This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/d9a004-b953-4c73-81e4-0711694000a0/1/EWWrxrH5yG9JA-CMmsAyyybqtWo.roa File: EWWrxrH5yG9JA-CMmsAyyybqtWo.roa (raw, json) Hash identifier: zjv06Y9p4BOJ+3PBVc/FQjpcbBpjrKzxDOHCegcX4Zg= Subject key identifier: 11:65:AB:C6:B1:F9:C8:6F:49:03:E0:8C:9A:C0:32:CB:26:EA:B5:6A Certificate issuer: /CN=8afc31f36c97777f906b93e83ae657f00aeb3099 Certificate serial: 019B7CECCE1D215AC631AD59F9920ABFC5D2 Authority key identifier: 8A:FC:31:F3:6C:97:77:7F:90:6B:93:E8:3A:E6:57:F0:0A:EB:30:99 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ivwx82yXd3-Qa5PoOuZX8ArrMJk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/d9a004-b953-4c73-81e4-0711694000a0/1/EWWrxrH5yG9JA-CMmsAyyybqtWo.roa Signing time: Fri 02 Jan 2026 04:17:32 +0000 ROA not before: Fri 02 Jan 2026 04:17:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205164 IP address blocks: 185.214.192.0/22 maxlen: 32 2a0c:f600::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/d9a004-b953-4c73-81e4-0711694000a0/1/ivwx82yXd3-Qa5PoOuZX8ArrMJk.crl rsync://rpki.ripe.net/repository/DEFAULT/07/d9a004-b953-4c73-81e4-0711694000a0/1/ivwx82yXd3-Qa5PoOuZX8ArrMJk.mft rsync://rpki.ripe.net/repository/DEFAULT/ivwx82yXd3-Qa5PoOuZX8ArrMJk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 04:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ec:ce:1d:21:5a:c6:31:ad:59:f9:92:0a:bf:c5:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8afc31f36c97777f906b93e83ae657f00aeb3099 Validity Not Before: Jan 2 04:17:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1165abc6b1f9c86f4903e08c9ac032cb26eab56a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:3b:37:2c:7c:3c:cb:e4:7d:11:4b:ac:d3:9c: c0:90:29:57:a8:fb:24:7d:be:7b:10:cb:fb:c0:9e: 96:d5:2c:56:9e:c5:29:40:39:56:3f:eb:1e:92:b3: 77:eb:26:05:b4:26:42:36:e0:2d:52:44:0b:07:48: a4:d7:ae:94:c9:c5:8d:20:67:92:68:70:ff:0e:0e: 24:49:1b:fe:80:99:8c:9d:62:c4:46:14:33:8b:7b: 07:c7:9c:bf:fc:da:52:00:ef:da:44:51:f2:df:4d: e8:04:85:20:25:65:c7:3e:61:3a:d9:97:60:3a:f7: e4:56:75:e3:0e:ae:58:b5:19:2c:53:30:99:1f:22: f6:13:bc:c4:78:13:79:31:fb:5c:57:74:a2:33:c7: a0:b6:6f:c7:14:7f:dc:f0:c0:ec:01:01:57:f3:1d: 4e:ad:2a:5f:27:8d:13:00:b3:33:53:f7:e7:99:4c: c9:e0:f4:4b:fd:fd:ee:f0:7d:0e:ff:ca:b9:ad:a2: e8:bc:a9:e8:8b:fe:0c:ac:8e:58:b7:96:c7:22:76: 21:cd:36:c0:c6:e8:d0:2e:47:68:a7:f6:0e:18:3e: e6:f4:5b:49:e2:31:9f:5c:50:59:07:f9:71:40:51: cd:5e:e6:ce:81:d2:f1:fd:7d:1d:70:87:77:72:8a: 34:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:65:AB:C6:B1:F9:C8:6F:49:03:E0:8C:9A:C0:32:CB:26:EA:B5:6A X509v3 Authority Key Identifier: