This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/CWm4ghtnXdhF2lpLVnPbwX5vDbo.roa File: CWm4ghtnXdhF2lpLVnPbwX5vDbo.roa (raw, json) Hash identifier: M3dqujH2MQ/STjhVQYB3kEdRsWanGPx9Y/ZVCUe5e9A= Subject key identifier: 09:69:B8:82:1B:67:5D:D8:45:DA:5A:4B:56:73:DB:C1:7E:6F:0D:BA Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b Certificate serial: 019B7CED85C11715731FC8517344BBA47D97 Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/CWm4ghtnXdhF2lpLVnPbwX5vDbo.roa Signing time: Fri 02 Jan 2026 04:18:19 +0000 ROA not before: Fri 02 Jan 2026 04:18:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57705 IP address blocks: 85.187.17.0/24 maxlen: 24 85.187.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.mft rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 13:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:85:c1:17:15:73:1f:c8:51:73:44:bb:a4:7d:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b Validity Not Before: Jan 2 04:18:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0969b8821b675dd845da5a4b5673dbc17e6f0dba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:73:bd:ee:e6:27:56:02:ab:01:44:2b:a4:18: eb:82:96:d4:c8:7c:76:57:2c:f5:f9:a4:a3:26:9c: 6f:4a:54:a5:19:5f:f1:24:65:93:27:19:a4:8e:44: 5b:38:84:d4:e1:e8:c6:94:7e:46:a3:87:b8:7e:2c: a3:3a:22:3e:19:23:7e:5d:ea:98:79:a1:b4:fa:fa: 42:57:7e:27:83:42:c6:d3:42:47:6e:25:30:6d:12: fb:43:97:93:15:ae:f2:55:37:73:b6:8e:18:25:96: 8d:ec:12:99:7b:00:da:54:6c:9a:e0:15:cb:63:94: ba:00:b6:d3:58:45:0b:79:b1:0a:55:49:bd:20:e8: 17:cf:1b:4d:9b:e1:6b:4f:41:d9:ba:ec:af:bf:4b: e4:82:bf:9a:98:f3:6a:23:dd:ae:74:9f:3b:60:4d: 55:2d:4f:aa:79:c0:4c:8b:90:7b:18:5f:35:19:9e: 3f:7c:d8:46:57:03:82:17:a3:d4:b3:d4:b8:32:4f: fe:fa:4a:b5:c2:ae:99:64:8a:b4:5b:2f:c0:b9:47: 71:78:57:6b:3e:f4:45:48:3d:f8:ab:c3:da:bd:54: e2:7e:8f:95:01:f4:c2:f8:89:04:7f:26:17:1d:ab: 4b:46:9b:b4:a0:05:e8:a2:c5:c3:05:27:27:4d:d8: 95:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:69:B8:82:1B:67:5D:D8:45:DA:5A:4B:56:73:DB:C1:7E:6F:0D:BA X509v3 Authority Key Identifier: keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/CWm4ghtnXdhF2lpLVnPbwX5vDbo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.187.17.0/24 85.187.43.0/24 Signature Algorithm: sha256WithRSAEncryption 48:d9:64:92:b4:4b:e7:93:53:e6:68:d5:91:eb:6c:1c:bc:0f: 82:6c:c5:72:6b:db:c3:ca:33:dd:05:90:9d:48:56:d1:1d:0d: 