This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/f4ab5f-e6c2-48b8-94ec-49178296de86/1/iswbdq-9V8dK2lt-q7TWOV5NsnA.roa File: iswbdq-9V8dK2lt-q7TWOV5NsnA.roa (raw, json) Hash identifier: gjZR/5snwpqcxytGpgCEoK1OzMncCQSVwjv9VDuQVaU= Subject key identifier: 8A:CC:1B:76:AF:BD:57:C7:4A:DA:5B:7E:AB:B4:D6:39:5E:4D:B2:70 Certificate issuer: /CN=0b58c921cb3e9c81ddc316ff039cb9c36d2a4390 Certificate serial: 019B79EBE9A7ABA9C202D2401FBA028B6C24 Authority key identifier: 0B:58:C9:21:CB:3E:9C:81:DD:C3:16:FF:03:9C:B9:C3:6D:2A:43:90 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C1jJIcs-nIHdwxb_A5y5w20qQ5A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/f4ab5f-e6c2-48b8-94ec-49178296de86/1/iswbdq-9V8dK2lt-q7TWOV5NsnA.roa Signing time: Thu 01 Jan 2026 14:17:42 +0000 ROA not before: Thu 01 Jan 2026 14:17:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 40401 IP address blocks: 45.11.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/f4ab5f-e6c2-48b8-94ec-49178296de86/1/C1jJIcs-nIHdwxb_A5y5w20qQ5A.crl rsync://rpki.ripe.net/repository/DEFAULT/8c/f4ab5f-e6c2-48b8-94ec-49178296de86/1/C1jJIcs-nIHdwxb_A5y5w20qQ5A.mft rsync://rpki.ripe.net/repository/DEFAULT/C1jJIcs-nIHdwxb_A5y5w20qQ5A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:eb:e9:a7:ab:a9:c2:02:d2:40:1f:ba:02:8b:6c:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0b58c921cb3e9c81ddc316ff039cb9c36d2a4390 Validity Not Before: Jan 1 14:17:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8acc1b76afbd57c74ada5b7eabb4d6395e4db270 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:6f:a3:19:d5:29:da:e5:ce:36:43:10:71:ad: 16:6f:3f:16:1f:9f:e0:03:04:fe:a9:7e:2f:64:75: 1e:9a:c6:44:60:06:7c:10:ad:67:d4:32:fe:5d:ec: 9f:c3:68:51:22:3e:52:64:29:7a:d1:71:44:bf:2a: 2c:3c:05:6d:e1:df:5e:f2:c9:53:bf:54:ad:6d:26: 4a:8d:f2:c6:0f:ca:8c:f0:79:66:3c:45:09:6d:f0: 78:c8:32:08:ec:ee:f1:d1:f5:c7:b1:b2:cb:c5:d5: 97:b9:3d:4d:2e:cc:b0:00:21:2d:b7:fb:d4:4f:f1: 97:0c:76:b3:81:37:9d:c3:b1:e1:dc:80:e5:c1:d3: 9f:e7:a8:9f:76:2d:c4:34:62:0d:6d:c4:c2:fb:b6: ee:bc:a6:b8:3b:2a:86:ab:ce:7c:23:b2:c5:f8:6d: dc:41:a3:eb:ec:93:13:0c:66:22:96:d4:f4:ac:04: 38:cf:db:ed:c5:8a:d7:6a:d1:26:1b:84:80:c9:03: f3:27:94:e5:b2:3a:46:eb:9e:96:68:9e:4a:8f:1c: 26:e1:80:2a:16:6f:2a:c7:4b:1f:cc:6f:4b:e1:1b: fd:0c:94:35:f4:da:95:b4:af:55:29:97:42:ec:d9: 7d:37:74:26:0b:55:ca:d4:b5:a3:da:12:9e:ac:c0: e0:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:CC:1B:76:AF:BD:57:C7:4A:DA:5B:7E:AB:B4:D6:39:5E:4D:B2:70 X509v3 Authority Key Identifier: keyid:0B:58:C9:21:CB:3E:9C:81:DD:C3:16:FF:03:9C:B9:C3:6D:2A:43:90 