This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/777a60-6de1-4dfb-b965-26222f0955ae/1/Wd7kxNOQtW9wntahD6-s3hs_RN8.roa File: Wd7kxNOQtW9wntahD6-s3hs_RN8.roa (raw, json) Hash identifier: Yn5VDfyyadHVMUb0Gm6V0K9m9w04Ph9wP22TSsc2ons= Subject key identifier: 59:DE:E4:C4:D3:90:B5:6F:70:9E:D6:A1:0F:AF:AC:DE:1B:3F:44:DF Certificate issuer: /CN=c5471397cf5ec399aa0eec5c3173b1f3040723a9 Certificate serial: 019B7BA4FAE73528BD12F25D117A5C996C91 Authority key identifier: C5:47:13:97:CF:5E:C3:99:AA:0E:EC:5C:31:73:B1:F3:04:07:23:A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xUcTl89ew5mqDuxcMXOx8wQHI6k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/777a60-6de1-4dfb-b965-26222f0955ae/1/Wd7kxNOQtW9wntahD6-s3hs_RN8.roa Signing time: Thu 01 Jan 2026 22:19:28 +0000 ROA not before: Thu 01 Jan 2026 22:19:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212170 IP address blocks: 2001:678:ba8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/777a60-6de1-4dfb-b965-26222f0955ae/1/xUcTl89ew5mqDuxcMXOx8wQHI6k.crl rsync://rpki.ripe.net/repository/DEFAULT/79/777a60-6de1-4dfb-b965-26222f0955ae/1/xUcTl89ew5mqDuxcMXOx8wQHI6k.mft rsync://rpki.ripe.net/repository/DEFAULT/xUcTl89ew5mqDuxcMXOx8wQHI6k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:fa:e7:35:28:bd:12:f2:5d:11:7a:5c:99:6c:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c5471397cf5ec399aa0eec5c3173b1f3040723a9 Validity Not Before: Jan 1 22:19:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=59dee4c4d390b56f709ed6a10fafacde1b3f44df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:67:7c:32:cd:0a:9a:c7:8d:d2:f0:13:df:64: 1a:b1:b9:84:48:a7:62:f6:29:72:66:00:12:ec:c8: 40:56:86:69:5c:79:ae:bb:64:14:81:93:a9:e2:3c: 90:c5:8f:d6:53:75:62:26:48:79:46:21:a1:8c:4f: f3:c3:58:88:79:5a:7c:db:09:2e:51:15:a4:56:f8: f4:79:ef:88:d8:65:09:f7:75:cf:20:4d:24:5a:d8: 5a:43:7d:eb:57:b7:27:0c:d3:7e:c7:fe:56:f5:f3: 4a:4e:32:9e:10:8a:e4:d6:20:8e:f5:8f:b8:dc:05: 01:0c:dc:ad:92:64:5f:72:c8:77:bf:12:e9:61:e5: 1a:25:4b:90:66:4c:cd:20:5c:22:23:57:43:9f:b9: c1:ff:54:0e:37:8e:61:aa:f5:d4:aa:cb:67:11:2e: 95:a2:94:30:f2:42:6a:b1:1a:b1:2d:16:f1:c8:5b: 27:16:c7:8e:96:3b:6d:57:9e:bb:91:49:69:26:13: 87:05:02:15:42:bb:14:04:6e:d0:84:d2:4c:6f:9b: 91:00:c6:05:5e:ff:af:73:69:61:11:b0:ce:aa:5e: f2:50:03:3a:81:d5:26:02:6f:73:35:78:10:66:46: 48:fc:0b:c6:0d:34:12:0d:c0:05:17:2c:5f:86:e0: 03:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:DE:E4:C4:D3:90:B5:6F:70:9E:D6:A1:0F:AF:AC:DE:1B:3F:44:DF X509v3 Authority Key Identifier: keyid:C5:47:13:97:CF:5E:C3:99:AA:0E:EC:5C:31:73:B1:F3:04:07:23:A9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xUcTl89ew5mqDuxcMXOx8wQHI6k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/777a60-6de1-4dfb-b965-26222f0955ae/1/Wd7kxNOQtW9wntahD6-s3hs_RN8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/79/777a60-6de1-4dfb-b965-26222f0955ae/1/xUcTl89ew5mqDuxcMXOx8wQHI6k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:ba8::/48 