75:e9:4a:15:20:38:03:98:73:1f:24:57:b3:ec:17:0c:71:bd: ff:c7:ff:5b:54:0d:e8:81:ef:a1:e9:19:a7:59:b3:96:e3:1c: 86:bf:b6:38:96:fd:d5:d8:e0:44:73:fa:cc:83:13:d9:b3:e1: 1b:cd:aa:03:0a:52:75:5d:8d:5b:ec:2d:38:5c:1e:de:b0:c5: 46:31:78:37:cc:48:4a:5a:bc:3e:c7:08:13:da:62:61:b1:bf: b5:31:ef:62:84:ea:eb:2a:b6:34:38:ec:60:5a:a4:8a:04:38: 42:5b:9f:79:30:13:1b:6d:0b:ad:45:89:77:f8:a9:16:08:28: 95:2f:2d:1b:d4:26:eb:3e:5d:e4:0e:35:d8:fe:28:0b:c0:7d: 4f:4e:d0:da:3b:06:e8:41:a2:39:7e:04:c7:83:6a:dd:ad:c8: 31:6b:b0:10:ec:77:d5:e9:c7:4d:c1:0d:03:8e:49:3c:dd:82: 76:c0:89:e6:42:36:3c:45:ee:0e:97:d1:52:00:20:05:9b:61: 2a:64:33:12:53:04:55:df:e8:3d:44:09:46:56:5b:06:86:64: 96:23:e3:af -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt87YXBFxVzH8hRc0S7pH2XMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZlYmYzMDIwMWYxMmEwNDBkMzg2ZDJiNGVlZDQ0ODQ2MjNl NGQxMWIwHhcNMjYwMTAyMDQxODE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwOTY5Yjg4MjFiNjc1ZGQ4NDVkYTVhNGI1NjczZGJjMTdlNmYwZGJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5XO97uYnVgKrAUQrpBjrgpbUyHx2 Vyz1+aSjJpxvSlSlGV/xJGWTJxmkjkRbOITU4ejGlH5Go4e4fiyjOiI+GSN+XeqY eaG0+vpCV34ng0LG00JHbiUwbRL7Q5eTFa7yVTdzto4YJZaN7BKZewDaVGya4BXL Y5S6ALbTWEULebEKVUm9IOgXzxtNm+FrT0HZuuyvv0vkgr+amPNqI92udJ87YE1V LU+qecBMi5B7GF81GZ4/fNhGVwOCF6PUs9S4Mk/++kq1wq6ZZIq0Wy/AuUdxeFdr PvRFSD34q8PavVTifo+VAfTC+IkEfyYXHatLRpu0oAXoosXDBScnTdiVcQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFAlpuIIbZ13YRdpaS1Zz28F+bw26MB8GA1UdIwQY MBaAFP6/MCAfEqBA04bStO7USEYj5NEbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX3I4d0lCOFNvRURUaHRLMDd0UklSaVBrMFJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy9mOGM0YTItOTZhYy00YjRlLWExOTUt YTk3YzBkYzBhNzQ5LzEvQ1dtNGdodG5YZGhGMmxwTFZuUGJ3WDV2RGJvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYy9mOGM0YTItOTZhYy00YjRlLWExOTUtYTk3YzBkYzBhNzQ5 LzEvX3I4d0lCOFNvRURUaHRLMDd0UklSaVBrMFJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAVbsRAwQA VbsrMA0GCSqGSIb3DQEBCwUAA4IBAQBI2WSStEvnk1PmaNWR62wcvA+CbMVya9vD yjPdBZCdSFbRHQ116UoVIDgDmHMfJFez7BcMcb3/x/9bVA3oge+h6RmnWbOW4xyG v7Y4lv3V2OBEc/rMgxPZs+EbzaoDClJ1XY1b7C04XB7esMVGMXg3zEhKWrw+xwgT 2mJhsb+1Me9ihOrrKrY0OOxgWqSKBDhCW595MBMbbQutRYl3+KkWCCiVLy0b1Cbr Pl3kDjXY/igLwH1PTtDaOwboQaI5fgTHg2rdrcgxa7AQ7HfV6cdNwQ0Djkk83YJ2 wInmQjY8Re4Ol9FSACAFm2EqZDMSUwRV3+g9RAlGVlsGhmSWI+Ov -----END CERTIFICATE-----Generated at Fri Jan 23 21:16:07 2026 by rpki-client