This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/5a6d01-a375-4e11-871e-99e6141de7f1/1/w_HVWxfgMKccvm-uPAq_mXE30RI.roa File: w_HVWxfgMKccvm-uPAq_mXE30RI.roa (raw, json) Hash identifier: nRyRk7kTehxIu33cjbfvuUdw6sNcxsEjbFzAJfWoy80= Subject key identifier: C3:F1:D5:5B:17:E0:30:A7:1C:BE:6F:AE:3C:0A:BF:99:71:37:D1:12 Certificate issuer: /CN=f7bed33ff01e8e09dc4fedcd01139c0e77854aae Certificate serial: 019B7E3765E2DBDB5C2DED73305FFA29E6E7 Authority key identifier: F7:BE:D3:3F:F0:1E:8E:09:DC:4F:ED:CD:01:13:9C:0E:77:85:4A:AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/977TP_AejgncT-3NAROcDneFSq4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/5a6d01-a375-4e11-871e-99e6141de7f1/1/w_HVWxfgMKccvm-uPAq_mXE30RI.roa Signing time: Fri 02 Jan 2026 10:18:38 +0000 ROA not before: Fri 02 Jan 2026 10:18:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51540 IP address blocks: 185.70.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/5a6d01-a375-4e11-871e-99e6141de7f1/1/977TP_AejgncT-3NAROcDneFSq4.crl rsync://rpki.ripe.net/repository/DEFAULT/15/5a6d01-a375-4e11-871e-99e6141de7f1/1/977TP_AejgncT-3NAROcDneFSq4.mft rsync://rpki.ripe.net/repository/DEFAULT/977TP_AejgncT-3NAROcDneFSq4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:65:e2:db:db:5c:2d:ed:73:30:5f:fa:29:e6:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f7bed33ff01e8e09dc4fedcd01139c0e77854aae Validity Not Before: Jan 2 10:18:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c3f1d55b17e030a71cbe6fae3c0abf997137d112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:19:10:7e:86:81:18:6f:1d:54:fc:a5:fb:60: 0f:52:4e:6d:7d:cd:40:3e:e0:00:43:42:65:12:72: 5c:59:f7:bd:85:94:fb:f9:af:7b:10:0a:d2:a7:16: 92:b3:b7:99:a4:54:82:90:de:51:5e:d0:6d:1c:18: c6:21:0d:73:b2:ce:ea:5f:89:3f:a6:7b:9f:d5:a1: e3:57:a7:d3:82:9b:70:33:94:57:bc:5d:5e:d4:f2: 80:42:3c:63:a3:d6:07:50:c3:d1:c2:a2:e0:a3:0d: 14:4e:8b:94:49:d2:47:48:59:70:13:3d:b3:44:d0: 80:80:cf:71:77:12:4f:69:a3:d7:81:e0:3a:53:f9: c9:f5:0e:59:81:fc:93:1d:ad:33:eb:a1:c6:64:5c: f9:4e:90:f1:b0:64:00:36:a1:c0:da:70:ab:8c:13: ca:00:22:0a:51:66:43:13:aa:bb:ac:df:18:95:35: 14:b8:f2:0f:c2:17:52:f5:b4:c1:ca:3f:1e:4a:e7: a6:71:06:34:3b:14:9f:52:1f:11:07:a5:da:da:36: c7:5c:1c:0f:b3:c2:e1:00:d3:ce:ff:02:6e:ba:5a: 2a:8a:26:3c:eb:45:02:28:8e:5d:d2:97:d7:11:06: 28:88:9e:bc:c0:4a:91:44:7a:d7:fa:e4:df:71:bd: 36:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:F1:D5:5B:17:E0:30:A7:1C:BE:6F:AE:3C:0A:BF:99:71:37:D1:12 X509v3 Authority Key Identifier: keyid:F7:BE:D3:3F:F0:1E:8E:09:DC:4F:ED:CD:01:13:9C:0E:77:85:4A:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/977TP_AejgncT-3NAROcDneFSq4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5a6d01-a375-4e11-871e-99e6141de7f1/1/w_HVWxfgMKccvm-uPAq_mXE30RI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5a6d01-a375-4e11-871e-99e6141de7f1/1/977TP_AejgncT-3NAROcDneFSq4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.70.84.0/24 