This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/5bda54-db7a-46d3-9cf9-16b1d2ee88a6/1/wqo2yKaT_Oy-6AZMqxxn4GNk_cE.roa File: wqo2yKaT_Oy-6AZMqxxn4GNk_cE.roa (raw, json) Hash identifier: TLnFbPYehyFEASmdorMS1jkAMvulGnwe0TFiZO1diU0= Subject key identifier: C2:AA:36:C8:A6:93:FC:EC:BE:E8:06:4C:AB:1C:67:E0:63:64:FD:C1 Certificate issuer: /CN=8dce4df68044985a177b3032f00fc6fe224ad8b3 Certificate serial: 019B7910FA2B2D4915105D1CB90AF882EA92 Authority key identifier: 8D:CE:4D:F6:80:44:98:5A:17:7B:30:32:F0:0F:C6:FE:22:4A:D8:B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jc5N9oBEmFoXezAy8A_G_iJK2LM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/5bda54-db7a-46d3-9cf9-16b1d2ee88a6/1/wqo2yKaT_Oy-6AZMqxxn4GNk_cE.roa Signing time: Thu 01 Jan 2026 10:18:34 +0000 ROA not before: Thu 01 Jan 2026 10:18:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212696 IP address blocks: 185.195.128.0/22 maxlen: 24 2a0a:5ac0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/5bda54-db7a-46d3-9cf9-16b1d2ee88a6/1/jc5N9oBEmFoXezAy8A_G_iJK2LM.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/5bda54-db7a-46d3-9cf9-16b1d2ee88a6/1/jc5N9oBEmFoXezAy8A_G_iJK2LM.mft rsync://rpki.ripe.net/repository/DEFAULT/jc5N9oBEmFoXezAy8A_G_iJK2LM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:fa:2b:2d:49:15:10:5d:1c:b9:0a:f8:82:ea:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8dce4df68044985a177b3032f00fc6fe224ad8b3 Validity Not Before: Jan 1 10:18:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c2aa36c8a693fcecbee8064cab1c67e06364fdc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:12:0a:97:b2:ca:62:b6:45:70:5f:ca:03:a1: 33:a4:0c:1c:13:92:bb:b1:db:ef:61:41:38:cc:82: cc:3e:61:c4:d3:14:44:ff:09:9d:e4:3f:f2:64:05: 5f:17:fc:00:67:f7:08:0d:ae:4d:e5:26:5a:ef:86: a6:be:d1:b2:98:78:e9:47:7b:7c:cd:20:e9:af:86: 17:2a:a4:c3:40:b4:a2:49:c2:5c:55:c0:7a:62:78: dc:7c:9e:db:57:ce:fa:58:47:f0:9e:9e:38:ef:46: 7e:80:df:f1:89:d6:e4:44:ae:fe:a7:9d:69:88:d2: fe:d3:a2:9a:cc:34:ab:04:98:72:b7:8f:98:80:db: 86:aa:32:6e:3d:e5:72:36:46:67:f4:7d:c4:21:5e: a8:ad:4e:87:95:ce:23:b4:da:43:11:e2:f7:03:92: 70:41:b1:d3:61:f7:5c:9f:cb:be:35:df:65:d9:66: 18:d2:18:2a:35:3f:8f:92:1b:10:2b:63:48:c3:d1: 3e:3a:2c:78:85:3b:1f:01:bd:7c:2f:2c:f2:27:d7: 39:38:09:b5:4e:f8:94:5c:70:a6:7f:3f:d6:3a:90: 88:40:d8:17:ce:79:8e:a7:87:70:42:78:3d:20:29: dd:6c:cd:64:47:5f:92:70:78:29:2a:f3:b1:4f:07: 2b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:AA:36:C8:A6:93:FC:EC:BE:E8:06:4C:AB:1C:67:E0:63:64:FD:C1 X509v3 Authority Key Identifier: keyid:8D:CE:4D:F6:80:44:98:5A:17:7B:30:32:F0:0F:C6:FE:22:4A:D8:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jc5N9oBEmFoXezAy8A_G_iJK2LM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/5bda54-db7a-46d3-9cf9-16b1d2ee88a6/1/wqo2yKaT_Oy-6AZMqxxn4GNk_cE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/5bda54-db7a-46d3-9cf9-16b1d2ee88a6/1/jc5N9oBEmFoXezAy8A_G_iJK2LM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.195.128.0/22 