This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/849e26-6472-4440-a038-7baa92a828ec/1/pWavHUUzAwxTJRX5MQB2UnJBUSU.roa File: pWavHUUzAwxTJRX5MQB2UnJBUSU.roa (raw, json) Hash identifier: Ea1t0eFORl+Vva1qLechf5+/3bT67LM0/+CaezCZsSo= Subject key identifier: A5:66:AF:1D:45:33:03:0C:53:25:15:F9:31:00:76:52:72:41:51:25 Certificate issuer: /CN=9f04c3a86338e170605e665d34d8a5c869948a05 Certificate serial: 019B7EA4C2F044FEEA7CF43FD67621339387 Authority key identifier: 9F:04:C3:A8:63:38:E1:70:60:5E:66:5D:34:D8:A5:C8:69:94:8A:05 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nwTDqGM44XBgXmZdNNilyGmUigU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/849e26-6472-4440-a038-7baa92a828ec/1/pWavHUUzAwxTJRX5MQB2UnJBUSU.roa Signing time: Fri 02 Jan 2026 12:18:05 +0000 ROA not before: Fri 02 Jan 2026 12:18:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199815 IP address blocks: 2001:678:870::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/849e26-6472-4440-a038-7baa92a828ec/1/nwTDqGM44XBgXmZdNNilyGmUigU.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/849e26-6472-4440-a038-7baa92a828ec/1/nwTDqGM44XBgXmZdNNilyGmUigU.mft rsync://rpki.ripe.net/repository/DEFAULT/nwTDqGM44XBgXmZdNNilyGmUigU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a4:c2:f0:44:fe:ea:7c:f4:3f:d6:76:21:33:93:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9f04c3a86338e170605e665d34d8a5c869948a05 Validity Not Before: Jan 2 12:18:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a566af1d4533030c532515f93100765272415125 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:8e:78:06:3d:84:67:51:dc:9a:62:eb:bf:84: 51:73:e4:50:8b:d4:d0:28:05:11:4e:26:51:21:a4: a0:29:b9:f8:ab:17:60:ed:34:ed:87:a4:9a:86:e3: 46:f1:6d:2d:0b:75:fb:3d:d0:b7:92:c1:e8:60:72: 9b:7e:64:b7:f3:82:2c:5c:46:b4:11:bf:d7:12:a1: e3:18:6d:0b:c3:5e:fa:87:66:59:93:40:27:0f:6d: a9:d9:76:28:47:bf:14:d3:2e:e1:22:57:53:d8:2e: e0:e0:2c:f0:72:10:b0:53:4c:b5:b3:88:d6:2d:63: 5f:24:cd:0d:96:11:94:3d:bc:84:1d:61:7f:9a:61: e5:06:23:e6:3d:30:81:55:88:f6:93:77:47:67:cf: 50:5d:48:a6:46:11:dd:6b:06:11:17:ba:8a:87:8e: 4f:37:d7:72:a0:43:d8:c7:bc:c4:af:53:1a:d2:79: 1c:4f:23:b5:d8:88:21:79:41:8b:d3:32:23:51:ed: d4:64:4a:48:74:bb:36:2f:bf:c3:86:66:08:4b:38: 0b:fc:6e:5c:87:3d:13:f3:42:cd:4b:34:f6:7f:e3: 7d:e2:d5:0b:3c:b7:68:3c:46:5f:f8:b9:8b:07:2f: 5a:46:fe:8d:09:b9:e1:3e:c3:a0:0d:84:5a:1d:37: 2c:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:66:AF:1D:45:33:03:0C:53:25:15:F9:31:00:76:52:72:41:51:25 X509v3 Authority Key Identifier: keyid:9F:04:C3:A8:63:38:E1:70:60:5E:66:5D:34:D8:A5:C8:69:94:8A:05 