This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/def7ce-25d4-43c1-8eae-1a64cf21a604/1/cLW-rzfQIYF9Ip7K5f5c4fVxT_0.roa File: cLW-rzfQIYF9Ip7K5f5c4fVxT_0.roa (raw, json) Hash identifier: kTIIud4RXHLbaB+fDQvEDDvRSMMhyUI+tRML2r+ctcI= Subject key identifier: 70:B5:BE:AF:37:D0:21:81:7D:22:9E:CA:E5:FE:5C:E1:F5:71:4F:FD Certificate issuer: /CN=10f7741cd1af2bb34c86c73ea3bd6c76d9968d0d Certificate serial: 019B77587A880A29769C5CC565AB7C66202E Authority key identifier: 10:F7:74:1C:D1:AF:2B:B3:4C:86:C7:3E:A3:BD:6C:76:D9:96:8D:0D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EPd0HNGvK7NMhsc-o71sdtmWjQ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/def7ce-25d4-43c1-8eae-1a64cf21a604/1/cLW-rzfQIYF9Ip7K5f5c4fVxT_0.roa Signing time: Thu 01 Jan 2026 02:17:25 +0000 ROA not before: Thu 01 Jan 2026 02:17:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20495 IP address blocks: 185.37.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/def7ce-25d4-43c1-8eae-1a64cf21a604/1/EPd0HNGvK7NMhsc-o71sdtmWjQ0.crl rsync://rpki.ripe.net/repository/DEFAULT/bb/def7ce-25d4-43c1-8eae-1a64cf21a604/1/EPd0HNGvK7NMhsc-o71sdtmWjQ0.mft rsync://rpki.ripe.net/repository/DEFAULT/EPd0HNGvK7NMhsc-o71sdtmWjQ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:7a:88:0a:29:76:9c:5c:c5:65:ab:7c:66:20:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10f7741cd1af2bb34c86c73ea3bd6c76d9968d0d Validity Not Before: Jan 1 02:17:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=70b5beaf37d021817d229ecae5fe5ce1f5714ffd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ff:19:0a:71:19:3b:31:e0:c4:b2:3d:6f:ce: 62:de:20:55:63:f3:c5:59:c7:6b:12:d2:65:5e:a4: fc:93:08:17:c8:96:82:d4:84:14:5b:72:86:a8:7c: cb:ed:f7:25:39:60:a4:38:24:7d:3f:1b:35:bf:ff: 6e:85:6e:da:3c:ba:5b:83:d9:93:db:06:51:9a:9a: 9c:75:49:43:2f:f1:b4:a4:ad:cd:09:e0:58:67:15: 85:ad:7e:3b:2a:97:4e:49:8d:b4:dd:80:c7:86:bc: 71:de:d4:30:8c:50:dc:99:40:b7:10:b5:78:80:62: 1a:b0:d8:5e:57:ec:91:67:2e:37:a4:33:2e:b4:a8: dd:a8:1c:30:d7:ba:32:ca:b8:e6:6a:9f:fc:1a:3b: c2:e1:ab:80:43:10:86:af:40:05:73:9b:a9:e0:7b: d5:a2:07:c2:73:d5:da:8a:db:22:1f:fd:9d:38:84: 6a:c8:55:b1:72:de:5e:9e:b7:03:b0:e8:8e:5a:78: b1:bd:38:4a:6f:38:7f:f3:40:01:d1:06:8c:cf:99: cb:87:d2:b8:b8:6d:d4:04:58:93:67:16:f3:05:6c: 89:7e:51:b1:78:72:ad:66:2d:72:42:09:8c:3c:45: 0b:6d:31:81:d1:38:78:95:1d:41:32:a9:75:ca:a1: 5c:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:B5:BE:AF:37:D0:21:81:7D:22:9E:CA:E5:FE:5C:E1:F5:71:4F:FD X509v3 Authority Key Identifier: keyid:10:F7:74:1C:D1:AF:2B:B3:4C:86:C7:3E:A3:BD:6C:76:D9:96:8D:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EPd0HNGvK7NMhsc-o71sdtmWjQ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/def7ce-25d4-43c1-8eae-1a64cf21a604/1/cLW-rzfQIYF9Ip7K5f5c4fVxT_0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/def7ce-25d4-43c1-8eae-1a64cf21a604/1/EPd0HNGvK7NMhsc-o71sdtmWjQ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.37.7.