:AD:B3:84:23:D1:ED:72:18:90:27 X509v3 Authority Key Identifier: keyid:A4:F0:0A:AE:57:7E:74:51:F8:8E:A6:04:BF:6A:33:73:4C:D0:30:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPAKrld-dFH4jqYEv2ozc0zQMAk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/wCMCzmGItEBLiq2zhCPR7XIYkCc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.237.78.0/24 Signature Algorithm: sha256WithRSAEncryption 03:48:dd:a5:95:4c:aa:3a:87:e8:3f:94:54:d3:8a:9a:c7:a3: 86:c9:3f:87:21:ea:3f:f6:3e:7f:12:6c:be:de:bd:52:8c:9f: f8:f7:3e:5c:24:07:0d:52:be:fa:d9:e0:4c:03:3d:e3:14:b2: 5a:79:ca:73:61:fa:92:2c:d0:5b:d7:26:a6:01:c8:15:aa:36: e6:7d:ce:d8:b3:eb:a8:d6:bb:1a:a4:7c:c4:6c:72:50:c1:1d: e3:08:17:72:8d:11:c2:5d:17:ba:54:8b:d7:d9:b2:41:c4:2d: d3:ca:e7:3e:c6:bc:34:6f:b7:11:d1:49:c3:15:ff:60:1b:06: 12:bf:06:e7:9e:d4:27:b4:04:00:da:dc:cc:18:9e:8a:ee:b8: 2c:ee:72:94:bd:57:0c:e2:ba:8b:28:2b:c6:1e:6c:7d:d3:ee: 29:42:ce:0f:49:8b:cf:13:fd:59:f6:4c:52:e5:a9:61:40:3b: a5:a8:3d:e3:fd:f9:34:97:fd:29:fa:90:a7:0a:0b:8a:2c:3f: 78:b8:d2:a3:5d:34:79:d1:80:3a:bb:3d:e2:99:e1:c7:e9:21: 89:29:27:dc:d7:ec:95:8a:2a:7c:52:e4:4f:c7:53:2c:a1:98: d6:5b:1d:84:3b:32:8c:67:f5:cb:bf:30:e4:d0:74:ab:20:93: 7a:f1:42:48 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6WtALRuXpI0VCIHagHKHWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE0ZjAwYWFlNTc3ZTc0NTFmODhlYTYwNGJmNmEzMzczNGNk MDMwMDkwHhcNMjYwMTAxMTYxODUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjMDIzMDJjZTYxODhiNDQwNGI4YWFkYjM4NDIzZDFlZDcyMTg5MDI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApHrcWyXh+XNTPQIthbQFu0oDTBZe qIv8SoPBFw2c4iTBuisiRYZa8QWNy2Tr8mY+hlJH+S32VBbPmUSZpKvbmL+K1yUZ v4yGXQySt+etOnbzvsWvfxALZHfxnbYLpTLJHdxGHjzWVG5/d9iD7TvIO8ccnz8H u/W7mqshK50t7ulXZ7ve3+Vp5GXbLLnF49LkHF03SxOICESFeAH3f507iUzkiLRC tVh3VHi/ICv7Ljr89taQ0SL2GbntRBIfWYFFFU8NxxYwMgaR5vKTTmSqqm6SyHAA AcnOjMV5c0PoPeebzO36+oWc19TGV1GdW98y0ADRqrVTzAYu+5tQAHl5qQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMAjAs5hiLRAS4qts4Qj0e1yGJAnMB8GA1UdIwQY MBaAFKTwCq5XfnRR+I6mBL9qM3NM0DAJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFBBS3JsZC1kRkg0anFZRXYyb3pjMHpRTUFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi81OGE5NGEtOWUyOC00N2E1LTlmZDYt OWM5MWIxYzUxNThhLzEvd0NNQ3ptR0l0RUJMaXEyemhDUFI3WElZa0NjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Mi81OGE5NGEtOWUyOC00N2E1LTlmZDYtOWM5MWIxYzUxNThh LzEvcFBBS3JsZC1kRkg0anFZRXYyb3pjMHpRTUFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+1OMA0G CSqGSIb3DQEBCwUAA4IBAQADSN2llUyqOofoP5RU04qax6OGyT+HIeo/9j5/Emy+ 3r1SjJ/49z5cJAcNUr762eBMAz3jFLJaecpzYfqSLNBb1yamAcgVqjbmfc7Ys+uo 1rsapHzEbHJQwR3jCBdyjRHCXRe6VIvX2bJBxC3Tyuc+xrw0b7cR0UnDFf9gGwYS vwbnntQntAQA2tzMGJ6K7rgs7nKUvVcM4rqLKCvGHmx90+4pQs4PSYvPE/1Z9kxS 5alhQDulqD3j/fk0l/0p+pCnCguKLD94uNKjXTR50YA6uz3imeHH6SGJKSfc1+yV iip8UuRPx1MsoZjWWx2EOzKMZ/XLvzDk0HSrIJN68UJI -----END CERTIFICATE-----Generated at Tue Jan 27 11:21:13 2026 by rpki-client