This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/WZ2WGmRaH17LiJKMQDooPVY-1Uo.roa File: WZ2WGmRaH17LiJKMQDooPVY-1Uo.roa (raw, json) Hash identifier: ncbPe1jmzY7AE9EJD7o0RgSpY9Q7fBjN+jRYZTj+XVM= Subject key identifier: 59:9D:96:1A:64:5A:1F:5E:CB:88:92:8C:40:3A:28:3D:56:3E:D5:4A Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09 Certificate serial: 019B7EA762F506A1F164391E177CA1F39C61 Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/WZ2WGmRaH17LiJKMQDooPVY-1Uo.roa Signing time: Fri 02 Jan 2026 12:20:57 +0000 ROA not before: Fri 02 Jan 2026 12:20:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 21487 IP address blocks: 46.48.128.0/20 maxlen: 20 78.31.216.0/21 maxlen: 21 80.73.64.0/19 maxlen: 19 80.73.64.0/20 maxlen: 20 80.73.80.0/20 maxlen: 20 91.185.224.0/19 maxlen: 19 91.185.240.0/20 maxlen: 20 94.245.128.0/18 maxlen: 18 94.245.128.0/19 maxlen: 19 94.245.136.0/22 maxlen: 22 94.245.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.mft rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 00:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:62:f5:06:a1:f1:64:39:1e:17:7c:a1:f3:9c:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09 Validity Not Before: Jan 2 12:20:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=599d961a645a1f5ecb88928c403a283d563ed54a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:7c:29:8b:dd:0f:41:e0:fd:c7:b7:9a:1d:49: 69:80:9b:b0:97:86:07:0e:e8:02:10:83:0c:f3:86: 94:c0:4c:19:72:90:cc:57:52:37:d8:ac:2e:eb:4f: 5c:e0:82:db:b3:7d:19:4d:18:bf:a3:00:9b:20:57: 4e:d4:8f:0e:e0:6a:00:19:1c:da:25:e3:56:14:fc: a4:31:52:40:c2:2e:95:8d:b6:93:b0:84:35:1c:ce: 4b:4d:4f:9d:9f:05:94:ab:30:a6:94:d3:f6:84:c6: 63:be:c6:fa:76:93:c3:db:c1:00:41:c0:f8:f3:3a: 8b:85:2b:29:95:2b:26:a6:4d:fb:97:49:7e:12:8d: 64:9f:3d:a6:91:89:c6:5b:dc:e4:0d:45:e5:13:2c: 96:2c:6c:e9:b5:34:68:71:da:a7:d3:bd:ad:e1:9b: 8d:ce:2e:f5:b2:85:f5:1f:81:93:78:e9:7d:a1:7d: 99:a6:a4:d5:81:5e:d3:e9:d0:6d:ee:33:24:b6:fe: 36:ac:43:e6:93:39:33:29:c6:f4:54:df:7f:a2:14: 67:fc:26:dc:c1:94:8d:72:1c:67:dd:22:c8:8d:c8: 5e:c2:67:28:60:b9:bb:b0:fd:da:f4:0b:b1:1c:ef: 8e:82:37:0f:3c:7c:70:15:61:b1:0c:29:87:f7:33: 35:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:9D:96:1A:64:5A:1F:5E:CB:88:92:8C:40:3A:28:3D:56:3E:D5:4A X509v3 Authority Key Identifier: keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/WZ2WGmRaH17LiJKMQDooPVY-1Uo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.48.128.0/20 78.31.216.0/21 