This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/92ea9f-b12e-4dd5-9bd3-b77dc8dc1c7e/1/WOoCoLlmgXWyjK9qc9u-G0Pct24.roa File: WOoCoLlmgXWyjK9qc9u-G0Pct24.roa (raw, json) Hash identifier: lAKUdMYHZA1+80qntfhhpebRSlcoxO0/6Bne+KUexMI= Subject key identifier: 58:EA:02:A0:B9:66:81:75:B2:8C:AF:6A:73:DB:BE:1B:43:DC:B7:6E Certificate issuer: /CN=3eb903284a1d15dc158ad7182ea0bce786ceb2ad Certificate serial: 019B7C7EE66AF836108D3415E0800B309679 Authority key identifier: 3E:B9:03:28:4A:1D:15:DC:15:8A:D7:18:2E:A0:BC:E7:86:CE:B2:AD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PrkDKEodFdwVitcYLqC854bOsq0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/92ea9f-b12e-4dd5-9bd3-b77dc8dc1c7e/1/WOoCoLlmgXWyjK9qc9u-G0Pct24.roa Signing time: Fri 02 Jan 2026 02:17:29 +0000 ROA not before: Fri 02 Jan 2026 02:17:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8865 IP address blocks: 37.128.152.0/21 maxlen: 21 82.139.128.0/19 maxlen: 19 82.139.128.0/20 maxlen: 20 82.139.144.0/23 maxlen: 23 82.139.152.0/22 maxlen: 22 82.139.168.0/21 maxlen: 21 82.139.176.0/21 maxlen: 21 212.33.64.0/19 maxlen: 19 2a02:1770::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/92ea9f-b12e-4dd5-9bd3-b77dc8dc1c7e/1/PrkDKEodFdwVitcYLqC854bOsq0.crl rsync://rpki.ripe.net/repository/DEFAULT/df/92ea9f-b12e-4dd5-9bd3-b77dc8dc1c7e/1/PrkDKEodFdwVitcYLqC854bOsq0.mft rsync://rpki.ripe.net/repository/DEFAULT/PrkDKEodFdwVitcYLqC854bOsq0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7e:e6:6a:f8:36:10:8d:34:15:e0:80:0b:30:96:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3eb903284a1d15dc158ad7182ea0bce786ceb2ad Validity Not Before: Jan 2 02:17:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=58ea02a0b9668175b28caf6a73dbbe1b43dcb76e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:e5:c5:be:76:90:3e:00:26:90:e9:c4:66:dd: fa:6d:b6:6c:77:84:83:1b:46:c8:e2:00:a9:ec:f6: bf:13:67:60:9f:14:5e:57:a8:9a:49:9b:48:f4:f2: 33:0a:bb:f4:61:0a:b0:bb:ac:a4:92:b1:98:a4:92: c7:07:3c:55:53:19:03:fc:eb:67:78:05:71:07:f6: 35:43:6b:b7:f9:34:75:54:dd:99:a5:6e:4b:66:2c: 10:8c:29:a9:e3:4e:3c:c2:b3:8b:7f:37:50:38:18: 6d:c2:a8:67:c2:c8:93:09:ba:3b:99:3a:29:99:30: 7b:cd:00:4a:87:ad:ba:78:7f:6b:2a:92:c2:e8:82: 80:ae:81:dc:0e:58:a6:5a:3e:77:94:d3:1e:b6:8f: 16:9b:c7:46:4f:ce:96:20:c1:97:26:42:27:04:6e: 81:ec:27:1c:82:7e:16:14:03:85:0d:03:ef:e7:d8: 9a:b6:b5:69:e7:3f:07:90:cb:41:08:8d:a2:a7:87: 86:aa:df:63:17:92:db:09:86:c3:2c:b5:c6:2c:12: 03:91:05:f4:7f:51:2c:e1:5d:09:af:b8:d4:68:04: 6f:25:38:f3:fa:c6:85:70:32:be:de:ee:ba:38:65: 25:de:f9:87:0a:04:eb:28:8f:4b:ab:be:d6:8a:9b: b8:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:EA:02:A0:B9:66:81:75:B2:8C:AF:6A:73:DB:BE:1B:43:DC:B7:6E X509v3 Authority Key Identifier: keyid:3E:B9:03:28:4A:1D:15:DC:15:8A:D7:18:2E:A0:BC:E7:86:CE:B2:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PrkDKEodFdwVitcYLqC854bOsq0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/92ea9f-b12e-4dd5-9bd3-b77dc8dc1c7e/1/WOoCoLlmgXWyjK9qc9u-G0Pct24.