This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/W1I4zwk5u62kEWKU3w3ttcGBy2k.roa File: W1I4zwk5u62kEWKU3w3ttcGBy2k.roa (raw, json) Hash identifier: m2lBjL0FDEr7OnguUKCR+j/T0K4u4HNIAXm6k1LnPZo= Subject key identifier: 5B:52:38:CF:09:39:BB:AD:A4:11:62:94:DF:0D:ED:B5:C1:81:CB:69 Certificate issuer: /CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895 Certificate serial: 019B7B3562E46AC46349768CB5E8DFBF9E3B Authority key identifier: B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/W1I4zwk5u62kEWKU3w3ttcGBy2k.roa Signing time: Thu 01 Jan 2026 20:17:34 +0000 ROA not before: Thu 01 Jan 2026 20:17:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201803 IP address blocks: 185.63.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.crl rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.mft rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:62:e4:6a:c4:63:49:76:8c:b5:e8:df:bf:9e:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895 Validity Not Before: Jan 1 20:17:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5b5238cf0939bbada4116294df0dedb5c181cb69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:7d:8c:de:97:7d:9a:19:94:43:9a:4f:53:40: 58:01:58:1e:ad:cb:78:a9:1b:9d:1a:a0:38:0a:a6: a1:ec:ab:f7:28:7f:f1:ce:83:96:af:7a:e4:0e:a5: 94:e5:b6:11:82:ff:7c:bb:d3:b9:ea:6d:6e:73:5b: e8:31:9b:70:f5:27:d4:a3:b4:26:6b:24:ae:54:46: 54:2d:eb:e4:67:d7:2b:2e:93:b9:ba:1c:f8:a9:6f: 00:c2:f7:a4:1c:92:8c:ea:e5:8f:de:13:87:a3:43: 92:69:d1:9d:f2:81:0e:0f:1c:50:f4:b6:39:e3:2c: ee:db:99:28:35:9b:32:f7:9a:e3:b4:a3:ea:f2:a7: f5:c7:5e:ef:60:a3:b7:69:8f:58:16:10:4d:f5:ab: 97:c4:aa:7f:7b:df:00:5a:83:cd:25:63:58:f9:55: 59:39:ac:47:ab:16:b2:c9:fd:9d:47:72:46:05:2d: a5:21:3b:bd:98:63:51:15:a7:fb:8c:d3:4b:36:64: 75:52:a3:07:ea:81:8d:01:c0:56:ce:34:2a:13:16: c5:07:fe:0f:3a:d4:4b:40:c4:ef:c4:f8:bf:ed:f9: a5:a1:4a:9d:5c:85:55:07:3f:92:28:40:1f:90:ac: 9a:f6:71:cf:94:c2:ce:1f:0e:f9:21:80:a9:46:05: 4a:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:52:38:CF:09:39:BB:AD:A4:11:62:94:DF:0D:ED:B5:C1:81:CB:69 X509v3 Authority Key Identifier: keyid:B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/W1I4zwk5u62kEWKU3w3ttcGBy2k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.63.32.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:67:24:3d:d8:26:ea:21:dd:91:6d:b3:da:87:8a:d0:98:66: ce:6f:fd:8b:d5:f7:6b:36:05:f8:a8:a1:e4:d6:c4:3e:c8:b4: 65:b2:64:71:4c:19:ac:96:d0:4e:5e:52:84:20:6e:92:51:d2: 86:d6:60:50:f7:2f:3a:ff:d3:ba:73:67:71:60:9c:aa:c4:ee: e6:ab:c6:39:9f:e0:1c:ee:1c:f7:74:f9:66:61:2a:1f:09:bf: 59:44:a5:95:46:ae:76:73:7c:8c:63:da:a3:b4:55:fc:32:23: dd:43:6d:99:ee:48:b6:4d:b0:a8:d6:ab:e2:b3:a5:4a:08:b9: 10:4f:33:22:2e:60:69:6a:1a:df:c2:42:54:36:35:8e:cb:f4: 4a:ac:14:3d:f5:58:c1:e8:8d:05:3d:9e:41:a8:9a:c2:c1:c5: 74:e9:78:42:d1:78:0f:07:15:3a:98:fd:23:7a:be:30:c5:ee: 05:b5:08:e4:f3:df:93:0c:9d:63:e9:18:66:01:61:cc:fa:81: d6:e6:ce:e8:f7:4c:4c:5c:c4:41:b9:3c:f0:ed:ce:33:1a:d2: 26:17:43:13:d2:80:da:8f:4b:19:5d:0c:2a:59:2c:cb:62:f3: e3:8e:d8:a8:e3:bd:b0:45:81:06:95:db:b4:45:5e:cb:a2:a8: 4f:25:50:6f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7NWLkasRjSXaMtejfv547MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzZGQxMWQzNDZiNjNiYjFlYjIyYTA3YzI2Y2MxMjkxYTJh MDY4OTUwHhcNMjYwMTAxMjAxNzM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YjUyMzhjZjA5MzliYmFkYTQxMTYyOTRkZjBkZWRiNWMxODFjYjY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqH2M3pd9mhmUQ5pPU0BYAVgerct4 qRudGqA4Cqah7Kv3KH/xzoOWr3rkDqWU5bYRgv98u9O56m1uc1voMZtw9SfUo7Qm aySuVEZULevkZ9crLpO5uhz4qW8AwvekHJKM6uWP3hOHo0OSadGd8oEODxxQ9LY5 4yzu25koNZsy95rjtKPq8qf1x17vYKO3aY9YFhBN9auXxKp/e98AWoPNJWNY+VVZ OaxHqxayyf2dR3JGBS2lITu9mGNRFaf7jNNLNmR1UqMH6oGNAcBWzjQqExbFB/4P OtRLQMTvxPi/7fmloUqdXIVVBz+SKEAfkKya9nHPlMLOHw75IYCpRgVK5QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFtSOM8JObutpBFilN8N7bXBgctpMB8GA1UdIwQY MBaAFLPdEdNGtjux6yKgfCbMEpGioGiVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczkwUjAwYTJPN0hySXFCOEpzd1NrYUtnYUpVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny9hNDE4OTgtZGEwOC00NjlkLWJlMWEt OGJiYzIyNmU2YzQ1LzEvVzFJNHp3azV1NjJrRVdLVTN3M3R0Y0dCeTJrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ny9hNDE4OTgtZGEwOC00NjlkLWJlMWEtOGJiYzIyNmU2YzQ1 LzEvczkwUjAwYTJPN0hySXFCOEpzd1NrYUtnYUpVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuT8gMA0G CSqGSIb3DQEBCwUAA4IBAQCPZyQ92CbqId2RbbPah4rQmGbOb/2L1fdrNgX4qKHk 1sQ+yLRlsmRxTBmsltBOXlKEIG6SUdKG1mBQ9y86/9O6c2dxYJyqxO7mq8Y5n+Ac 7hz3dPlmYSofCb9ZRKWVRq52c3yMY9qjtFX8MiPdQ22Z7ki2TbCo1qvis6VKCLkQ TzMiLmBpahrfwkJUNjWOy/RKrBQ99VjB6I0FPZ5BqJrCwcV06XhC0XgPBxU6mP0j er4wxe4FtQjk89+TDJ1j6RhmAWHM+oHW5s7o90xMXMRBuTzw7c4zGtImF0MT0oDa j0sZXQwqWSzLYvPjjtio472wRYEGldu0RV7LoqhPJVBv -----END CERTIFICATE-----Generated at Tue Feb 10 04:31:12 2026 by rpki-client