80.73.64.0/19 91.185.224.0/19 94.245.128.0/18 Signature Algorithm: sha256WithRSAEncryption 15:8f:8f:38:96:b9:d1:62:e0:8c:38:f7:3c:65:74:40:e0:cd: b1:cb:fe:aa:c2:fd:46:22:09:2e:96:15:62:96:90:61:11:28: 0a:e0:0d:e5:9d:7f:8c:6f:3f:7b:3b:ec:dc:04:f5:81:4f:77: 9e:48:24:ca:3b:d7:da:58:df:88:39:f1:5a:91:59:d6:d5:57: 79:c7:78:51:e1:6a:a3:d8:a4:48:68:79:d8:0a:2e:0c:83:b1: ac:b4:25:7e:9d:36:54:30:29:82:4c:c7:b1:7e:78:b9:20:64: c5:17:bf:50:5a:01:ed:b5:03:60:37:07:13:2d:ea:d2:24:66: 93:b6:4a:4a:c7:8a:e7:4e:d4:f5:39:a7:68:b4:58:1f:31:c6: cb:16:68:2e:a1:f0:56:c0:99:7d:84:80:28:fd:83:f8:d1:8a: cf:a8:16:1c:10:84:dc:4a:9a:64:c1:27:29:b6:e6:b4:0e:a4: 5c:a2:43:2b:25:d4:8b:2a:1e:a5:cb:7a:56:03:77:7e:d6:a2: 27:83:77:be:13:c4:13:d3:82:c0:21:5b:43:51:94:ed:84:49: 42:3e:79:28:29:4f:b0:b1:21:6d:bf:5c:e7:3e:50:b8:82:b0: e7:cb:63:a1:a7:0d:a2:76:35:27:32:3a:6b:0f:11:e5:6f:57: 6d:45:41:3e -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZt+p2L1BqHxZDkeF3yh85xhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlZTUzMWI5YWMyOTkwZDY5YThhNWMzMDIzZTcyZTZkODQx ZTZjMDkwHhcNMjYwMTAyMTIyMDU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1OTlkOTYxYTY0NWExZjVlY2I4ODkyOGM0MDNhMjgzZDU2M2VkNTRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxnwpi90PQeD9x7eaHUlpgJuwl4YH DugCEIMM84aUwEwZcpDMV1I32Kwu609c4ILbs30ZTRi/owCbIFdO1I8O4GoAGRza JeNWFPykMVJAwi6VjbaTsIQ1HM5LTU+dnwWUqzCmlNP2hMZjvsb6dpPD28EAQcD4 8zqLhSsplSsmpk37l0l+Eo1knz2mkYnGW9zkDUXlEyyWLGzptTRocdqn072t4ZuN zi71soX1H4GTeOl9oX2ZpqTVgV7T6dBt7jMktv42rEPmkzkzKcb0VN9/ohRn/Cbc wZSNchxn3SLIjchewmcoYLm7sP3a9AuxHO+OgjcPPHxwFWGxDCmH9zM1ZwIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFFmdlhpkWh9ey4iSjEA6KD1WPtVKMB8GA1UdIwQY MBaAFF7lMbmsKZDWmopcMCPnLm2EHmwJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQt NWE4NmMyNzU3YzFlLzEvV1oyV0dtUmFIMTdMaUpLTVFEb29QVlktMVVvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQtNWE4NmMyNzU3YzFl LzEvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQELjCAAwQD Th/YAwQFUElAAwQFW7ngAwQGXvWAMA0GCSqGSIb3DQEBCwUAA4IBAQAVj484lrnR YuCMOPc8ZXRA4M2xy/6qwv1GIgkulhVilpBhESgK4A3lnX+Mbz97O+zcBPWBT3ee SCTKO9faWN+IOfFakVnW1Vd5x3hR4Wqj2KRIaHnYCi4Mg7GstCV+nTZUMCmCTMex fni5IGTFF79QWgHttQNgNwcTLerSJGaTtkpKx4rnTtT1OadotFgfMcbLFmguofBW wJl9hIAo/YP40YrPqBYcEITcSppkwScptua0DqRcokMrJdSLKh6ly3pWA3d+1qIn g3e+E8QT04LAIVtDUZTthElCPnkoKU+wsSFtv1znPlC4grDny2Ohpw2idjUnMjpr DxHlb1dtRUE+ -----END CERTIFICATE-----Generated at Mon Jan 26 10:13:34 2026 by rpki-client