This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/WCxNG3mKgPlfY_EYRfvhFFuPCp4.roa File: WCxNG3mKgPlfY_EYRfvhFFuPCp4.roa (raw, json) Hash identifier: as9yjV3i4laKX3HUW8f+TOKJ6sLV/8kN+NybvhGCgbo= Subject key identifier: 58:2C:4D:1B:79:8A:80:F9:5F:63:F1:18:45:FB:E1:14:5B:8F:0A:9E Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491 Certificate serial: 019B7AC8D08B58C05370A6068263B096B7D8 Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/WCxNG3mKgPlfY_EYRfvhFFuPCp4.roa Signing time: Thu 01 Jan 2026 18:18:59 +0000 ROA not before: Thu 01 Jan 2026 18:18:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213934 IP address blocks: 80.232.163.0/24 maxlen: 24 94.100.0.0/20 maxlen: 24 94.100.0.0/24 maxlen: 24 94.100.2.0/24 maxlen: 24 94.100.6.0/24 maxlen: 24 94.100.7.0/24 maxlen: 24 94.100.8.0/24 maxlen: 24 94.100.9.0/24 maxlen: 24 94.100.11.0/24 maxlen: 24 94.100.12.0/24 maxlen: 24 94.100.13.0/24 maxlen: 24 94.100.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.mft rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:d0:8b:58:c0:53:70:a6:06:82:63:b0:96:b7:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491 Validity Not Before: Jan 1 18:18:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=582c4d1b798a80f95f63f11845fbe1145b8f0a9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:e9:fc:8b:f3:e0:9e:2c:1c:db:a7:de:8a:a0: 51:5d:5b:03:54:5f:b8:57:f8:23:69:23:c9:b0:b5: b8:82:c1:ce:2b:36:a9:0d:39:8e:56:e8:08:1a:1c: db:25:6f:09:4b:2a:29:6d:e3:c5:71:3b:74:19:9e: fa:31:cb:9e:83:39:92:01:d9:81:e9:cf:c1:c4:5d: df:fb:25:a8:d2:6f:56:72:44:3c:75:e9:7c:1d:df: 6a:95:1a:4f:46:83:0c:7a:b0:3a:ea:96:b6:26:47: d5:6d:75:d3:93:28:72:83:b5:e5:6c:ac:bd:11:06: 8e:81:c2:9b:75:dd:ea:95:66:a0:1b:2f:63:10:90: 65:cd:43:7c:d3:0f:ad:ee:01:53:f3:dc:ff:9c:63: ad:79:02:37:80:39:68:db:21:e9:df:e0:2d:e0:d9: 8d:44:53:d9:4b:9b:39:47:e1:e5:b0:61:37:a4:b9: 3e:80:da:d0:18:32:60:81:d3:cc:55:b1:ba:e3:e8: 9d:23:76:a6:16:f2:ce:10:20:bc:96:4b:28:d7:7a: a6:1b:be:da:c7:41:7a:f7:6c:0b:70:17:6b:06:d6: e9:65:c9:48:a8:a2:6c:e4:2e:46:9b:2b:84:b3:2e: 94:0d:03:39:80:80:2e:11:01:a0:21:a9:19:4a:f6: 78:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:2C:4D:1B:79:8A:80:F9:5F:63:F1:18:45:FB:E1:14:5B:8F:0A:9E X509v3 Authority Key Identifier: keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/WCxNG3mKgPlfY_EYRfvhFFuPCp4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.232.163.0/24 94.100.0.0/20 Signature Algorithm: sha256WithRSAEncryption 