keyid:8A:FC:31:F3:6C:97:77:7F:90:6B:93:E8:3A:E6:57:F0:0A:EB:30:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ivwx82yXd3-Qa5PoOuZX8ArrMJk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/d9a004-b953-4c73-81e4-0711694000a0/1/EWWrxrH5yG9JA-CMmsAyyybqtWo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/d9a004-b953-4c73-81e4-0711694000a0/1/ivwx82yXd3-Qa5PoOuZX8ArrMJk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.214.192.0/22 IPv6: 2a0c:f600::/29 Signature Algorithm: sha256WithRSAEncryption 14:a3:7a:bc:a0:56:34:57:b0:0c:bd:ef:20:94:f4:f8:14:c4: 9f:e2:7f:a0:9a:35:af:7f:81:72:5a:27:f8:17:e8:df:b3:6a: fe:7f:ee:a4:05:89:03:82:0e:1d:1d:82:26:c4:bc:dc:f4:f7: 84:76:43:93:c7:5d:51:52:57:94:1e:be:cc:bc:78:2d:be:48: fc:d6:13:8a:2a:df:08:36:35:08:fc:e1:98:28:c8:78:76:77: 84:11:50:14:e3:3f:28:61:20:c0:9e:2a:37:05:b8:a8:8b:49: 3a:4b:4b:29:73:1f:27:ab:ba:c0:54:c7:79:20:b1:f0:27:dd: ed:a3:8a:81:5f:59:f3:a8:53:92:2f:af:3c:ca:8f:6a:ae:6c: b4:81:f8:2c:a7:b3:96:e8:5d:a6:fd:cc:5c:eb:1c:27:76:09: eb:3b:ff:1c:9a:fb:27:13:41:c6:23:a2:ac:f7:28:30:ab:71: f1:0d:57:f2:72:be:f2:b0:9c:69:eb:c2:53:d6:bc:e8:ba:f9: eb:0b:a0:d7:20:79:2a:e6:d9:af:d1:40:9e:34:5b:55:77:4f: c5:09:e4:c5:94:25:70:b8:53:6a:63:c7:60:5a:b0:93:39:46: 2f:01:89:9f:63:d5:28:9c:1d:39:d2:16:9e:f6:42:fd:74:da: 58:4e:4a:2e -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt87M4dIVrGMa1Z+ZIKv8XSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhZmMzMWYzNmM5Nzc3N2Y5MDZiOTNlODNhZTY1N2YwMGFl YjMwOTkwHhcNMjYwMTAyMDQxNzMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMTY1YWJjNmIxZjljODZmNDkwM2UwOGM5YWMwMzJjYjI2ZWFiNTZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqTs3LHw8y+R9EUus05zAkClXqPsk fb57EMv7wJ6W1SxWnsUpQDlWP+sekrN36yYFtCZCNuAtUkQLB0ik166UycWNIGeS aHD/Dg4kSRv+gJmMnWLERhQzi3sHx5y//NpSAO/aRFHy303oBIUgJWXHPmE62Zdg OvfkVnXjDq5YtRksUzCZHyL2E7zEeBN5MftcV3SiM8egtm/HFH/c8MDsAQFX8x1O rSpfJ40TALMzU/fnmUzJ4PRL/f3u8H0O/8q5raLovKnoi/4MrI5Yt5bHInYhzTbA xujQLkdop/YOGD7m9FtJ4jGfXFBZB/lxQFHNXubOgdLx/X0dcId3coo0HQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFBFlq8ax+chvSQPgjJrAMssm6rVqMB8GA1UdIwQY MBaAFIr8MfNsl3d/kGuT6DrmV/AK6zCZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXZ3eDgyeVhkMy1RYTVQb091Wlg4QXJyTUprLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9kOWEwMDQtYjk1My00YzczLTgxZTQt MDcxMTY5NDAwMGEwLzEvRVdXcnhySDV5RzlKQS1DTW1zQXl5eWJxdFdvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy9kOWEwMDQtYjk1My00YzczLTgxZTQtMDcxMTY5NDAwMGEw LzEvaXZ3eDgyeVhkMy1RYTVQb091Wlg4QXJyTUprLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCudbAMA0E AgACMAcDBQMqDPYAMA0GCSqGSIb3DQEBCwUAA4IBAQAUo3q8oFY0V7AMve8glPT4 FMSf4n+gmjWvf4FyWif4F+jfs2r+f+6kBYkDgg4dHYImxLzc9PeEdkOTx11RUleU Hr7MvHgtvkj81hOKKt8INjUI/OGYKMh4dneEEVAU4z8oYSDAnio3Bbioi0k6S0sp cx8nq7rAVMd5ILHwJ93to4qBX1nzqFOSL688yo9qrmy0gfgsp7OW6F2m/cxc6xwn dgnrO/8cmvsnE0HGI6Ks9ygwq3HxDVfycr7ysJxp68JT1rzouvnrC6DXIHkq5tmv 0UCeNFtVd0/FCeTFlCVwuFNqY8dgWrCTOUYvAYmfY9UonB050hae9kL9dNpYTkou -----END CERTIFICATE-----Generated at Mon Jan 26 13:11:04 2026 by rpki-client