This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/sWFQ2639y5fQaDmU5ThRk6YSWFs.roa File: sWFQ2639y5fQaDmU5ThRk6YSWFs.roa (raw, json) Hash identifier: YXKPoBXjKE1eqIFJiy/DtB2fJyWSkDcytdS8/Lx36Lc= Subject key identifier: B1:61:50:DB:AD:FD:CB:97:D0:68:39:94:E5:38:51:93:A6:12:58:5B Certificate issuer: /CN=bfb097a36c2325d1031ff4091ba00a86459d4288 Certificate serial: 019B7BA3E7E97AC669C1DA45495E135E3566 Authority key identifier: BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/sWFQ2639y5fQaDmU5ThRk6YSWFs.roa Signing time: Thu 01 Jan 2026 22:18:17 +0000 ROA not before: Thu 01 Jan 2026 22:18:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200940 IP address blocks: 213.16.92.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.mft rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 03:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:e7:e9:7a:c6:69:c1:da:45:49:5e:13:5e:35:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bfb097a36c2325d1031ff4091ba00a86459d4288 Validity Not Before: Jan 1 22:18:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b16150dbadfdcb97d0683994e5385193a612585b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:f2:96:e8:fa:56:45:14:d6:33:59:8f:4a:02: 5a:f2:a4:8c:0e:ba:d1:d6:3a:8f:7e:49:7b:a3:f6: 4f:aa:66:6f:56:83:09:83:65:f8:9a:46:11:21:d8: 83:dc:dc:10:98:00:7d:b3:a7:1a:1d:6a:2f:dd:f2: 3c:c6:d9:5f:d4:ea:c4:16:e8:e7:2f:9a:0e:09:e2: fe:35:a8:ce:a4:04:a8:06:0d:50:03:28:a6:68:f1: b6:14:98:ef:bb:f5:e7:da:13:57:0a:4c:1d:29:ca: 8d:88:fd:82:59:04:2c:b9:03:06:8d:97:6f:99:43: ef:5e:25:d1:35:a5:40:be:d5:c5:2c:20:43:14:c5: ec:de:08:a6:b1:ae:d0:60:0a:b7:38:bb:80:66:42: b3:27:98:eb:82:00:39:0a:1f:d3:67:1f:32:3a:07: 8b:a3:bb:ab:9e:da:ef:75:96:10:f5:9c:0a:fb:42: 0d:05:4a:a6:fb:3f:83:fc:91:fb:d1:4a:0d:f7:3a: 84:39:80:c0:19:66:c1:87:7b:de:6e:53:54:e4:ef: 6f:66:c4:5a:0d:ba:f4:53:63:8f:22:36:ac:d7:91: 0f:33:5f:83:22:b0:14:1e:b9:4d:16:66:2b:c3:b4: 04:b3:ea:b8:fa:5e:6d:c8:88:21:9f:26:2d:e4:02: 3d:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:61:50:DB:AD:FD:CB:97:D0:68:39:94:E5:38:51:93:A6:12:58:5B X509v3 Authority Key Identifier: keyid:BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/sWFQ2639y5fQaDmU5ThRk6YSWFs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.16.92.0/22 Signature Algorithm: sha256WithRSAEncryption 34:81:55:df:a1:4b:d1:43:74:f4:bc:39:d7:b8:43:4f:cf:88: 90:59:14:37:ee:1b:61:cf:d2:fb:99:ca:ca:04:2d:e7:d0:05: 