This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/af96df-a4d5-48f9-ac0c-24d8e747c38f/1/W5MLip5ZK1ufGEZ9vOY2cxblKvI.roa File: W5MLip5ZK1ufGEZ9vOY2cxblKvI.roa (raw, json) Hash identifier: pIDJh0k5gLIn4YvkPKi7ydxg61w5euWKQP9v/Tmlx1o= Subject key identifier: 5B:93:0B:8A:9E:59:2B:5B:9F:18:46:7D:BC:E6:36:73:16:E5:2A:F2 Certificate issuer: /CN=12fd558a64e97586a43dc7ee50a8d6b292365b60 Certificate serial: 019ABD0F6A0954FB84CB14512A8EE3E41980 Authority key identifier: 12:FD:55:8A:64:E9:75:86:A4:3D:C7:EE:50:A8:D6:B2:92:36:5B:60 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ev1VimTpdYakPcfuUKjWspI2W2A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/af96df-a4d5-48f9-ac0c-24d8e747c38f/1/W5MLip5ZK1ufGEZ9vOY2cxblKvI.roa Signing time: Tue 25 Nov 2025 22:08:15 +0000 ROA not before: Tue 25 Nov 2025 22:08:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 212238 IP address blocks: 2a0f:1080::/32 maxlen: 32 2a0f:1081::/32 maxlen: 32 2a0f:1082::/32 maxlen: 32 2a0f:1083::/32 maxlen: 32 2a0f:1084::/32 maxlen: 32 2a0f:1085::/32 maxlen: 32 2a0f:1086::/32 maxlen: 32 2a0f:1087::/32 maxlen: 32 2a0f:9cc0::/32 maxlen: 32 2a0f:9cc1::/32 maxlen: 32 2a0f:9cc2::/32 maxlen: 32 2a0f:9cc3::/32 maxlen: 32 2a0f:9cc4::/32 maxlen: 32 2a0f:9cc5::/32 maxlen: 32 2a0f:9cc6::/32 maxlen: 32 2a0f:9cc7::/32 maxlen: 32 2a0f:a780::/32 maxlen: 32 2a0f:a781::/32 maxlen: 32 2a0f:a782::/32 maxlen: 32 2a0f:a783::/32 maxlen: 32 2a0f:a784::/32 maxlen: 32 2a0f:a785::/32 maxlen: 32 2a0f:a786::/32 maxlen: 32 2a0f:a787::/32 maxlen: 32 2a14:6a00::/32 maxlen: 32 2a14:6a01::/32 maxlen: 32 2a14:6a02::/32 maxlen: 32 2a14:6a03::/32 maxlen: 32 2a14:6a04::/32 maxlen: 32 2a14:6a05::/32 maxlen: 32 2a14:6a06::/32 maxlen: 32 2a14:6a07::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/af96df-a4d5-48f9-ac0c-24d8e747c38f/1/Ev1VimTpdYakPcfuUKjWspI2W2A.crl rsync://rpki.ripe.net/repository/DEFAULT/f5/af96df-a4d5-48f9-ac0c-24d8e747c38f/1/Ev1VimTpdYakPcfuUKjWspI2W2A.mft rsync://rpki.ripe.net/repository/DEFAULT/Ev1VimTpdYakPcfuUKjWspI2W2A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 29 Nov 2025 14:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:bd:0f:6a:09:54:fb:84:cb:14:51:2a:8e:e3:e4:19:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=12fd558a64e97586a43dc7ee50a8d6b292365b60 Validity Not Before: Nov 25 22:08:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=5b930b8a9e592b5b9f18467dbce6367316e52af2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ed:66:c9:1d:e1:be:1e:96:fd:44:59:7d:ce: e7:9d:94:41:57:4c:46:02:20:c3:17:a2:be:18:dd: 56:95:9d:72:a6:e4:2a:aa:4b:31:7c:2e:fa:a3:1a: 77:a3:6b:1e:df:a2:77:9b:bf:29:69:cf:b6:26:4b: 63:8d:e3:b8:e3:56:03:00:13:4d:66:d4:5e:f1:72: 71:17:1e:8f:26:57:8f:8f:95:63:fc:61:22:9a:ae: 31:4a:be:7a:45:8d:aa:9a:9f:5f:10:67:32:3a:5c: 38:5a:c8:c5:8b:36:b5:a4:4a:73:3e:84:25:15:b8: a5:c0:5d:f2:03:0b:35:c4:fa:d3:09:21:79:f2:9a: ea:27:6f:5d:aa:16:b0:fa:35:79:14:23:cf:82:f1: db:53:cf:8b:17:c2:5b:e4:0c:4a:6c:1a:63:52:63: 80:4b:04:05:17:f8:54:7f:c3:88:ae:1f:7f:2c:7c: d9:0f:f8:a2:1e:bc:53:68:92:2d:52:2e:4e:c4:1c: ad:be:8a:3d:0c:1d:40:de:48:07:e2:51:a4:22:72: a7:81:da:98:0e:17:65:b7:fb:4a:b8:bc:a6:db:2f: 7e:86:76:4f:cb:ea:2b:28:5a:79:e9:b8:22:76:71: a8:af:ee:c2:05:bf:9c:0c:f2:3a:4c:ad:a7:6d:a5: 40:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:93:0B:8A:9E:59:2B:5B:9F:18:46:7D:BC:E6:36:73:16:E5:2A:F2 X509v3 Authority Key Identifier: keyid:12:FD:55:8A:64:E9:75:86:A4:3D:C7:EE:50:A8:D6:B2:92:36:5B:60 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ev1VimTpdYakPcfuUKjWspI2W2A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/af96df-a4d5-48f9-ac0c-24d8e747c38f/1/W5MLip5ZK1ufGEZ9vOY2cxblKvI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/af96df-a4d5-48f9-ac0c-24d8e747c38f/1/Ev1VimTpdYakPcfuUKjWspI2W2A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:1080::/29 2a0f:9cc0::/29 2a0f:a780::/29 2a14:6a00::/29 Signature Algorithm: sha256WithRSAEncryption 65:c2:2a:13:bb:63:ec:01:97:f6:e1:fe:e7:1e:32:14:ce:6c: 78:7d:ec:9a:a4:5e:27:63:c8:31:b4:d6:f7:9a:c2:86:9f:14: 54:94:b1:79:2c:3a:7f:8c:d7:d5:88:6d:77:db:67:f7:f1:c0: 7d:ff:34:9a:95:95:2b:50:20:bd:10:e0:18:ae:19:0a:4f:7d: e8:3d:92:db:b7:58:b6:4b:d1:f8:b6:3a:0a:a1:38:7f:e0:49: b6:a5:66:72:83:07:b6:bd:9a:07:26:73:35:bf:5f:10:bc:4a: 4c:4f:85:3e:b7:8c:8e:ce:12:f5:5b:9e:ec:8e:d3:a5:33:56: c6:8e:11:7b:dc:26:aa:65:bb:f9:5d:e1:58:df:c8:8e:21:97: 60:5b:c2:06:63:3b:01:4f:8b:47:36:a1:a9:68:2e:79:87:ef: 05:71:e9:58:c5:9c:ee:7f:62:52:ad:24:03:26:0b:f4:a9:3c: 44:01:ba:de:15:96:f0:50:21:d7:30:4b:80:bf:b8:59:d7:4c: c3:79:7c:2d:37:6e:9a:8c:9d:f7:5b:d2:30:f9:ab:77:09:73: dd:11:36:a3:70:10:90:d0:b4:54:bf:00:5c:07:17:46:32:40: ff:1a:ce:9c:07:97:60:31:d5:78:91:cf:a5:54:a1:e7:6c:a9: 0e:9b:dc:ca -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgISAZq9D2oJVPuEyxRRKo7j5BmAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEyZmQ1NThhNjRlOTc1ODZhNDNkYzdlZTUwYThkNmIyOTIz NjViNjAwHhcNMjUxMTI1MjIwODE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YjkzMGI4YTllNTkyYjViOWYxODQ2N2RiY2U2MzY3MzE2ZTUyYWYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAse1myR3hvh6W/URZfc7nnZRBV0xG AiDDF6K+GN1WlZ1ypuQqqksxfC76oxp3o2se36J3m78pac+2JktjjeO441YDABNN ZtRe8XJxFx6PJlePj5Vj/GEimq4xSr56RY2qmp9fEGcyOlw4WsjFiza1pEpzPoQl FbilwF3yAws1xPrTCSF58prqJ29dqhaw+jV5FCPPgvHbU8+LF8Jb5AxKbBpjUmOA SwQFF/hUf8OIrh9/LHzZD/iiHrxTaJItUi5OxBytvoo9DB1A3kgH4lGkInKngdqY Dhdlt/tKuLym2y9+hnZPy+orKFp56bgidnGor+7CBb+cDPI6TK2nbaVAJwIDAQAB o4ICHzCCAhswHQYDVR0OBBYEFFuTC4qeWStbnxhGfbzmNnMW5SryMB8GA1UdIwQY MBaAFBL9VYpk6XWGpD3H7lCo1rKSNltgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRXYxVmltVHBkWWFrUGNmdVVLaldzcEkyVzJBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS9hZjk2ZGYtYTRkNS00OGY5LWFjMGMt MjRkOGU3NDdjMzhmLzEvVzVNTGlwNVpLMXVmR0VaOXZPWTJjeGJsS3ZJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNS9hZjk2ZGYtYTRkNS00OGY5LWFjMGMtMjRkOGU3NDdjMzhm LzEvRXYxVmltVHBkWWFrUGNmdVVLaldzcEkyVzJBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDUGCCsGAQUFBwEHAQH/BCYwJDAiBAIAAjAcAwUDKg8QgAMF AyoPnMADBQMqD6eAAwUDKhRqADANBgkqhkiG9w0BAQsFAAOCAQEAZcIqE7tj7AGX 9uH+5x4yFM5seH3smqReJ2PIMbTW95rChp8UVJSxeSw6f4zX1Yhtd9tn9/HAff80 mpWVK1AgvRDgGK4ZCk996D2S27dYtkvR+LY6CqE4f+BJtqVmcoMHtr2aByZzNb9f ELxKTE+FPreMjs4S9Vue7I7TpTNWxo4Re9wmqmW7+V3hWN/IjiGXYFvCBmM7AU+L RzahqWgueYfvBXHpWMWc7n9iUq0kAyYL9Kk8RAG63hWW8FAh1zBLgL+4WddMw3l8 LTdumoyd91vSMPmrdwlz3RE2o3AQkNC0VL8AXAcXRjJA/xrOnAeXYDHVeJHPpVSh 52ypDpvcyg== -----END CERTIFICATE-----Generated at Fri Nov 28 23:22:40 2025 by rpki-client