This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/1-cwyEK3E-ekAxzk2slqyOlt5L-c.roa File: 1-cwyEK3E-ekAxzk2slqyOlt5L-c.roa (raw, json) Hash identifier: OQwbkd1FgtuM9j49XLLfCMHBYSIyfWsMmIfafispsOg= Subject key identifier: F9:CC:32:10:AD:C4:F9:E9:00:C7:39:36:B2:5A:B2:3A:5B:79:2F:E7 Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7 Certificate serial: 019B7F8554901A7E76F17CEA12A8A5E71811 Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/1-cwyEK3E-ekAxzk2slqyOlt5L-c.roa Signing time: Fri 02 Jan 2026 16:23:22 +0000 ROA not before: Fri 02 Jan 2026 16:23:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 53356 IP address blocks: 195.133.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.mft rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 13:02:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:54:90:1a:7e:76:f1:7c:ea:12:a8:a5:e7:18:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7 Validity Not Before: Jan 2 16:23:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f9cc3210adc4f9e900c73936b25ab23a5b792fe7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c2:bb:0f:8d:d4:55:ee:b0:c6:36:85:d5:cb: c0:e2:2f:ab:51:83:59:5d:74:ce:7f:65:e4:3d:c8: b0:0c:d1:59:a4:9b:98:bc:86:0a:03:71:ef:e9:c2: 42:c8:e1:7f:d8:16:65:14:55:e3:65:a2:ee:2e:ef: 32:82:06:db:84:f8:f0:d0:9e:a4:6e:0b:89:7c:d6: 9b:a5:e0:bd:65:7e:f7:0a:80:02:a0:fe:a8:dc:b7: 29:b7:5e:3c:ab:7a:9d:b2:72:6c:4c:fe:67:a9:ba: 1d:a0:c6:f8:cb:77:4c:f9:55:43:29:fc:58:f7:79: b4:19:c2:15:c5:1a:9c:79:5f:3a:4b:1f:59:47:d0: ca:ad:a7:3d:36:45:7a:35:76:ed:99:1e:a2:4e:f4: c1:be:e1:62:fb:48:61:b5:ea:60:93:44:20:d5:2b: 5a:94:a1:d3:4b:ee:c7:df:6f:77:47:cc:cb:2b:d2: ae:1e:64:2f:72:2f:c0:ac:00:01:09:b4:50:f1:33: 89:09:53:db:00:06:63:1f:79:4a:62:0e:b0:96:76: 1f:54:97:8c:c2:03:8f:c1:9c:c7:87:46:92:85:b4: 8a:cd:12:dc:5c:2c:b2:3b:b5:f9:4b:ec:76:2b:6f: d9:c5:15:8e:d5:b5:6a:48:fe:93:04:b0:6d:0c:d4: 74:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:CC:32:10:AD:C4:F9:E9:00:C7:39:36:B2:5A:B2:3A:5B:79:2F:E7 X509v3 Authority Key Identifier: keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/1-cwyEK3E-ekAxzk2slqyOlt5L-c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.133.17.0/24 Signature Algorithm: sha256WithRSAEncryption 29:6f:64:c4:fe:95:01:e5:19:74:d0:19:83:73:95:14:9f:5f: 94:0e:73:27:b8:15:e0:dc:fa:b1:9d:ed:79:17:7d:bf:92:b9: 91:b4:cc:37:eb:26:60:14:91:1b:1f:78:bf:4c:57:06:29:ba: 38:d0:2e:eb:aa:29:e1:f5:fc:43:b5:53:b2:3d:28:cc:07:ca: 0e:af:b8:70:de:6b:4d:45:10:9d:28:95:07:79:b3:5b:1f:50: 79:f3:f1:91:6b:44:84:7b:bb:61:fc:5a:fc:70:18:ee:a2:2f: 8b:a6:4d:0f:ce:4e:47:c7:fc:69:fb:c9:7b:16:2b:3f:95:e2: 1c:7f:07:82:36:d0:89:af:d1:73:2d:39:38:c7:4f:11:1c:76: cc:da:9a:a9:44:cd:be:8e:88:e7:5f:4d:04:4e:d1:1a:49:c7: ac:5e:f2:c2:b4:37:9d:1c:51:17:3d:24:60:71:1b:b9:b2:ba: 11:1e:e9:16:33:a5:95:c6:1b:a2:3b:f6:68:14:f4:89:0e:c1: ad:56:7e:6f:a1:33:91:2f:95:62:ad:50:0f:6d:0e:5e:70:37: 17:5b:e5:19:7d:19:7a:eb:42:e8:47:8e:70:8e:3d:91:a5:14: b3:5d:01:a3:e2:41:d8:a0:28:ca:f5:c7:04:a2:ab:bf:7f:92: 58:64:1f:60 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt/hVSQGn528XzqEqil5xgRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw ZTFhYzcwHhcNMjYwMTAyMTYyMzIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmOWNjMzIxMGFkYzRmOWU5MDBjNzM5MzZiMjVhYjIzYTViNzkyZmU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApMK7D43UVe6wxjaF1cvA4i+rUYNZ XXTOf2XkPciwDNFZpJuYvIYKA3Hv6cJCyOF/2BZlFFXjZaLuLu8yggbbhPjw0J6k bguJfNabpeC9ZX73CoACoP6o3Lcpt148q3qdsnJsTP5nqbodoMb4y3dM+VVDKfxY 93m0GcIVxRqceV86Sx9ZR9DKrac9NkV6NXbtmR6iTvTBvuFi+0hhtepgk0Qg1Sta lKHTS+7H3293R8zLK9KuHmQvci/ArAABCbRQ8TOJCVPbAAZjH3lKYg6wlnYfVJeM wgOPwZzHh0aShbSKzRLcXCyyO7X5S+x2K2/ZxRWO1bVqSP6TBLBtDNR0hQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFPnMMhCtxPnpAMc5NrJasjpbeS/nMB8GA1UdIwQY MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt NWE0MjQyOGYxMTQzLzEvMS1jd3lFSzNFLWVrQXh6azJzbHF5T2x0NUwtYy5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvMDAvZTE0NDdhLThmMTgtNGE4MC1hNDIyLTVhNDI0MjhmMTE0 My8xL05Xa1BYakxWeUdyeDRUU2RfVTZNN3JjT0dzYy5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMOFETAN BgkqhkiG9w0BAQsFAAOCAQEAKW9kxP6VAeUZdNAZg3OVFJ9flA5zJ7gV4Nz6sZ3t eRd9v5K5kbTMN+smYBSRGx94v0xXBim6ONAu66op4fX8Q7VTsj0ozAfKDq+4cN5r TUUQnSiVB3mzWx9QefPxkWtEhHu7Yfxa/HAY7qIvi6ZND85OR8f8afvJexYrP5Xi HH8HgjbQia/Rcy05OMdPERx2zNqaqUTNvo6I519NBE7RGknHrF7ywrQ3nRxRFz0k YHEbubK6ER7pFjOllcYbojv2aBT0iQ7BrVZ+b6EzkS+VYq1QD20OXnA3F1vlGX0Z eutC6EeOcI49kaUUs10Bo+JB2KAoyvXHBKKrv3+SWGQfYA== -----END CERTIFICATE-----Generated at Mon Jan 19 20:01:06 2026 by rpki-client