This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/dwe_m7iK2njmUFFGe9nnrN8FZV4.roa File: dwe_m7iK2njmUFFGe9nnrN8FZV4.roa (raw, json) Hash identifier: utaiyLTsrEWxNDIzyZ7TNXdP2ryHcGA9G92URVMLgOY= Subject key identifier: 77:07:BF:9B:B8:8A:DA:78:E6:50:51:46:7B:D9:E7:AC:DF:05:65:5E Certificate issuer: /CN=2631166de785a3531bdc8361f1190a8369a7ed6a Certificate serial: 019B77C736D8527BA5B6DE3A7D2300AC150D Authority key identifier: 26:31:16:6D:E7:85:A3:53:1B:DC:83:61:F1:19:0A:83:69:A7:ED:6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/dwe_m7iK2njmUFFGe9nnrN8FZV4.roa Signing time: Thu 01 Jan 2026 04:18:22 +0000 ROA not before: Thu 01 Jan 2026 04:18:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204963 IP address blocks: 5.255.84.0/24 maxlen: 24 5.255.89.0/24 maxlen: 24 2a00:1ca8:84::/48 maxlen: 48 2a00:1ca8:89::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.mft rsync://rpki.ripe.net/repository/DEFAULT/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:36:d8:52:7b:a5:b6:de:3a:7d:23:00:ac:15:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2631166de785a3531bdc8361f1190a8369a7ed6a Validity Not Before: Jan 1 04:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7707bf9bb88ada78e65051467bd9e7acdf05655e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a7:f5:a2:6b:db:f8:f9:6d:4b:4d:9c:a7:45: df:c0:e7:f9:96:72:48:9b:89:82:67:35:af:5b:3f: 8f:89:8f:38:5b:ac:e1:cc:d1:53:04:7e:b8:37:ac: 76:f1:b7:07:b2:60:ba:89:19:8d:24:65:00:72:f0: 69:a6:67:ef:fd:b2:e4:dc:62:d2:8a:0c:0a:dc:03: 77:c7:cc:b2:72:56:b4:a6:9e:0b:56:de:94:b5:07: 6b:03:2d:f8:5e:dc:d1:ab:85:33:97:f8:0f:57:bd: 39:b0:40:25:9e:42:1b:53:9b:6c:b2:70:02:ab:86: b3:19:42:7e:b9:83:0f:4b:bf:58:3d:27:6c:08:d0: a0:0e:b3:0a:54:2a:2a:c5:63:38:78:7b:88:0f:cc: 7f:7c:28:da:2b:52:a8:9f:fb:81:a2:1a:8f:df:05: df:3a:60:6d:dc:0f:d5:94:e0:76:0f:7f:a5:99:4a: 59:68:2c:4c:b9:0a:b0:89:ec:7f:11:c1:3e:1e:43: c2:c4:c4:5e:1a:0d:c0:3a:8d:70:14:9e:6c:3d:c2: d0:ea:e5:0d:dd:e9:a2:6c:b2:76:bf:eb:53:99:72: fd:a5:06:dc:6b:74:d7:19:e0:08:3a:b6:6a:9a:c3: 78:da:22:32:18:b9:81:2f:90:aa:a0:1a:d1:70:bd: 59:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:07:BF:9B:B8:8A:DA:78:E6:50:51:46:7B:D9:E7:AC:DF:05:65:5E X509v3 Authority Key Identifier: keyid:26:31:16:6D:E7:85:A3:53:1B:DC:83:61:F1:19:0A:83:69:A7:ED:6A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/dwe_m7iK2njmUFFGe9nnrN8FZV4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.255.84.0/24 5.255.89.0/24 IPv6: 2a00:1ca8:84::/48 2a00:1ca8:89::/48 Signature Algorithm: sha256WithRSAEncryption 