This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/95cd2d-0d52-4b07-b76b-d853e7842b3a/1/rwePCHeXZXjU5TFT1312djJxKwE.roa File: rwePCHeXZXjU5TFT1312djJxKwE.roa (raw, json) Hash identifier: BW7jBdpBoXaBVzPLrcX3bWseCVe3tOKG4oOWTEJm0U0= Subject key identifier: AF:07:8F:08:77:97:65:78:D4:E5:31:53:D7:7D:76:76:32:71:2B:01 Certificate issuer: /CN=1cf31e958a6fa85dfd517ea5a2167a359ce02691 Certificate serial: 019B7C11C401F189725C0C496F8400B256B7 Authority key identifier: 1C:F3:1E:95:8A:6F:A8:5D:FD:51:7E:A5:A2:16:7A:35:9C:E0:26:91 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HPMelYpvqF39UX6lohZ6NZzgJpE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/95cd2d-0d52-4b07-b76b-d853e7842b3a/1/rwePCHeXZXjU5TFT1312djJxKwE.roa Signing time: Fri 02 Jan 2026 00:18:17 +0000 ROA not before: Fri 02 Jan 2026 00:18:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34724 IP address blocks: 62.182.152.0/22 maxlen: 22 95.214.204.0/22 maxlen: 22 139.28.12.0/22 maxlen: 22 185.31.32.0/22 maxlen: 22 185.68.60.0/22 maxlen: 22 193.34.64.0/22 maxlen: 22 2a00:b720::/29 maxlen: 29 2a05:9300::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/95cd2d-0d52-4b07-b76b-d853e7842b3a/1/HPMelYpvqF39UX6lohZ6NZzgJpE.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/95cd2d-0d52-4b07-b76b-d853e7842b3a/1/HPMelYpvqF39UX6lohZ6NZzgJpE.mft rsync://rpki.ripe.net/repository/DEFAULT/HPMelYpvqF39UX6lohZ6NZzgJpE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:c4:01:f1:89:72:5c:0c:49:6f:84:00:b2:56:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1cf31e958a6fa85dfd517ea5a2167a359ce02691 Validity Not Before: Jan 2 00:18:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=af078f0877976578d4e53153d77d767632712b01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:8a:6d:62:78:49:df:87:17:5c:6a:c8:88:3e: d4:a0:a7:7c:9f:a3:c0:1b:1f:50:60:6c:8a:fe:14: 9c:f5:8b:a9:a6:21:76:34:47:57:8a:1b:dc:1a:f1: 39:22:52:ec:6b:81:48:08:4b:df:b3:4b:0d:de:27: e4:42:74:ce:f4:05:d7:b5:7d:0f:a8:2e:9e:7f:14: 90:cd:45:4f:f2:92:c1:ab:cc:fc:9c:42:70:96:c5: 92:bf:71:e2:01:6c:8f:ed:66:ea:18:13:4d:5a:1d: 4d:d4:f3:da:a4:06:57:b1:26:39:40:cd:9d:d6:29: 29:20:f6:cb:bd:ff:97:b3:ff:e5:82:33:dd:39:14: 40:4a:22:18:66:ec:10:2c:a7:d0:18:c6:bc:4d:b9: 09:4a:25:7d:8f:c4:a6:e9:50:0e:d8:b2:48:d4:c4: b6:78:e2:c6:9e:c2:5a:d5:c1:c7:7e:55:d6:2c:27: 33:72:40:f3:bb:e0:43:bb:01:7b:cb:0b:4f:20:75: a9:64:1b:04:1d:76:25:5e:29:0d:70:14:67:9a:33: 69:a6:c0:a3:e4:ed:ac:ce:65:2f:a9:b7:58:27:f7: c8:02:98:5c:9f:d2:5d:3a:7b:50:2b:6f:86:d7:8e: c0:06:02:f3:28:7e:8a:1e:4f:11:1d:92:5b:f2:df: 99:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:07:8F:08:77:97:65:78:D4:E5:31:53:D7:7D:76:76:32:71:2B:01 X509v3 Authority Key Identifier: keyid:1C:F3:1E:95:8A:6F:A8:5D:FD:51:7E:A5:A2:16:7A:35:9C:E0:26:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HPMelYpvqF39UX6lohZ6NZzgJpE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/95cd2d-0d52-4b07-b76b-d853e7842b3a/1/rwePCHeXZXjU5TFT1312djJxKwE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/95cd2d-0d52-4b07-b76b-d853e7842b3a/1/HPMelYpvqF39UX6lohZ6NZzgJpE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.182.152.0/22 