This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/FwZwmrBonBKjGUPaxKOdW9tJPZE.roa File: FwZwmrBonBKjGUPaxKOdW9tJPZE.roa (raw, json) Hash identifier: 6AkuMHZSZQWDlZZzrArdItO9G17pQLWA8eR+XLyo3G4= Subject key identifier: 17:06:70:9A:B0:68:9C:12:A3:19:43:DA:C4:A3:9D:5B:DB:49:3D:91 Certificate issuer: /CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f Certificate serial: 019B7F13EC296EF86C07DD469F9CE1BDA8CA Authority key identifier: 08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/FwZwmrBonBKjGUPaxKOdW9tJPZE.roa Signing time: Fri 02 Jan 2026 14:19:30 +0000 ROA not before: Fri 02 Jan 2026 14:19:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41733 IP address blocks: 37.112.248.0/21 maxlen: 21 88.204.96.0/23 maxlen: 23 91.203.168.0/22 maxlen: 22 185.42.80.0/22 maxlen: 22 212.75.224.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.mft rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Feb 2026 23:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:ec:29:6e:f8:6c:07:dd:46:9f:9c:e1:bd:a8:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f Validity Not Before: Jan 2 14:19:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1706709ab0689c12a31943dac4a39d5bdb493d91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:df:20:e3:0b:76:d3:b2:b6:ce:bc:b3:f6:20: 14:c8:a8:83:ae:57:9d:d1:b4:52:a4:a1:97:5b:01: 1e:93:a5:00:8b:41:e3:17:35:d0:01:9b:f1:bf:30: 51:dd:25:89:66:79:e7:90:fd:78:4d:fe:2e:6b:75: 9b:d2:be:3e:bc:f9:79:67:f3:90:23:fe:d2:6b:75: d4:f0:e0:7f:f9:7c:e6:c1:02:d1:e1:cd:55:fd:29: 41:65:fb:bc:32:04:95:b4:f4:d0:b1:6b:25:99:fc: 07:04:e6:f3:72:79:3c:76:92:d6:86:20:0e:84:3d: c3:6b:36:90:42:5a:b8:f6:26:fc:4c:af:2e:fd:04: c4:71:8d:36:b2:f0:89:ee:cf:5a:ef:0a:04:f7:11: 07:45:d0:e3:8f:29:3c:8a:00:68:f6:42:36:ff:c5: 1a:ab:94:52:e2:25:1a:01:9a:d3:2a:0a:b6:10:55: 4f:74:7d:54:60:db:52:64:a0:d1:bb:97:c9:8e:8d: 84:ec:8c:37:ee:63:12:d8:db:d7:8a:2f:35:65:2f: df:89:76:0f:aa:c5:36:94:1b:f4:51:a6:91:ac:31: 40:75:12:97:b4:5b:3d:96:dc:a9:80:6d:8c:df:45: fc:86:51:fe:4b:98:c9:e8:07:f3:f6:69:de:4a:cb: 39:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:06:70:9A:B0:68:9C:12:A3:19:43:DA:C4:A3:9D:5B:DB:49:3D:91 X509v3 Authority Key Identifier: keyid:08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/FwZwmrBonBKjGUPaxKOdW9tJPZE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.112.248.0/21 88.204.96.0/23 91.203.168.0/22 185.42.80.0/22 212.75.224.0/19 Signature Algorithm: sha256WithRSAEncryption cb:aa:c2:d3:4f:de:21:2c:4b:b3:d0:70:94:a3:4b:e7:b1:d3: 