7b:87:a9:a8:8b:53:18:5d:d1:a8:51:5a:c9:3a:86:30:88:45: 7a:a6:a3:a6:a6:7d:41:97:d7:d6:94:ff:41:ea:d2:27:04:bd: c6:5f:51:10:44:82:d6:cd:e9:db:da:82:42:57:1c:c0:ec:23: 7c:55:a5:99:94:2d:6d:54:0b:02:1a:a0:f2:47:75:2c:05:50: 8a:dd:20:84:6e:e0:d2:40:2f:1a:1a:04:87:a5:5d:d0:36:a5: 4d:ef:aa:88:2f:01:cc:98:cb:b0:6a:1a:c4:92:82:e2:fa:41: 2f:98:61:c9:95:ea:4c:38:30:5c:8f:64:e7:60:ef:6b:92:b4: 0b:d6:05:7b:a8:70:9a:c4:d5:46:68:c4:24:fe:f0:c5:66:2b: 14:a0:f7:46:f7:51:0f:cd:58:84:1f:f5:16:aa:44:da:5b:cf: 4a:97:7d:6e:a8:c0:23:79:aa:1e:36:ba:85:ce:d6:39:8c:85: 52:3d:21:92:35:79:70:f2:b0:47:55:be:56:0f:c9:6c:27:25: a6:6c:5c:93:6c:99:db:a1:9d:6a:0b:e0:9a:78:b4:12:fe:b4: f2:ce:02:51:7d:4a:26:95:49:79:a2:92:44:ae:c4:4a:e0:ca: cf:d2:4d:2f:fe:d4:8e:7c:2b:ee:10:7e:bd:36:88:d4:85:1c: e7:86:2e:af -----BEGIN CERTIFICATE----- MIIFHTCCBAWgAwIBAgISAZt3xzbYUnultt46fSMArBUNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI2MzExNjZkZTc4NWEzNTMxYmRjODM2MWYxMTkwYTgzNjlh N2VkNmEwHhcNMjYwMTAxMDQxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NzA3YmY5YmI4OGFkYTc4ZTY1MDUxNDY3YmQ5ZTdhY2RmMDU2NTVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuKf1omvb+PltS02cp0XfwOf5lnJI m4mCZzWvWz+PiY84W6zhzNFTBH64N6x28bcHsmC6iRmNJGUAcvBppmfv/bLk3GLS igwK3AN3x8yycla0pp4LVt6UtQdrAy34XtzRq4Uzl/gPV705sEAlnkIbU5tssnAC q4azGUJ+uYMPS79YPSdsCNCgDrMKVCoqxWM4eHuID8x/fCjaK1Kon/uBohqP3wXf OmBt3A/VlOB2D3+lmUpZaCxMuQqwiex/EcE+HkPCxMReGg3AOo1wFJ5sPcLQ6uUN 3emibLJ2v+tTmXL9pQbca3TXGeAIOrZqmsN42iIyGLmBL5CqoBrRcL1Z0wIDAQAB o4ICKTCCAiUwHQYDVR0OBBYEFHcHv5u4itp45lBRRnvZ56zfBWVeMB8GA1UdIwQY MBaAFCYxFm3nhaNTG9yDYfEZCoNpp+1qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSmpFV2JlZUZvMU1iM0lOaDhSa0tnMm1uN1dvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS9mYjAxNTctNjc0Ni00YjAwLThmOGUt Yjg5YTI2MTk5OTc2LzEvZHdlX203aUsybmptVUZGR2U5bm5yTjhGWlY0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS9mYjAxNTctNjc0Ni00YjAwLThmOGUtYjg5YTI2MTk5OTc2 LzEvSmpFV2JlZUZvMU1iM0lOaDhSa0tnMm1uN1dvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD8GCCsGAQUFBwEHAQH/BDAwLjASBAIAATAMAwQABf9UAwQA Bf9ZMBgEAgACMBIDBwAqAByoAIQDBwAqAByoAIkwDQYJKoZIhvcNAQELBQADggEB AHuHqaiLUxhd0ahRWsk6hjCIRXqmo6amfUGX19aU/0Hq0icEvcZfURBEgtbN6dva gkJXHMDsI3xVpZmULW1UCwIaoPJHdSwFUIrdIIRu4NJALxoaBIelXdA2pU3vqogv AcyYy7BqGsSSguL6QS+YYcmV6kw4MFyPZOdg72uStAvWBXuocJrE1UZoxCT+8MVm KxSg90b3UQ/NWIQf9RaqRNpbz0qXfW6owCN5qh42uoXO1jmMhVI9IZI1eXDysEdV vlYPyWwnJaZsXJNsmduhnWoL4Jp4tBL+tPLOAlF9SiaVSXmikkSuxErgys/STS/+ 1I58K+4Qfr02iNSFHOeGLq8= -----END CERTIFICATE-----Generated at Wed Jan 21 15:37:00 2026 by rpki-client