This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/Wa_aFIfyeJY9U1JqMrLf8I6Frss.roa File: Wa_aFIfyeJY9U1JqMrLf8I6Frss.roa (raw, json) Hash identifier: nn1lPJ4rE5vEwNHnRIBObe8y5puq3WI/2EJusW4aJ9k= Subject key identifier: 59:AF:DA:14:87:F2:78:96:3D:53:52:6A:32:B2:DF:F0:8E:85:AE:CB Certificate issuer: /CN=7df132df13e4be53d8250c8c48420264eef6c14c Certificate serial: 019B7B360C9C51F9F9E590CA18163ADFCFF0 Authority key identifier: 7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/Wa_aFIfyeJY9U1JqMrLf8I6Frss.roa Signing time: Thu 01 Jan 2026 20:18:18 +0000 ROA not before: Thu 01 Jan 2026 20:18:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48881 IP address blocks: 37.156.7.0/24 maxlen: 24 46.102.254.0/24 maxlen: 24 86.105.26.0/24 maxlen: 24 91.250.247.0/24 maxlen: 24 93.113.28.0/24 maxlen: 24 188.209.212.0/24 maxlen: 24 188.212.111.0/24 maxlen: 24 188.213.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.mft rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 20:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:0c:9c:51:f9:f9:e5:90:ca:18:16:3a:df:cf:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7df132df13e4be53d8250c8c48420264eef6c14c Validity Not Before: Jan 1 20:18:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=59afda1487f278963d53526a32b2dff08e85aecb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0f:6e:f9:a2:d7:f4:6b:43:45:e1:c4:ca:f2: 88:5d:b6:e5:cf:90:cb:d5:3b:c9:06:15:f6:e4:05: 9c:cb:d1:76:7c:a0:36:94:5b:da:6b:65:27:f6:c6: 17:26:61:9f:02:93:68:dc:b0:8f:62:77:d2:92:3d: 63:79:fe:fc:de:5f:6c:93:5c:1b:87:27:66:34:37: 53:61:7e:1f:fd:37:b3:fe:2a:60:1a:2a:9b:56:4c: 73:04:b4:fa:81:6a:3b:7f:4b:87:50:be:4c:1f:5a: 9f:c4:79:7c:ae:14:2a:bc:83:39:3e:3b:59:a3:d0: c3:df:08:94:a0:0c:d8:c2:dd:9d:c0:91:3e:68:01: 19:0b:29:7c:1b:c9:04:63:58:14:ee:dc:35:a4:dd: a9:62:24:9b:7a:16:04:99:b1:1d:81:30:b9:3f:08: 90:f9:8c:8a:2f:87:2f:b3:a8:82:cf:81:b7:e8:be: 2c:c3:bb:c2:63:50:ff:e6:7e:a5:59:3e:71:5b:09: 0f:35:7a:2e:9f:4e:ff:f5:8a:58:20:44:45:2f:5d: 49:ae:78:b8:0e:92:90:59:42:70:21:a0:aa:45:0e: c5:b8:a2:6d:69:00:96:60:c0:3d:28:14:f3:6d:8f: 4c:80:f1:7d:6c:90:d2:b5:9a:81:82:7d:03:c0:45: 2a:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:AF:DA:14:87:F2:78:96:3D:53:52:6A:32:B2:DF:F0:8E:85:AE:CB X509v3 Authority Key Identifier: keyid:7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/Wa_aFIfyeJY9U1JqMrLf8I6Frss.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.156.7.0/24 46.102.254.0/24 86.105.26.0/24 91.250.247.0/24 93.113.28.0/24 188.209.212.0/24 188.212.111.0/24 188.213.134.