This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/eb7e0c-59a1-4f93-8b27-ac4883e47665/1/wksghwYAvyyuquujhn16YlPDo6w.roa File: wksghwYAvyyuquujhn16YlPDo6w.roa (raw, json) Hash identifier: mUJnqqbbR94LX0rZEF/1N+dbXfhWkX3EPaMGmoUlRoc= Subject key identifier: C2:4B:20:87:06:00:BF:2C:AE:AA:EB:A3:86:7D:7A:62:53:C3:A3:AC Certificate issuer: /CN=e67d7b3570077064013da18e29e690cd4c9bd710 Certificate serial: 019B7CECBDF2827F668774D04C405411BDB7 Authority key identifier: E6:7D:7B:35:70:07:70:64:01:3D:A1:8E:29:E6:90:CD:4C:9B:D7:10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5n17NXAHcGQBPaGOKeaQzUyb1xA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/eb7e0c-59a1-4f93-8b27-ac4883e47665/1/wksghwYAvyyuquujhn16YlPDo6w.roa Signing time: Fri 02 Jan 2026 04:17:28 +0000 ROA not before: Fri 02 Jan 2026 04:17:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 2116 IP address blocks: 2001:67c:514::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/eb7e0c-59a1-4f93-8b27-ac4883e47665/1/5n17NXAHcGQBPaGOKeaQzUyb1xA.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/eb7e0c-59a1-4f93-8b27-ac4883e47665/1/5n17NXAHcGQBPaGOKeaQzUyb1xA.mft rsync://rpki.ripe.net/repository/DEFAULT/5n17NXAHcGQBPaGOKeaQzUyb1xA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 13:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ec:bd:f2:82:7f:66:87:74:d0:4c:40:54:11:bd:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e67d7b3570077064013da18e29e690cd4c9bd710 Validity Not Before: Jan 2 04:17:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c24b20870600bf2caeaaeba3867d7a6253c3a3ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b7:4e:99:55:b6:7e:a6:35:fa:66:48:73:65: 1c:2a:a4:28:53:66:c4:cb:e4:78:42:4a:5b:66:09: ef:ea:a8:0c:ba:2c:74:ba:e9:3d:c4:30:43:0c:60: c8:eb:b5:eb:4d:11:61:81:ba:51:08:ab:3c:cf:25: 7a:ee:fe:7f:8b:c8:74:3b:33:4a:27:a7:e4:78:ab: b0:6d:be:1e:c0:98:b7:79:33:ce:38:d0:39:80:47: 45:96:70:88:1b:05:21:8a:00:bc:b8:44:8c:24:7b: 11:f7:1c:69:6d:7e:08:66:00:a2:22:58:70:ec:f4: 96:36:86:71:97:97:47:ea:f0:5d:fa:72:b5:31:76: 67:5c:39:a6:ae:20:af:a0:da:50:8a:16:43:24:48: b1:7f:7b:d5:da:fa:ec:20:32:73:63:2b:e0:4b:1d: 77:ea:7b:6f:62:84:8d:19:9d:ee:00:da:09:4a:54: 39:e2:82:5f:b8:b4:8d:b8:99:03:98:92:73:ae:08: 84:a1:51:f0:0a:43:3d:e2:ec:bd:a2:39:81:26:ff: 93:f9:01:b8:ab:9a:19:34:95:9f:ce:ca:ba:c7:cc: 0f:27:63:05:31:08:ae:71:6e:53:92:16:1d:ce:ab: de:cb:b2:44:e4:c4:5c:47:b1:89:3d:8a:9a:97:f2: 4d:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:4B:20:87:06:00:BF:2C:AE:AA:EB:A3:86:7D:7A:62:53:C3:A3:AC X509v3 Authority Key Identifier: