This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/4e8d57-53ca-49c5-97ef-1c876db44fe2/1/W00kh9cFoXYEts6Z_wNoICvROmI.roa File: W00kh9cFoXYEts6Z_wNoICvROmI.roa (raw, json) Hash identifier: 6F92izfRGMl8gegm30l362lw0oFK4K1whATYCIM0f9A= Subject key identifier: 5B:4D:24:87:D7:05:A1:76:04:B6:CE:99:FF:03:68:20:2B:D1:3A:62 Certificate issuer: /CN=7316772efce2a133fb7f8720929d0560cef1db46 Certificate serial: 019BD60BE3856492166BFF7C31927BB5C29E Authority key identifier: 73:16:77:2E:FC:E2:A1:33:FB:7F:87:20:92:9D:05:60:CE:F1:DB:46 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cxZ3LvzioTP7f4cgkp0FYM7x20Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/4e8d57-53ca-49c5-97ef-1c876db44fe2/1/W00kh9cFoXYEts6Z_wNoICvROmI.roa Signing time: Mon 19 Jan 2026 11:37:41 +0000 ROA not before: Mon 19 Jan 2026 11:37:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 394109 IP address blocks: 109.74.17.0/24 maxlen: 24 2a14:78c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/4e8d57-53ca-49c5-97ef-1c876db44fe2/1/cxZ3LvzioTP7f4cgkp0FYM7x20Y.crl rsync://rpki.ripe.net/repository/DEFAULT/f0/4e8d57-53ca-49c5-97ef-1c876db44fe2/1/cxZ3LvzioTP7f4cgkp0FYM7x20Y.mft rsync://rpki.ripe.net/repository/DEFAULT/cxZ3LvzioTP7f4cgkp0FYM7x20Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Feb 2026 19:31:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:d6:0b:e3:85:64:92:16:6b:ff:7c:31:92:7b:b5:c2:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7316772efce2a133fb7f8720929d0560cef1db46 Validity Not Before: Jan 19 11:37:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5b4d2487d705a17604b6ce99ff0368202bd13a62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ff:2a:53:33:71:cd:c6:8e:45:24:36:f5:4a: 1b:a0:19:03:f8:c8:46:92:0e:f4:d0:31:1c:f5:2d: 31:6c:52:e0:4c:20:11:e9:6d:87:34:19:5b:cb:87: e6:d5:17:db:a0:ee:ae:c3:4f:dd:40:93:43:34:5e: 38:41:df:45:7c:a9:7d:5c:34:19:a1:2d:35:43:b3: 85:20:88:b0:5e:f6:46:85:ad:ea:51:f8:36:cd:9a: 8a:ec:23:ca:2c:64:6c:be:89:bd:03:c7:1e:f1:62: e7:cd:c2:34:b8:3b:29:d9:cd:f5:33:65:e2:02:f3: 3a:f7:91:62:99:7b:81:26:f3:65:2b:b4:54:64:fa: b5:34:8e:91:67:ca:f6:23:73:ad:bc:81:5d:9c:65: 5c:95:53:06:6f:b5:0f:09:76:2b:39:e8:a6:6b:63: 48:16:fc:7c:e4:0f:3e:36:d7:68:53:e1:7e:f7:94: 05:89:e4:1c:00:4c:d6:94:53:13:db:f3:75:23:b6: 6d:18:ac:cd:22:1b:97:02:e4:f0:88:ba:41:68:25: 9c:72:ec:44:f0:30:3e:6b:ff:20:2b:11:13:52:b2: 5c:5d:a4:e6:86:41:d3:e8:c0:c4:3e:95:17:f5:40: dc:14:5d:2a:11:2a:a4:bb:15:9f:83:26:9f:d4:2b: f0:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:4D:24:87:D7:05:A1:76:04:B6:CE:99:FF:03:68:20:2B:D1:3A:62 X509v3 Authority Key Identifier: keyid:73:16:77:2E:FC:E2:A1:33:FB:7F:87:20:92:9D:05:60:CE:F1:DB:46 