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:28:e7:ac:66:4c:23:1a:a4:08:bd:35:4f:ca:3b:84:34:a8: d8:b5:41:f8:22:3e:c0:bf:cf:d4:a9:05:b8:7b:70:4e:5c:3b: 10:4e:19:85:f7:6c:13:a7:c6:88:10:88:7e:86:d1:85:af:0a: 34:26:f7:93:47:64:8f:ba:8c:14:d9:60:f0:dc:35:e5:4f:8a: 5d:7c:8e:33:11:db:07:4c:25:31:7c:d8:d5:07:ef:d1:9a:93: 5c:48:9c:2c:b6:00:15:2f:31:54:d5:89:06:f6:c8:f0:b8:95: be:68:88:34:f0:6a:a5:b8:51:2b:c1:61:66:0f:d7:35:80:1f: 22:df:d9:42:6d:47:a7:51:94:49:82:20:9d:1d:70:25:bc:e9: 11:b1:f2:ef:41:22:0a:ce:59:4f:70:aa:63:00:dc:d3:c5:e9: 5a:f3:9e:30:12:7f:d6:2a:bc:1a:68:26:37:24:04:b5:fc:78: 79:35:03:33:c1:8e:ea:ce:f7:02:71:10:52:ca:be:bf:fb:18: d1:7b:af:ed:29:44:60:86:ba:c9:a0:1e:4f:70:a9:f4:c7:8a: 65:c1:ab:f3:44:d3:30:1d:44:25:a1:28:7f:b2:e9:10:3c:45: 4b:f2:99:26:5d:f0:06:14:d0:8a:31:99:99:b8:8f:a2:66:fc: 8d:6f:65:b9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3WHqICil2nFzFZat8ZiAuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEwZjc3NDFjZDFhZjJiYjM0Yzg2YzczZWEzYmQ2Yzc2ZDk5 NjhkMGQwHhcNMjYwMTAxMDIxNzI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MGI1YmVhZjM3ZDAyMTgxN2QyMjllY2FlNWZlNWNlMWY1NzE0ZmZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz/8ZCnEZOzHgxLI9b85i3iBVY/PF WcdrEtJlXqT8kwgXyJaC1IQUW3KGqHzL7fclOWCkOCR9Pxs1v/9uhW7aPLpbg9mT 2wZRmpqcdUlDL/G0pK3NCeBYZxWFrX47KpdOSY203YDHhrxx3tQwjFDcmUC3ELV4 gGIasNheV+yRZy43pDMutKjdqBww17oyyrjmap/8GjvC4auAQxCGr0AFc5up4HvV ogfCc9XaitsiH/2dOIRqyFWxct5enrcDsOiOWnixvThKbzh/80AB0QaMz5nLh9K4 uG3UBFiTZxbzBWyJflGxeHKtZi1yQgmMPEULbTGB0Th4lR1BMql1yqFc1wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHC1vq830CGBfSKeyuX+XOH1cU/9MB8GA1UdIwQY MBaAFBD3dBzRryuzTIbHPqO9bHbZlo0NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRVBkMEhOR3ZLN05NaHNjLW83MXNkdG1XalEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi9kZWY3Y2UtMjVkNC00M2MxLThlYWUt MWE2NGNmMjFhNjA0LzEvY0xXLXJ6ZlFJWUY5SXA3SzVmNWM0ZlZ4VF8wLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYi9kZWY3Y2UtMjVkNC00M2MxLThlYWUtMWE2NGNmMjFhNjA0 LzEvRVBkMEhOR3ZLN05NaHNjLW83MXNkdG1XalEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuSUHMA0G CSqGSIb3DQEBCwUAA4IBAQA6KOesZkwjGqQIvTVPyjuENKjYtUH4Ij7Av8/UqQW4 e3BOXDsQThmF92wTp8aIEIh+htGFrwo0JveTR2SPuowU2WDw3DXlT4pdfI4zEdsH TCUxfNjVB+/RmpNcSJwstgAVLzFU1YkG9sjwuJW+aIg08GqluFErwWFmD9c1gB8i 39lCbUenUZRJgiCdHXAlvOkRsfLvQSIKzllPcKpjANzTxela854wEn/WKrwaaCY3 JAS1/Hh5NQMzwY7qzvcCcRBSyr6/+xjRe6/tKURghrrJoB5PcKn0x4plwavzRNMw HUQloSh/sukQPEVL8pkmXfAGFNCKMZmZuI+iZvyNb2W5 -----END CERTIFICATE-----Generated at Sun Jan 25 19:36:30 2026 by rpki-client