keyid:E6:7D:7B:35:70:07:70:64:01:3D:A1:8E:29:E6:90:CD:4C:9B:D7:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5n17NXAHcGQBPaGOKeaQzUyb1xA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/eb7e0c-59a1-4f93-8b27-ac4883e47665/1/wksghwYAvyyuquujhn16YlPDo6w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/eb7e0c-59a1-4f93-8b27-ac4883e47665/1/5n17NXAHcGQBPaGOKeaQzUyb1xA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:514::/48 Signature Algorithm: sha256WithRSAEncryption 5c:f5:4a:c3:a3:f6:27:b3:73:d8:7f:e0:14:49:7c:67:3c:7f: 93:f9:07:e4:48:95:00:f1:8e:7e:58:72:7b:9e:50:fd:56:26: 87:cf:fe:52:35:f2:5a:1e:83:51:b7:34:af:11:55:32:99:a5: 5c:61:af:a5:9f:87:9a:b4:05:4f:d4:96:c8:18:78:9d:c3:d1: de:cb:59:4e:5b:3f:dc:ab:64:85:ac:3f:26:7c:41:e4:3c:f8: 03:1b:1c:f7:a3:b8:12:ca:4a:b6:53:04:7b:cf:fe:06:10:56: 4b:5a:66:1e:c3:11:a8:6d:7e:e7:e5:05:36:6d:af:55:96:90: 14:b8:f8:90:22:bc:ec:7f:8e:3f:e6:20:c2:32:d7:29:eb:74: 87:0e:38:2d:fb:81:12:62:f4:17:3b:b8:b0:85:90:fa:78:6e: 82:1a:42:78:4c:3d:21:2b:45:14:84:2b:60:16:b3:87:04:89: d3:88:08:04:35:39:76:98:5a:bf:0a:c7:82:23:f6:8d:b7:6b: f3:95:fd:f3:05:b1:6c:84:02:f2:f6:c8:02:58:7b:e7:f3:cb: 50:0a:cb:e0:81:36:71:49:7f:df:2b:f1:39:64:36:28:26:62: db:5a:b1:69:17:45:86:6a:86:6b:c1:c9:7f:e3:d0:5a:17:45: aa:c2:79:e6 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt87L3ygn9mh3TQTEBUEb23MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU2N2Q3YjM1NzAwNzcwNjQwMTNkYTE4ZTI5ZTY5MGNkNGM5 YmQ3MTAwHhcNMjYwMTAyMDQxNzI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjMjRiMjA4NzA2MDBiZjJjYWVhYWViYTM4NjdkN2E2MjUzYzNhM2FjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt7dOmVW2fqY1+mZIc2UcKqQoU2bE y+R4QkpbZgnv6qgMuix0uuk9xDBDDGDI67XrTRFhgbpRCKs8zyV67v5/i8h0OzNK J6fkeKuwbb4ewJi3eTPOONA5gEdFlnCIGwUhigC8uESMJHsR9xxpbX4IZgCiIlhw 7PSWNoZxl5dH6vBd+nK1MXZnXDmmriCvoNpQihZDJEixf3vV2vrsIDJzYyvgSx13 6ntvYoSNGZ3uANoJSlQ54oJfuLSNuJkDmJJzrgiEoVHwCkM94uy9ojmBJv+T+QG4 q5oZNJWfzsq6x8wPJ2MFMQiucW5TkhYdzqvey7JE5MRcR7GJPYqal/JNPwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFMJLIIcGAL8srqrro4Z9emJTw6OsMB8GA1UdIwQY MBaAFOZ9ezVwB3BkAT2hjinmkM1Mm9cQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNW4xN05YQUhjR1FCUGFHT0tlYVF6VXliMXhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy9lYjdlMGMtNTlhMS00ZjkzLThiMjct YWM0ODgzZTQ3NjY1LzEvd2tzZ2h3WUF2eXl1cXV1amhuMTZZbFBEbzZ3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy9lYjdlMGMtNTlhMS00ZjkzLThiMjctYWM0ODgzZTQ3NjY1 LzEvNW4xN05YQUhjR1FCUGFHT0tlYVF6VXliMXhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAUU MA0GCSqGSIb3DQEBCwUAA4IBAQBc9UrDo/Yns3PYf+AUSXxnPH+T+QfkSJUA8Y5+ WHJ7nlD9ViaHz/5SNfJaHoNRtzSvEVUymaVcYa+ln4eatAVP1JbIGHidw9Hey1lO Wz/cq2SFrD8mfEHkPPgDGxz3o7gSykq2UwR7z/4GEFZLWmYewxGobX7n5QU2ba9V lpAUuPiQIrzsf44/5iDCMtcp63SHDjgt+4ESYvQXO7iwhZD6eG6CGkJ4TD0hK0UU hCtgFrOHBInTiAgENTl2mFq/CseCI/aNt2vzlf3zBbFshALy9sgCWHvn88tQCsvg gTZxSX/fK/E5ZDYoJmLbWrFpF0WGaoZrwcl/49BaF0Wqwnnm -----END CERTIFICATE-----Generated at Mon Jan 26 16:59:04 2026 by rpki-client