This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/b68421-99b1-485e-b217-d3adc7449391/1/W67sJZlYFgIAjOqo8xpblWxBJvA.roa File: W67sJZlYFgIAjOqo8xpblWxBJvA.roa (raw, json) Hash identifier: IVuhnw8j7o4RQ+rJmEoiYh1oIQYgyJIY5uLBiWowino= Subject key identifier: 5B:AE:EC:25:99:58:16:02:00:8C:EA:A8:F3:1A:5B:95:6C:41:26:F0 Certificate issuer: /CN=756fba46634d22b93db1bf46ec5a8d665e62dac7 Certificate serial: 019B7C1192A5D0383BD0F0A8EE6355CE671E Authority key identifier: 75:6F:BA:46:63:4D:22:B9:3D:B1:BF:46:EC:5A:8D:66:5E:62:DA:C7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dW-6RmNNIrk9sb9G7FqNZl5i2sc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/b68421-99b1-485e-b217-d3adc7449391/1/W67sJZlYFgIAjOqo8xpblWxBJvA.roa Signing time: Fri 02 Jan 2026 00:18:04 +0000 ROA not before: Fri 02 Jan 2026 00:18:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 33915 IP address blocks: 195.128.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/b68421-99b1-485e-b217-d3adc7449391/1/dW-6RmNNIrk9sb9G7FqNZl5i2sc.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/b68421-99b1-485e-b217-d3adc7449391/1/dW-6RmNNIrk9sb9G7FqNZl5i2sc.mft rsync://rpki.ripe.net/repository/DEFAULT/dW-6RmNNIrk9sb9G7FqNZl5i2sc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:92:a5:d0:38:3b:d0:f0:a8:ee:63:55:ce:67:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=756fba46634d22b93db1bf46ec5a8d665e62dac7 Validity Not Before: Jan 2 00:18:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5baeec2599581602008ceaa8f31a5b956c4126f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:61:a3:0e:3c:06:7b:d2:e0:75:12:ec:26:5c: fc:77:25:c0:57:35:04:0e:65:21:cd:85:57:a8:c0: 80:cd:4d:9f:e4:b0:e7:7c:5a:eb:5f:db:b2:5e:ae: e4:f4:33:e5:b7:40:80:b1:e6:ee:bd:99:6d:d9:4f: 8b:b6:f4:40:2f:04:26:35:c5:f4:5a:b3:14:67:e9: 5e:36:a9:ca:42:b7:f1:47:33:56:4b:11:ea:c6:cb: bd:ab:4f:72:5a:6d:46:22:7b:53:e3:28:d0:64:79: e2:1f:83:c3:f6:12:10:55:d7:56:54:21:2b:e3:09: f9:e6:27:f6:1e:97:dc:2b:8d:6b:6f:05:05:dc:92: 27:c8:85:2f:e9:0c:6b:d7:03:78:f0:75:fe:45:6b: 64:d6:34:36:d1:f3:3c:d9:f2:cd:66:53:ec:1c:55: 2f:ad:29:6b:b8:68:7e:6b:74:7e:28:92:83:55:ea: 7e:92:7c:74:75:c0:2c:2c:76:2c:7b:56:d2:21:36: 24:5d:5c:6f:5f:86:45:88:fb:5c:85:74:9f:d9:ac: 89:9f:14:c9:6d:84:96:27:19:39:c8:65:88:f9:55: 5d:89:e4:33:e3:b6:91:22:3a:bc:6f:f0:91:1c:2e: c7:9b:b9:b8:64:55:76:87:45:f6:c0:11:ba:53:bb: a4:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:AE:EC:25:99:58:16:02:00:8C:EA:A8:F3:1A:5B:95:6C:41:26:F0 X509v3 Authority Key Identifier: keyid:75:6F:BA:46:63:4D:22:B9:3D:B1:BF:46:EC:5A:8D:66:5E:62:DA:C7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dW-6RmNNIrk9sb9G7FqNZl5i2sc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/b68421-99b1-485e-b217-d3adc7449391/1/W67sJZlYFgIAjOqo8xpblWxBJvA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/b68421-99b1-485e-b217-d3adc7449391/1/dW-6RmNNIrk9sb9G7FqNZl5i2sc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.128.144.0/24 