This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/dwhUyoSSaDK38txtGg0jSa0q1jg.roa File: dwhUyoSSaDK38txtGg0jSa0q1jg.roa (raw, json) Hash identifier: k7UVyXGKucPb2F8aYlQNpyHGS55kGYMFp7t5q8ColOk= Subject key identifier: 77:08:54:CA:84:92:68:32:B7:F2:DC:6D:1A:0D:23:49:AD:2A:D6:38 Certificate issuer: /CN=b307c87e7b6e294f2700790eef19e82939d85cd6 Certificate serial: 019B7B366A0E133A03E62BD3A04F7AF752A6 Authority key identifier: B3:07:C8:7E:7B:6E:29:4F:27:00:79:0E:EF:19:E8:29:39:D8:5C:D6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/swfIfntuKU8nAHkO7xnoKTnYXNY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/dwhUyoSSaDK38txtGg0jSa0q1jg.roa Signing time: Thu 01 Jan 2026 20:18:42 +0000 ROA not before: Thu 01 Jan 2026 20:18:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 0 IP address blocks: 128.0.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/swfIfntuKU8nAHkO7xnoKTnYXNY.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/swfIfntuKU8nAHkO7xnoKTnYXNY.mft rsync://rpki.ripe.net/repository/DEFAULT/swfIfntuKU8nAHkO7xnoKTnYXNY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:6a:0e:13:3a:03:e6:2b:d3:a0:4f:7a:f7:52:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b307c87e7b6e294f2700790eef19e82939d85cd6 Validity Not Before: Jan 1 20:18:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=770854ca84926832b7f2dc6d1a0d2349ad2ad638 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:28:81:c1:3b:f1:45:07:f9:9b:48:27:ac:57: b3:87:db:5f:d2:93:f6:d2:1a:63:c3:df:44:e1:50: a1:ff:eb:78:a5:9c:b8:2e:75:ab:4d:80:0b:8d:3d: c9:a4:b7:fa:58:b4:bd:58:82:aa:3b:cc:a8:22:06: 87:c0:ad:04:2f:68:40:88:a8:08:c5:bb:57:03:ed: 16:50:88:8b:69:16:80:82:9a:54:51:32:b7:48:95: 3f:65:15:23:00:a6:f2:ee:1f:a8:26:a8:b7:57:0f: 91:61:97:f1:99:4c:0d:76:d0:71:f9:4c:d8:bd:96: 09:70:7a:da:d7:15:fb:b1:47:4e:8a:59:9a:8b:4b: cf:ad:f9:21:59:36:28:f6:cc:09:b1:81:ae:86:0d: 66:22:f2:1c:e4:77:bc:a5:f9:61:f0:f6:87:93:b5: 07:06:ce:96:a5:b5:08:1e:99:8c:1e:d5:ed:c9:d1: 55:b8:9c:66:15:7c:94:35:2f:5b:fd:a8:48:03:de: 69:0b:42:d1:d6:e5:22:21:ac:d2:88:cf:7d:68:4b: ea:bb:4f:ce:e8:38:00:8f:52:14:ca:f5:b6:22:3e: 55:47:72:ef:ed:b8:84:23:91:dd:43:fd:e9:7c:41: b4:40:85:d8:25:cd:dc:17:4b:b7:6b:d4:3d:45:25: 15:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:08:54:CA:84:92:68:32:B7:F2:DC:6D:1A:0D:23:49:AD:2A:D6:38 X509v3 Authority Key Identifier: keyid:B3:07:C8:7E:7B:6E:29:4F:27:00:79:0E:EF:19:E8:29:39:D8:5C:D6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/swfIfntuKU8nAHkO7xnoKTnYXNY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/dwhUyoSSaDK38txtGg0jSa0q1jg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/swfIfntuKU8nAHkO7xnoKTnYXNY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 