This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/WokjdWqhALE6VZ3S1OW0W-iIRyY.roa File: WokjdWqhALE6VZ3S1OW0W-iIRyY.roa (raw, json) Hash identifier: z1prbj43IM8EJO6AW+eAsr+cXEFCfphFcOAMIWD2NRQ= Subject key identifier: 5A:89:23:75:6A:A1:00:B1:3A:55:9D:D2:D4:E5:B4:5B:E8:88:47:26 Certificate issuer: /CN=a22c5278c4bbb026e12ffd760beac59fc155fc25 Certificate serial: 019B7BA35A64CFC831C70D2FB9700FADFB37 Authority key identifier: A2:2C:52:78:C4:BB:B0:26:E1:2F:FD:76:0B:EA:C5:9F:C1:55:FC:25 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oixSeMS7sCbhL_12C-rFn8FV_CU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/WokjdWqhALE6VZ3S1OW0W-iIRyY.roa Signing time: Thu 01 Jan 2026 22:17:41 +0000 ROA not before: Thu 01 Jan 2026 22:17:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41799 IP address blocks: 195.242.126.0/23 maxlen: 23 195.242.126.0/24 maxlen: 24 195.242.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.crl rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.mft rsync://rpki.ripe.net/repository/DEFAULT/oixSeMS7sCbhL_12C-rFn8FV_CU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:5a:64:cf:c8:31:c7:0d:2f:b9:70:0f:ad:fb:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a22c5278c4bbb026e12ffd760beac59fc155fc25 Validity Not Before: Jan 1 22:17:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5a8923756aa100b13a559dd2d4e5b45be8884726 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:64:d7:13:bc:b0:83:88:5f:54:69:94:09:b0: 1c:50:8a:30:eb:20:4d:9e:bb:b5:fe:59:17:07:00: c5:37:b0:14:a4:2c:a4:46:c6:14:29:89:f3:bd:cc: f5:4e:6c:67:a6:5c:09:82:24:20:c1:c3:38:ae:88: 51:ab:4a:f7:ab:e4:b2:36:be:b7:b5:b2:2c:3c:d3: cf:e1:f9:78:f9:c6:7a:bb:0b:cd:b6:7b:b9:03:18: 33:36:7c:25:a5:16:11:b7:04:51:12:b3:69:f2:5c: de:33:c7:03:d7:02:ef:dc:a4:b5:8e:43:d7:c6:3e: 09:ba:e5:c9:12:ac:4f:84:03:58:3b:64:be:88:73: 2d:bd:a1:a9:17:26:8f:89:4e:77:01:54:b9:19:7f: cf:d8:a6:ed:36:aa:dc:d2:16:e3:d0:f5:bc:4d:53: 56:7a:f3:19:09:62:6f:57:2a:1c:e4:38:68:01:d0: 7a:20:1b:c7:b5:73:2b:2d:3c:4d:68:af:00:cc:8c: 33:4b:e6:57:a4:c6:8a:f0:fd:33:25:f3:17:d7:d6: 37:52:cb:b1:c5:01:68:ba:8d:3b:72:d0:7e:e4:1d: 6e:48:0a:20:a0:2d:ba:41:ab:17:23:9d:ba:de:da: ec:41:d7:af:d4:3f:c8:e5:c5:24:f2:52:8b:56:b6: 0f:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:89:23:75:6A:A1:00:B1:3A:55:9D:D2:D4:E5:B4:5B:E8:88:47:26 X509v3 Authority Key Identifier: keyid:A2:2C:52:78:C4:BB:B0:26:E1:2F:FD:76:0B:EA:C5:9F:C1:55:FC:25 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oixSeMS7sCbhL_12C-rFn8FV_CU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/WokjdWqhALE6VZ3S1OW0W-iIRyY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.242.126.0/23 