This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/b9e6df-da8f-4491-8fe4-5245b135221b/1/WM9U0hGxJGDphWFsCWq6RtezmLM.roa File: WM9U0hGxJGDphWFsCWq6RtezmLM.roa (raw, json) Hash identifier: cyewkrvQm5BjotgRNgGfFmYEz1ELODgyWDHv/Kj0w6U= Subject key identifier: 58:CF:54:D2:11:B1:24:60:E9:85:61:6C:09:6A:BA:46:D7:B3:98:B3 Certificate issuer: /CN=28851c6fc6eb3816e116c8a4a851d0d178c90f31 Certificate serial: 019B7B36EADCD9D6131EFEA2CD37464E4ED2 Authority key identifier: 28:85:1C:6F:C6:EB:38:16:E1:16:C8:A4:A8:51:D0:D1:78:C9:0F:31 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIUcb8brOBbhFsikqFHQ0XjJDzE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/b9e6df-da8f-4491-8fe4-5245b135221b/1/WM9U0hGxJGDphWFsCWq6RtezmLM.roa Signing time: Thu 01 Jan 2026 20:19:15 +0000 ROA not before: Thu 01 Jan 2026 20:19:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6939 IP address blocks: 188.241.145.0/24 maxlen: 24 2a00:a900:7afe::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/b9e6df-da8f-4491-8fe4-5245b135221b/1/KIUcb8brOBbhFsikqFHQ0XjJDzE.crl rsync://rpki.ripe.net/repository/DEFAULT/98/b9e6df-da8f-4491-8fe4-5245b135221b/1/KIUcb8brOBbhFsikqFHQ0XjJDzE.mft rsync://rpki.ripe.net/repository/DEFAULT/KIUcb8brOBbhFsikqFHQ0XjJDzE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 02:03:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:ea:dc:d9:d6:13:1e:fe:a2:cd:37:46:4e:4e:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28851c6fc6eb3816e116c8a4a851d0d178c90f31 Validity Not Before: Jan 1 20:19:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=58cf54d211b12460e985616c096aba46d7b398b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:45:5a:5e:f5:5d:e1:f6:9b:ac:60:b7:63:09: 56:1b:c7:1e:a4:1b:b2:57:ff:93:67:9e:20:56:96: ed:29:c7:8a:b5:87:84:d8:d5:d5:f3:bb:16:c1:8d: f1:5b:83:36:f4:f8:9a:81:e8:b2:de:12:25:1b:a5: 1f:65:bb:81:2a:d8:22:6f:26:16:bc:0a:68:ae:1f: 43:21:4a:22:73:64:03:1d:a6:a7:ee:ea:d8:80:bc: 4e:94:93:5a:f5:7d:39:1e:4d:1c:f8:6a:8b:b3:94: c7:e5:9e:1e:2f:8a:9f:81:08:fa:a9:86:91:1f:be: e2:fb:8a:a8:c1:29:e5:a1:6d:1a:dd:b1:2c:08:4f: 80:78:1f:e8:f6:5c:50:f0:87:20:2d:d0:fe:04:72: 74:3e:a9:0e:cb:26:77:a4:56:ad:6e:a0:ee:3d:2e: 4b:00:96:a6:f0:00:cf:f4:8a:39:97:56:23:aa:55: e5:2f:4e:09:0d:32:5b:33:51:16:82:a3:68:88:36: 49:68:bb:cf:1e:4f:01:a4:43:bd:03:2d:d1:d8:3d: 25:b9:9d:7e:1d:8b:f3:13:e7:80:0f:1e:c2:31:71: 01:5f:07:42:51:e4:c5:23:94:ee:cc:a1:b1:cf:41: 08:43:a5:69:88:dc:5f:1c:0b:07:72:12:38:76:53: 6a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:CF:54:D2:11:B1:24:60:E9:85:61:6C:09:6A:BA:46:D7:B3:98:B3 X509v3 Authority Key Identifier: keyid:28:85:1C:6F:C6:EB:38:16:E1:16:C8:A4:A8:51:D0:D1:78:C9:0F:31 