This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/d-WgznU9exFojgHRekrKD9ZMhNA.roa File: d-WgznU9exFojgHRekrKD9ZMhNA.roa (raw, json) Hash identifier: BSViCtrivWjccUOgoGnOy6Wp16Zk7P91x+kTvk3l47I= Subject key identifier: 77:E5:A0:CE:75:3D:7B:11:68:8E:01:D1:7A:4A:CA:0F:D6:4C:84:D0 Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa Certificate serial: 019B797EA10838A84BC91EC834B48D1EC9AB Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/d-WgznU9exFojgHRekrKD9ZMhNA.roa Signing time: Thu 01 Jan 2026 12:18:20 +0000 ROA not before: Thu 01 Jan 2026 12:18:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60326 IP address blocks: 2a0e:aa07:f080::/44 maxlen: 48 2a0e:aa07:f090::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.mft rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 07 Jan 2026 14:32:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:a1:08:38:a8:4b:c9:1e:c8:34:b4:8d:1e:c9:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa Validity Not Before: Jan 1 12:18:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=77e5a0ce753d7b11688e01d17a4aca0fd64c84d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:69:17:b3:cb:f5:25:49:f2:e5:f7:ee:ec:a7: da:3c:09:28:58:92:aa:44:e4:ea:3e:7a:6d:0a:99: 51:a2:3e:60:22:bc:a2:05:60:08:1f:37:26:de:e4: 52:df:8f:40:72:78:da:bf:ab:b9:e5:52:b4:e4:3a: ba:52:7c:b7:e5:3a:96:26:33:f8:d2:93:db:cb:d7: 41:a7:cf:a0:bd:b2:7b:14:50:21:8c:37:ab:ca:f1: b4:05:a6:dc:ae:fd:4f:03:5b:e9:03:b6:ee:d0:35: 83:0b:4c:7c:bd:d0:91:dc:2d:c1:08:36:bd:30:1c: 22:7c:37:33:70:9f:de:00:ac:bf:05:32:3c:40:a5: 7a:01:a2:88:8c:3d:8b:1f:5f:ce:c3:c0:05:41:1f: 7b:14:51:31:85:ad:4c:0e:f1:74:74:00:30:9f:eb: ce:49:74:da:ed:3a:67:54:8a:75:bc:7d:0a:60:92: c5:b1:0c:dc:e2:c4:4e:fd:ce:9a:2a:0f:eb:d2:0c: dd:df:cd:52:8c:48:69:96:3d:c7:d4:5a:d0:4e:c3: 5d:b7:20:6f:42:14:6d:14:75:22:76:3a:d8:80:01: 5d:97:79:a2:da:d8:45:14:ab:ac:27:c5:f9:fb:bf: b1:8f:61:76:70:af:4a:04:91:6a:57:1a:3a:cd:27: f0:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:E5:A0:CE:75:3D:7B:11:68:8E:01:D1:7A:4A:CA:0F:D6:4C:84:D0 X509v3 Authority Key Identifier: keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/d-WgznU9exFojgHRekrKD9ZMhNA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:aa07:f080::/43 Signature Algorithm: sha256WithRSAEncryption 51:a7:6d:2a:97:61:bb:54:c6:ca:93:ad:fb:b4:30:35:8f:40: ec:ea:d6:79:1f:a1:5f:a5:98:fb:c6:43:1a:8e:a8:4b:5b:f6: 15:0c:ce:b3:7f:3f:10:bf:48:87:ca:d0:ab:97:02:c0:f6:22: 60:b5:5e:f2:ff:80:5f:8a:d7:2f:f3:ed:b6:35:17:d4:ba:04: c0:9d:62:54:d8:33:46:b9:97:5f:73:72:4f:a3:29:cc:a9:87: ae:98:f6:05:44:b5:d7:fe:5a:d6:db:19:bd:85:31:85:2f:09: 7b:9b:5b:27:22:a1:6e:b3:5e:7f:ef:da:68:88:06:3a:f9:e4: 54:63:f3:4d:07:5b:eb:46:8c:09:47:43:35:f3:4b:5c:1d:80: 83:e9:83:ec:d2:0c:5c:4b:0d:25:46:e3:68:5f:53:b1:9e:ae: 87:ac:b5:7a:b5:ef:f3:ab:ca:71:5b:b2:a1:80:fb:c8:18:1d: d2:3a:79:50:d9:88:8a:5c:04:a7:10:40:c4:a2:ae:08:5a:d7: 69:8e:13:f7:75:39:05:a2:b5:d3:2f:b3:69:91:20:1c:a0:fc: 72:c7:5c:a9:28:5c:be:3d:c4:79:ff:ac:48:fd:67:15:20:4c: 02:59:b3:a0:c2:91:09:e8:17:71:dd:e4:f4:2b:74:f0:c1:bd: 4c:92:0d:a0 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5fqEIOKhLyR7INLSNHsmrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzNjFiNWNkNjk2ODI1Yjc0ZmNjYmE3ZDk3YzNkMGEyNzI0 ZWYzYWEwHhcNMjYwMTAxMTIxODIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3N2U1YTBjZTc1M2Q3YjExNjg4ZTAxZDE3YTRhY2EwZmQ2NGM4NGQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAumkXs8v1JUny5ffu7KfaPAkoWJKq ROTqPnptCplRoj5gIryiBWAIHzcm3uRS349Acnjav6u55VK05Dq6Uny35TqWJjP4 0pPby9dBp8+gvbJ7FFAhjDeryvG0Babcrv1PA1vpA7bu0DWDC0x8vdCR3C3BCDa9 MBwifDczcJ/eAKy/BTI8QKV6AaKIjD2LH1/Ow8AFQR97FFExha1MDvF0dAAwn+vO SXTa7TpnVIp1vH0KYJLFsQzc4sRO/c6aKg/r0gzd381SjEhplj3H1FrQTsNdtyBv QhRtFHUidjrYgAFdl3mi2thFFKusJ8X5+7+xj2F2cK9KBJFqVxo6zSfwQwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFHfloM51PXsRaI4B0XpKyg/WTITQMB8GA1UdIwQY MBaAFJNhtc1paCW3T8y6fZfD0KJyTvOqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEt YTU0MWQxYmNlZTE5LzEvZC1XZ3puVTlleEZvamdIUmVrcktEOVpNaE5BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEtYTU0MWQxYmNlZTE5 LzEvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcFKg6qB/CA MA0GCSqGSIb3DQEBCwUAA4IBAQBRp20ql2G7VMbKk637tDA1j0Ds6tZ5H6FfpZj7 xkMajqhLW/YVDM6zfz8Qv0iHytCrlwLA9iJgtV7y/4Bfitcv8+22NRfUugTAnWJU 2DNGuZdfc3JPoynMqYeumPYFRLXX/lrW2xm9hTGFLwl7m1snIqFus15/79poiAY6 +eRUY/NNB1vrRowJR0M180tcHYCD6YPs0gxcSw0lRuNoX1Oxnq6HrLV6te/zq8px W7KhgPvIGB3SOnlQ2YiKXASnEEDEoq4IWtdpjhP3dTkForXTL7NpkSAcoPxyx1yp KFy+PcR5/6xI/WcVIEwCWbOgwpEJ6Bdx3eT0K3Twwb1Mkg2g -----END CERTIFICATE-----Generated at Tue Jan 6 21:32:03 2026 by rpki-client