This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/6cb72d-45a7-4490-9c59-93ead35a12ca/1/wkMmp6s5tIiVOMhQ-G1Z3odbkBA.roa File: wkMmp6s5tIiVOMhQ-G1Z3odbkBA.roa (raw, json) Hash identifier: E+8cABzHZlQUHHuKZ16h6fJZng3ckrzig4shYxP7eeo= Subject key identifier: C2:43:26:A7:AB:39:B4:88:95:38:C8:50:F8:6D:59:DE:87:5B:90:10 Certificate issuer: /CN=478d24898d1cf52d23f9561dc6ac0f1363e6c760 Certificate serial: 019B78344DD97E5BF381A3517E850E3BADA2 Authority key identifier: 47:8D:24:89:8D:1C:F5:2D:23:F9:56:1D:C6:AC:0F:13:63:E6:C7:60 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R40kiY0c9S0j-VYdxqwPE2Pmx2A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/6cb72d-45a7-4490-9c59-93ead35a12ca/1/wkMmp6s5tIiVOMhQ-G1Z3odbkBA.roa Signing time: Thu 01 Jan 2026 06:17:32 +0000 ROA not before: Thu 01 Jan 2026 06:17:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42718 IP address blocks: 176.117.62.0/24 maxlen: 24 2001:678:3e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/6cb72d-45a7-4490-9c59-93ead35a12ca/1/R40kiY0c9S0j-VYdxqwPE2Pmx2A.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/6cb72d-45a7-4490-9c59-93ead35a12ca/1/R40kiY0c9S0j-VYdxqwPE2Pmx2A.mft rsync://rpki.ripe.net/repository/DEFAULT/R40kiY0c9S0j-VYdxqwPE2Pmx2A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:4d:d9:7e:5b:f3:81:a3:51:7e:85:0e:3b:ad:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=478d24898d1cf52d23f9561dc6ac0f1363e6c760 Validity Not Before: Jan 1 06:17:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c24326a7ab39b4889538c850f86d59de875b9010 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:1d:bc:44:0b:8f:2d:35:be:63:26:76:01:07: c1:a8:ee:63:d9:d5:71:54:c8:b4:74:e2:b0:98:57: 77:80:5f:e3:80:15:df:a9:eb:5a:3b:ad:72:68:e9: 55:f3:fd:18:31:dd:2f:aa:f2:a8:5d:d9:14:15:bb: 98:db:6c:e4:8a:89:c0:9b:3b:ee:df:fd:07:70:3a: a6:64:68:29:61:e1:56:19:0d:8a:16:84:96:cb:7b: 40:a7:1e:e6:f5:13:2e:aa:82:2d:65:81:28:f1:49: 86:e7:3a:10:14:ac:58:18:9c:d8:db:6b:64:8f:72: 67:c4:f3:1d:bd:97:94:ee:5e:fa:32:84:aa:ad:d7: 4b:12:05:2c:01:dd:ca:95:ea:0d:ae:02:93:ed:e7: 69:fe:dd:f1:00:7f:1e:2d:9b:e4:d8:d3:13:74:69: 97:e7:23:58:12:6e:45:eb:89:f2:e6:76:4a:51:f0: 13:6c:82:0b:38:4c:74:5e:58:8e:8d:d2:dd:42:48: d9:9d:f5:ac:9f:31:7f:8d:e1:4e:c0:14:a1:c4:e2: 8a:7d:dc:60:d9:35:3d:8d:ba:ed:d3:d6:15:fc:cc: 50:12:2f:dd:5d:b4:b4:83:7a:9b:74:cd:d0:5b:81: 23:f8:3d:0d:f2:86:72:40:bd:85:0d:8e:1f:f8:60: 8b:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:43:26:A7:AB:39:B4:88:95:38:C8:50:F8:6D:59:DE:87:5B:90:10 X509v3 Authority Key Identifier: keyid:47:8D:24:89:8D:1C:F5:2D:23:F9:56:1D:C6:AC:0F:13:63:E6:C7:60 