128.0.45.0/24 Signature Algorithm: sha256WithRSAEncryption 26:4f:5d:e3:5a:f1:61:ed:95:02:cb:47:e7:4c:a9:6d:80:2a: e2:c4:31:a4:df:ba:07:8f:9c:07:d4:fe:28:69:3d:8a:45:cf: 26:c7:94:42:84:5c:07:1a:12:02:f6:1f:d1:18:60:66:e1:8c: 00:d8:5c:cd:d9:84:c0:7d:a2:b4:d5:d3:4f:d0:23:e6:1f:e2: a1:a6:1c:7f:3a:ad:9a:9e:97:57:f0:11:a5:4f:a4:cc:91:46: 2d:a1:a3:5c:d3:71:5e:9f:7d:93:03:95:0a:14:71:3a:4e:be: 50:61:0a:21:ed:d4:d9:dd:96:1f:02:a2:c2:b8:83:90:80:91: d6:57:44:16:8d:a6:e2:92:11:79:cc:9d:4b:64:67:88:5e:d7: dd:5e:72:0f:44:d4:4e:fa:c2:2c:9a:cd:c0:5f:67:ec:35:79: 3a:bd:12:e9:45:a5:b4:5d:bc:69:1b:8a:d7:05:04:44:43:bd: af:99:7e:91:ac:74:34:9f:13:fc:c3:b9:32:a4:b1:0e:54:bf: 28:da:fd:d1:b6:08:52:75:fb:2c:75:d8:72:d7:1f:09:8e:f6: f3:b7:20:26:d9:06:12:46:67:d0:4a:6b:3e:00:6f:09:04:dd: b2:d8:77:5b:fd:93:7d:c6:b0:e0:a8:95:e1:d4:2b:e7:f5:6f: b0:1b:35:ac -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7NmoOEzoD5ivToE9691KmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzMDdjODdlN2I2ZTI5NGYyNzAwNzkwZWVmMTllODI5Mzlk ODVjZDYwHhcNMjYwMTAxMjAxODQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NzA4NTRjYTg0OTI2ODMyYjdmMmRjNmQxYTBkMjM0OWFkMmFkNjM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5CiBwTvxRQf5m0gnrFezh9tf0pP2 0hpjw99E4VCh/+t4pZy4LnWrTYALjT3JpLf6WLS9WIKqO8yoIgaHwK0EL2hAiKgI xbtXA+0WUIiLaRaAgppUUTK3SJU/ZRUjAKby7h+oJqi3Vw+RYZfxmUwNdtBx+UzY vZYJcHra1xX7sUdOilmai0vPrfkhWTYo9swJsYGuhg1mIvIc5He8pflh8PaHk7UH Bs6WpbUIHpmMHtXtydFVuJxmFXyUNS9b/ahIA95pC0LR1uUiIazSiM99aEvqu0/O 6DgAj1IUyvW2Ij5VR3Lv7biEI5HdQ/3pfEG0QIXYJc3cF0u3a9Q9RSUVLwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHcIVMqEkmgyt/LcbRoNI0mtKtY4MB8GA1UdIwQY MBaAFLMHyH57bilPJwB5Du8Z6Ck52FzWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3dmSWZudHVLVThuQUhrTzd4bm9LVG5ZWE5ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS9kYTY0MmEtYTZhYi00NzA1LTk1ODct NjQ5NDVhNGY4ZTEyLzEvZHdoVXlvU1NhREszOHR4dEdnMGpTYTBxMWpnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS9kYTY0MmEtYTZhYi00NzA1LTk1ODctNjQ5NDVhNGY4ZTEy LzEvc3dmSWZudHVLVThuQUhrTzd4bm9LVG5ZWE5ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAgAAtMA0G CSqGSIb3DQEBCwUAA4IBAQAmT13jWvFh7ZUCy0fnTKltgCrixDGk37oHj5wH1P4o aT2KRc8mx5RChFwHGhIC9h/RGGBm4YwA2FzN2YTAfaK01dNP0CPmH+Khphx/Oq2a npdX8BGlT6TMkUYtoaNc03Fen32TA5UKFHE6Tr5QYQoh7dTZ3ZYfAqLCuIOQgJHW V0QWjabikhF5zJ1LZGeIXtfdXnIPRNRO+sIsms3AX2fsNXk6vRLpRaW0XbxpG4rX BQREQ72vmX6RrHQ0nxP8w7kypLEOVL8o2v3RtghSdfssddhy1x8JjvbztyAm2QYS RmfQSms+AG8JBN2y2Hdb/ZN9xrDgqJXh1Cvn9W+wGzWs -----END CERTIFICATE-----Generated at Wed Jan 7 23:48:06 2026 by rpki-client