Signature Algorithm: sha256WithRSAEncryption 71:50:45:c3:d7:7d:60:c4:af:42:82:32:10:67:56:75:4e:b3: 1c:7d:3b:c9:0f:c0:37:77:2f:08:3e:3c:35:4f:a6:1c:10:b2: 24:5f:b5:25:41:9c:10:e0:70:d4:c1:0f:5d:2e:0e:ff:f0:f5: 9c:89:e6:46:cd:e2:01:96:f8:b3:97:d8:cd:6a:75:68:a3:8e: 05:d3:0a:88:03:ef:85:22:e5:fb:89:f4:df:a3:58:4d:02:06: 62:cb:61:f3:69:b6:3a:78:49:a7:d0:25:d2:24:06:9b:ec:56: 06:71:e4:26:0c:6a:b2:94:a4:98:6e:c5:54:8a:78:cb:20:66: 71:4b:99:33:33:48:ef:0d:41:f7:49:a9:03:85:56:af:89:1e: d9:42:ac:35:99:69:b5:e3:b3:b8:af:17:d9:1e:34:58:c0:2c: df:02:da:12:7c:bb:8b:31:0f:98:31:85:1c:e2:64:01:61:ec: 2a:01:1f:c2:4e:df:ac:80:77:97:ea:bb:0c:a6:59:6d:f4:a6: 19:d4:1c:e2:2f:2a:fc:7a:4d:4c:5d:52:ce:b2:27:5f:d1:6a: bd:d3:31:85:1e:d1:d6:d2:a5:23:10:5c:7b:52:27:9d:9b:3a: 8e:ef:00:71:1e:6d:4b:1d:cf:c2:fd:0e:2a:85:92:5e:68:8f: 66:88:69:aa -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+N2Xi29tcLe1zMF/6KebnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3YmVkMzNmZjAxZThlMDlkYzRmZWRjZDAxMTM5YzBlNzc4 NTRhYWUwHhcNMjYwMTAyMTAxODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjM2YxZDU1YjE3ZTAzMGE3MWNiZTZmYWUzYzBhYmY5OTcxMzdkMTEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsRkQfoaBGG8dVPyl+2APUk5tfc1A PuAAQ0JlEnJcWfe9hZT7+a97EArSpxaSs7eZpFSCkN5RXtBtHBjGIQ1zss7qX4k/ pnuf1aHjV6fTgptwM5RXvF1e1PKAQjxjo9YHUMPRwqLgow0UTouUSdJHSFlwEz2z RNCAgM9xdxJPaaPXgeA6U/nJ9Q5ZgfyTHa0z66HGZFz5TpDxsGQANqHA2nCrjBPK ACIKUWZDE6q7rN8YlTUUuPIPwhdS9bTByj8eSuemcQY0OxSfUh8RB6Xa2jbHXBwP s8LhANPO/wJuuloqiiY860UCKI5d0pfXEQYoiJ68wEqRRHrX+uTfcb02NwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMPx1VsX4DCnHL5vrjwKv5lxN9ESMB8GA1UdIwQY MBaAFPe+0z/wHo4J3E/tzQETnA53hUquMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOTc3VFBfQWVqZ25jVC0zTkFST2NEbmVGU3E0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS81YTZkMDEtYTM3NS00ZTExLTg3MWUt OTllNjE0MWRlN2YxLzEvd19IVld4ZmdNS2Njdm0tdVBBcV9tWEUzMFJJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS81YTZkMDEtYTM3NS00ZTExLTg3MWUtOTllNjE0MWRlN2Yx LzEvOTc3VFBfQWVqZ25jVC0zTkFST2NEbmVGU3E0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuUZUMA0G CSqGSIb3DQEBCwUAA4IBAQBxUEXD131gxK9CgjIQZ1Z1TrMcfTvJD8A3dy8IPjw1 T6YcELIkX7UlQZwQ4HDUwQ9dLg7/8PWcieZGzeIBlvizl9jNanVoo44F0wqIA++F IuX7ifTfo1hNAgZiy2HzabY6eEmn0CXSJAab7FYGceQmDGqylKSYbsVUinjLIGZx S5kzM0jvDUH3SakDhVaviR7ZQqw1mWm147O4rxfZHjRYwCzfAtoSfLuLMQ+YMYUc 4mQBYewqAR/CTt+sgHeX6rsMpllt9KYZ1BziLyr8ek1MXVLOsidf0Wq90zGFHtHW 0qUjEFx7UiedmzqO7wBxHm1LHc/C/Q4qhZJeaI9miGmq -----END CERTIFICATE-----Generated at Sun Jan 25 20:29:56 2026 by rpki-client