This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/a537c0-fd4b-43b6-8891-d57373bf5162/1/WMqtzsECKWwXCJIg2DonPUbpFnw.roa File: WMqtzsECKWwXCJIg2DonPUbpFnw.roa (raw, json) Hash identifier: 5GfXNj8pVFfA55H0iZRmskGZ4d2ccQFECebszaJAMv4= Subject key identifier: 58:CA:AD:CE:C1:02:29:6C:17:08:92:20:D8:3A:27:3D:46:E9:16:7C Certificate issuer: /CN=96351c473a16ba38fab4d517059225e0f133c8bf Certificate serial: 019B7B35EBB2408364D7CD888E723FA9F8A0 Authority key identifier: 96:35:1C:47:3A:16:BA:38:FA:B4:D5:17:05:92:25:E0:F1:33:C8:BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ljUcRzoWujj6tNUXBZIl4PEzyL8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/a537c0-fd4b-43b6-8891-d57373bf5162/1/WMqtzsECKWwXCJIg2DonPUbpFnw.roa Signing time: Thu 01 Jan 2026 20:18:09 +0000 ROA not before: Thu 01 Jan 2026 20:18:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3302 IP address blocks: 91.225.180.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/a537c0-fd4b-43b6-8891-d57373bf5162/1/ljUcRzoWujj6tNUXBZIl4PEzyL8.crl rsync://rpki.ripe.net/repository/DEFAULT/ac/a537c0-fd4b-43b6-8891-d57373bf5162/1/ljUcRzoWujj6tNUXBZIl4PEzyL8.mft rsync://rpki.ripe.net/repository/DEFAULT/ljUcRzoWujj6tNUXBZIl4PEzyL8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 23:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:eb:b2:40:83:64:d7:cd:88:8e:72:3f:a9:f8:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96351c473a16ba38fab4d517059225e0f133c8bf Validity Not Before: Jan 1 20:18:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=58caadcec102296c17089220d83a273d46e9167c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:18:f9:94:eb:99:e3:08:44:28:55:e1:a6:79: 01:01:69:bb:3c:1c:e7:86:9a:cc:3a:04:f3:05:88: 03:3c:4c:2c:49:3b:49:26:49:0a:0c:04:ae:dc:41: 90:69:e1:8b:61:81:4b:10:22:50:77:77:eb:5e:fb: 2d:c7:0e:36:09:cc:6c:0e:f8:d8:41:c6:81:51:e1: 0b:8d:4f:95:d1:e4:7c:48:14:cc:87:7e:4e:61:bb: 43:f2:a9:26:96:6a:3b:00:bb:3c:98:52:2c:8b:dc: 88:89:1a:fb:69:a2:f0:91:ec:3f:82:64:b9:c6:3a: 71:ad:70:52:5b:6a:00:a5:22:7d:8d:c5:c2:a4:15: cf:87:ce:dd:11:1e:d7:be:29:ad:0a:1e:c9:64:e4: 7a:cf:9f:39:df:21:15:8f:da:56:d1:1f:53:c6:26: 3a:23:66:f4:d6:a9:47:0c:cf:28:d0:40:af:67:b0: 9b:a5:66:bd:7e:2e:d3:2a:f5:48:e4:57:5e:4c:d7: f8:d8:ae:99:48:28:b0:5c:23:0f:3c:ee:e3:4a:dd: 0c:ae:a1:3d:c2:54:b0:1b:10:1f:a7:35:be:fd:e2: 9c:5b:a9:63:cd:36:c6:9b:ec:6c:ff:79:96:74:b0: 03:e1:f0:69:50:5b:ed:6c:7a:5c:e6:45:81:66:6e: ef:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:CA:AD:CE:C1:02:29:6C:17:08:92:20:D8:3A:27:3D:46:E9:16:7C X509v3 Authority Key Identifier: