This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/af601e-c2bf-4a6a-aa32-d2ee15399d06/1/Wdpe-Cjtqyp1rkyz7rhcS-_jmXo.roa File: Wdpe-Cjtqyp1rkyz7rhcS-_jmXo.roa (raw, json) Hash identifier: tUgn1ugpT0nLLmzVavep4vytxp4gMvvn8/6tvfWMBRM= Subject key identifier: 59:DA:5E:F8:28:ED:AB:2A:75:AE:4C:B3:EE:B8:5C:4B:EF:E3:99:7A Certificate issuer: /CN=20d4bd499f58494ac0e82263b5520a2c64d6477e Certificate serial: 019B7AC81F1EF8357BFDBCAE46C55DD3CACF Authority key identifier: 20:D4:BD:49:9F:58:49:4A:C0:E8:22:63:B5:52:0A:2C:64:D6:47:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/INS9SZ9YSUrA6CJjtVIKLGTWR34.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/af601e-c2bf-4a6a-aa32-d2ee15399d06/1/Wdpe-Cjtqyp1rkyz7rhcS-_jmXo.roa Signing time: Thu 01 Jan 2026 18:18:14 +0000 ROA not before: Thu 01 Jan 2026 18:18:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 680 IP address blocks: 192.109.19.0/24 maxlen: 24 192.109.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/af601e-c2bf-4a6a-aa32-d2ee15399d06/1/INS9SZ9YSUrA6CJjtVIKLGTWR34.crl rsync://rpki.ripe.net/repository/DEFAULT/95/af601e-c2bf-4a6a-aa32-d2ee15399d06/1/INS9SZ9YSUrA6CJjtVIKLGTWR34.mft rsync://rpki.ripe.net/repository/DEFAULT/INS9SZ9YSUrA6CJjtVIKLGTWR34.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:1f:1e:f8:35:7b:fd:bc:ae:46:c5:5d:d3:ca:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20d4bd499f58494ac0e82263b5520a2c64d6477e Validity Not Before: Jan 1 18:18:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=59da5ef828edab2a75ae4cb3eeb85c4befe3997a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:87:a7:9b:a8:f2:a7:cf:ac:25:22:a1:53:5b: 41:fc:c6:2c:f5:9b:ef:d0:e6:c8:c1:9e:07:ce:b7: b5:f6:cf:a8:ed:a4:dc:40:a7:c2:31:19:a7:46:e5: f0:7c:e5:c2:2a:8d:b9:2c:6a:07:cd:3f:9d:f4:b1: 31:17:69:5b:ec:9e:b1:67:7f:a0:1b:e7:ec:82:cc: 6c:c9:66:aa:4e:a0:ea:be:33:4d:22:5b:0e:84:2e: 54:9d:a5:01:fa:00:e8:08:5a:a5:59:3b:e1:8e:2d: f7:7a:98:17:c6:a6:a8:9d:cb:e5:50:d9:fc:94:9b: a3:49:84:e5:47:1e:89:3f:e4:db:76:c6:94:4d:5a: 18:58:2e:1e:71:ea:eb:e1:ba:fa:68:3d:3c:64:05: 3e:ef:08:42:9f:1d:bf:1e:ff:f8:bb:48:88:73:8b: fc:7c:95:d8:9c:9f:5c:ba:3e:a3:94:4d:1f:85:81: d9:15:d4:1a:8b:5e:16:50:ee:f4:59:ee:ba:95:3d: ff:2d:f2:16:08:f4:a1:a4:1f:2d:42:4e:11:3a:63: 33:7b:cd:0f:ff:bf:a2:11:26:99:e6:9b:e2:f8:b4: 5d:57:25:62:ba:ec:33:d8:a6:4c:fa:bc:58:3e:3f: 4e:bc:8c:7a:d2:e0:f8:f3:a7:89:ad:98:3e:75:ce: 1d:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:DA:5E:F8:28:ED:AB:2A:75:AE:4C:B3:EE:B8:5C:4B:EF:E3:99:7A X509v3 Authority Key Identifier: keyid:20:D4:BD:49:9F:58:49:4A:C0:E8:22:63:B5:52:0A:2C:64:D6:47:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/INS9SZ9YSUrA6CJjtVIKLGTWR34.