19:a0:54:19:4a:ec:3c:fa:9b:6c:81:a0:a3:93:da:81:14:1a: 9b:ed:b6:70:94:e0:e8:7f:62:ed:42:07:59:31:73:2a:e9:4d: 9b:0c:aa:6a:35:75:33:17:8c:b4:ac:3e:fb:a7:71:38:1a:28: 35:cd:58:14:e6:5e:3d:34:c4:73:a9:1f:44:3a:c4:da:d4:1f: 9e:e5:40:ac:2f:46:8f:0c:98:41:53:1a:96:88:03:8e:cc:61: d5:1b:69:5b:a4:0e:fa:a5:86:55:e6:fc:c9:31:af:7e:68:01: 70:47:b8:d2:dd:ad:48:2d:c4:c9:53:19:e5:a9:b8:75:30:2d: 61:af:9e:79:4b:a0:ad:05:c7:27:d4:e1:a5:0f:d1:dd:8b:c3: d7:d4:6c:11:28:03:6c:d8:17:9d:24:53:04:5b:d3:c2:73:bf: 9d:95:b4:48:c2:8e:fc:2d:41:be:3d:6e:f3:03:dd:d3:9f:5d: 90:2f:b7:7a:3c:12:bf:33:53:da:d4:38:fa:b0:d9:43:16:78: 31:74:4a:48:ce:9b:a0:62:09:0e:09:80:94:7c:47:60:a7:7c: 40:cc:47:4f:24:6c:5b:86:fc:50:2f:14:6c:52:26:c1:b6:c3: 7a:88:1b:1f -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZt/E+wpbvhsB91Gn5zhvajKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4MDJiOTVjZTYyMzlkNTI2YzM1YWU3YThlMmNlYjQ4YWVi ODJiNWYwHhcNMjYwMTAyMTQxOTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNzA2NzA5YWIwNjg5YzEyYTMxOTQzZGFjNGEzOWQ1YmRiNDkzZDkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA498g4wt207K2zryz9iAUyKiDrled 0bRSpKGXWwEek6UAi0HjFzXQAZvxvzBR3SWJZnnnkP14Tf4ua3Wb0r4+vPl5Z/OQ I/7Sa3XU8OB/+XzmwQLR4c1V/SlBZfu8MgSVtPTQsWslmfwHBObzcnk8dpLWhiAO hD3DazaQQlq49ib8TK8u/QTEcY02svCJ7s9a7woE9xEHRdDjjyk8igBo9kI2/8Ua q5RS4iUaAZrTKgq2EFVPdH1UYNtSZKDRu5fJjo2E7Iw37mMS2NvXii81ZS/fiXYP qsU2lBv0UaaRrDFAdRKXtFs9ltypgG2M30X8hlH+S5jJ6Afz9mneSss5zQIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFBcGcJqwaJwSoxlD2sSjnVvbST2RMB8GA1UdIwQY MBaAFAgCuVzmI51SbDWueo4s60iuuCtfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0FLNVhPWWpuVkpzTmE1NmppenJTSzY0SzE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8xMGU5NjUtNzQwOS00NGQ4LTk1MDIt Y2YwYWEzZWNhZDI4LzEvRndad21yQm9uQktqR1VQYXhLT2RXOXRKUFpFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC8xMGU5NjUtNzQwOS00NGQ4LTk1MDItY2YwYWEzZWNhZDI4 LzEvQ0FLNVhPWWpuVkpzTmE1NmppenJTSzY0SzE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQDJXD4AwQB WMxgAwQCW8uoAwQCuSpQAwQF1EvgMA0GCSqGSIb3DQEBCwUAA4IBAQDLqsLTT94h LEuz0HCUo0vnsdMZoFQZSuw8+ptsgaCjk9qBFBqb7bZwlODof2LtQgdZMXMq6U2b DKpqNXUzF4y0rD77p3E4Gig1zVgU5l49NMRzqR9EOsTa1B+e5UCsL0aPDJhBUxqW iAOOzGHVG2lbpA76pYZV5vzJMa9+aAFwR7jS3a1ILcTJUxnlqbh1MC1hr555S6Ct Bccn1OGlD9Hdi8PX1GwRKANs2BedJFMEW9PCc7+dlbRIwo78LUG+PW7zA93Tn12Q L7d6PBK/M1Pa1Dj6sNlDFngxdEpIzpugYgkOCYCUfEdgp3xAzEdPJGxbhvxQLxRs UibBtsN6iBsf -----END CERTIFICATE-----Generated at Thu Feb 5 05:57:39 2026 by rpki-client