keyid:96:35:1C:47:3A:16:BA:38:FA:B4:D5:17:05:92:25:E0:F1:33:C8:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ljUcRzoWujj6tNUXBZIl4PEzyL8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/a537c0-fd4b-43b6-8891-d57373bf5162/1/WMqtzsECKWwXCJIg2DonPUbpFnw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/a537c0-fd4b-43b6-8891-d57373bf5162/1/ljUcRzoWujj6tNUXBZIl4PEzyL8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.225.180.0/22 Signature Algorithm: sha256WithRSAEncryption 42:c3:4e:e3:b4:37:bf:b8:32:59:1b:ca:11:26:ec:45:33:76: c3:b2:c9:a9:74:c2:0e:9a:91:ea:d3:8d:9f:b1:1c:01:52:ae: a5:3d:41:94:a0:cb:0c:f1:34:1f:4b:2e:fc:97:54:43:ce:8c: c2:4b:a0:44:00:b3:67:72:fd:37:df:22:4f:2a:63:ff:20:3f: 4b:46:60:3f:2b:e8:da:c1:c5:52:ba:bb:54:ab:31:67:e4:2f: d3:dc:f3:a6:01:d2:1f:31:bc:1a:c6:cf:0b:f3:b4:cb:24:bb: ab:c7:fb:4c:cc:dd:60:88:b8:f6:9e:a7:1a:04:20:db:d6:28: 64:8a:46:83:42:40:24:01:8e:78:8f:68:cc:17:51:2f:15:b6: 14:ae:51:fb:85:5f:21:26:80:a2:7c:09:f6:31:48:31:6b:2a: 6d:82:27:a0:36:09:76:ec:78:c7:83:3f:d7:aa:a5:98:47:4f: 97:e4:c1:47:4a:28:e1:c7:a6:07:97:8b:84:c2:27:79:50:4f: a9:2c:60:d7:2f:7c:64:a0:a5:6b:b4:d5:56:e7:c0:eb:d4:50: a6:11:00:cc:07:b7:87:11:bc:52:2a:05:2c:0d:2a:42:39:e8: 8f:90:6c:99:5a:45:e7:58:35:98:6a:ee:c0:24:77:f7:2b:a6: cd:3d:61:b9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7NeuyQINk182IjnI/qfigMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2MzUxYzQ3M2ExNmJhMzhmYWI0ZDUxNzA1OTIyNWUwZjEz M2M4YmYwHhcNMjYwMTAxMjAxODA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1OGNhYWRjZWMxMDIyOTZjMTcwODkyMjBkODNhMjczZDQ2ZTkxNjdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvxj5lOuZ4whEKFXhpnkBAWm7PBzn hprMOgTzBYgDPEwsSTtJJkkKDASu3EGQaeGLYYFLECJQd3frXvstxw42CcxsDvjY QcaBUeELjU+V0eR8SBTMh35OYbtD8qkmlmo7ALs8mFIsi9yIiRr7aaLwkew/gmS5 xjpxrXBSW2oApSJ9jcXCpBXPh87dER7XvimtCh7JZOR6z5853yEVj9pW0R9TxiY6 I2b01qlHDM8o0ECvZ7CbpWa9fi7TKvVI5FdeTNf42K6ZSCiwXCMPPO7jSt0MrqE9 wlSwGxAfpzW+/eKcW6ljzTbGm+xs/3mWdLAD4fBpUFvtbHpc5kWBZm7vIQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFjKrc7BAilsFwiSINg6Jz1G6RZ8MB8GA1UdIwQY MBaAFJY1HEc6Fro4+rTVFwWSJeDxM8i/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbGpVY1J6b1d1amo2dE5VWEJaSWw0UEV6eUw4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy9hNTM3YzAtZmQ0Yi00M2I2LTg4OTEt ZDU3MzczYmY1MTYyLzEvV01xdHpzRUNLV3dYQ0pJZzJEb25QVWJwRm53LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYy9hNTM3YzAtZmQ0Yi00M2I2LTg4OTEtZDU3MzczYmY1MTYy LzEvbGpVY1J6b1d1amo2dE5VWEJaSWw0UEV6eUw4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCW+G0MA0G CSqGSIb3DQEBCwUAA4IBAQBCw07jtDe/uDJZG8oRJuxFM3bDssmpdMIOmpHq042f sRwBUq6lPUGUoMsM8TQfSy78l1RDzozCS6BEALNncv033yJPKmP/ID9LRmA/K+ja wcVSurtUqzFn5C/T3POmAdIfMbwaxs8L87TLJLurx/tMzN1giLj2nqcaBCDb1ihk ikaDQkAkAY54j2jMF1EvFbYUrlH7hV8hJoCifAn2MUgxayptgiegNgl27HjHgz/X qqWYR0+X5MFHSijhx6YHl4uEwid5UE+pLGDXL3xkoKVrtNVW58Dr1FCmEQDMB7eH EbxSKgUsDSpCOeiPkGyZWkXnWDWYau7AJHf3K6bNPWG5 -----END CERTIFICATE-----Generated at Tue Jan 27 08:30:40 2026 by rpki-client