This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/WGzvtIfO4wSXh0SL6xrpap_8f20.roa File: WGzvtIfO4wSXh0SL6xrpap_8f20.roa (raw, json) Hash identifier: aEqfIAKKRO3v3vxtiFxetxtmCN6fYjyNKbP1aMp8Kok= Subject key identifier: 58:6C:EF:B4:87:CE:E3:04:97:87:44:8B:EB:1A:E9:6A:9F:FC:7F:6D Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f Certificate serial: 019B7F8588D01EE0C9555E4D854416C60B0C Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/WGzvtIfO4wSXh0SL6xrpap_8f20.roa Signing time: Fri 02 Jan 2026 16:23:36 +0000 ROA not before: Fri 02 Jan 2026 16:23:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1003 IP address blocks: 2a0f:b240:5400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.mft rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 02:24:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:88:d0:1e:e0:c9:55:5e:4d:85:44:16:c6:0b:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f Validity Not Before: Jan 2 16:23:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=586cefb487cee3049787448beb1ae96a9ffc7f6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a5:a2:69:76:87:ec:ba:c6:c0:75:2a:d0:59: 37:17:2c:c2:5e:23:b9:28:f0:21:df:2b:bf:39:0e: 1d:35:c0:21:52:02:2f:fb:07:de:b3:7b:01:fd:a8: 56:a0:e3:42:78:58:08:bc:79:54:06:05:f6:1a:0c: 90:af:f4:ae:aa:8c:17:81:97:2b:68:9a:97:45:04: 7e:2d:55:bd:b8:76:b8:7b:5b:d1:ab:25:39:82:38: db:66:38:34:01:9e:7a:50:c7:60:df:c3:7a:79:b4: 6a:55:13:c4:e9:78:8d:d0:b0:56:af:24:5b:33:20: 8f:c3:bb:e3:95:47:f2:49:0b:01:90:6a:0e:70:ec: 47:84:f3:c1:c4:6a:1b:55:ed:bd:3b:61:59:ba:c7: 81:cd:a5:31:f5:40:9a:47:c9:07:33:23:31:da:1a: 2c:49:04:07:62:e8:46:0a:86:8b:6d:79:c4:e4:22: b6:4d:12:43:3e:e7:f7:c2:0a:75:cf:be:60:0a:4a: b1:73:6a:66:8e:12:6f:17:03:fb:bb:54:cd:66:e3: 2d:ce:e4:fe:b7:59:eb:11:e0:9b:dd:99:67:0f:8f: 38:17:3a:25:ed:57:8b:8d:b1:c0:86:67:f4:c5:b4: 61:3e:ca:4c:c5:18:01:5b:a2:03:e1:a4:c1:ca:68: 35:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:6C:EF:B4:87:CE:E3:04:97:87:44:8B:EB:1A:E9:6A:9F:FC:7F:6D X509v3 Authority Key Identifier: keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/WGzvtIfO4wSXh0SL6xrpap_8f20.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:b240:5400::/40 Signature Algorithm: sha256WithRSAEncryption 5d:a6:80:4f:9e:f4:29:bf:46:f1:14:5b:da:46:5d:2e:c6:f3: be:5e:c8:e8:e6:4c:b7:00:53:37:ec:94:0b:5e:4c:be:17:08: 0b:bf:b8:71:ed:b1:9f:66:58:f0:c1:6c:43:ce:fa:d6:22:67: 92:71:41:e1:37:7d:ac:22:9a:a8:02:98:a4:81:13:64:38:c2: e3:e2:d5:e0:00:af:26:41:2e:f4:78:17:c1:de:53:d2:b0:43: 79:d2:cb:8f:2d:3a:5a:bd:96:cf:71:a2:e7:6e:3a:4f:ec:31: 7f:6e:1a:fa:03:fa:00:97:7d:0d:75:bc:48:a5:2c:a1:80:be: 49:40:da:b2:67:f9:e7:8c:0d:b5:ad:07:ec:da:14:db:2a:83: 38:77:3f:07:c9:d1:ae:a9:12:86:fe:f3:4e:86:bb:1b:cf:29: ee:5b:f3:e9:24:aa:4b:3c:8a:60:29:8c:b0:60:32:f1:70:76: 38:1a:ad:4f:9f:de:1d:e7:81:86:7f:cf:74:7e:e6:4c:f2:e9: a5:b2:14:1c:d5:42:b3:de:7a:a2:6f:f7:c2:84:19:3f:af:46: 4d:86:04:6b:67:b0:31:41:af:28:31:ca:7a:38:93:e4:27:df: e4:46:d2:65:1a:fe:d2:5d:5a:77:c1:1c:32:2b:4e:e1:ce:2d: 98:e9:44:52 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt/hYjQHuDJVV5NhUQWxgsMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk ZmUyMGYwHhcNMjYwMTAyMTYyMzM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ODZjZWZiNDg3Y2VlMzA0OTc4NzQ0OGJlYjFhZTk2YTlmZmM3ZjZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr6WiaXaH7LrGwHUq0Fk3FyzCXiO5 KPAh3yu/OQ4dNcAhUgIv+wfes3sB/ahWoONCeFgIvHlUBgX2GgyQr/SuqowXgZcr aJqXRQR+LVW9uHa4e1vRqyU5gjjbZjg0AZ56UMdg38N6ebRqVRPE6XiN0LBWryRb MyCPw7vjlUfySQsBkGoOcOxHhPPBxGobVe29O2FZuseBzaUx9UCaR8kHMyMx2hos SQQHYuhGCoaLbXnE5CK2TRJDPuf3wgp1z75gCkqxc2pmjhJvFwP7u1TNZuMtzuT+ t1nrEeCb3ZlnD484Fzol7VeLjbHAhmf0xbRhPspMxRgBW6ID4aTBymg1tQIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFFhs77SHzuMEl4dEi+sa6Wqf/H9tMB8GA1UdIwQY MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct YjcxNzk4MGU0YWQ2LzEvV0d6dnRJZk80d1NYaDBTTDZ4cnBhcF84ZjIwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2 LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKg+yQFQw DQYJKoZIhvcNAQELBQADggEBAF2mgE+e9Cm/RvEUW9pGXS7G875eyOjmTLcAUzfs lAteTL4XCAu/uHHtsZ9mWPDBbEPO+tYiZ5JxQeE3fawimqgCmKSBE2Q4wuPi1eAA ryZBLvR4F8HeU9KwQ3nSy48tOlq9ls9xouduOk/sMX9uGvoD+gCXfQ11vEilLKGA vklA2rJn+eeMDbWtB+zaFNsqgzh3PwfJ0a6pEob+806GuxvPKe5b8+kkqks8imAp jLBgMvFwdjgarU+f3h3ngYZ/z3R+5kzy6aWyFBzVQrPeeqJv98KEGT+vRk2GBGtn sDFBrygxyno4k+Qn3+RG0mUa/tJdWnfBHDIrTuHOLZjpRFI= -----END CERTIFICATE-----Generated at Wed Jan 21 11:59:26 2026 by rpki-client