5a:b6:61:48:6a:af:03:87:3d:7f:22:43:ac:7c:23:3b:b1:c1: 25:8a:8a:c5:fc:2d:d1:86:43:40:e9:6c:69:2c:ba:db:35:e9: 95:4b:4a:a1:c0:cc:d1:3d:84:0a:df:a0:13:6f:f7:fd:95:2d: b1:f4:64:48:71:c8:c8:d8:33:42:f1:51:21:a7:f8:fb:29:7a: d4:10:3c:4a:5f:c5:be:84:92:4a:bc:24:e2:98:ff:f0:71:f1: f4:8c:4a:74:2a:4f:0c:e7:0a:95:9f:b9:af:71:31:c3:78:c0: 4d:04:dd:a6:a1:41:d8:72:a0:7a:12:ca:b3:27:2e:92:a0:da: 9e:da:f2:ca:4e:7d:b2:df:47:a9:41:ee:6d:74:d8:0d:a7:2f: 5a:6a:d6:2a:88:8f:2f:5a:2f:56:41:9a:2c:af:b7:d8:66:a0: 87:8e:85:0c:ed:eb:f8:45:47:0c:3d:21:c6:f6:ca:af:55:c2: c9:8c:49:66:5c:dd:da:9b:7d:93:7a:24:ba:49:4d:37:1d:de: da:ce:f4:1d:58:a9:4e:5a:1d:15:6f:be:71:44:58:94:2f:fe: a9:ad:7f:43:6f:fa:0e:fa:c0:9e:2c:71:d6:1d:9c:1b:57:41: c0:c9:db:d8:79:ae:27:ad:27:51:5f:da:9d:7d:af:01:a1:4a: c5:ae:b3:e1 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6yNCLWMBTcKYGgmOwlrfYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUzYmUwN2NiMWZkNGYxZTNjOTIyMzAzYjY3MGE4ODFiODJl NjE0OTEwHhcNMjYwMTAxMTgxODU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ODJjNGQxYjc5OGE4MGY5NWY2M2YxMTg0NWZiZTExNDViOGYwYTllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5+n8i/Pgniwc26feiqBRXVsDVF+4 V/gjaSPJsLW4gsHOKzapDTmOVugIGhzbJW8JSyopbePFcTt0GZ76McuegzmSAdmB 6c/BxF3f+yWo0m9WckQ8del8Hd9qlRpPRoMMerA66pa2JkfVbXXTkyhyg7XlbKy9 EQaOgcKbdd3qlWagGy9jEJBlzUN80w+t7gFT89z/nGOteQI3gDlo2yHp3+At4NmN RFPZS5s5R+HlsGE3pLk+gNrQGDJggdPMVbG64+idI3amFvLOECC8lkso13qmG77a x0F692wLcBdrBtbpZclIqKJs5C5GmyuEsy6UDQM5gIAuEQGgIakZSvZ4pwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFFgsTRt5ioD5X2PxGEX74RRbjwqeMB8GA1UdIwQY MBaAFOO+B8sf1PHjySIwO2cKiBuC5hSRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNDc0SHl4X1U4ZVBKSWpBN1p3cUlHNExtRkpFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS84ZjVmYWUtZGE5MC00MzE0LWJmZmMt ZDRlZTFkMzg5ZTBkLzEvV0N4TkczbUtnUGxmWV9FWVJmdmhGRnVQQ3A0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS84ZjVmYWUtZGE5MC00MzE0LWJmZmMtZDRlZTFkMzg5ZTBk LzEvNDc0SHl4X1U4ZVBKSWpBN1p3cUlHNExtRkpFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAUOijAwQE XmQAMA0GCSqGSIb3DQEBCwUAA4IBAQBatmFIaq8Dhz1/IkOsfCM7scEliorF/C3R hkNA6WxpLLrbNemVS0qhwMzRPYQK36ATb/f9lS2x9GRIccjI2DNC8VEhp/j7KXrU EDxKX8W+hJJKvCTimP/wcfH0jEp0Kk8M5wqVn7mvcTHDeMBNBN2moUHYcqB6Esqz Jy6SoNqe2vLKTn2y30epQe5tdNgNpy9aatYqiI8vWi9WQZosr7fYZqCHjoUM7ev4 RUcMPSHG9sqvVcLJjElmXN3am32TeiS6SU03Hd7azvQdWKlOWh0Vb75xRFiUL/6p rX9Db/oO+sCeLHHWHZwbV0HAydvYea4nrSdRX9qdfa8BoUrFrrPh -----END CERTIFICATE-----Generated at Tue Jan 20 02:45:52 2026 by rpki-client