This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/wnQxwp_lBcwaYlV8R_aLBhYHQ_4.roa File: wnQxwp_lBcwaYlV8R_aLBhYHQ_4.roa (raw, json) Hash identifier: +gVljvgpDov6yW4C4I3llwkta8lISO5nE4TcWGYyKfM= Subject key identifier: C2:74:31:C2:9F:E5:05:CC:1A:62:55:7C:47:F6:8B:06:16:07:43:FE Certificate issuer: /CN=79a843d3a67bf202d0ae23df95e14ea871d8f15d Certificate serial: 019B7C805696EF5FBA935EEA30D425188829 Authority key identifier: 79:A8:43:D3:A6:7B:F2:02:D0:AE:23:DF:95:E1:4E:A8:71:D8:F1:5D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eahD06Z78gLQriPfleFOqHHY8V0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/wnQxwp_lBcwaYlV8R_aLBhYHQ_4.roa Signing time: Fri 02 Jan 2026 02:19:04 +0000 ROA not before: Fri 02 Jan 2026 02:19:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 399138 IP address blocks: 85.136.196.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/eahD06Z78gLQriPfleFOqHHY8V0.crl rsync://rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/eahD06Z78gLQriPfleFOqHHY8V0.mft rsync://rpki.ripe.net/repository/DEFAULT/eahD06Z78gLQriPfleFOqHHY8V0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:56:96:ef:5f:ba:93:5e:ea:30:d4:25:18:88:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=79a843d3a67bf202d0ae23df95e14ea871d8f15d Validity Not Before: Jan 2 02:19:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c27431c29fe505cc1a62557c47f68b06160743fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:f4:65:77:43:c7:40:74:ee:f7:43:68:48:a3: 7d:00:30:eb:f6:c0:f1:16:27:9f:22:e2:9d:0f:3a: ff:03:d2:94:da:b2:05:a0:87:97:4c:07:b8:c4:5c: 82:d0:65:8c:f6:9d:ee:dc:13:93:fd:47:82:c1:d1: 9b:cd:54:3c:30:5b:7d:ec:7b:fc:47:dc:94:2d:06: 49:ff:06:98:42:6e:11:e2:0d:1a:38:10:d1:44:68: 04:74:6f:ec:97:65:a1:49:c5:b7:3b:46:a2:b3:21: 83:f1:2a:a0:8d:13:41:25:4f:84:0f:0d:71:63:5a: e1:bc:10:c0:08:90:07:7d:18:51:9c:a5:e5:47:cb: e1:43:5c:b2:3e:1a:89:4c:cd:b8:d8:8c:4a:a4:c7: 9b:46:0e:7a:ea:0c:70:3d:49:ee:50:82:63:3d:44: 55:6d:fe:82:06:25:52:57:7b:77:4f:81:0b:d6:5a: 72:21:44:35:48:72:09:16:42:b9:42:42:7f:95:72: 98:8b:9d:a9:35:5f:b0:87:64:f3:1a:f4:3d:b9:ab: 2b:6d:78:ce:90:b7:d9:f9:3c:c0:d6:0c:0f:92:aa: 51:7b:fd:3c:bc:2e:57:77:ba:52:76:b0:45:c4:2b: 66:fa:d8:1d:72:56:c3:fb:36:83:f0:0d:a1:93:4b: 2b:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:74:31:C2:9F:E5:05:CC:1A:62:55:7C:47:F6:8B:06:16:07:43:FE X509v3 Authority Key Identifier: keyid:79:A8:43:D3:A6:7B:F2:02:D0:AE:23:DF:95:E1:4E:A8:71:D8:F1:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eahD06Z78gLQriPfleFOqHHY8V0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/wnQxwp_lBcwaYlV8R_aLBhYHQ_4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/eahD06Z78gLQriPfleFOqHHY8V0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.136.196.0/22 