95.214.204.0/22 139.28.12.0/22 185.31.32.0/22 185.68.60.0/22 193.34.64.0/22 IPv6: 2a00:b720::/29 2a05:9300::/29 Signature Algorithm: sha256WithRSAEncryption 9b:d5:3f:bc:17:8c:cf:39:20:c2:5c:cb:e8:1c:44:5b:5a:78: 23:80:90:8c:ca:70:45:a1:b0:ce:41:93:76:84:f4:83:4e:64: f9:c6:c1:02:15:3a:72:fc:b1:d5:be:60:61:41:ab:a0:52:56: 59:9b:8b:b1:1b:df:9a:24:84:ca:cd:3a:58:c1:e4:64:74:55: e1:1f:f2:85:da:13:21:bd:fd:36:20:db:b4:0d:73:a8:83:61: 7f:1d:21:2b:e5:24:58:b5:9c:c0:03:a5:10:1c:71:1d:6b:da: 49:58:71:3c:50:c2:00:bd:34:cf:b6:8e:a4:a7:e4:50:b1:05: d4:84:bf:bf:cd:1a:7a:5a:28:9c:68:aa:21:18:19:47:41:4f: 01:36:ef:0b:0c:d0:12:0a:c2:08:9d:3a:a6:68:44:fa:82:72: d3:48:ed:4b:c2:1c:1b:69:0c:a8:ac:40:ed:51:d6:31:ea:04: 93:e8:60:1d:3b:96:b5:50:ef:09:51:8c:77:3e:8a:0a:7a:ca: 19:60:56:b6:05:19:d1:09:1b:6f:81:a3:55:09:9c:9b:69:7f: fc:97:cc:ec:fe:c2:1e:b3:74:cb:5d:3b:dd:e0:6d:66:c1:a5: bf:53:2f:5b:41:a2:d0:bb:be:1e:0c:c2:44:c6:f5:0e:44:65: f7:b6:4b:f1 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgISAZt8EcQB8YlyXAxJb4QAsla3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjZjMxZTk1OGE2ZmE4NWRmZDUxN2VhNWEyMTY3YTM1OWNl MDI2OTEwHhcNMjYwMTAyMDAxODE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZjA3OGYwODc3OTc2NTc4ZDRlNTMxNTNkNzdkNzY3NjMyNzEyYjAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjIptYnhJ34cXXGrIiD7UoKd8n6PA Gx9QYGyK/hSc9YuppiF2NEdXihvcGvE5IlLsa4FICEvfs0sN3ifkQnTO9AXXtX0P qC6efxSQzUVP8pLBq8z8nEJwlsWSv3HiAWyP7WbqGBNNWh1N1PPapAZXsSY5QM2d 1ikpIPbLvf+Xs//lgjPdORRASiIYZuwQLKfQGMa8TbkJSiV9j8Sm6VAO2LJI1MS2 eOLGnsJa1cHHflXWLCczckDzu+BDuwF7ywtPIHWpZBsEHXYlXikNcBRnmjNppsCj 5O2szmUvqbdYJ/fIAphcn9JdOntQK2+G147ABgLzKH6KHk8RHZJb8t+ZwwIDAQAB o4ICPTCCAjkwHQYDVR0OBBYEFK8Hjwh3l2V41OUxU9d9dnYycSsBMB8GA1UdIwQY MBaAFBzzHpWKb6hd/VF+paIWejWc4CaRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFBNZWxZcHZxRjM5VVg2bG9oWjZOWnpnSnBFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS85NWNkMmQtMGQ1Mi00YjA3LWI3NmIt ZDg1M2U3ODQyYjNhLzEvcndlUENIZVhaWGpVNVRGVDEzMTJkakp4S3dFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS85NWNkMmQtMGQ1Mi00YjA3LWI3NmItZDg1M2U3ODQyYjNh LzEvSFBNZWxZcHZxRjM5VVg2bG9oWjZOWnpnSnBFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFMGCCsGAQUFBwEHAQH/BEQwQjAqBAIAATAkAwQCPraYAwQC X9bMAwQCixwMAwQCuR8gAwQCuUQ8AwQCwSJAMBQEAgACMA4DBQMqALcgAwUDKgWT ADANBgkqhkiG9w0BAQsFAAOCAQEAm9U/vBeMzzkgwlzL6BxEW1p4I4CQjMpwRaGw zkGTdoT0g05k+cbBAhU6cvyx1b5gYUGroFJWWZuLsRvfmiSEys06WMHkZHRV4R/y hdoTIb39NiDbtA1zqINhfx0hK+UkWLWcwAOlEBxxHWvaSVhxPFDCAL00z7aOpKfk ULEF1IS/v80aeloonGiqIRgZR0FPATbvCwzQEgrCCJ06pmhE+oJy00jtS8IcG2kM qKxA7VHWMeoEk+hgHTuWtVDvCVGMdz6KCnrKGWBWtgUZ0Qkbb4GjVQmcm2l//JfM 7P7CHrN0y1073eBtZsGlv1MvW0Gi0Lu+HgzCRMb1DkRl97ZL8Q== -----END CERTIFICATE-----Generated at Tue Feb 10 07:29:12 2026 by rpki-client