41:56:e6:84:17:68:93:b4:ef:6e:bb:ee:e3:2e:5b:1b:3b:4a: 07:17:ac:eb:1f:ef:b0:99:39:74:e7:11:51:13:25:0b:7e:05: 21:5f:c8:88:f8:34:bc:18:c1:d7:1f:eb:03:4c:1f:6e:3e:f6: 8a:88:6f:4b:70:89:ab:71:44:9b:7b:aa:c7:08:bb:da:3f:fc: 47:ba:7c:fd:eb:ea:05:6a:22:aa:3f:ec:7e:13:3b:c6:0d:71: a4:14:80:c0:b4:10:55:f7:a3:ef:c2:02:4c:0d:9b:d7:82:b5: 6c:05:f1:b4:7d:fc:a0:d5:6f:39:21:38:55:50:54:64:66:d3: d1:96:67:eb:e2:ad:c5:c8:60:5a:b1:95:d8:d2:e7:9b:e0:d8: 73:89:53:ee:f9:18:70:ef:b8:3f:5b:77:93:83:fd:1c:e1:64: 30:d3:a5:dc:78:cf:87:0b:c5:10:37:d4:31:64:d3:29:15:ee: 33:76:99:14:a8:d2:52:3a:49:0a:6a:b3:f8:c3:42:1a:47:cf: 6f:5b:df:a6:d7:63:b1:4f:25:f2:e2:14:bf:a1:b7:3e:b8:ef: 8b:46:4c:d7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7o+fpesZpwdpFSV4TXjVmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmYjA5N2EzNmMyMzI1ZDEwMzFmZjQwOTFiYTAwYTg2NDU5 ZDQyODgwHhcNMjYwMTAxMjIxODE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMTYxNTBkYmFkZmRjYjk3ZDA2ODM5OTRlNTM4NTE5M2E2MTI1ODViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1PKW6PpWRRTWM1mPSgJa8qSMDrrR 1jqPfkl7o/ZPqmZvVoMJg2X4mkYRIdiD3NwQmAB9s6caHWov3fI8xtlf1OrEFujn L5oOCeL+NajOpASoBg1QAyimaPG2FJjvu/Xn2hNXCkwdKcqNiP2CWQQsuQMGjZdv mUPvXiXRNaVAvtXFLCBDFMXs3gimsa7QYAq3OLuAZkKzJ5jrggA5Ch/TZx8yOgeL o7urntrvdZYQ9ZwK+0INBUqm+z+D/JH70UoN9zqEOYDAGWbBh3veblNU5O9vZsRa Dbr0U2OPIjas15EPM1+DIrAUHrlNFmYrw7QEs+q4+l5tyIghnyYt5AI94QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLFhUNut/cuX0Gg5lOU4UZOmElhbMB8GA1UdIwQY MBaAFL+wl6NsIyXRAx/0CRugCoZFnUKIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdjdDWG8yd2pKZEVESF9RSkc2QUtoa1dkUW9nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9mMmM1ZTgtOGQzNy00ODM4LWEzM2It ZWNjNDliZGMyYWQ4LzEvc1dGUTI2Mzl5NWZRYURtVTVUaFJrNllTV0ZzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy9mMmM1ZTgtOGQzNy00ODM4LWEzM2ItZWNjNDliZGMyYWQ4 LzEvdjdDWG8yd2pKZEVESF9RSkc2QUtoa1dkUW9nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC1RBcMA0G CSqGSIb3DQEBCwUAA4IBAQA0gVXfoUvRQ3T0vDnXuENPz4iQWRQ37hthz9L7mcrK BC3n0AVBVuaEF2iTtO9uu+7jLlsbO0oHF6zrH++wmTl05xFREyULfgUhX8iI+DS8 GMHXH+sDTB9uPvaKiG9LcImrcUSbe6rHCLvaP/xHunz96+oFaiKqP+x+EzvGDXGk FIDAtBBV96PvwgJMDZvXgrVsBfG0ffyg1W85IThVUFRkZtPRlmfr4q3FyGBasZXY 0ueb4NhziVPu+Rhw77g/W3eTg/0c4WQw06XceM+HC8UQN9QxZNMpFe4zdpkUqNJS OkkKarP4w0IaR89vW9+m12OxTyXy4hS/obc+uO+LRkzX -----END CERTIFICATE-----Generated at Sun Jan 25 12:18:13 2026 by rpki-client