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nwTDqGM44XBgXmZdNNilyGmUigU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/849e26-6472-4440-a038-7baa92a828ec/1/pWavHUUzAwxTJRX5MQB2UnJBUSU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/849e26-6472-4440-a038-7baa92a828ec/1/nwTDqGM44XBgXmZdNNilyGmUigU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:870::/48 Signature Algorithm: sha256WithRSAEncryption 80:3d:26:3f:a2:81:82:65:b1:47:55:2e:c8:cc:61:59:14:3e: d2:4f:81:67:fc:84:01:34:93:30:f8:f0:27:46:84:46:02:dc: a0:20:72:e7:4c:58:b0:9d:f5:0b:06:80:35:ec:ef:d2:d0:af: e2:8c:cb:93:d3:f0:fb:61:80:ac:ec:5e:4f:d4:f7:3e:0a:3f: 39:45:d8:d8:2d:c2:5c:ef:ca:cc:d2:e3:f8:65:94:9e:ab:75: af:02:3b:77:85:19:54:96:01:3c:41:5e:c7:86:d2:63:09:78: 20:01:58:45:74:ef:35:c1:64:14:9f:1e:29:ee:60:0e:51:5a: e0:28:3e:90:72:a9:41:1a:eb:ad:3d:9c:7d:29:24:97:c4:17: e5:b8:dc:4d:b6:0f:71:2c:40:e0:f4:a8:14:30:54:c7:12:db: fc:13:90:24:a5:e5:b9:8f:06:62:12:e6:84:e1:92:3b:28:53: 56:1b:f4:6a:b3:78:e2:c6:c1:83:2c:47:36:89:8f:91:4d:16: 41:22:99:0c:33:ee:c9:c0:57:88:17:cf:30:5d:6a:5a:a6:ce: 80:71:9c:3c:19:57:bc:b5:e5:0f:83:68:74:d2:fe:31:94:fc: e3:31:71:fb:81:36:81:bc:cb:58:13:f8:ca:29:40:e7:e4:e9: 68:4f:9d:5e -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+pMLwRP7qfPQ/1nYhM5OHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlmMDRjM2E4NjMzOGUxNzA2MDVlNjY1ZDM0ZDhhNWM4Njk5 NDhhMDUwHhcNMjYwMTAyMTIxODA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNTY2YWYxZDQ1MzMwMzBjNTMyNTE1ZjkzMTAwNzY1MjcyNDE1MTI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj454Bj2EZ1HcmmLrv4RRc+RQi9TQ KAURTiZRIaSgKbn4qxdg7TTth6SahuNG8W0tC3X7PdC3ksHoYHKbfmS384IsXEa0 Eb/XEqHjGG0Lw176h2ZZk0AnD22p2XYoR78U0y7hIldT2C7g4CzwchCwU0y1s4jW LWNfJM0NlhGUPbyEHWF/mmHlBiPmPTCBVYj2k3dHZ89QXUimRhHdawYRF7qKh45P N9dyoEPYx7zEr1Ma0nkcTyO12IgheUGL0zIjUe3UZEpIdLs2L7/DhmYISzgL/G5c hz0T80LNSzT2f+N94tULPLdoPEZf+LmLBy9aRv6NCbnhPsOgDYRaHTcskwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFKVmrx1FMwMMUyUV+TEAdlJyQVElMB8GA1UdIwQY MBaAFJ8Ew6hjOOFwYF5mXTTYpchplIoFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbndURHFHTTQ0WEJnWG1aZE5OaWx5R21VaWdVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS84NDllMjYtNjQ3Mi00NDQwLWEwMzgt N2JhYTkyYTgyOGVjLzEvcFdhdkhVVXpBd3hUSlJYNU1RQjJVbkpCVVNVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS84NDllMjYtNjQ3Mi00NDQwLWEwMzgtN2JhYTkyYTgyOGVj LzEvbndURHFHTTQ0WEJnWG1aZE5OaWx5R21VaWdVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAhw MA0GCSqGSIb3DQEBCwUAA4IBAQCAPSY/ooGCZbFHVS7IzGFZFD7ST4Fn/IQBNJMw +PAnRoRGAtygIHLnTFiwnfULBoA17O/S0K/ijMuT0/D7YYCs7F5P1Pc+Cj85RdjY LcJc78rM0uP4ZZSeq3WvAjt3hRlUlgE8QV7HhtJjCXggAVhFdO81wWQUnx4p7mAO UVrgKD6QcqlBGuutPZx9KSSXxBfluNxNtg9xLEDg9KgUMFTHEtv8E5AkpeW5jwZi EuaE4ZI7KFNWG/Rqs3jixsGDLEc2iY+RTRZBIpkMM+7JwFeIF88wXWpaps6AcZw8 GVe8teUPg2h00v4xlPzjMXH7gTaBvMtYE/jKKUDn5OloT51e -----END CERTIFICATE-----Generated at Sun Jan 11 23:32:01 2026 by rpki-client