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cxZ3LvzioTP7f4cgkp0FYM7x20Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/4e8d57-53ca-49c5-97ef-1c876db44fe2/1/W00kh9cFoXYEts6Z_wNoICvROmI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/4e8d57-53ca-49c5-97ef-1c876db44fe2/1/cxZ3LvzioTP7f4cgkp0FYM7x20Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.74.17.0/24 IPv6: 2a14:78c0::/29 Signature Algorithm: sha256WithRSAEncryption 76:e8:34:eb:08:55:ef:a3:fd:81:b2:ab:8d:78:52:f0:0c:50: e3:ba:d8:f5:2f:ad:d7:d4:d7:ce:dc:cd:1a:fc:c6:06:af:aa: cf:00:f1:31:1c:82:f9:ff:40:45:b7:c3:77:3f:76:ba:99:6d: 19:fe:4d:92:6b:ed:49:8f:71:08:1d:fc:d8:ab:c6:61:1f:2d: bf:3b:7d:2d:4f:5e:26:a6:5d:04:7a:d5:92:19:18:0c:ac:1b: 4c:09:06:36:22:77:0f:b2:b2:d2:72:96:6d:8d:d2:7a:13:42: 2e:b7:64:86:52:25:97:1b:ac:55:99:44:28:ec:d7:8e:1e:40: 05:e8:e5:88:9b:48:28:f3:48:27:2f:c1:74:d4:20:44:81:6f: 09:78:94:f4:c8:e2:8e:7f:22:c4:bc:ea:86:d7:d2:e0:0a:18: 39:b7:64:d6:62:76:0c:43:e3:96:23:2c:24:a9:6c:18:b2:f9: 24:36:86:e5:f9:04:ea:f9:cb:d0:43:91:78:e7:81:88:c6:1b: bb:f7:50:e7:cf:2e:6c:08:30:a8:b5:57:dc:3f:2f:18:52:b3: 1b:ea:24:db:58:8c:12:47:97:78:1c:b6:1c:b0:a1:5b:e2:0a: 72:3b:3a:a3:57:50:83:08:b8:34:fb:6b:7e:ed:bc:bb:af:ce: c4:a7:eb:de -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZvWC+OFZJIWa/98MZJ7tcKeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDczMTY3NzJlZmNlMmExMzNmYjdmODcyMDkyOWQwNTYwY2Vm MWRiNDYwHhcNMjYwMTE5MTEzNzQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YjRkMjQ4N2Q3MDVhMTc2MDRiNmNlOTlmZjAzNjgyMDJiZDEzYTYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr/8qUzNxzcaORSQ29UoboBkD+MhG kg700DEc9S0xbFLgTCAR6W2HNBlby4fm1RfboO6uw0/dQJNDNF44Qd9FfKl9XDQZ oS01Q7OFIIiwXvZGha3qUfg2zZqK7CPKLGRsvom9A8ce8WLnzcI0uDsp2c31M2Xi AvM695FimXuBJvNlK7RUZPq1NI6RZ8r2I3OtvIFdnGVclVMGb7UPCXYrOeima2NI Fvx85A8+NtdoU+F+95QFieQcAEzWlFMT2/N1I7ZtGKzNIhuXAuTwiLpBaCWccuxE 8DA+a/8gKxETUrJcXaTmhkHT6MDEPpUX9UDcFF0qESqkuxWfgyaf1CvwTwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFFtNJIfXBaF2BLbOmf8DaCAr0TpiMB8GA1UdIwQY MBaAFHMWdy784qEz+3+HIJKdBWDO8dtGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY3haM0x2emlvVFA3ZjRjZ2twMEZZTTd4MjBZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC80ZThkNTctNTNjYS00OWM1LTk3ZWYt MWM4NzZkYjQ0ZmUyLzEvVzAwa2g5Y0ZvWFlFdHM2Wl93Tm9JQ3ZST21JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMC80ZThkNTctNTNjYS00OWM1LTk3ZWYtMWM4NzZkYjQ0ZmUy LzEvY3haM0x2emlvVFA3ZjRjZ2twMEZZTTd4MjBZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAbUoRMA0E AgACMAcDBQMqFHjAMA0GCSqGSIb3DQEBCwUAA4IBAQB26DTrCFXvo/2BsquNeFLw DFDjutj1L63X1NfO3M0a/MYGr6rPAPExHIL5/0BFt8N3P3a6mW0Z/k2Sa+1Jj3EI HfzYq8ZhHy2/O30tT14mpl0EetWSGRgMrBtMCQY2IncPsrLScpZtjdJ6E0Iut2SG UiWXG6xVmUQo7NeOHkAF6OWIm0go80gnL8F01CBEgW8JeJT0yOKOfyLEvOqG19Lg Chg5t2TWYnYMQ+OWIywkqWwYsvkkNobl+QTq+cvQQ5F454GIxhu791Dnzy5sCDCo tVfcPy8YUrMb6iTbWIwSR5d4HLYcsKFb4gpyOzqjV1CDCLg0+2t+7by7r87Ep+ve -----END CERTIFICATE-----Generated at Sun Feb 8 04:50:43 2026 by rpki-client