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R40kiY0c9S0j-VYdxqwPE2Pmx2A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/6cb72d-45a7-4490-9c59-93ead35a12ca/1/wkMmp6s5tIiVOMhQ-G1Z3odbkBA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/6cb72d-45a7-4490-9c59-93ead35a12ca/1/R40kiY0c9S0j-VYdxqwPE2Pmx2A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.117.62.0/24 IPv6: 2001:678:3e0::/48 Signature Algorithm: sha256WithRSAEncryption 04:48:ba:c9:3a:65:dd:b4:4e:64:91:c6:2f:8d:49:e7:fc:66: 10:b3:35:db:70:33:b1:c0:16:f1:be:c3:97:4b:4e:2e:48:29: 42:e9:17:1b:9e:a4:d8:ed:72:68:f2:6f:cd:2f:13:b9:30:a5: d4:3c:ef:f3:32:e3:2e:d4:0d:bc:d5:34:82:e2:56:16:f2:4e: e9:b6:1f:f1:1f:34:94:25:8f:06:74:29:bd:48:7b:74:c9:86: eb:c1:76:0a:65:59:31:42:d3:8a:32:27:d4:f4:14:6f:57:e2: af:33:58:70:6a:86:4f:6b:c5:6e:02:57:47:b0:c0:ad:96:80: 00:bb:84:cc:8a:bb:ac:f5:a9:c1:8e:bf:c1:b1:0a:56:0a:5f: d8:8f:c5:86:0e:01:75:53:43:af:3f:4b:21:b9:b2:d6:0f:49: c2:d2:20:16:ea:4e:21:24:70:db:f1:8c:1d:ea:74:dd:7d:c2: e1:9f:d3:18:ab:ff:34:3b:35:a9:bf:22:e4:e5:22:a0:73:4b: 15:b5:4f:1a:d1:fd:19:4c:11:34:9a:d0:46:45:07:36:13:69: 3a:ea:9d:e2:8f:dd:f8:f7:bc:7a:3b:18:b9:da:4a:3f:ef:4a: a6:53:04:78:81:3c:48:28:15:0e:70:3f:6b:85:a8:91:93:42: 7a:d5:00:42 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt4NE3ZflvzgaNRfoUOO62iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ3OGQyNDg5OGQxY2Y1MmQyM2Y5NTYxZGM2YWMwZjEzNjNl NmM3NjAwHhcNMjYwMTAxMDYxNzMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjMjQzMjZhN2FiMzliNDg4OTUzOGM4NTBmODZkNTlkZTg3NWI5MDEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6x28RAuPLTW+YyZ2AQfBqO5j2dVx VMi0dOKwmFd3gF/jgBXfqetaO61yaOlV8/0YMd0vqvKoXdkUFbuY22zkionAmzvu 3/0HcDqmZGgpYeFWGQ2KFoSWy3tApx7m9RMuqoItZYEo8UmG5zoQFKxYGJzY22tk j3JnxPMdvZeU7l76MoSqrddLEgUsAd3KleoNrgKT7edp/t3xAH8eLZvk2NMTdGmX 5yNYEm5F64ny5nZKUfATbIILOEx0XliOjdLdQkjZnfWsnzF/jeFOwBShxOKKfdxg 2TU9jbrt09YV/MxQEi/dXbS0g3qbdM3QW4Ej+D0N8oZyQL2FDY4f+GCLGwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFMJDJqerObSIlTjIUPhtWd6HW5AQMB8GA1UdIwQY MBaAFEeNJImNHPUtI/lWHcasDxNj5sdgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUjQwa2lZMGM5UzBqLVZZZHhxd1BFMlBteDJBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy82Y2I3MmQtNDVhNy00NDkwLTljNTkt OTNlYWQzNWExMmNhLzEvd2tNbXA2czV0SWlWT01oUS1HMVozb2Ria0JBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy82Y2I3MmQtNDVhNy00NDkwLTljNTktOTNlYWQzNWExMmNh LzEvUjQwa2lZMGM5UzBqLVZZZHhxd1BFMlBteDJBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAsHU+MA8E AgACMAkDBwAgAQZ4A+AwDQYJKoZIhvcNAQELBQADggEBAARIusk6Zd20TmSRxi+N Sef8ZhCzNdtwM7HAFvG+w5dLTi5IKULpFxuepNjtcmjyb80vE7kwpdQ87/My4y7U DbzVNILiVhbyTum2H/EfNJQljwZ0Kb1Ie3TJhuvBdgplWTFC04oyJ9T0FG9X4q8z WHBqhk9rxW4CV0ewwK2WgAC7hMyKu6z1qcGOv8GxClYKX9iPxYYOAXVTQ68/SyG5 stYPScLSIBbqTiEkcNvxjB3qdN19wuGf0xir/zQ7Nam/IuTlIqBzSxW1TxrR/RlM ETSa0EZFBzYTaTrqneKP3fj3vHo7GLnaSj/vSqZTBHiBPEgoFQ5wP2uFqJGTQnrV AEI= -----END CERTIFICATE-----Generated at Mon Feb 9 22:27:21 2026 by rpki-client