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:31:31:f2:6d:a5:f3:25:86:40:63:66:80:e5:6d:4d:8f:c9: d1:13:d7:47:1e:68:ed:6e:8c:a4:0d:58:11:f1:77:22:98:e9: f1:73:4d:4b:ae:c5:d3:35:c8:ed:f4:43:1c:18:b2:3e:c0:de: cf:e7:ec:fd:f5:00:fe:e3:ed:51:6f:bc:5f:68:cb:db:1a:5d: 8f:ef:57:9c:cd:f8:da:ef:3a:4e:98:a3:c6:23:a8:ff:5b:c0: 6d:e6:d7:56:a5:b3:8c:d6:7c:8e:a1:b7:55:de:bf:66:c9:1c: 6c:d4:24:af:00:ce:24:dd:f8:9d:ee:26:3a:5b:07:a9:63:68: 81:ec:aa:e6:7e:d2:8b:38:b7:67:7b:69:be:c4:14:e6:54:1a: 99:a5:e2:ce:04:76:74:d1:0c:e5:e5:88:5f:7b:51:97:3d:e0: 0c:43:0c:18:94:9a:f0:f6:b4:a4:e3:0c:28:ab:dc:b6:bc:2c: 1d:3e:bb:6e:f4:15:28:81:32:f8:46:3a:fb:6f:0a:fe:68:8f: 5d:c7:8c:7f:7f:f0:d5:b4:05:2d:4d:44:d9:59:af:ca:cf:84: 70:dd:d6:f3:f6:8f:be:55:a0:21:26:55:27:97:53:66:0b:cb: 50:94:dc:51:4a:c9:28:6c:16:bb:5e:01:6b:91:57:ae:1f:1c: 41:e8:6d:61 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZt7NgycUfn55ZDKGBY638/wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdkZjEzMmRmMTNlNGJlNTNkODI1MGM4YzQ4NDIwMjY0ZWVm NmMxNGMwHhcNMjYwMTAxMjAxODE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1OWFmZGExNDg3ZjI3ODk2M2Q1MzUyNmEzMmIyZGZmMDhlODVhZWNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwQ9u+aLX9GtDReHEyvKIXbblz5DL 1TvJBhX25AWcy9F2fKA2lFvaa2Un9sYXJmGfApNo3LCPYnfSkj1jef783l9sk1wb hydmNDdTYX4f/Tez/ipgGiqbVkxzBLT6gWo7f0uHUL5MH1qfxHl8rhQqvIM5PjtZ o9DD3wiUoAzYwt2dwJE+aAEZCyl8G8kEY1gU7tw1pN2pYiSbehYEmbEdgTC5PwiQ +YyKL4cvs6iCz4G36L4sw7vCY1D/5n6lWT5xWwkPNXoun07/9YpYIERFL11Jrni4 DpKQWUJwIaCqRQ7FuKJtaQCWYMA9KBTzbY9MgPF9bJDStZqBgn0DwEUqlwIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFFmv2hSH8niWPVNSajKy3/COha7LMB8GA1UdIwQY MBaAFH3xMt8T5L5T2CUMjEhCAmTu9sFMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZmZFeTN4UGt2bFBZSlF5TVNFSUNaTzcyd1V3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS9jMzc0OTctNjM3Ni00NjFlLTkzYzYt OTc3ODY3NGVkYzk3LzEvV2FfYUZJZnllSlk5VTFKcU1yTGY4STZGcnNzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS9jMzc0OTctNjM3Ni00NjFlLTkzYzYtOTc3ODY3NGVkYzk3 LzEvZmZFeTN4UGt2bFBZSlF5TVNFSUNaTzcyd1V3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQAJZwHAwQA Lmb+AwQAVmkaAwQAW/r3AwQAXXEcAwQAvNHUAwQAvNRvAwQAvNWGMA0GCSqGSIb3 DQEBCwUAA4IBAQCPMTHybaXzJYZAY2aA5W1Nj8nRE9dHHmjtboykDVgR8XcimOnx c01LrsXTNcjt9EMcGLI+wN7P5+z99QD+4+1Rb7xfaMvbGl2P71eczfja7zpOmKPG I6j/W8Bt5tdWpbOM1nyOobdV3r9myRxs1CSvAM4k3fid7iY6WwepY2iB7KrmftKL OLdne2m+xBTmVBqZpeLOBHZ00Qzl5Yhfe1GXPeAMQwwYlJrw9rSk4wwoq9y2vCwd Prtu9BUogTL4Rjr7bwr+aI9dx4x/f/DVtAUtTUTZWa/Kz4Rw3dbz9o++VaAhJlUn l1NmC8tQlNxRSskobBa7XgFrkVeuHxxB6G1h -----END CERTIFICATE-----Generated at Tue Jan 20 06:03:49 2026 by rpki-client