This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/2c34e9-7559-41a6-9cac-3e6b751a55f4/1/WjnU7eVkPkVNVM9MOmgLUUUpMzM.roa File: WjnU7eVkPkVNVM9MOmgLUUUpMzM.roa (raw, json) Hash identifier: +R4Zj+vw0Ft1e0nUhwZse4EmeZXGoZD55vZpzhImACo= Subject key identifier: 5A:39:D4:ED:E5:64:3E:45:4D:54:CF:4C:3A:68:0B:51:45:29:33:33 Certificate issuer: /CN=22e48e161e4905923f6d4aa2ae0a21530f2de20b Certificate serial: 019B7F84F6F2DC22BBFE84268E9441068F8D Authority key identifier: 22:E4:8E:16:1E:49:05:92:3F:6D:4A:A2:AE:0A:21:53:0F:2D:E2:0B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IuSOFh5JBZI_bUqirgohUw8t4gs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/2c34e9-7559-41a6-9cac-3e6b751a55f4/1/WjnU7eVkPkVNVM9MOmgLUUUpMzM.roa Signing time: Fri 02 Jan 2026 16:22:58 +0000 ROA not before: Fri 02 Jan 2026 16:22:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61244 IP address blocks: 185.14.12.0/22 maxlen: 22 2a02:f880::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/2c34e9-7559-41a6-9cac-3e6b751a55f4/1/IuSOFh5JBZI_bUqirgohUw8t4gs.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/2c34e9-7559-41a6-9cac-3e6b751a55f4/1/IuSOFh5JBZI_bUqirgohUw8t4gs.mft rsync://rpki.ripe.net/repository/DEFAULT/IuSOFh5JBZI_bUqirgohUw8t4gs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:f6:f2:dc:22:bb:fe:84:26:8e:94:41:06:8f:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22e48e161e4905923f6d4aa2ae0a21530f2de20b Validity Not Before: Jan 2 16:22:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5a39d4ede5643e454d54cf4c3a680b5145293333 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b4:5c:f5:e2:64:02:3c:ae:40:39:80:16:fe: f4:5b:31:6a:ea:0e:5c:58:15:4d:c7:80:a6:62:25: 78:75:20:b5:8f:7b:4c:0b:2b:19:31:b5:1c:95:0e: 01:96:77:cf:bc:66:2d:95:a3:e6:05:e6:8b:a9:31: 5e:ec:b2:96:e3:39:1d:6e:08:e1:91:d4:7a:db:c1: e1:78:ec:66:97:1a:8f:2f:35:82:24:64:b6:9c:a1: eb:84:2b:ef:a4:d0:87:f3:8e:00:85:28:80:43:cb: 80:9e:04:79:b0:6d:18:43:a1:1c:dd:7b:fe:08:1a: fd:96:e2:16:cb:57:9c:e3:a6:b4:61:22:0c:a2:0a: 56:a8:4d:76:b4:d8:53:80:03:d8:bf:10:40:88:75: a3:ea:47:f5:a8:ff:fa:6a:4c:09:73:cf:df:40:d7: 7d:1f:47:78:48:ae:30:cf:53:ad:94:bf:24:3a:e6: ff:a6:e0:c1:47:de:f1:3a:c0:15:c0:5f:26:cf:ed: 21:58:bd:a5:31:70:23:bc:b0:6e:8d:a0:5e:ba:c4: 55:08:a0:5f:9d:77:6e:5d:0c:85:93:1d:4d:cd:79: 93:41:63:cd:c5:3d:89:bb:b6:7e:53:47:bd:8d:e3: 9b:d1:2f:6a:db:da:39:45:41:5f:f7:f4:d6:e6:09: c2:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:39:D4:ED:E5:64:3E:45:4D:54:CF:4C:3A:68:0B:51:45:29:33:33 X509v3 Authority Key Identifier: keyid:22:E4:8E:16:1E:49:05:92:3F:6D:4A:A2:AE:0A:21:53:0F:2D:E2:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IuSOFh5JBZI_bUqirgohUw8t4gs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/2c34e9-7559-41a6-9cac-3e6b751a55f4/1/WjnU7eVkPkVNVM9MOmgLUUUpMzM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/2c34e9-7559-41a6-9cac-3e6b751a55f4/1/IuSOFh5JBZI_bUqirgohUw8t4gs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.14.12.0/22 