This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/c80d48-830c-4cc3-ae52-e6812dab6999/1/_RW7AkIFcGZwUWpXdXNPZGVtxCs.roa File: _RW7AkIFcGZwUWpXdXNPZGVtxCs.roa (raw, json) Hash identifier: GKML7mrRakcBCL4DEYIwXRDBDIyno5yMH2FlYeHKryU= Subject key identifier: FD:15:BB:02:42:05:70:66:70:51:6A:57:75:73:4F:64:65:6D:C4:2B Certificate issuer: /CN=e43baafc64b33e43db78dc7aed605ef70406d9af Certificate serial: 019B7C1347257A87BF25C50AAF49B78727EA Authority key identifier: E4:3B:AA:FC:64:B3:3E:43:DB:78:DC:7A:ED:60:5E:F7:04:06:D9:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Duq_GSzPkPbeNx67WBe9wQG2a8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/c80d48-830c-4cc3-ae52-e6812dab6999/1/_RW7AkIFcGZwUWpXdXNPZGVtxCs.roa Signing time: Fri 02 Jan 2026 00:19:56 +0000 ROA not before: Fri 02 Jan 2026 00:19:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31334 IP address blocks: 24.134.0.0/16 maxlen: 16 31.16.0.0/14 maxlen: 24 37.4.0.0/15 maxlen: 23 77.20.0.0/14 maxlen: 24 77.24.0.0/16 maxlen: 16 77.25.0.0/17 maxlen: 23 83.169.128.0/18 maxlen: 24 88.134.0.0/16 maxlen: 24 91.64.0.0/14 maxlen: 24 95.88.0.0/14 maxlen: 24 109.47.0.0/16 maxlen: 16 109.84.0.0/15 maxlen: 15 146.52.0.0/16 maxlen: 24 178.24.0.0/14 maxlen: 24 185.19.196.0/22 maxlen: 22 188.192.0.0/14 maxlen: 24 2a02:8100::/27 maxlen: 44 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/c80d48-830c-4cc3-ae52-e6812dab6999/1/5Duq_GSzPkPbeNx67WBe9wQG2a8.crl rsync://rpki.ripe.net/repository/DEFAULT/35/c80d48-830c-4cc3-ae52-e6812dab6999/1/5Duq_GSzPkPbeNx67WBe9wQG2a8.mft rsync://rpki.ripe.net/repository/DEFAULT/5Duq_GSzPkPbeNx67WBe9wQG2a8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:47:25:7a:87:bf:25:c5:0a:af:49:b7:87:27:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e43baafc64b33e43db78dc7aed605ef70406d9af Validity Not Before: Jan 2 00:19:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fd15bb024205706670516a5775734f64656dc42b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:89:88:9a:10:ac:2e:37:48:7d:0d:83:91:69: c8:6f:5a:69:45:b2:79:87:8e:de:29:8b:98:ef:d9: 2d:e6:54:de:af:43:8f:33:a5:b6:35:0c:54:ca:b9: 28:11:23:6e:b1:4e:85:60:b2:cc:16:5e:97:56:dd: 83:15:4e:15:c0:ae:65:1c:b5:cd:fb:92:67:d8:22: 01:71:4c:7a:48:d2:1d:5f:da:2a:48:f0:31:3e:83: 33:31:64:6c:35:1c:40:ab:71:43:db:87:8a:38:1f: e6:e0:95:fe:26:40:2c:f1:9b:c2:49:b8:26:70:d1: 03:cf:92:b7:28:89:24:50:94:08:5e:9f:d5:7d:d5: 1c:bf:af:6e:08:2e:95:23:7e:0f:9d:4c:1e:ae:7c: 8e:79:d4:74:8f:66:ea:d6:7a:44:f3:d9:d6:c3:32: 23:bf:6b:b0:06:92:96:a6:c1:90:cf:7f:2c:24:6f: b9:f9:2d:9f:bb:2b:5f:2c:dc:93:ed:bf:49:39:96: 8b:78:ac:46:5c:1e:01:4d:9e:14:4e:db:e3:2b:e0: 88:dc:8a:8f:0c:0c:e7:41:33:b1:42:18:77:a7:19: cb:8d:a6:6e:d4:df:9e:b9:b2:7c:12:d5:dc:5d:28: 9f:f9:38:07:87:d4:29:45:26:cf:91:ea:f1:f3:31: 82:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:15:BB:02:42:05:70:66:70:51:6A:57:75:73:4F:64:65:6D:C4:2B X509v3 Authority Key Identifier: