This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/fd2294-cf37-4fc9-9edd-a4f7b088bc1a/1/pwiFIjpumhUWIjdOd7pHhDryQgk.roa File: pwiFIjpumhUWIjdOd7pHhDryQgk.roa (raw, json) Hash identifier: tch8ibkgczxDF8zVvd/Fp9PTSjy2BXdqhgpD7AwjKoQ= Subject key identifier: A7:08:85:22:3A:6E:9A:15:16:22:37:4E:77:BA:47:84:3A:F2:42:09 Certificate issuer: /CN=32d44919fdd08afb9a4d0a8778923011251dd7f0 Certificate serial: 019B227B13C3BFF4FF0EA2F0AF8226B87754 Authority key identifier: 32:D4:49:19:FD:D0:8A:FB:9A:4D:0A:87:78:92:30:11:25:1D:D7:F0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MtRJGf3QivuaTQqHeJIwESUd1_A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/fd2294-cf37-4fc9-9edd-a4f7b088bc1a/1/pwiFIjpumhUWIjdOd7pHhDryQgk.roa Signing time: Mon 15 Dec 2025 14:47:29 +0000 ROA not before: Mon 15 Dec 2025 14:47:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 203020 IP address blocks: 173.252.145.0/24 maxlen: 32 173.252.160.0/24 maxlen: 32 173.252.166.0/24 maxlen: 32 185.5.146.0/24 maxlen: 32 209.46.1.0/24 maxlen: 32 216.183.105.0/24 maxlen: 32 216.183.109.0/24 maxlen: 32 216.183.115.0/24 maxlen: 32 216.183.123.0/24 maxlen: 32 216.203.13.0/24 maxlen: 32 216.203.31.0/24 maxlen: 32 216.203.38.0/24 maxlen: 32 216.203.56.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/fd2294-cf37-4fc9-9edd-a4f7b088bc1a/1/MtRJGf3QivuaTQqHeJIwESUd1_A.crl rsync://rpki.ripe.net/repository/DEFAULT/6f/fd2294-cf37-4fc9-9edd-a4f7b088bc1a/1/MtRJGf3QivuaTQqHeJIwESUd1_A.mft rsync://rpki.ripe.net/repository/DEFAULT/MtRJGf3QivuaTQqHeJIwESUd1_A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 08:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:22:7b:13:c3:bf:f4:ff:0e:a2:f0:af:82:26:b8:77:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32d44919fdd08afb9a4d0a8778923011251dd7f0 Validity Not Before: Dec 15 14:47:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=a70885223a6e9a151622374e77ba47843af24209 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:71:b9:a4:38:3d:39:a3:69:f4:66:47:91:fa: 9f:cf:5d:ce:9b:84:ee:f1:93:72:ea:a5:0e:f6:7e: f4:b0:25:fd:56:b5:20:83:25:c4:bc:df:ba:75:60: c9:21:66:64:f1:8f:75:f9:8f:1a:ce:c6:61:e1:e1: 1b:69:d5:57:69:67:b6:a2:a9:6a:11:52:f5:b6:d8: e0:48:fd:3c:c3:8f:ba:7f:6e:5a:49:e8:ce:4c:ea: 85:e4:30:57:b2:f0:44:23:46:28:1a:b8:55:19:77: 0d:37:84:62:82:3b:f8:a3:e2:62:62:56:da:05:da: a4:3b:9e:95:d9:57:19:8e:fa:04:d3:b9:b6:95:90: b7:1e:98:7c:08:59:63:22:d3:db:f3:be:ec:56:0b: bb:fa:59:61:71:b9:ed:c8:77:d7:19:71:ed:78:43: 68:71:5d:16:dd:e1:d3:b8:40:0a:63:5f:c2:79:7e: 59:f8:fc:b4:fa:c3:12:97:54:89:a3:4e:8d:c6:81: 32:7b:c1:2c:f9:bd:cc:4c:6f:61:74:e4:f4:c8:01: ae:52:e7:a2:81:93:5e:95:5b:9d:7d:72:40:2d:af: b6:05:3f:83:13:ff:9c:c1:d1:54:fe:b3:57:bd:01: ad:9f:2f:90:45:cb:df:15:8c:58:17:ac:a4:09:37: 87:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:08:85:22:3A:6E:9A:15:16:22:37:4E:77:BA:47:84:3A:F2:42:09 X509v3 Authority Key Identifier: keyid:32:D4:49:19:FD:D0:8A:FB:9A:4D:0A:87:78:92:30:11:25:1D:D7:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MtRJGf3QivuaTQqHeJIwESUd1_A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/fd2294-cf37-4fc9-9edd-a4f7b088bc1a/1/pwiFIjpumhUWIjdOd7pHhDryQgk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/fd2294-cf37-4fc9-9edd-a4f7b088bc1a/1/MtRJGf3QivuaTQqHeJIwESUd1_A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.252.145.0/24 173.252.160.0/24 173.252.166.0/24 185.5.146.0/24 209.46.1.0/24 216.183.105.0/24 216.183.109.0/24 216.183.115.0/24 216.183.123.0/24 216.203.13.0/24 216.203.31.0/24 216.203.38.0/24 216.203.56.