This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/CWpbui5DFRiDPLLBC7g31tcBtPQ.roa File: CWpbui5DFRiDPLLBC7g31tcBtPQ.roa (raw, json) Hash identifier: rY13t1rZ7dghcVWLSpYMM4Sk9WGvUXA10rcCCBA2rEY= Subject key identifier: 09:6A:5B:BA:2E:43:15:18:83:3C:B2:C1:0B:B8:37:D6:D7:01:B4:F4 Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Certificate serial: 019AA5705F245EE3BA7C281FF8E5554E44B5 Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/CWpbui5DFRiDPLLBC7g31tcBtPQ.roa Signing time: Fri 21 Nov 2025 08:03:16 +0000 ROA not before: Fri 21 Nov 2025 08:03:16 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 21859 IP address blocks: 31.56.66.0/24 maxlen: 24 31.56.220.0/24 maxlen: 24 31.57.35.0/24 maxlen: 24 31.57.100.0/24 maxlen: 24 31.57.228.0/24 maxlen: 24 31.58.33.0/24 maxlen: 24 31.59.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 23 Nov 2025 00:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:a5:70:5f:24:5e:e3:ba:7c:28:1f:f8:e5:55:4e:44:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Validity Not Before: Nov 21 08:03:16 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=096a5bba2e431518833cb2c10bb837d6d701b4f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:c8:bb:41:35:89:71:b0:94:4e:74:3b:50:6f: d5:0f:35:73:c4:5d:03:a1:a4:57:b4:68:54:fd:72: b1:11:9a:f0:88:96:f0:6f:2a:12:3e:9a:73:26:94: cd:81:06:64:03:41:32:d9:e1:ba:31:21:fd:dd:0f: b8:a6:d7:2e:4e:3d:81:5c:42:a5:77:c9:cb:91:b9: d3:85:c5:36:7d:93:7b:74:7f:8d:37:bd:39:36:9c: 64:9b:4e:d4:22:25:10:56:ee:ca:02:47:f4:f3:0c: 6c:93:ec:88:ae:cf:96:3c:2d:ea:ab:bc:6c:a4:10: 84:c5:56:d2:a7:2c:a9:2d:a3:b6:01:0c:7b:47:a6: 0b:07:4a:07:21:5e:33:79:ef:d5:ef:47:43:41:7a: c3:11:b6:3f:97:7e:c8:b3:21:dd:9b:f6:70:1d:fe: 2e:b0:80:81:03:d8:12:e8:86:08:cd:b6:fa:3b:31: 91:83:d8:ad:03:81:c0:3a:58:34:51:da:1f:c4:34: da:e4:98:26:3e:a7:97:7e:30:50:f3:bc:36:85:b5: 55:3f:57:1c:6c:f8:9b:92:09:8b:83:29:bc:9f:e3: 47:7f:96:2f:93:69:cd:91:60:2d:18:70:8a:b5:c7: b8:a4:99:53:e3:72:fd:2d:3e:22:b1:0e:d8:9b:f6: 23:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:6A:5B:BA:2E:43:15:18:83:3C:B2:C1:0B:B8:37:D6:D7:01:B4:F4 X509v3 Authority Key Identifier: keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/CWpbui5DFRiDPLLBC7g31tcBtPQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.56.66.0/24 31.56.220.0/24 31.57.35.0/24 31.57.100.0/24 31.57.228.0/24 31.58.33.0/24 31.59.116.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:ac:65:84:c2:ba:c3:26:8f:9e:bd:b3:d0:aa:6f:ca:1e:f8: ca:03:5c:93:f0:8b:27:3a:06:b2:0e:2c:8a:90:65:89:1e:f8: 4a:3f:40:90:dd:d1:f3:4f:83:77:6a:76:0f:a6:8f:ca:66:c4: 18:82:cd:18:8d:06:9b:7a:86:53:c5:21:3c:ff:0e:59:48:c2: e8:0b:b5:c7:5c:bd:3b:a7:f9:cc:c0:40:33:48:a6:4d:38:ed: c6:bc:3e:c6:17:24:29:fc:40:95:ad:24:a6:65:39:45:d5:8f: cc:d1:5b:67:2d:f6:62:6b:77:2d:ba:cc:dd:22:f7:c0:13:0b: f6:91:f4:1c:5a:d3:2e:37:e6:c3:e5:91:39:23:a9:36:88:5d: 10:8d:37:ed:e0:76:ea:d2:b8:7e:19:d1:ff:33:33:bc:bd:7d: d7:5a:72:65:d5:89:f2:43:4c:68:ef:41:98:6e:83:8e:be:5b: c6:38:3e:01:a6:1c:49:15:d1:84:29:63:e7:3f:bf:7f:3f:08: 5b:20:04:b2:f2:62:da:4d:21:d9:dc:c5:93:9c:04:fb:56:f8: d8:37:06:ad:1c:ab:9b:9c:b3:46:a1:88:72:f8:ea:24:6f:4c: 0c:e1:6f:99:06:e3:90:cf:19:d5:c1:14:56:3b:97:4c:80:27: c6:a9:38:84 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZqlcF8kXuO6fCgf+OVVTkS1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2 YjI1YzUwHhcNMjUxMTIxMDgwMzE2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwOTZhNWJiYTJlNDMxNTE4ODMzY2IyYzEwYmI4MzdkNmQ3MDFiNGY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgsi7QTWJcbCUTnQ7UG/VDzVzxF0D oaRXtGhU/XKxEZrwiJbwbyoSPppzJpTNgQZkA0Ey2eG6MSH93Q+4ptcuTj2BXEKl d8nLkbnThcU2fZN7dH+NN705Npxkm07UIiUQVu7KAkf08wxsk+yIrs+WPC3qq7xs pBCExVbSpyypLaO2AQx7R6YLB0oHIV4zee/V70dDQXrDEbY/l37IsyHdm/ZwHf4u sICBA9gS6IYIzbb6OzGRg9itA4HAOlg0UdofxDTa5JgmPqeXfjBQ87w2hbVVP1cc bPibkgmLgym8n+NHf5Yvk2nNkWAtGHCKtce4pJlT43L9LT4isQ7Ym/YjOwIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFAlqW7ouQxUYgzyywQu4N9bXAbT0MB8GA1UdIwQY MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt YjgxMWNmY2I5ZmQ1LzEvQ1dwYnVpNURGUmlEUExMQkM3ZzMxdGNCdFBRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1 LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQAHzhCAwQA HzjcAwQAHzkjAwQAHzlkAwQAHznkAwQAHzohAwQAHzt0MA0GCSqGSIb3DQEBCwUA A4IBAQB6rGWEwrrDJo+evbPQqm/KHvjKA1yT8IsnOgayDiyKkGWJHvhKP0CQ3dHz T4N3anYPpo/KZsQYgs0YjQabeoZTxSE8/w5ZSMLoC7XHXL07p/nMwEAzSKZNOO3G vD7GFyQp/ECVrSSmZTlF1Y/M0VtnLfZia3ctuszdIvfAEwv2kfQcWtMuN+bD5ZE5 I6k2iF0QjTft4Hbq0rh+GdH/MzO8vX3XWnJl1YnyQ0xo70GYboOOvlvGOD4BphxJ FdGEKWPnP79/PwhbIASy8mLaTSHZ3MWTnAT7VvjYNwatHKubnLNGoYhy+Ookb0wM 4W+ZBuOQzxnVwRRWO5dMgCfGqTiE -----END CERTIFICATE-----Generated at Sat Nov 22 07:22:13 2025 by rpki-client