keyid:E4:3B:AA:FC:64:B3:3E:43:DB:78:DC:7A:ED:60:5E:F7:04:06:D9:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Duq_GSzPkPbeNx67WBe9wQG2a8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/c80d48-830c-4cc3-ae52-e6812dab6999/1/_RW7AkIFcGZwUWpXdXNPZGVtxCs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/c80d48-830c-4cc3-ae52-e6812dab6999/1/5Duq_GSzPkPbeNx67WBe9wQG2a8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 24.134.0.0/16 31.16.0.0/14 37.4.0.0/15 77.20.0.0-77.25.127.255 83.169.128.0/18 88.134.0.0/16 91.64.0.0/14 95.88.0.0/14 109.47.0.0/16 109.84.0.0/15 146.52.0.0/16 178.24.0.0/14 185.19.196.0/22 188.192.0.0/14 IPv6: 2a02:8100::/27 Signature Algorithm: sha256WithRSAEncryption 2b:9a:90:c6:fc:e0:a1:f1:0d:3d:24:06:cc:7c:6a:80:a7:4e: a5:c4:8f:89:02:06:d3:bb:a1:37:6d:12:32:14:a8:5d:85:e1: f0:4a:d0:fc:5d:b2:d8:69:1a:df:95:7a:48:11:fd:dd:ab:15: 9b:85:ef:9a:a9:46:48:e5:db:31:38:29:f2:5e:32:54:9a:36: 46:5b:2b:89:7c:f5:55:f9:11:df:51:4c:d8:f6:14:10:5f:f3: 43:dd:f4:f0:b3:76:87:ac:7f:88:2e:25:fa:9a:e3:d8:05:84: 54:e4:bf:47:32:e1:21:2c:ba:1b:66:27:71:41:e7:3b:3b:98: a6:3c:f3:6f:7d:8f:ef:58:c8:84:fd:24:fa:91:33:c8:de:c7: 30:12:0b:d4:ef:8f:40:b5:50:80:7f:75:3e:5f:50:17:24:4b: 70:7a:d1:d0:fb:a5:13:86:bb:d0:5e:5c:85:3e:76:7b:8f:fa: e7:19:c3:e0:95:48:12:de:26:00:19:6f:12:bc:61:c7:c6:cd: 29:fd:4d:d7:84:a9:3c:bd:a2:b0:33:16:35:18:cf:be:f1:19: 83:bf:43:fa:03:14:7d:f2:31:9b:7f:c8:91:90:e2:84:67:71: 2b:54:73:a0:03:1c:64:57:ba:b6:e5:86:36:b0:99:66:da:7a: 9d:53:b6:93 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgISAZt8E0cleoe/JcUKr0m3hyfqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU0M2JhYWZjNjRiMzNlNDNkYjc4ZGM3YWVkNjA1ZWY3MDQw NmQ5YWYwHhcNMjYwMTAyMDAxOTU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZDE1YmIwMjQyMDU3MDY2NzA1MTZhNTc3NTczNGY2NDY1NmRjNDJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzYmImhCsLjdIfQ2DkWnIb1ppRbJ5 h47eKYuY79kt5lTer0OPM6W2NQxUyrkoESNusU6FYLLMFl6XVt2DFU4VwK5lHLXN +5Jn2CIBcUx6SNIdX9oqSPAxPoMzMWRsNRxAq3FD24eKOB/m4JX+JkAs8ZvCSbgm cNEDz5K3KIkkUJQIXp/VfdUcv69uCC6VI34PnUwernyOedR0j2bq1npE89nWwzIj v2uwBpKWpsGQz38sJG+5+S2fuytfLNyT7b9JOZaLeKxGXB4BTZ4UTtvjK+CI3IqP DAznQTOxQhh3pxnLjaZu1N+eubJ8EtXcXSif+TgHh9QpRSbPkerx8zGCcQIDAQAB o4ICYjCCAl4wHQYDVR0OBBYEFP0VuwJCBXBmcFFqV3VzT2RlbcQrMB8GA1UdIwQY MBaAFOQ7qvxksz5D23jceu1gXvcEBtmvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNUR1cV9HU3pQa1BiZU54NjdXQmU5d1FHMmE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9jODBkNDgtODMwYy00Y2MzLWFlNTIt ZTY4MTJkYWI2OTk5LzEvX1JXN0FrSUZjR1p3VVdwWGRYTlBaR1Z0eENzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS9jODBkNDgtODMwYy00Y2MzLWFlNTItZTY4MTJkYWI2OTk5 LzEvNUR1cV9HU3pQa1BiZU54NjdXQmU5d1FHMmE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMHgGCCsGAQUFBwEHAQH/BGkwZzBWBAIAATBQAwMAGIYDAwIf EAMDASUEMAsDAwJNFAMEB00ZAAMEBlOpgAMDAFiGAwMCW0ADAwJfWAMDAG0vAwMB bVQDAwCSNAMDArIYAwQCuRPEAwMCvMAwDQQCAAIwBwMFBSoCgQAwDQYJKoZIhvcN AQELBQADggEBACuakMb84KHxDT0kBsx8aoCnTqXEj4kCBtO7oTdtEjIUqF2F4fBK 0PxdsthpGt+VekgR/d2rFZuF75qpRkjl2zE4KfJeMlSaNkZbK4l89VX5Ed9RTNj2 FBBf80Pd9PCzdoesf4guJfqa49gFhFTkv0cy4SEsuhtmJ3FB5zs7mKY88299j+9Y yIT9JPqRM8jexzASC9Tvj0C1UIB/dT5fUBckS3B60dD7pROGu9BeXIU+dnuP+ucZ w+CVSBLeJgAZbxK8YcfGzSn9TdeEqTy9orAzFjUYz77xGYO/Q/oDFH3yMZt/yJGQ 4oRncStUc6ADHGRXurblhjawmWbaep1TtpM= -----END CERTIFICATE-----Generated at Sun Jan 25 19:35:55 2026 by rpki-client