This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/WMQhMYQPsuM2_MZXKI-GwQui5sI.roa File: WMQhMYQPsuM2_MZXKI-GwQui5sI.roa (raw, json) Hash identifier: Kxtu3xW/Ci7Zqri4OcXgMoILJ9m4a+3ahLAJ4dyrb6Y= Subject key identifier: 58:C4:21:31:84:0F:B2:E3:36:FC:C6:57:28:8F:86:C1:0B:A2:E6:C2 Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Certificate serial: 019B7C1393432FB55F920C3020787EB04F61 Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/WMQhMYQPsuM2_MZXKI-GwQui5sI.roa Signing time: Fri 02 Jan 2026 00:20:16 +0000 ROA not before: Fri 02 Jan 2026 00:20:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211441 IP address blocks: 195.34.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.mft rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 19:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:93:43:2f:b5:5f:92:0c:30:20:78:7e:b0:4f:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Validity Not Before: Jan 2 00:20:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=58c42131840fb2e336fcc657288f86c10ba2e6c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:fa:cd:26:4a:57:e3:16:65:9a:8d:c6:ce:f5: 6d:2c:42:ac:8f:35:e2:49:25:8e:3e:5d:28:3f:5b: e1:18:b9:08:aa:35:62:91:4e:1d:d8:a9:71:14:14: b8:d4:1a:5e:c8:08:b3:10:d2:1e:13:cd:de:1d:c5: 31:03:49:b0:c4:8e:7b:a8:fe:49:a7:43:0d:b8:e6: 59:ec:f3:8c:82:db:38:f9:c9:24:f3:a3:8f:d1:00: d6:0f:9e:99:fb:f2:38:1b:d5:24:33:1b:ae:e4:69: 6a:ea:79:05:ca:4b:b8:49:54:61:c1:fd:bb:6e:56: 58:42:14:eb:cd:c6:4d:fc:47:b8:a2:6e:da:a3:73: 2a:01:e1:15:e9:02:7e:03:39:a9:99:d3:f5:34:a5: 64:d0:f6:66:89:04:28:62:a0:02:1a:0f:7e:8f:2a: 17:df:bc:41:6a:2b:ac:6e:a5:7f:83:a3:52:b3:80: 00:3a:5e:b7:81:1f:85:15:f7:a3:55:ee:43:28:ef: 36:e8:7d:c8:ad:a0:1e:20:d8:43:b3:0f:21:90:d7: ba:f7:15:d3:f8:4f:71:5a:15:ab:47:5b:72:a6:19: b0:a8:84:15:28:b1:18:e4:9b:10:5c:2f:f4:e1:a2: 9d:59:a9:d5:ff:35:3d:cc:40:92:3e:da:d7:aa:73: a8:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:C4:21:31:84:0F:B2:E3:36:FC:C6:57:28:8F:86:C1:0B:A2:E6:C2 X509v3 Authority Key Identifier: keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/WMQhMYQPsuM2_MZXKI-GwQui5sI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.34.67.0/24 Signature Algorithm: sha256WithRSAEncryption b2:11:ec:3f:c6:0e:f8:82:32:11:e4:42:21:94:74:2a:13:46: f1:fe:65:f3:9e:3e:40:25:ba:eb:90:a1:6c:d0:54:99:13:3b: 5f:6d:74:60:d4:6c:3e:ed:3b:4a:1e:95:e5:b5:19:a9:90:8c: be:47:ec:33:54:84:9c:43:6c:f3:93:35:7d:64:2f:f1:cf:35: 87:5e:1c:22:79:62:ca:08:e6:94:97:c4:f0:c4:cb:4e:9b:cd: 7b:56:ed:be:67:bf:fe:7d:5b:35:ae:fc:07:43:c9:a9:99:9c: 36:63:34:c5:90:7a:6f:29:77:0b:94:19:b6:61:4a:02:cd:dd: b8:2d:a7:3d:10:46:e8:97:be:a6:35:cb:d9:75:92:e1:a4:54: 0a:e4:9a:bd:f9:0f:4b:4b:d7:da:b8:03:9f:8f:87:59:12:7a: 59:20:12:02:a4:d6:2c:3f:4a:8e:e4:13:1f:01:14:21:bc:38: 00:ad:db:dd:d9:46:d8:a8:63:e6:46:ea:bb:ce:fc:98:df:60: 1d:be:24:f7:8e:7e:77:45:18:72:23:4d:c3:5d:ef:2c:7f:44: e6:52:87:1f:36:7f:28:05:7d:f0:bd:3c:64:32:c8:96:a4:de: b0:aa:af:5f:ae:53:74:7a:cc:f7:dd:34:4a:2e:8a:0b:9a:e0: b3:1d:d7:22 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8E5NDL7VfkgwwIHh+sE9hMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx MTRjYWYwHhcNMjYwMTAyMDAyMDE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1OGM0MjEzMTg0MGZiMmUzMzZmY2M2NTcyODhmODZjMTBiYTJlNmMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsfrNJkpX4xZlmo3GzvVtLEKsjzXi SSWOPl0oP1vhGLkIqjVikU4d2KlxFBS41BpeyAizENIeE83eHcUxA0mwxI57qP5J p0MNuOZZ7POMgts4+ckk86OP0QDWD56Z+/I4G9UkMxuu5Glq6nkFyku4SVRhwf27 blZYQhTrzcZN/Ee4om7ao3MqAeEV6QJ+AzmpmdP1NKVk0PZmiQQoYqACGg9+jyoX 37xBaiusbqV/g6NSs4AAOl63gR+FFfejVe5DKO826H3IraAeINhDsw8hkNe69xXT +E9xWhWrR1typhmwqIQVKLEY5JsQXC/04aKdWanV/zU9zECSPtrXqnOomQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFjEITGED7LjNvzGVyiPhsELoubCMB8GA1UdIwQY MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt YjQzNDJiYTkxYWJjLzEvV01RaE1ZUVBzdU0yX01aWEtJLUd3UXVpNXNJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwyJDMA0G CSqGSIb3DQEBCwUAA4IBAQCyEew/xg74gjIR5EIhlHQqE0bx/mXznj5AJbrrkKFs 0FSZEztfbXRg1Gw+7TtKHpXltRmpkIy+R+wzVIScQ2zzkzV9ZC/xzzWHXhwieWLK COaUl8TwxMtOm817Vu2+Z7/+fVs1rvwHQ8mpmZw2YzTFkHpvKXcLlBm2YUoCzd24 Lac9EEbol76mNcvZdZLhpFQK5Jq9+Q9LS9fauAOfj4dZEnpZIBICpNYsP0qO5BMf ARQhvDgArdvd2UbYqGPmRuq7zvyY32AdviT3jn53RRhyI03DXe8sf0TmUocfNn8o BX3wvTxkMsiWpN6wqq9frlN0esz33TRKLooLmuCzHdci -----END CERTIFICATE-----Generated at Fri Jan 2 23:47:30 2026 by rpki-client