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/af601e-c2bf-4a6a-aa32-d2ee15399d06/1/Wdpe-Cjtqyp1rkyz7rhcS-_jmXo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/95/af601e-c2bf-4a6a-aa32-d2ee15399d06/1/INS9SZ9YSUrA6CJjtVIKLGTWR34.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.109.19.0/24 192.109.202.0/24 Signature Algorithm: sha256WithRSAEncryption 49:dc:60:80:71:3a:9b:1f:b6:4c:60:eb:ab:f3:f7:7b:c3:32: b6:25:ec:b6:62:f1:b6:58:56:cd:2d:d4:75:21:f2:f9:b8:c5: 72:dd:07:8b:57:52:b4:70:97:cf:b5:32:2d:84:d0:41:d1:20: 45:0d:4d:02:81:84:58:cb:96:e2:1b:d5:71:be:ce:d5:ac:35: 0a:c6:e2:d3:2b:ed:67:4a:18:79:16:47:93:03:97:ae:32:a4: 9e:3b:3d:c9:58:42:48:38:66:23:ee:56:50:42:f6:e4:b8:36: 7a:4b:6f:22:7b:ec:5c:52:11:75:e7:4e:f0:2d:4b:42:50:ed: 2f:03:3a:eb:e0:8c:0c:18:57:25:37:bb:4e:27:f8:fb:79:a4: be:77:22:a3:c3:7a:c9:dd:d7:34:72:5b:89:b8:3a:77:a6:f5: 40:3d:2b:94:25:f8:0f:a6:9b:71:fd:aa:44:0e:9c:19:e0:0b: 7f:9d:c8:bc:fe:bf:39:64:f1:48:9d:15:57:ff:a0:57:b7:83: 70:86:11:13:f9:87:dd:75:10:ee:59:c6:89:bb:6b:a3:dd:00: a6:18:17:75:d7:38:60:ef:67:00:e1:1f:0e:58:c4:27:43:54: b9:92:28:51:77:27:4e:7e:94:26:44:f8:04:74:9e:9b:00:cf: 48:a5:d6:ef -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6yB8e+DV7/byuRsVd08rPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwZDRiZDQ5OWY1ODQ5NGFjMGU4MjI2M2I1NTIwYTJjNjRk NjQ3N2UwHhcNMjYwMTAxMTgxODE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1OWRhNWVmODI4ZWRhYjJhNzVhZTRjYjNlZWI4NWM0YmVmZTM5OTdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsYenm6jyp8+sJSKhU1tB/MYs9Zvv 0ObIwZ4Hzre19s+o7aTcQKfCMRmnRuXwfOXCKo25LGoHzT+d9LExF2lb7J6xZ3+g G+fsgsxsyWaqTqDqvjNNIlsOhC5UnaUB+gDoCFqlWTvhji33epgXxqaoncvlUNn8 lJujSYTlRx6JP+TbdsaUTVoYWC4ecerr4br6aD08ZAU+7whCnx2/Hv/4u0iIc4v8 fJXYnJ9cuj6jlE0fhYHZFdQai14WUO70We66lT3/LfIWCPShpB8tQk4ROmMze80P /7+iESaZ5pvi+LRdVyViuuwz2KZM+rxYPj9OvIx60uD486eJrZg+dc4doQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFFnaXvgo7asqda5Ms+64XEvv45l6MB8GA1UdIwQY MBaAFCDUvUmfWElKwOgiY7VSCixk1kd+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSU5TOVNaOVlTVXJBNkNKanRWSUtMR1RXUjM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS9hZjYwMWUtYzJiZi00YTZhLWFhMzIt ZDJlZTE1Mzk5ZDA2LzEvV2RwZS1DanRxeXAxcmt5ejdyaGNTLV9qbVhvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NS9hZjYwMWUtYzJiZi00YTZhLWFhMzItZDJlZTE1Mzk5ZDA2 LzEvSU5TOVNaOVlTVXJBNkNKanRWSUtMR1RXUjM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwG0TAwQA wG3KMA0GCSqGSIb3DQEBCwUAA4IBAQBJ3GCAcTqbH7ZMYOur8/d7wzK2Jey2YvG2 WFbNLdR1IfL5uMVy3QeLV1K0cJfPtTIthNBB0SBFDU0CgYRYy5biG9Vxvs7VrDUK xuLTK+1nShh5FkeTA5euMqSeOz3JWEJIOGYj7lZQQvbkuDZ6S28ie+xcUhF1507w LUtCUO0vAzrr4IwMGFclN7tOJ/j7eaS+dyKjw3rJ3dc0cluJuDp3pvVAPSuUJfgP pptx/apEDpwZ4At/nci8/r85ZPFInRVX/6BXt4NwhhET+YfddRDuWcaJu2uj3QCm GBd11zhg72cA4R8OWMQnQ1S5kihRdydOfpQmRPgEdJ6bAM9Ipdbv -----END CERTIFICATE-----Generated at Tue Jan 27 11:26:44 2026 by rpki-client