IPv6: 2a0a:5ac0::/32 Signature Algorithm: sha256WithRSAEncryption d6:12:c3:da:6a:3b:40:5d:a2:4f:41:68:9f:80:66:a0:50:f3: 80:fe:e0:05:bc:49:c7:48:98:7e:1a:78:f6:18:f5:a6:fc:4a: 55:fc:35:fc:5a:f2:23:ee:fb:3c:be:9e:49:13:a8:5b:29:db: 0b:00:f8:df:d4:b3:e1:af:1a:c2:e8:fe:4a:92:3e:65:f2:1d: 9f:21:86:0c:f3:96:b6:7b:7d:2b:7b:bd:dd:9d:0b:6f:6a:f7: 4f:54:ca:8a:99:90:dd:b9:0a:33:f2:05:c7:19:f8:8c:83:88: 18:88:85:d1:09:e6:05:8c:6c:eb:29:68:04:d7:78:b4:05:1e: 4b:2f:4d:50:12:17:d4:3c:f6:5b:77:59:67:b2:a7:86:c6:b2: f8:b3:09:35:e9:9b:cc:62:88:ea:ea:c0:7c:74:8a:72:db:d9: 12:f4:d5:03:41:91:e1:b5:91:18:c9:f8:2e:da:2e:33:30:fa: ec:d1:a0:a7:68:4a:ea:23:5f:9f:47:34:1d:21:ec:ac:2a:7b: 70:6d:6e:70:f2:5c:aa:c1:e2:18:ab:52:16:15:04:ae:28:79: 29:99:e1:17:10:0f:38:b5:5e:26:16:f9:9d:b8:96:bf:d9:bd: 38:78:9f:f7:76:32:52:5e:0c:38:61:10:87:48:18:58:30:e9: 37:22:cc:87 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5EPorLUkVEF0cuQr4guqSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhkY2U0ZGY2ODA0NDk4NWExNzdiMzAzMmYwMGZjNmZlMjI0 YWQ4YjMwHhcNMjYwMTAxMTAxODM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjMmFhMzZjOGE2OTNmY2VjYmVlODA2NGNhYjFjNjdlMDYzNjRmZGMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnRIKl7LKYrZFcF/KA6EzpAwcE5K7 sdvvYUE4zILMPmHE0xRE/wmd5D/yZAVfF/wAZ/cIDa5N5SZa74amvtGymHjpR3t8 zSDpr4YXKqTDQLSiScJcVcB6YnjcfJ7bV876WEfwnp4470Z+gN/xidbkRK7+p51p iNL+06KazDSrBJhyt4+YgNuGqjJuPeVyNkZn9H3EIV6orU6Hlc4jtNpDEeL3A5Jw QbHTYfdcn8u+Nd9l2WYY0hgqNT+PkhsQK2NIw9E+Oix4hTsfAb18LyzyJ9c5OAm1 TviUXHCmfz/WOpCIQNgXznmOp4dwQng9ICndbM1kR1+ScHgpKvOxTwcrPwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFMKqNsimk/zsvugGTKscZ+BjZP3BMB8GA1UdIwQY MBaAFI3OTfaARJhaF3swMvAPxv4iStizMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvamM1TjlvQkVtRm9YZXpBeThBX0dfaUpLMkxNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS81YmRhNTQtZGI3YS00NmQzLTljZjkt MTZiMWQyZWU4OGE2LzEvd3FvMnlLYVRfT3ktNkFaTXF4eG40R05rX2NFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS81YmRhNTQtZGI3YS00NmQzLTljZjktMTZiMWQyZWU4OGE2 LzEvamM1TjlvQkVtRm9YZXpBeThBX0dfaUpLMkxNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCucOAMA0E AgACMAcDBQAqClrAMA0GCSqGSIb3DQEBCwUAA4IBAQDWEsPaajtAXaJPQWifgGag UPOA/uAFvEnHSJh+Gnj2GPWm/EpV/DX8WvIj7vs8vp5JE6hbKdsLAPjf1LPhrxrC 6P5Kkj5l8h2fIYYM85a2e30re73dnQtvavdPVMqKmZDduQoz8gXHGfiMg4gYiIXR CeYFjGzrKWgE13i0BR5LL01QEhfUPPZbd1lnsqeGxrL4swk16ZvMYojq6sB8dIpy 29kS9NUDQZHhtZEYyfgu2i4zMPrs0aCnaErqI1+fRzQdIeysKntwbW5w8lyqweIY q1IWFQSuKHkpmeEXEA84tV4mFvmduJa/2b04eJ/3djJSXgw4YRCHSBhYMOk3IsyH -----END CERTIFICATE-----Generated at Tue Feb 10 00:09:06 2026 by rpki-client