This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/fffee1-bd46-4523-9eca-705563137d7a/1/_wICQn4-i4QzdIbhvMtwO6EwP8c.roa File: _wICQn4-i4QzdIbhvMtwO6EwP8c.roa (raw, json) Hash identifier: YrDt1Sh4fa2C8YaTwYl+f2XsqsBE5fk+QKt7Ei8e928= Subject key identifier: FF:02:02:42:7E:3E:8B:84:33:74:86:E1:BC:CB:70:3B:A1:30:3F:C7 Certificate issuer: /CN=35d851c114a3f779ea80257b1ee1826acdae4a4e Certificate serial: 019B7FF1FAC78AB97AD37DB5E338CBC316EE Authority key identifier: 35:D8:51:C1:14:A3:F7:79:EA:80:25:7B:1E:E1:82:6A:CD:AE:4A:4E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NdhRwRSj93nqgCV7HuGCas2uSk4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/fffee1-bd46-4523-9eca-705563137d7a/1/_wICQn4-i4QzdIbhvMtwO6EwP8c.roa Signing time: Fri 02 Jan 2026 18:22:03 +0000 ROA not before: Fri 02 Jan 2026 18:22:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42143 IP address blocks: 185.207.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/fffee1-bd46-4523-9eca-705563137d7a/1/NdhRwRSj93nqgCV7HuGCas2uSk4.crl rsync://rpki.ripe.net/repository/DEFAULT/29/fffee1-bd46-4523-9eca-705563137d7a/1/NdhRwRSj93nqgCV7HuGCas2uSk4.mft rsync://rpki.ripe.net/repository/DEFAULT/NdhRwRSj93nqgCV7HuGCas2uSk4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f1:fa:c7:8a:b9:7a:d3:7d:b5:e3:38:cb:c3:16:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35d851c114a3f779ea80257b1ee1826acdae4a4e Validity Not Before: Jan 2 18:22:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ff0202427e3e8b84337486e1bccb703ba1303fc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:2b:f3:55:19:7f:bc:7b:04:45:00:ce:67:e2: 43:91:e6:48:3a:c6:7a:9f:5b:ee:94:7d:0f:90:63: d4:ef:9c:97:bc:09:36:4b:07:89:e7:8f:51:57:99: fb:5f:61:ce:ff:0f:ac:33:c0:d5:00:96:51:80:22: 21:16:fe:ea:e3:03:e3:b3:97:c5:cf:a4:10:b2:80: 1b:ae:6c:f6:63:25:8e:e2:1d:09:f6:a5:a5:fb:95: d1:2d:a1:c1:8e:f1:21:0f:5c:5a:1b:ec:38:41:36: 8a:32:94:b6:ab:19:1d:ab:50:c2:8f:bd:72:bb:0c: 90:99:51:70:08:68:8f:17:ef:48:1a:40:b3:76:df: 38:66:aa:e9:31:d2:e2:39:4f:7f:ef:56:9d:8f:ea: 20:57:40:ab:bd:8f:13:ec:bc:90:ea:a1:cf:e5:a5: d7:67:5b:17:05:d0:3e:c9:55:3c:fb:e2:54:70:6f: 3a:c3:4e:56:f9:3d:b9:89:b0:b5:db:d9:3b:52:52: fc:b8:33:06:59:d0:05:45:94:4a:20:fc:82:f8:18: 9c:bd:1a:8c:98:92:b5:23:fe:d3:1a:a2:b7:0e:89: df:e2:62:f4:1c:8f:8d:a4:83:ca:ff:94:64:45:dc: 61:3d:c0:ec:f6:79:33:b0:df:42:a7:ba:7a:be:70: 5b:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:02:02:42:7E:3E:8B:84:33:74:86:E1:BC:CB:70:3B:A1:30:3F:C7 X509v3 Authority Key Identifier: keyid:35:D8:51:C1:14:A3:F7:79:EA:80:25:7B:1E:E1:82:6A:CD:AE:4A:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NdhRwRSj93nqgCV7HuGCas2uSk4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fffee1-bd46-4523-9eca-705563137d7a/1/_wICQn4-i4QzdIbhvMtwO6EwP8c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fffee1-bd46-4523-9eca-705563137d7a/1/NdhRwRSj93nqgCV7HuGCas2uSk4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.207.52.0/22 