This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/12349e-5282-472a-ae52-2a06223623e0/1/WjMwl8ZfVOdoyhMOTA8BMehWEJI.roa File: WjMwl8ZfVOdoyhMOTA8BMehWEJI.roa (raw, json) Hash identifier: RHZCcknMsS5tx01/QhJWB8dlrXaXtmtm/9S2WPp95p0= Subject key identifier: 5A:33:30:97:C6:5F:54:E7:68:CA:13:0E:4C:0F:01:31:E8:56:10:92 Certificate issuer: /CN=6b92cf3390caa5879e759729cd9008c6eca55a27 Certificate serial: 019B76EB299330B2EA9147E333D6B3A993E9 Authority key identifier: 6B:92:CF:33:90:CA:A5:87:9E:75:97:29:CD:90:08:C6:EC:A5:5A:27 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a5LPM5DKpYeedZcpzZAIxuylWic.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/12349e-5282-472a-ae52-2a06223623e0/1/WjMwl8ZfVOdoyhMOTA8BMehWEJI.roa Signing time: Thu 01 Jan 2026 00:18:01 +0000 ROA not before: Thu 01 Jan 2026 00:18:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43949 IP address blocks: 2.58.180.0/22 maxlen: 22 168.168.0.0/21 maxlen: 21 168.168.8.0/22 maxlen: 22 168.168.12.0/23 maxlen: 23 168.168.14.0/24 maxlen: 24 168.168.15.0/24 maxlen: 24 168.168.16.0/23 maxlen: 23 168.168.24.0/24 maxlen: 24 168.168.32.0/22 maxlen: 22 168.168.80.0/20 maxlen: 20 168.168.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/12349e-5282-472a-ae52-2a06223623e0/1/a5LPM5DKpYeedZcpzZAIxuylWic.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/12349e-5282-472a-ae52-2a06223623e0/1/a5LPM5DKpYeedZcpzZAIxuylWic.mft rsync://rpki.ripe.net/repository/DEFAULT/a5LPM5DKpYeedZcpzZAIxuylWic.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 20:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:29:93:30:b2:ea:91:47:e3:33:d6:b3:a9:93:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6b92cf3390caa5879e759729cd9008c6eca55a27 Validity Not Before: Jan 1 00:18:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5a333097c65f54e768ca130e4c0f0131e8561092 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ea:d5:32:57:ee:03:71:e3:bc:43:eb:e0:c6: 89:36:5e:08:ea:d3:12:93:33:d3:f8:f1:d1:77:a6: c0:e8:fd:c1:cc:19:0e:ab:0b:49:c2:a0:cc:6b:d1: 5a:e9:4e:fa:0d:73:27:5e:96:89:0a:fb:f4:bf:1c: 7b:fb:83:c4:9a:fd:aa:c6:f8:cc:96:09:1f:9e:a3: bd:86:cf:a1:6e:af:1c:d9:ee:88:da:46:88:70:15: f1:28:09:56:46:14:0f:5a:dd:2a:c1:6b:c9:0c:af: 9a:12:8c:21:56:28:3e:c6:05:d7:bb:9a:f0:ab:d2: 42:99:89:56:27:99:f7:7d:ee:1b:ab:c7:c5:94:0f: 36:73:d9:1f:4a:cd:22:ca:b2:51:38:5a:b8:05:5e: 20:dc:0f:60:ca:db:7e:62:5f:4e:03:c7:66:19:b2: 11:b2:75:6f:f2:da:64:30:92:07:06:cc:16:c4:c9: 69:1c:1f:10:b8:a1:ba:03:04:d9:6b:ce:e2:7f:c3: 08:d3:82:58:6c:5e:1d:ff:ab:39:a5:26:01:61:41: 6a:88:62:c4:45:1f:8a:f8:4c:c9:9b:83:8d:c3:be: d1:a1:22:ad:12:a0:4d:ef:5a:c4:f0:15:6e:d7:a2: fb:bd:35:2e:7d:c0:c3:59:1e:22:6c:dd:9a:2b:ae: c2:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:33:30:97:C6:5F:54:E7:68:CA:13:0E:4C:0F:01:31:E8:56:10:92 X509v3 Authority Key Identifier: keyid:6B:92:CF:33:90:CA:A5:87:9E:75:97:29:CD:90:08:C6:EC:A5:5A:27 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5LPM5DKpYeedZcpzZAIxuylWic.