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/92ea9f-b12e-4dd5-9bd3-b77dc8dc1c7e/1/PrkDKEodFdwVitcYLqC854bOsq0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.128.152.0/21 82.139.128.0/19 82.139.168.0-82.139.183.255 212.33.64.0/19 IPv6: 2a02:1770::/33 Signature Algorithm: sha256WithRSAEncryption 3d:76:b1:7c:03:cc:4f:9d:9e:70:5e:11:24:03:69:05:f4:89: ef:69:42:ef:97:40:68:c3:e3:f1:b2:04:fd:23:a9:84:a7:49: 77:78:48:9c:2b:e8:12:e7:89:a4:61:cc:39:59:79:92:39:e2: 5a:d1:f3:45:9c:73:fd:82:1a:fa:ae:c9:74:91:a0:c1:e9:1f: f8:c3:7d:a9:1e:74:cd:86:e7:d0:b7:7d:19:ca:01:52:f3:0a: d9:96:e1:e1:68:06:b0:8c:af:88:20:01:0b:2f:42:83:15:d3: 16:af:03:d1:16:5a:14:f6:82:ad:ae:96:05:a5:f1:c4:2b:d0: 80:14:52:01:d2:e4:17:e0:85:2e:90:22:a6:e5:5d:d3:e2:49: 25:01:4a:4e:95:d2:9d:c3:59:0a:d8:af:45:78:89:1d:77:e7: e9:b9:f2:dd:17:74:1a:92:cc:ed:b3:71:62:91:1d:70:59:cf: 8a:4e:81:c6:34:8c:5a:e5:02:d2:7a:c9:14:b0:cd:c7:33:40: 53:3b:e0:67:3e:92:de:26:bd:a4:81:dc:ab:c3:55:33:93:80: d1:3e:b0:b5:87:59:28:a1:91:64:09:5b:5d:03:8a:08:9c:c8: d5:c0:45:e2:43:45:89:ca:cb:2f:c0:bd:23:0a:c1:fb:3f:de: c3:67:66:b5 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZt8fuZq+DYQjTQV4IALMJZ5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlYjkwMzI4NGExZDE1ZGMxNThhZDcxODJlYTBiY2U3ODZj ZWIyYWQwHhcNMjYwMTAyMDIxNzI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1OGVhMDJhMGI5NjY4MTc1YjI4Y2FmNmE3M2RiYmUxYjQzZGNiNzZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoOXFvnaQPgAmkOnEZt36bbZsd4SD G0bI4gCp7Pa/E2dgnxReV6iaSZtI9PIzCrv0YQqwu6ykkrGYpJLHBzxVUxkD/Otn eAVxB/Y1Q2u3+TR1VN2ZpW5LZiwQjCmp4048wrOLfzdQOBhtwqhnwsiTCbo7mTop mTB7zQBKh626eH9rKpLC6IKAroHcDlimWj53lNMeto8Wm8dGT86WIMGXJkInBG6B 7Cccgn4WFAOFDQPv59iatrVp5z8HkMtBCI2ip4eGqt9jF5LbCYbDLLXGLBIDkQX0 f1Es4V0Jr7jUaARvJTjz+saFcDK+3u66OGUl3vmHCgTrKI9Lq77Wipu4cQIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFFjqAqC5ZoF1soyvanPbvhtD3LduMB8GA1UdIwQY MBaAFD65AyhKHRXcFYrXGC6gvOeGzrKtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUHJrREtFb2RGZHdWaXRjWUxxQzg1NGJPc3EwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi85MmVhOWYtYjEyZS00ZGQ1LTliZDMt Yjc3ZGM4ZGMxYzdlLzEvV09vQ29MbG1nWFd5aks5cWM5dS1HMFBjdDI0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi85MmVhOWYtYjEyZS00ZGQ1LTliZDMtYjc3ZGM4ZGMxYzdl LzEvUHJrREtFb2RGZHdWaXRjWUxxQzg1NGJPc3EwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODAmBAIAATAgAwQDJYCYAwQF UouAMAwDBANSi6gDBANSi7ADBAXUIUAwDgQCAAIwCAMGByoCF3AAMA0GCSqGSIb3 DQEBCwUAA4IBAQA9drF8A8xPnZ5wXhEkA2kF9InvaULvl0Bow+PxsgT9I6mEp0l3 eEicK+gS54mkYcw5WXmSOeJa0fNFnHP9ghr6rsl0kaDB6R/4w32pHnTNhufQt30Z ygFS8wrZluHhaAawjK+IIAELL0KDFdMWrwPRFloU9oKtrpYFpfHEK9CAFFIB0uQX 4IUukCKm5V3T4kklAUpOldKdw1kK2K9FeIkdd+fpufLdF3Qakszts3FikR1wWc+K ToHGNIxa5QLSeskUsM3HM0BTO+BnPpLeJr2kgdyrw1Uzk4DRPrC1h1kooZFkCVtd A4oInMjVwEXiQ0WJyssvwL0jCsH7P97DZ2a1 -----END CERTIFICATE-----Generated at Mon Feb 9 22:31:37 2026 by rpki-client