Signature Algorithm: sha256WithRSAEncryption b8:d2:65:43:a1:f9:62:8c:16:ab:7f:69:96:86:84:3c:28:53: 70:25:a0:31:66:a6:8d:7d:47:ee:25:b6:58:b6:29:d3:38:98: 60:65:95:5d:aa:fb:70:24:16:7a:75:c4:56:b5:91:f7:3b:37: 5d:02:23:75:85:23:49:c7:33:3b:29:2b:f6:56:b5:b0:a7:27: ee:9a:cd:af:2c:67:a7:f0:68:fe:1b:2e:9d:16:1a:3d:58:a5: 51:54:34:65:8f:5f:2d:a3:c5:a1:8e:c1:d5:10:86:45:be:8f: 51:0a:30:b9:a8:45:08:d9:b7:78:a0:05:5c:be:e4:44:b0:e6: 55:91:0b:2f:7c:1a:9d:62:f6:bf:09:2d:ae:32:ef:94:ef:ae: 9e:ee:28:c5:ad:dd:73:79:06:83:10:48:df:97:fd:87:b7:44: 70:98:a9:2f:2a:20:68:83:21:37:86:e3:1d:97:2b:84:9d:ee: 24:13:3e:ca:b4:c4:a9:50:f9:44:cb:e3:7c:b5:55:8a:e1:14: fd:66:c8:0d:85:9b:e8:a7:a2:e7:11:9a:55:7a:c4:b9:94:c4: a2:3f:24:04:84:99:2d:bb:8f:f1:fb:a9:49:5a:b0:77:f2:b4: ae:e3:64:43:53:0f:07:7a:7f:0b:80:f1:14:51:d6:9b:ad:58: 2e:c5:c6:b9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/8frHirl603214zjLwxbuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1ZDg1MWMxMTRhM2Y3NzllYTgwMjU3YjFlZTE4MjZhY2Rh ZTRhNGUwHhcNMjYwMTAyMTgyMjAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZjAyMDI0MjdlM2U4Yjg0MzM3NDg2ZTFiY2NiNzAzYmExMzAzZmM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxivzVRl/vHsERQDOZ+JDkeZIOsZ6 n1vulH0PkGPU75yXvAk2SweJ549RV5n7X2HO/w+sM8DVAJZRgCIhFv7q4wPjs5fF z6QQsoAbrmz2YyWO4h0J9qWl+5XRLaHBjvEhD1xaG+w4QTaKMpS2qxkdq1DCj71y uwyQmVFwCGiPF+9IGkCzdt84ZqrpMdLiOU9/71adj+ogV0CrvY8T7LyQ6qHP5aXX Z1sXBdA+yVU8++JUcG86w05W+T25ibC129k7UlL8uDMGWdAFRZRKIPyC+BicvRqM mJK1I/7TGqK3Donf4mL0HI+NpIPK/5RkRdxhPcDs9nkzsN9Cp7p6vnBbvwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFP8CAkJ+PouEM3SG4bzLcDuhMD/HMB8GA1UdIwQY MBaAFDXYUcEUo/d56oAlex7hgmrNrkpOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTmRoUndSU2o5M25xZ0NWN0h1R0NhczJ1U2s0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9mZmZlZTEtYmQ0Ni00NTIzLTllY2Et NzA1NTYzMTM3ZDdhLzEvX3dJQ1FuNC1pNFF6ZEliaHZNdHdPNkV3UDhjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS9mZmZlZTEtYmQ0Ni00NTIzLTllY2EtNzA1NTYzMTM3ZDdh LzEvTmRoUndSU2o5M25xZ0NWN0h1R0NhczJ1U2s0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuc80MA0G CSqGSIb3DQEBCwUAA4IBAQC40mVDoflijBarf2mWhoQ8KFNwJaAxZqaNfUfuJbZY tinTOJhgZZVdqvtwJBZ6dcRWtZH3OzddAiN1hSNJxzM7KSv2VrWwpyfums2vLGen 8Gj+Gy6dFho9WKVRVDRlj18to8WhjsHVEIZFvo9RCjC5qEUI2bd4oAVcvuREsOZV kQsvfBqdYva/CS2uMu+U766e7ijFrd1zeQaDEEjfl/2Ht0RwmKkvKiBogyE3huMd lyuEne4kEz7KtMSpUPlEy+N8tVWK4RT9ZsgNhZvop6LnEZpVesS5lMSiPyQEhJkt u4/x+6lJWrB38rSu42RDUw8Hen8LgPEUUdabrVguxca5 -----END CERTIFICATE-----Generated at Tue Feb 10 00:14:52 2026 by rpki-client