This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/WqRwXkUn8KHuf5Buu_gNSHkmyMo.roa File: WqRwXkUn8KHuf5Buu_gNSHkmyMo.roa (raw, json) Hash identifier: fm85o/SnABUKLrGxlQ0W5KYMpRNELSxvLU5vosEpYQo= Subject key identifier: 5A:A4:70:5E:45:27:F0:A1:EE:7F:90:6E:BB:F8:0D:48:79:26:C8:CA Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7 Certificate serial: 019AEDAB7CB7FC6C2BEE3BA50B5C04FEB491 Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/WqRwXkUn8KHuf5Buu_gNSHkmyMo.roa Signing time: Fri 05 Dec 2025 08:40:30 +0000 ROA not before: Fri 05 Dec 2025 08:40:30 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 0 IP address blocks: 193.124.4.0/24 maxlen: 24 193.124.7.0/24 maxlen: 24 193.124.89.0/24 maxlen: 24 193.124.226.0/24 maxlen: 24 194.58.58.0/24 maxlen: 24 194.58.155.0/24 maxlen: 24 194.58.223.0/24 maxlen: 24 194.87.52.0/24 maxlen: 24 194.87.53.0/24 maxlen: 24 194.87.59.0/24 maxlen: 24 194.87.75.0/24 maxlen: 24 194.87.78.0/24 maxlen: 24 194.87.119.0/24 maxlen: 24 194.87.136.0/24 maxlen: 24 194.87.169.0/24 maxlen: 24 194.87.179.0/24 maxlen: 24 194.87.193.0/24 maxlen: 24 194.87.194.0/24 maxlen: 24 194.87.195.0/24 maxlen: 24 194.87.228.0/24 maxlen: 24 194.135.24.0/24 maxlen: 24 195.133.19.0/24 maxlen: 24 195.133.24.0/23 maxlen: 23 195.133.29.0/24 maxlen: 24 195.133.40.0/23 maxlen: 23 195.133.50.0/23 maxlen: 23 195.133.58.0/24 maxlen: 24 195.133.92.0/23 maxlen: 23 212.192.241.0/24 maxlen: 24 212.192.249.0/24 maxlen: 24 212.193.0.0/24 maxlen: 24 212.193.8.0/24 maxlen: 24 212.193.26.0/23 maxlen: 23 2a01:57c0::/29 maxlen: 29 2a0c:ff40::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.mft rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 08:40:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:ed:ab:7c:b7:fc:6c:2b:ee:3b:a5:0b:5c:04:fe:b4:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7 Validity Not Before: Dec 5 08:40:30 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=5aa4705e4527f0a1ee7f906ebbf80d487926c8ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:46:c2:1e:52:6c:76:a9:4a:46:16:99:81:80: 6f:13:db:da:1d:e1:86:ea:1b:59:ec:bd:27:b0:3d: 22:bb:ff:dc:1b:a1:51:e6:ef:fb:e5:60:b3:54:6f: ec:af:95:30:8d:f3:00:26:31:87:89:59:e2:5c:b6: 69:c1:d1:a5:21:c1:2c:56:2a:4f:61:26:ab:92:20: f7:d4:57:d8:c7:2d:28:1b:ea:61:4c:63:53:c5:33: 6f:2e:59:f2:d0:54:58:7d:76:6e:62:1d:66:57:c9: 67:a6:7b:90:0b:21:99:4b:a6:4c:16:68:3f:34:66: b2:ee:7c:ec:c4:3f:a3:61:d6:10:ec:48:3b:a9:33: 5e:b9:01:26:0c:a1:1c:22:46:2c:c1:3f:2d:24:09: 4e:b5:dc:f4:bb:74:c9:03:f8:6b:aa:fb:1f:6c:fc: 92:7a:b2:92:f2:00:8e:ae:32:97:b6:d5:0f:6a:1e: 14:a0:50:ee:2a:d7:aa:22:74:4d:7d:ee:31:c6:2a: d3:e6:47:cc:76:2e:5d:7b:6a:04:85:8c:a7:f8:7d: bf:71:8b:e4:75:aa:d5:9a:8d:0f:00:8c:bd:91:fc: d3:3f:8e:51:e3:e3:b8:5e:b4:0b:87:35:c9:9e:14: 7a:44:05:f4:3e:20:62:48:13:ad:e6:f8:03:97:32: fb:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:A4:70:5E:45:27:F0:A1:EE:7F:90:6E:BB:F8:0D:48:79:26:C8:CA X509v3 Authority Key Identifier: keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/WqRwXkUn8KHuf5Buu_gNSHkmyMo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.124.4.0/24 