Signature Algorithm: sha256WithRSAEncryption 33:78:0a:ce:b9:bd:0d:d0:13:ec:9d:4f:13:6c:63:54:e9:96: 78:e1:b9:95:4b:43:00:dd:94:69:82:93:2a:d5:46:01:51:be: c4:cc:b0:17:48:2b:62:9b:ad:c6:bc:15:ea:1f:10:b7:69:71: d9:d1:31:39:8e:3e:e7:c6:4c:29:0e:68:e2:a8:45:9b:37:ef: f6:ce:10:26:fe:4e:43:30:e1:fb:a5:84:82:81:e9:ef:74:35: d7:1f:9c:a8:30:8e:c0:c2:c3:51:0c:4f:55:b9:ee:2c:ae:c9: d4:cf:1d:8e:1c:ab:42:24:da:c0:a2:53:55:72:fc:5e:34:b4: 17:60:ca:31:1d:88:15:24:a5:42:e9:75:13:b8:cf:31:d2:4d: 87:8b:c1:f9:97:24:07:8c:ea:e8:fc:5b:4a:21:3b:d5:f1:86: 8f:91:41:0b:d3:62:71:09:d6:43:f1:35:d1:ff:81:61:ea:11: 3f:78:d8:de:66:74:3b:85:59:3f:fc:db:fd:aa:98:d4:20:5d: 19:4e:31:6a:20:6d:72:d3:8d:83:92:f7:3b:e3:9b:f2:53:eb: c7:e3:c8:65:e6:9e:97:c8:31:2b:aa:59:61:1c:a8:f5:6b:83: 30:54:03:cc:cf:f5:dd:b8:1c:9d:14:39:c1:da:a8:75:fc:15: 12:14:4e:0b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EZKl0Dg70PCo7mNVzmceMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1NmZiYTQ2NjM0ZDIyYjkzZGIxYmY0NmVjNWE4ZDY2NWU2 MmRhYzcwHhcNMjYwMTAyMDAxODA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YmFlZWMyNTk5NTgxNjAyMDA4Y2VhYThmMzFhNWI5NTZjNDEyNmYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApGGjDjwGe9LgdRLsJlz8dyXAVzUE DmUhzYVXqMCAzU2f5LDnfFrrX9uyXq7k9DPlt0CAsebuvZlt2U+LtvRALwQmNcX0 WrMUZ+leNqnKQrfxRzNWSxHqxsu9q09yWm1GIntT4yjQZHniH4PD9hIQVddWVCEr 4wn55if2HpfcK41rbwUF3JInyIUv6Qxr1wN48HX+RWtk1jQ20fM82fLNZlPsHFUv rSlruGh+a3R+KJKDVep+knx0dcAsLHYse1bSITYkXVxvX4ZFiPtchXSf2ayJnxTJ bYSWJxk5yGWI+VVdieQz47aRIjq8b/CRHC7Hm7m4ZFV2h0X2wBG6U7ukCwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFuu7CWZWBYCAIzqqPMaW5VsQSbwMB8GA1UdIwQY MBaAFHVvukZjTSK5PbG/RuxajWZeYtrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZFctNlJtTk5Jcms5c2I5RzdGcU5abDVpMnNjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi9iNjg0MjEtOTliMS00ODVlLWIyMTct ZDNhZGM3NDQ5MzkxLzEvVzY3c0pabFlGZ0lBak9xbzh4cGJsV3hCSnZBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi9iNjg0MjEtOTliMS00ODVlLWIyMTctZDNhZGM3NDQ5Mzkx LzEvZFctNlJtTk5Jcms5c2I5RzdGcU5abDVpMnNjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw4CQMA0G CSqGSIb3DQEBCwUAA4IBAQAzeArOub0N0BPsnU8TbGNU6ZZ44bmVS0MA3ZRpgpMq 1UYBUb7EzLAXSCtim63GvBXqHxC3aXHZ0TE5jj7nxkwpDmjiqEWbN+/2zhAm/k5D MOH7pYSCgenvdDXXH5yoMI7AwsNRDE9Vue4srsnUzx2OHKtCJNrAolNVcvxeNLQX YMoxHYgVJKVC6XUTuM8x0k2Hi8H5lyQHjOro/FtKITvV8YaPkUEL02JxCdZD8TXR /4Fh6hE/eNjeZnQ7hVk//Nv9qpjUIF0ZTjFqIG1y042Dkvc745vyU+vH48hl5p6X yDErqllhHKj1a4MwVAPMz/XduBydFDnB2qh1/BUSFE4L -----END CERTIFICATE-----Generated at Mon Jan 26 22:36:30 2026 by rpki-client