Signature Algorithm: sha256WithRSAEncryption 80:fd:41:fa:53:70:0f:e1:99:1c:79:f8:09:4b:d2:b6:8f:7c: cb:01:05:8e:73:93:f3:d7:ed:68:58:db:45:f6:b7:2f:b1:6d: 64:35:3a:ef:d9:e0:db:8a:7a:bc:05:ff:10:c3:92:19:fd:68: 5e:f6:78:d5:98:f2:6a:ce:57:6c:b3:85:5b:45:27:97:19:4c: ed:a9:03:17:5d:b1:9c:13:c4:9a:e8:1f:94:68:46:83:fb:cc: a1:29:2b:a9:35:75:b4:6a:30:73:8f:e8:cd:f7:57:a3:f9:b5: 19:24:03:b6:ab:7b:39:94:ae:d8:70:80:81:d0:62:ae:97:03: 0b:68:a0:af:da:47:0c:7a:ec:b7:d0:e8:e8:48:a1:f0:14:59: da:de:22:d1:65:88:24:6c:1b:02:ea:17:d8:34:d7:21:34:43: 59:6d:da:b1:db:40:9f:d5:32:9b:85:0a:88:91:92:b4:91:77: ea:d2:aa:00:7b:c6:0b:53:63:ab:5b:f1:f8:b6:ee:ba:ac:49: c9:b4:c4:ee:97:13:5a:fc:a2:a8:a4:1e:69:8a:00:ae:34:0c: 80:de:b4:f1:65:88:73:fb:1a:4e:00:dc:b4:1b:ae:53:75:8e: bf:de:3e:33:85:f2:82:63:ff:07:ca:6d:63:2f:19:2d:19:6b: c4:af:12:3d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7o1pkz8gxxw0vuXAPrfs3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyMmM1Mjc4YzRiYmIwMjZlMTJmZmQ3NjBiZWFjNTlmYzE1 NWZjMjUwHhcNMjYwMTAxMjIxNzQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YTg5MjM3NTZhYTEwMGIxM2E1NTlkZDJkNGU1YjQ1YmU4ODg0NzI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2mTXE7ywg4hfVGmUCbAcUIow6yBN nru1/lkXBwDFN7AUpCykRsYUKYnzvcz1TmxnplwJgiQgwcM4rohRq0r3q+SyNr63 tbIsPNPP4fl4+cZ6uwvNtnu5AxgzNnwlpRYRtwRRErNp8lzeM8cD1wLv3KS1jkPX xj4JuuXJEqxPhANYO2S+iHMtvaGpFyaPiU53AVS5GX/P2KbtNqrc0hbj0PW8TVNW evMZCWJvVyoc5DhoAdB6IBvHtXMrLTxNaK8AzIwzS+ZXpMaK8P0zJfMX19Y3Usux xQFouo07ctB+5B1uSAogoC26QasXI5263trsQdev1D/I5cUk8lKLVrYPRQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFqJI3VqoQCxOlWd0tTltFvoiEcmMB8GA1UdIwQY MBaAFKIsUnjEu7Am4S/9dgvqxZ/BVfwlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2l4U2VNUzdzQ2JoTF8xMkMtckZuOEZWX0NVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS9hZmNiYWQtYzEyNi00ZjhlLWJkMjIt NDkyYjYwMzQzYTcwLzEvV29ramRXcWhBTEU2VlozUzFPVzBXLWlJUnlZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OS9hZmNiYWQtYzEyNi00ZjhlLWJkMjItNDkyYjYwMzQzYTcw LzEvb2l4U2VNUzdzQ2JoTF8xMkMtckZuOEZWX0NVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBw/J+MA0G CSqGSIb3DQEBCwUAA4IBAQCA/UH6U3AP4ZkcefgJS9K2j3zLAQWOc5Pz1+1oWNtF 9rcvsW1kNTrv2eDbinq8Bf8Qw5IZ/Whe9njVmPJqzldss4VbRSeXGUztqQMXXbGc E8Sa6B+UaEaD+8yhKSupNXW0ajBzj+jN91ej+bUZJAO2q3s5lK7YcICB0GKulwML aKCv2kcMeuy30OjoSKHwFFna3iLRZYgkbBsC6hfYNNchNENZbdqx20Cf1TKbhQqI kZK0kXfq0qoAe8YLU2OrW/H4tu66rEnJtMTulxNa/KKopB5pigCuNAyA3rTxZYhz +xpOANy0G65TdY6/3j4zhfKCY/8Hym1jLxktGWvErxI9 -----END CERTIFICATE-----Generated at Tue Feb 10 04:53:11 2026 by rpki-client