Signature Algorithm: sha256WithRSAEncryption 76:68:62:64:2c:eb:fc:86:d4:d1:76:ac:9d:88:08:b2:a2:d3: 99:89:eb:be:f6:8a:09:57:3d:35:27:c1:8d:28:54:74:92:81: bd:95:24:33:e1:61:7f:bf:ce:7c:2a:bb:42:f6:27:dc:4a:83: f4:07:84:6f:a1:10:23:27:fc:bf:fb:e8:8d:88:c2:de:ba:37: 16:bc:38:e7:79:82:8c:93:81:c8:0e:21:0d:de:8c:e9:98:8b: 5f:8a:24:56:4c:1a:ac:73:13:68:5d:ca:1d:e8:de:32:9a:1e: 32:6b:7f:20:c7:57:93:b8:16:95:fe:b1:8a:9f:75:a4:26:d9: 93:c3:a2:4c:d3:e6:66:60:33:d6:9c:f8:21:76:72:ac:4a:3e: 31:b3:02:e4:a1:30:b1:ee:1a:df:ab:c7:23:31:d3:63:61:46: 46:20:a8:00:9d:94:46:7f:f7:e6:22:7a:1a:ad:4a:7e:f1:c2: dc:32:7a:37:0a:ce:c9:13:9c:53:6b:0c:de:5a:20:b7:93:9c: 5c:a4:5a:a1:9a:b6:cb:e9:9c:9d:59:81:f0:c2:b5:f3:3b:34: 3a:83:16:3e:e3:08:40:17:9c:76:c4:73:5d:1c:24:c7:52:eb: 75:80:84:aa:17:f2:9d:b1:7c:bf:3c:8e:ad:d6:0d:09:d7:86: 65:28:ef:18 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8gFaW71+6k17qMNQlGIgpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc5YTg0M2QzYTY3YmYyMDJkMGFlMjNkZjk1ZTE0ZWE4NzFk OGYxNWQwHhcNMjYwMTAyMDIxOTA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjMjc0MzFjMjlmZTUwNWNjMWE2MjU1N2M0N2Y2OGIwNjE2MDc0M2ZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArPRld0PHQHTu90NoSKN9ADDr9sDx FiefIuKdDzr/A9KU2rIFoIeXTAe4xFyC0GWM9p3u3BOT/UeCwdGbzVQ8MFt97Hv8 R9yULQZJ/waYQm4R4g0aOBDRRGgEdG/sl2WhScW3O0aisyGD8SqgjRNBJU+EDw1x Y1rhvBDACJAHfRhRnKXlR8vhQ1yyPhqJTM242IxKpMebRg566gxwPUnuUIJjPURV bf6CBiVSV3t3T4EL1lpyIUQ1SHIJFkK5QkJ/lXKYi52pNV+wh2TzGvQ9uasrbXjO kLfZ+TzA1gwPkqpRe/08vC5Xd7pSdrBFxCtm+tgdclbD+zaD8A2hk0srNQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMJ0McKf5QXMGmJVfEf2iwYWB0P+MB8GA1UdIwQY MBaAFHmoQ9Ome/IC0K4j35XhTqhx2PFdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZWFoRDA2Wjc4Z0xRcmlQZmxlRk9xSEhZOFYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9mNzBjNmEtODE0Yi00NjFhLTg1NDEt YjRkZDIyNzU4OTUxLzEvd25ReHdwX2xCY3dhWWxWOFJfYUxCaFlIUV80LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi9mNzBjNmEtODE0Yi00NjFhLTg1NDEtYjRkZDIyNzU4OTUx LzEvZWFoRDA2Wjc4Z0xRcmlQZmxlRk9xSEhZOFYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCVYjEMA0G CSqGSIb3DQEBCwUAA4IBAQB2aGJkLOv8htTRdqydiAiyotOZieu+9ooJVz01J8GN KFR0koG9lSQz4WF/v858KrtC9ifcSoP0B4RvoRAjJ/y/++iNiMLeujcWvDjneYKM k4HIDiEN3ozpmItfiiRWTBqscxNoXcod6N4ymh4ya38gx1eTuBaV/rGKn3WkJtmT w6JM0+ZmYDPWnPghdnKsSj4xswLkoTCx7hrfq8cjMdNjYUZGIKgAnZRGf/fmInoa rUp+8cLcMno3Cs7JE5xTawzeWiC3k5xcpFqhmrbL6ZydWYHwwrXzOzQ6gxY+4whA F5x2xHNdHCTHUut1gISqF/KdsXy/PI6t1g0J14ZlKO8Y -----END CERTIFICATE-----Generated at Fri Jan 9 04:23:04 2026 by rpki-client