This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/db503c-d654-4b46-9b8b-822b255538fe/1/WatKg_0MoVqhZNrvrktjemd-kkU.roa File: WatKg_0MoVqhZNrvrktjemd-kkU.roa (raw, json) Hash identifier: HB6mZ1x55io1eH3g2s4HymshoqNX8HC4t8plzzNViRg= Subject key identifier: 59:AB:4A:83:FD:0C:A1:5A:A1:64:DA:EF:AE:4B:63:7A:67:7E:92:45 Certificate issuer: /CN=16044f658bbc92270785f7bb072ac936895f4933 Certificate serial: 019B76EB7FD091B067C14BD832EACF82EABF Authority key identifier: 16:04:4F:65:8B:BC:92:27:07:85:F7:BB:07:2A:C9:36:89:5F:49:33 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FgRPZYu8kicHhfe7ByrJNolfSTM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/db503c-d654-4b46-9b8b-822b255538fe/1/WatKg_0MoVqhZNrvrktjemd-kkU.roa Signing time: Thu 01 Jan 2026 00:18:23 +0000 ROA not before: Thu 01 Jan 2026 00:18:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211588 IP address blocks: 2a0f:ff40::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/db503c-d654-4b46-9b8b-822b255538fe/1/FgRPZYu8kicHhfe7ByrJNolfSTM.crl rsync://rpki.ripe.net/repository/DEFAULT/81/db503c-d654-4b46-9b8b-822b255538fe/1/FgRPZYu8kicHhfe7ByrJNolfSTM.mft rsync://rpki.ripe.net/repository/DEFAULT/FgRPZYu8kicHhfe7ByrJNolfSTM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:7f:d0:91:b0:67:c1:4b:d8:32:ea:cf:82:ea:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16044f658bbc92270785f7bb072ac936895f4933 Validity Not Before: Jan 1 00:18:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=59ab4a83fd0ca15aa164daefae4b637a677e9245 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:45:d2:fc:94:6e:55:bb:77:28:c8:27:f1:a3: 3c:b7:a9:c9:48:17:74:3c:93:b1:e7:d8:e3:11:ce: 4a:e1:4a:61:89:ed:3d:0d:0c:1e:76:11:e5:89:4c: b7:b5:63:f2:18:65:ec:49:14:5c:78:22:30:66:9b: 2c:f0:e2:2c:dc:c7:ab:75:0f:1e:2e:81:8e:7e:e1: 55:0b:d7:7c:5c:1c:fb:96:fa:61:ae:a9:98:f2:a4: f8:7f:5c:de:48:20:86:44:2c:fd:1c:3f:85:43:6a: 64:74:ba:c9:11:e8:9f:35:48:0a:27:81:79:df:20: ab:b9:ea:f2:2b:80:04:8d:3e:16:6a:5a:bf:16:13: 6e:5c:23:d5:98:7d:ca:56:4b:e2:9b:68:e3:42:6b: b5:d0:8b:44:70:02:b2:dd:d3:f1:d3:09:32:67:30: 08:c6:9b:69:2f:1b:8a:ea:65:3e:26:39:c3:43:0f: d3:c3:85:9e:3a:45:cd:94:d3:0d:f2:8a:fa:53:6d: 99:7a:31:59:23:e8:8e:01:ca:c2:32:bc:07:d1:28: 23:1c:0b:4f:ab:7c:2c:bf:e4:fc:4e:bb:87:23:d7: ad:6a:c1:67:fa:0b:8c:f8:ef:15:16:53:ae:7b:e7: ec:0f:37:36:72:61:a0:f7:d0:cb:02:f1:0c:4d:99: 7c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:AB:4A:83:FD:0C:A1:5A:A1:64:DA:EF:AE:4B:63:7A:67:7E:92:45 X509v3 Authority Key Identifier: keyid:16:04:4F:65:8B:BC:92:27:07:85:F7:BB:07:2A:C9:36:89:5F:49:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FgRPZYu8kicHhfe7ByrJNolfSTM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/db503c-d654-4b46-9b8b-822b255538fe/1/WatKg_0MoVqhZNrvrktjemd-kkU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/81/db503c-d654-4b46-9b8b-822b255538fe/1/FgRPZYu8kicHhfe7ByrJNolfSTM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:ff40::/32 