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/12349e-5282-472a-ae52-2a06223623e0/1/WjMwl8ZfVOdoyhMOTA8BMehWEJI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/12349e-5282-472a-ae52-2a06223623e0/1/a5LPM5DKpYeedZcpzZAIxuylWic.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.58.180.0/22 168.168.0.0-168.168.17.255 168.168.24.0/24 168.168.32.0/22 168.168.80.0-168.168.127.255 Signature Algorithm: sha256WithRSAEncryption 1a:06:13:7e:a6:3f:a2:c5:2e:23:02:4c:5c:f7:73:41:63:59: 77:5e:9e:ba:e8:de:4b:06:50:df:6c:39:72:d7:dc:57:69:d5: f9:da:ae:63:a2:f1:8f:aa:8f:8d:57:76:65:79:71:1b:77:9e: a1:29:21:75:68:e9:b3:0e:a4:d4:4a:77:d2:3e:ab:90:ee:69: 48:47:3e:0a:00:a2:09:35:4c:a7:c4:13:e3:9f:b6:91:7a:4c: b3:41:bb:40:81:6f:fd:b1:ca:a7:2b:d4:2b:c9:8a:1f:ce:f3: 32:16:88:40:1a:fc:6a:23:31:8c:4d:d0:f8:09:d5:67:7c:78: a2:00:fd:b3:a4:b8:be:40:cc:cd:be:b0:df:78:4c:be:db:32: c4:fe:68:0f:7c:46:95:9f:47:51:b7:3f:4a:0f:e3:47:28:d4: 44:a2:18:d7:42:7e:0a:17:7d:39:4f:da:cf:3d:9c:97:e5:5c: 4b:c7:4c:2d:b8:61:25:32:47:5e:2f:1d:b0:4d:8b:83:2e:81: 2c:9d:f6:0c:78:e6:da:d7:26:73:e7:05:4e:6a:35:44:83:2a: df:bf:e1:89:63:4c:64:b7:40:f0:11:19:32:6d:3d:9e:69:96: 71:f5:80:83:70:d7:cc:53:8a:41:df:ed:62:7a:f2:a5:2c:17: 66:a4:5a:cb -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgISAZt26ymTMLLqkUfjM9azqZPpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZiOTJjZjMzOTBjYWE1ODc5ZTc1OTcyOWNkOTAwOGM2ZWNh NTVhMjcwHhcNMjYwMTAxMDAxODAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YTMzMzA5N2M2NWY1NGU3NjhjYTEzMGU0YzBmMDEzMWU4NTYxMDkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv+rVMlfuA3HjvEPr4MaJNl4I6tMS kzPT+PHRd6bA6P3BzBkOqwtJwqDMa9Fa6U76DXMnXpaJCvv0vxx7+4PEmv2qxvjM lgkfnqO9hs+hbq8c2e6I2kaIcBXxKAlWRhQPWt0qwWvJDK+aEowhVig+xgXXu5rw q9JCmYlWJ5n3fe4bq8fFlA82c9kfSs0iyrJROFq4BV4g3A9gytt+Yl9OA8dmGbIR snVv8tpkMJIHBswWxMlpHB8QuKG6AwTZa87if8MI04JYbF4d/6s5pSYBYUFqiGLE RR+K+EzJm4ONw77RoSKtEqBN71rE8BVu16L7vTUufcDDWR4ibN2aK67CUQIDAQAB o4ICMDCCAiwwHQYDVR0OBBYEFFozMJfGX1TnaMoTDkwPATHoVhCSMB8GA1UdIwQY MBaAFGuSzzOQyqWHnnWXKc2QCMbspVonMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYTVMUE01REtwWWVlZFpjcHpaQUl4dXlsV2ljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8xMjM0OWUtNTI4Mi00NzJhLWFlNTIt MmEwNjIyMzYyM2UwLzEvV2pNd2w4WmZWT2RveWhNT1RBOEJNZWhXRUpJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy8xMjM0OWUtNTI4Mi00NzJhLWFlNTItMmEwNjIyMzYyM2Uw LzEvYTVMUE01REtwWWVlZFpjcHpaQUl4dXlsV2ljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAzBAIAATAtAwQCAjq0MAsD AwOoqAMEAaioEAMEAKioGAMEAqioIDAMAwQEqKhQAwQHqKgAMA0GCSqGSIb3DQEB CwUAA4IBAQAaBhN+pj+ixS4jAkxc93NBY1l3Xp666N5LBlDfbDly19xXadX52q5j ovGPqo+NV3ZleXEbd56hKSF1aOmzDqTUSnfSPquQ7mlIRz4KAKIJNUynxBPjn7aR ekyzQbtAgW/9scqnK9QryYofzvMyFohAGvxqIzGMTdD4CdVnfHiiAP2zpLi+QMzN vrDfeEy+2zLE/mgPfEaVn0dRtz9KD+NHKNREohjXQn4KF305T9rPPZyX5VxLx0wt uGElMkdeLx2wTYuDLoEsnfYMeOba1yZz5wVOajVEgyrfv+GJY0xkt0DwERkybT2e aZZx9YCDcNfMU4pB3+1ievKlLBdmpFrL -----END CERTIFICATE-----Generated at Tue Jan 20 04:46:52 2026 by rpki-client