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C1jJIcs-nIHdwxb_A5y5w20qQ5A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/f4ab5f-e6c2-48b8-94ec-49178296de86/1/iswbdq-9V8dK2lt-q7TWOV5NsnA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/f4ab5f-e6c2-48b8-94ec-49178296de86/1/C1jJIcs-nIHdwxb_A5y5w20qQ5A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.11.36.0/22 Signature Algorithm: sha256WithRSAEncryption 86:33:b1:7b:ef:8f:43:6f:0e:a8:f4:fc:a8:a9:cd:f6:6d:e3: 38:41:42:a4:22:ec:8e:4a:6e:d6:1d:bd:da:5a:e2:ed:2b:ef: 1a:a7:3e:da:1b:89:c0:ae:c6:a2:9d:d0:ee:73:5d:2f:b7:08: fc:40:d9:fb:32:ff:fe:a0:2b:ff:02:ba:34:d0:06:5d:ce:05: 6f:f7:80:23:03:4e:ac:8a:a6:b1:74:a9:d4:4e:53:35:fc:58: eb:82:9b:74:5f:df:41:8c:c8:1b:3d:73:21:05:3a:58:6e:b5: 57:99:83:8b:44:bd:9c:33:da:26:b2:3a:06:0d:3e:81:3d:9d: a8:e0:b3:65:96:f9:e0:4a:26:1e:e6:14:f2:a6:7a:05:b3:40: 1c:d8:52:62:ab:20:ce:ed:9a:cf:26:be:8e:03:19:0d:7e:7d: ce:76:9c:8a:7e:c8:bb:92:10:f9:e0:79:be:ba:ab:8c:a3:61: 89:f5:de:87:1e:f1:65:29:38:33:ae:64:b3:f2:75:ae:93:fd: ff:e7:c9:56:d3:d1:57:d6:b1:13:b9:3f:95:d7:6c:bf:ba:4e: aa:40:52:63:9b:60:78:f9:d8:98:33:ef:57:d2:57:ac:e2:cb: bc:3c:bd:a8:86:17:8d:52:05:10:06:19:f4:ae:cf:80:17:b9: e0:5d:80:e1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt56+mnq6nCAtJAH7oCi2wkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBiNThjOTIxY2IzZTljODFkZGMzMTZmZjAzOWNiOWMzNmQy YTQzOTAwHhcNMjYwMTAxMTQxNzQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YWNjMWI3NmFmYmQ1N2M3NGFkYTViN2VhYmI0ZDYzOTVlNGRiMjcwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt2+jGdUp2uXONkMQca0Wbz8WH5/g AwT+qX4vZHUemsZEYAZ8EK1n1DL+Xeyfw2hRIj5SZCl60XFEvyosPAVt4d9e8slT v1StbSZKjfLGD8qM8HlmPEUJbfB4yDII7O7x0fXHsbLLxdWXuT1NLsywACEtt/vU T/GXDHazgTedw7Hh3IDlwdOf56ifdi3ENGINbcTC+7buvKa4OyqGq858I7LF+G3c QaPr7JMTDGYiltT0rAQ4z9vtxYrXatEmG4SAyQPzJ5TlsjpG656WaJ5Kjxwm4YAq Fm8qx0sfzG9L4Rv9DJQ19NqVtK9VKZdC7Nl9N3QmC1XK1LWj2hKerMDg7QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIrMG3avvVfHStpbfqu01jleTbJwMB8GA1UdIwQY MBaAFAtYySHLPpyB3cMW/wOcucNtKkOQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQzFqSkljcy1uSUhkd3hiX0E1eTV3MjBxUTVBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy9mNGFiNWYtZTZjMi00OGI4LTk0ZWMt NDkxNzgyOTZkZTg2LzEvaXN3YmRxLTlWOGRLMmx0LXE3VFdPVjVOc25BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yy9mNGFiNWYtZTZjMi00OGI4LTk0ZWMtNDkxNzgyOTZkZTg2 LzEvQzFqSkljcy1uSUhkd3hiX0E1eTV3MjBxUTVBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLQskMA0G CSqGSIb3DQEBCwUAA4IBAQCGM7F7749Dbw6o9Pyoqc32beM4QUKkIuyOSm7WHb3a WuLtK+8apz7aG4nArsaindDuc10vtwj8QNn7Mv/+oCv/Aro00AZdzgVv94AjA06s iqaxdKnUTlM1/Fjrgpt0X99BjMgbPXMhBTpYbrVXmYOLRL2cM9omsjoGDT6BPZ2o 4LNllvngSiYe5hTypnoFs0Ac2FJiqyDO7ZrPJr6OAxkNfn3OdpyKfsi7khD54Hm+ uquMo2GJ9d6HHvFlKTgzrmSz8nWuk/3/58lW09FX1rETuT+V12y/uk6qQFJjm2B4 +diYM+9X0les4su8PL2ohheNUgUQBhn0rs+AF7ngXYDh -----END CERTIFICATE-----Generated at Mon Feb 9 20:05:17 2026 by rpki-client