Signature Algorithm: sha256WithRSAEncryption 9b:f1:bd:8b:3b:de:0b:c1:e3:80:fc:1b:82:40:ae:00:fa:ee: 1c:f1:2e:57:6b:b7:c3:4d:4f:77:9b:7c:b6:8d:00:7c:11:e2: b6:15:c6:dd:bc:ee:84:91:35:e2:90:fe:0d:7c:9c:43:cb:66: 19:3c:d1:7b:2f:c6:c9:1c:bb:33:4e:a0:af:b5:82:70:5a:2b: 06:13:59:aa:18:ac:20:54:e5:26:6f:30:ab:3b:ca:d0:cd:83: 37:05:dc:29:9c:b7:66:6c:f7:74:82:8d:b2:f4:c0:be:9d:11: 8a:80:81:45:b4:06:53:16:a8:66:0a:2b:16:c8:28:ec:5c:1e: e0:1b:91:0a:b9:63:5a:fc:de:4a:2e:92:d0:8d:a9:42:71:e3: 39:b2:3c:79:bf:9c:b7:b9:36:ee:05:a6:6f:4d:41:72:d0:05: 11:38:a8:aa:1c:2d:ed:37:90:04:fd:55:7a:de:b5:ea:be:ca: 42:5c:73:4e:8f:00:30:b8:d4:22:70:bd:41:94:12:fb:20:05: fd:dc:a9:f3:3f:64:49:f0:22:2f:6c:c3:e0:0b:70:31:dc:e5: c4:68:97:a2:5a:a4:d1:ee:41:d2:61:2b:85:42:d4:06:6a:70: 92:f3:f0:d9:2a:31:41:81:7a:e9:c4:2a:c3:37:d6:ca:da:3e: 21:97:5f:84 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt263/QkbBnwUvYMurPguq/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE2MDQ0ZjY1OGJiYzkyMjcwNzg1ZjdiYjA3MmFjOTM2ODk1 ZjQ5MzMwHhcNMjYwMTAxMDAxODIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1OWFiNGE4M2ZkMGNhMTVhYTE2NGRhZWZhZTRiNjM3YTY3N2U5MjQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqkXS/JRuVbt3KMgn8aM8t6nJSBd0 PJOx59jjEc5K4Uphie09DQwedhHliUy3tWPyGGXsSRRceCIwZpss8OIs3MerdQ8e LoGOfuFVC9d8XBz7lvphrqmY8qT4f1zeSCCGRCz9HD+FQ2pkdLrJEeifNUgKJ4F5 3yCrueryK4AEjT4Walq/FhNuXCPVmH3KVkvim2jjQmu10ItEcAKy3dPx0wkyZzAI xptpLxuK6mU+JjnDQw/Tw4WeOkXNlNMN8or6U22ZejFZI+iOAcrCMrwH0SgjHAtP q3wsv+T8TruHI9etasFn+guM+O8VFlOue+fsDzc2cmGg99DLAvEMTZl80wIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFFmrSoP9DKFaoWTa765LY3pnfpJFMB8GA1UdIwQY MBaAFBYET2WLvJInB4X3uwcqyTaJX0kzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRmdSUFpZdThraWNIaGZlN0J5ckpOb2xmU1RNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS9kYjUwM2MtZDY1NC00YjQ2LTliOGIt ODIyYjI1NTUzOGZlLzEvV2F0S2dfME1vVnFoWk5ydnJrdGplbWQta2tVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MS9kYjUwM2MtZDY1NC00YjQ2LTliOGItODIyYjI1NTUzOGZl LzEvRmdSUFpZdThraWNIaGZlN0J5ckpOb2xmU1RNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKg//QDAN BgkqhkiG9w0BAQsFAAOCAQEAm/G9izveC8HjgPwbgkCuAPruHPEuV2u3w01Pd5t8 to0AfBHithXG3bzuhJE14pD+DXycQ8tmGTzRey/GyRy7M06gr7WCcForBhNZqhis IFTlJm8wqzvK0M2DNwXcKZy3Zmz3dIKNsvTAvp0RioCBRbQGUxaoZgorFsgo7Fwe 4BuRCrljWvzeSi6S0I2pQnHjObI8eb+ct7k27gWmb01BctAFETioqhwt7TeQBP1V et616r7KQlxzTo8AMLjUInC9QZQS+yAF/dyp8z9kSfAiL2zD4AtwMdzlxGiXolqk 0e5B0mErhULUBmpwkvPw2SoxQYF66cQqwzfWyto+IZdfhA== -----END CERTIFICATE-----Generated at Tue Jan 20 01:21:57 2026 by rpki-client