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:33:62:e1:91:2c:20:f1:58:b9:49:8d:a4:73:5c:c0:66:99: 7c:a0:88:ba:06:d7:57:97:ba:5b:ee:ae:d9:46:fb:a5:67:0f: 2e:ec:7e:bf:b9:30:69:5d:23:9c:65:be:a0:a6:94:2e:f2:bd: 92:b8:fb:bd:6d:19:d9:d6:1a:0a:0c:e8:f7:95:ac:23:a8:21: f4:82:86:9d:f7:86:c8:dc:83:a6:8c:bc:c7:c0:ed:6e:7c:3d: cd:12:c3:b1:dc:28:f4:94:96:e7:2e:25:9c:16:b0:72:30:51: 3e:0c:81:55:e9:fd:1f:11:a9:85:8c:3d:a7:08:ed:1a:5e:7d: 23:c8:31:99:8a:0b:c6:53:71:c7:00:11:cc:ba:10:8d:5b:7e: dd:d6:46:4f:45:42:96:e5:be:8f:fe:6f:5b:a0:94:a0:fd:3d: 17:55:c8:b5:1f:3f:51:45:09:d2:61:7e:2c:15:1d:bf:6e:95: 36:9a:6c:52:db:59:ff:47:d0:fe:23:f8:d5:53:9a:f7:63:33: 5f:db:a6:5d:d3:ed:06:f6:29:8e:c8:cb:eb:5e:f1:36:be:85: 23:cf:6d:28:e0:c2:e5:5f:da:aa:02:6a:cd:ff:bd:ef:0b:95: ee:4f:5c:ab:b2:f1:70:45:ef:58:35:66:6d:0d:25:8c:9e:a4: 23:28:c9:00 -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgISAZsiexPDv/T/DqLwr4ImuHdUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyZDQ0OTE5ZmRkMDhhZmI5YTRkMGE4Nzc4OTIzMDExMjUx ZGQ3ZjAwHhcNMjUxMjE1MTQ0NzI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNzA4ODUyMjNhNmU5YTE1MTYyMjM3NGU3N2JhNDc4NDNhZjI0MjA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA93G5pDg9OaNp9GZHkfqfz13Om4Tu 8ZNy6qUO9n70sCX9VrUggyXEvN+6dWDJIWZk8Y91+Y8azsZh4eEbadVXaWe2oqlq EVL1ttjgSP08w4+6f25aSejOTOqF5DBXsvBEI0YoGrhVGXcNN4Rigjv4o+JiYlba BdqkO56V2VcZjvoE07m2lZC3Hph8CFljItPb877sVgu7+llhcbntyHfXGXHteENo cV0W3eHTuEAKY1/CeX5Z+Py0+sMSl1SJo06NxoEye8Es+b3MTG9hdOT0yAGuUuei gZNelVudfXJALa+2BT+DE/+cwdFU/rNXvQGtny+QRcvfFYxYF6ykCTeHWwIDAQAB o4ICUTCCAk0wHQYDVR0OBBYEFKcIhSI6bpoVFiI3Tne6R4Q68kIJMB8GA1UdIwQY MBaAFDLUSRn90Ir7mk0Kh3iSMBElHdfwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTXRSSkdmM1FpdnVhVFFxSGVKSXdFU1VkMV9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi9mZDIyOTQtY2YzNy00ZmM5LTllZGQt YTRmN2IwODhiYzFhLzEvcHdpRklqcHVtaFVXSWpkT2Q3cEhoRHJ5UWdrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Zi9mZDIyOTQtY2YzNy00ZmM5LTllZGQtYTRmN2IwODhiYzFh LzEvTXRSSkdmM1FpdnVhVFFxSGVKSXdFU1VkMV9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGcGCCsGAQUFBwEHAQH/BFgwVjBUBAIAATBOAwQArfyRAwQA rfygAwQArfymAwQAuQWSAwQA0S4BAwQA2LdpAwQA2LdtAwQA2LdzAwQA2Ld7AwQA 2MsNAwQA2MsfAwQA2MsmAwQA2Ms4MA0GCSqGSIb3DQEBCwUAA4IBAQA/M2LhkSwg 8Vi5SY2kc1zAZpl8oIi6BtdXl7pb7q7ZRvulZw8u7H6/uTBpXSOcZb6gppQu8r2S uPu9bRnZ1hoKDOj3lawjqCH0goad94bI3IOmjLzHwO1ufD3NEsOx3Cj0lJbnLiWc FrByMFE+DIFV6f0fEamFjD2nCO0aXn0jyDGZigvGU3HHABHMuhCNW37d1kZPRUKW 5b6P/m9boJSg/T0XVci1Hz9RRQnSYX4sFR2/bpU2mmxS21n/R9D+I/jVU5r3YzNf 26Zd0+0G9imOyMvrXvE2voUjz20o4MLlX9qqAmrN/73vC5XuT1yrsvFwRe9YNWZt DSWMnqQjKMkA -----END CERTIFICATE-----Generated at Tue Dec 16 11:32:45 2025 by rpki-client