193.124.7.0/24 193.124.89.0/24 193.124.226.0/24 194.58.58.0/24 194.58.155.0/24 194.58.223.0/24 194.87.52.0/23 194.87.59.0/24 194.87.75.0/24 194.87.78.0/24 194.87.119.0/24 194.87.136.0/24 194.87.169.0/24 194.87.179.0/24 194.87.193.0-194.87.195.255 194.87.228.0/24 194.135.24.0/24 195.133.19.0/24 195.133.24.0/23 195.133.29.0/24 195.133.40.0/23 195.133.50.0/23 195.133.58.0/24 195.133.92.0/23 212.192.241.0/24 212.192.249.0/24 212.193.0.0/24 212.193.8.0/24 212.193.26.0/23 IPv6: 2a01:57c0::/29 2a0c:ff40::/29 Signature Algorithm: sha256WithRSAEncryption 10:b5:96:6a:99:cd:d0:1c:97:b9:f8:11:87:9e:1e:d5:17:9b: 4f:cb:23:6b:b9:c2:46:34:75:1f:1d:d2:32:8d:0b:f2:7a:e2: 2c:9a:27:0e:2f:9f:59:b1:b7:a6:a6:15:cf:fa:bd:71:3c:2d: df:a2:9a:77:85:ab:75:f8:e0:d4:3f:90:70:33:4e:ec:fa:c1: eb:29:0e:91:f9:e5:36:a8:2e:33:b6:4c:b6:ea:6c:81:46:ea: 7a:9b:aa:11:5d:04:17:9e:56:71:bc:7d:b9:30:3a:68:f7:97: 4e:7d:e7:b9:e3:32:a0:11:3e:ee:a6:0a:f9:7a:e5:b0:be:c7: 34:19:cc:08:24:2f:07:93:e1:2e:cd:fe:b2:9a:f1:9e:fc:7d: e6:66:5f:04:3f:74:17:fe:f8:76:c5:ca:a0:bf:d6:b7:be:59: eb:1c:e4:e7:5e:45:98:cf:72:c4:eb:a0:3d:c4:e3:20:27:8f: af:48:07:e5:88:24:33:71:09:b8:69:e9:89:58:9a:69:86:c4: a9:6b:a5:ef:38:01:36:46:de:35:de:d7:25:25:64:35:5f:85: db:96:26:e7:1c:96:81:e0:3b:b4:26:c6:63:e4:ee:18:43:e0: d0:55:cd:e6:c0:1b:78:f3:87:b2:01:db:42:70:86:c1:db:f4: 19:a4:ef:af -----BEGIN CERTIFICATE----- MIIFzjCCBLagAwIBAgISAZrtq3y3/Gwr7julC1wE/rSRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw ZTFhYzcwHhcNMjUxMjA1MDg0MDMwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YWE0NzA1ZTQ1MjdmMGExZWU3ZjkwNmViYmY4MGQ0ODc5MjZjOGNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwUbCHlJsdqlKRhaZgYBvE9vaHeGG 6htZ7L0nsD0iu//cG6FR5u/75WCzVG/sr5UwjfMAJjGHiVniXLZpwdGlIcEsVipP YSarkiD31FfYxy0oG+phTGNTxTNvLlny0FRYfXZuYh1mV8lnpnuQCyGZS6ZMFmg/ NGay7nzsxD+jYdYQ7Eg7qTNeuQEmDKEcIkYswT8tJAlOtdz0u3TJA/hrqvsfbPyS erKS8gCOrjKXttUPah4UoFDuKteqInRNfe4xxirT5kfMdi5de2oEhYyn+H2/cYvk darVmo0PAIy9kfzTP45R4+O4XrQLhzXJnhR6RAX0PiBiSBOt5vgDlzL7HQIDAQAB o4IC2jCCAtYwHQYDVR0OBBYEFFqkcF5FJ/Ch7n+Qbrv4DUh5JsjKMB8GA1UdIwQY MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt NWE0MjQyOGYxMTQzLzEvV3FSd1hrVW44S0h1ZjVCdXVfZ05TSGtteU1vLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIHvBggrBgEFBQcBBwEB/wSB3zCB3DCBwwQCAAEwgbwDBADB fAQDBADBfAcDBADBfFkDBADBfOIDBADCOjoDBADCOpsDBADCOt8DBAHCVzQDBADC VzsDBADCV0sDBADCV04DBADCV3cDBADCV4gDBADCV6kDBADCV7MwDAMEAMJXwQME AsJXwAMEAMJX5AMEAMKHGAMEAMOFEwMEAcOFGAMEAMOFHQMEAcOFKAMEAcOFMgME AMOFOgMEAcOFXAMEANTA8QMEANTA+QMEANTBAAMEANTBCAMEAdTBGjAUBAIAAjAO AwUDKgFXwAMFAyoM/0AwDQYJKoZIhvcNAQELBQADggEBABC1lmqZzdAcl7n4EYee HtUXm0/LI2u5wkY0dR8d0jKNC/J64iyaJw4vn1mxt6amFc/6vXE8Ld+imneFq3X4 4NQ/kHAzTuz6wespDpH55TaoLjO2TLbqbIFG6nqbqhFdBBeeVnG8fbkwOmj3l059 57njMqARPu6mCvl65bC+xzQZzAgkLweT4S7N/rKa8Z78feZmXwQ/dBf++HbFyqC/ 1re+Wesc5OdeRZjPcsTroD3E4yAnj69IB+WIJDNxCbhp6YlYmmmGxKlrpe84ATZG 3jXe1yUlZDVfhduWJuccloHgO7QmxmPk7hhD4NBVzebAG3jzh7IB20JwhsHb9Bmk 768= -----END CERTIFICATE-----Generated at Fri Dec 5 16:35:41 2025 by rpki-client