Signature Algorithm: sha256WithRSAEncryption 7c:23:16:81:74:a5:ac:65:ea:39:de:71:8f:73:7a:5e:09:d8: 29:2b:d4:d6:3f:61:3e:a7:e5:34:65:9d:95:d7:eb:17:4d:85: 6e:50:7d:9f:21:fd:d5:ae:9e:8b:1d:f6:6e:67:2c:da:da:a5: 8c:8b:dd:8e:17:66:0a:b6:9c:f4:a8:ed:be:58:75:62:81:a2: 04:9e:8a:81:36:c5:22:79:b2:a8:a9:5e:93:7b:ba:60:7e:81: e6:ad:b4:99:ce:be:10:5e:33:b0:14:58:df:9a:5b:4f:c4:e0: 49:0b:5d:6f:30:23:be:cb:91:bd:bf:fd:b3:75:c1:02:77:c7: b6:6c:9a:a4:f5:ac:68:45:05:89:3b:a8:56:6a:fe:29:7a:4a: d0:d8:c8:03:48:c6:65:08:59:8c:15:c7:60:b4:f8:7e:cf:f1: 41:4c:e9:13:79:d3:04:6d:2f:71:3c:57:66:fd:a1:01:72:ff: 3e:0f:2d:4b:d8:db:e7:4f:99:32:eb:61:e2:f8:72:2d:7a:56: c1:67:a8:83:b3:ef:5b:d6:b7:74:8a:31:f6:b7:2c:22:38:b4: 22:41:62:aa:42:63:4c:5d:f8:63:ee:a5:a2:d4:31:f5:b7:b2: 28:d6:b5:07:3e:83:59:59:1f:e4:d7:19:a2:21:86:0e:3e:4d: 4f:f0:80:9d -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt7pPrnNSi9EvJdEXpcmWyRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM1NDcxMzk3Y2Y1ZWMzOTlhYTBlZWM1YzMxNzNiMWYzMDQw NzIzYTkwHhcNMjYwMTAxMjIxOTI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1OWRlZTRjNGQzOTBiNTZmNzA5ZWQ2YTEwZmFmYWNkZTFiM2Y0NGRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArmd8Ms0KmseN0vAT32QasbmESKdi 9ilyZgAS7MhAVoZpXHmuu2QUgZOp4jyQxY/WU3ViJkh5RiGhjE/zw1iIeVp82wku URWkVvj0ee+I2GUJ93XPIE0kWthaQ33rV7cnDNN+x/5W9fNKTjKeEIrk1iCO9Y+4 3AUBDNytkmRfcsh3vxLpYeUaJUuQZkzNIFwiI1dDn7nB/1QON45hqvXUqstnES6V opQw8kJqsRqxLRbxyFsnFseOljttV567kUlpJhOHBQIVQrsUBG7QhNJMb5uRAMYF Xv+vc2lhEbDOql7yUAM6gdUmAm9zNXgQZkZI/AvGDTQSDcAFFyxfhuADmQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFFne5MTTkLVvcJ7WoQ+vrN4bP0TfMB8GA1UdIwQY MBaAFMVHE5fPXsOZqg7sXDFzsfMEByOpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveFVjVGw4OWV3NW1xRHV4Y01YT3g4d1FISTZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS83NzdhNjAtNmRlMS00ZGZiLWI5NjUt MjYyMjJmMDk1NWFlLzEvV2Q3a3hOT1F0Vzl3bnRhaEQ2LXMzaHNfUk44LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OS83NzdhNjAtNmRlMS00ZGZiLWI5NjUtMjYyMjJmMDk1NWFl LzEveFVjVGw4OWV3NW1xRHV4Y01YT3g4d1FISTZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAuo MA0GCSqGSIb3DQEBCwUAA4IBAQB8IxaBdKWsZeo53nGPc3peCdgpK9TWP2E+p+U0 ZZ2V1+sXTYVuUH2fIf3Vrp6LHfZuZyza2qWMi92OF2YKtpz0qO2+WHVigaIEnoqB NsUiebKoqV6Te7pgfoHmrbSZzr4QXjOwFFjfmltPxOBJC11vMCO+y5G9v/2zdcEC d8e2bJqk9axoRQWJO6hWav4pekrQ2MgDSMZlCFmMFcdgtPh+z/FBTOkTedMEbS9x PFdm/aEBcv8+Dy1L2NvnT5ky62Hi+HItelbBZ6iDs+9b1rd0ijH2tywiOLQiQWKq QmNMXfhj7qWi1DH1t7Io1rUHPoNZWR/k1xmiIYYOPk1P8ICd -----END CERTIFICATE-----Generated at Mon Feb 9 22:57:35 2026 by rpki-client