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIUcb8brOBbhFsikqFHQ0XjJDzE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b9e6df-da8f-4491-8fe4-5245b135221b/1/WM9U0hGxJGDphWFsCWq6RtezmLM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b9e6df-da8f-4491-8fe4-5245b135221b/1/KIUcb8brOBbhFsikqFHQ0XjJDzE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.241.145.0/24 IPv6: 2a00:a900:7afe::/48 Signature Algorithm: sha256WithRSAEncryption 6b:3f:da:f6:46:a9:be:22:89:4d:10:02:02:6a:9c:0c:5a:cd: e2:c2:a3:c2:22:69:e0:3d:90:60:ad:4f:d2:3d:9d:80:36:f5: c9:3f:f5:81:b3:7d:0d:87:c7:b1:65:4e:70:5d:17:d0:54:cf: 4f:c7:1c:58:6e:e0:c9:5c:9e:a5:ac:d5:cc:e9:6f:1b:c2:04: 00:e7:0c:91:12:f7:43:7e:3e:9e:c3:63:71:e8:ab:f1:36:85: ac:a6:b1:3d:89:e3:ec:fd:73:bc:63:e0:60:ff:0b:76:6a:c2: a4:e6:26:c6:f8:84:89:f9:83:7a:26:f9:b0:55:9c:d7:f2:1e: 10:90:79:b9:f0:aa:19:37:69:32:0e:96:9a:32:17:15:92:85: c8:24:aa:96:25:84:40:ad:4f:31:fe:23:26:bd:9f:5a:4d:06: c2:18:3a:6b:3b:34:68:92:1f:a5:7c:10:f2:e6:e6:bf:d6:f7: d1:ff:76:5c:b6:5a:de:47:aa:25:6a:5b:70:cb:b1:f0:79:95: ef:68:8e:14:d7:3e:6f:31:25:9c:c6:68:51:6a:06:72:02:3d: 0e:97:97:bc:16:39:0f:be:e0:fb:9d:5b:49:c6:44:44:65:d5: 73:50:5d:02:4c:4d:6d:bd:c8:3b:46:1e:e6:49:06:ef:e7:91: 0e:60:57:18 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt7Nurc2dYTHv6izTdGTk7SMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4ODUxYzZmYzZlYjM4MTZlMTE2YzhhNGE4NTFkMGQxNzhj OTBmMzEwHhcNMjYwMTAxMjAxOTE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1OGNmNTRkMjExYjEyNDYwZTk4NTYxNmMwOTZhYmE0NmQ3YjM5OGIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1EVaXvVd4fabrGC3YwlWG8cepBuy V/+TZ54gVpbtKceKtYeE2NXV87sWwY3xW4M29Piageiy3hIlG6UfZbuBKtgibyYW vAporh9DIUoic2QDHaan7urYgLxOlJNa9X05Hk0c+GqLs5TH5Z4eL4qfgQj6qYaR H77i+4qowSnloW0a3bEsCE+AeB/o9lxQ8IcgLdD+BHJ0PqkOyyZ3pFatbqDuPS5L AJam8ADP9Io5l1YjqlXlL04JDTJbM1EWgqNoiDZJaLvPHk8BpEO9Ay3R2D0luZ1+ HYvzE+eADx7CMXEBXwdCUeTFI5TuzKGxz0EIQ6VpiNxfHAsHchI4dlNqFQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFFjPVNIRsSRg6YVhbAlqukbXs5izMB8GA1UdIwQY MBaAFCiFHG/G6zgW4RbIpKhR0NF4yQ8xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS0lVY2I4YnJPQmJoRnNpa3FGSFEwWGpKRHpFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC9iOWU2ZGYtZGE4Zi00NDkxLThmZTQt NTI0NWIxMzUyMjFiLzEvV005VTBoR3hKR0RwaFdGc0NXcTZSdGV6bUxNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OC9iOWU2ZGYtZGE4Zi00NDkxLThmZTQtNTI0NWIxMzUyMjFi LzEvS0lVY2I4YnJPQmJoRnNpa3FGSFEwWGpKRHpFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAvPGRMA8E AgACMAkDBwAqAKkAev4wDQYJKoZIhvcNAQELBQADggEBAGs/2vZGqb4iiU0QAgJq nAxazeLCo8IiaeA9kGCtT9I9nYA29ck/9YGzfQ2Hx7FlTnBdF9BUz0/HHFhu4Mlc nqWs1czpbxvCBADnDJES90N+Pp7DY3Hoq/E2haymsT2J4+z9c7xj4GD/C3ZqwqTm Jsb4hIn5g3om+bBVnNfyHhCQebnwqhk3aTIOlpoyFxWShcgkqpYlhECtTzH+Iya9 n1pNBsIYOms7NGiSH6V8EPLm5r/W99H/dly2Wt5HqiVqW3DLsfB5le9ojhTXPm8x JZzGaFFqBnICPQ6Xl7wWOQ++4PudW0nGRERl1XNQXQJMTW29yDtGHuZJBu/nkQ5g Vxg= -----END CERTIFICATE-----Generated at Sat Jan 17 08:18:58 2026 by rpki-client