IPv6: 2a02:f880::/29 Signature Algorithm: sha256WithRSAEncryption 33:8e:8c:90:6b:7c:24:07:c6:ce:3e:e4:d6:4c:a8:8a:47:a6: 53:19:fe:e3:ca:88:0d:fb:bd:c4:d2:34:76:fe:6e:d3:4d:05: 05:b1:8e:de:c1:8e:d0:17:86:97:1d:42:06:21:0a:2e:04:65: 99:d7:ee:d9:df:f8:14:18:35:5f:1e:64:06:a6:d2:e4:52:37: 87:ed:4e:10:f2:7e:d3:17:bf:bb:be:8a:1b:2e:0a:09:d6:1c: 07:bd:37:75:f2:c6:f8:cc:16:86:3c:05:dc:74:83:65:8e:f0: 79:b6:6f:8d:cb:8d:0d:6b:34:6d:83:40:88:53:a5:a9:ac:11: 48:77:ed:f2:79:3a:b1:8e:6b:69:17:73:57:66:a7:25:32:95: ab:10:1f:7f:b5:2a:da:2e:c4:fb:2f:a0:40:24:56:dd:73:8b: 81:c4:44:93:f6:81:b7:f8:b2:2e:18:08:fe:fa:8b:79:c8:8a: b4:c3:e5:9b:5a:7a:70:38:cc:02:8f:1d:54:ad:3e:43:7b:7a: 19:c6:9f:60:5b:ff:6f:c5:18:43:cf:19:c4:53:62:e9:18:6f: c2:e3:f2:38:50:c6:ca:91:4a:ad:ae:b0:02:73:d6:73:53:00: 8e:d2:79:79:67:81:73:fd:80:cb:15:95:85:10:20:22:d6:d2: 82:b0:0d:bd -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/hPby3CK7/oQmjpRBBo+NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyZTQ4ZTE2MWU0OTA1OTIzZjZkNGFhMmFlMGEyMTUzMGYy ZGUyMGIwHhcNMjYwMTAyMTYyMjU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YTM5ZDRlZGU1NjQzZTQ1NGQ1NGNmNGMzYTY4MGI1MTQ1MjkzMzMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv7Rc9eJkAjyuQDmAFv70WzFq6g5c WBVNx4CmYiV4dSC1j3tMCysZMbUclQ4BlnfPvGYtlaPmBeaLqTFe7LKW4zkdbgjh kdR628HheOxmlxqPLzWCJGS2nKHrhCvvpNCH844AhSiAQ8uAngR5sG0YQ6Ec3Xv+ CBr9luIWy1ec46a0YSIMogpWqE12tNhTgAPYvxBAiHWj6kf1qP/6akwJc8/fQNd9 H0d4SK4wz1OtlL8kOub/puDBR97xOsAVwF8mz+0hWL2lMXAjvLBujaBeusRVCKBf nXduXQyFkx1NzXmTQWPNxT2Ju7Z+U0e9jeOb0S9q29o5RUFf9/TW5gnCIwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFFo51O3lZD5FTVTPTDpoC1FFKTMzMB8GA1UdIwQY MBaAFCLkjhYeSQWSP21Koq4KIVMPLeILMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXVTT0ZoNUpCWklfYlVxaXJnb2hVdzh0NGdzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8yYzM0ZTktNzU1OS00MWE2LTljYWMt M2U2Yjc1MWE1NWY0LzEvV2puVTdlVmtQa1ZOVk05TU9tZ0xVVVVwTXpNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS8yYzM0ZTktNzU1OS00MWE2LTljYWMtM2U2Yjc1MWE1NWY0 LzEvSXVTT0ZoNUpCWklfYlVxaXJnb2hVdzh0NGdzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuQ4MMA0E AgACMAcDBQMqAviAMA0GCSqGSIb3DQEBCwUAA4IBAQAzjoyQa3wkB8bOPuTWTKiK R6ZTGf7jyogN+73E0jR2/m7TTQUFsY7ewY7QF4aXHUIGIQouBGWZ1+7Z3/gUGDVf HmQGptLkUjeH7U4Q8n7TF7+7voobLgoJ1hwHvTd18sb4zBaGPAXcdINljvB5tm+N y40NazRtg0CIU6WprBFId+3yeTqxjmtpF3NXZqclMpWrEB9/tSraLsT7L6BAJFbd c4uBxEST9oG3+LIuGAj++ot5yIq0w+WbWnpwOMwCjx1UrT5De3oZxp9gW/9vxRhD zxnEU2LpGG/C4/I4UMbKkUqtrrACc9ZzUwCO0nl5Z4Fz/YDLFZWFECAi1tKCsA29 -----END CERTIFICATE-----Generated at Wed Jan 21 04:21:27 2026 by rpki-client