This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/64ff0f-e356-48b3-830f-156497bfe93f/1/fwTgo1_ZSsz01XhtopC2MwuttNc.roa File: fwTgo1_ZSsz01XhtopC2MwuttNc.roa (raw, json) Hash identifier: 5KHz5CaUn0/i6QAm9Ug8WDFgZfNUDY5Q4CpIUqS1lpc= Subject key identifier: 7F:04:E0:A3:5F:D9:4A:CC:F4:D5:78:6D:A2:90:B6:33:0B:AD:B4:D7 Certificate issuer: /CN=20b830833878b6c861269a0e2a45837aa9485be1 Certificate serial: 019B7B35CA710D9C9F108E73DCDDAF323C5B Authority key identifier: 20:B8:30:83:38:78:B6:C8:61:26:9A:0E:2A:45:83:7A:A9:48:5B:E1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ILgwgzh4tshhJpoOKkWDeqlIW-E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/64ff0f-e356-48b3-830f-156497bfe93f/1/fwTgo1_ZSsz01XhtopC2MwuttNc.roa Signing time: Thu 01 Jan 2026 20:18:01 +0000 ROA not before: Thu 01 Jan 2026 20:18:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60987 IP address blocks: 5.183.161.0/24 maxlen: 24 185.198.184.0/22 maxlen: 22 185.198.184.0/24 maxlen: 24 185.198.185.0/24 maxlen: 24 185.198.186.0/24 maxlen: 24 185.198.187.0/24 maxlen: 24 193.238.175.0/24 maxlen: 24 2a0a:8d40::/29 maxlen: 29 2a11:880::/29 maxlen: 29 2a13:a040::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/64ff0f-e356-48b3-830f-156497bfe93f/1/ILgwgzh4tshhJpoOKkWDeqlIW-E.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/64ff0f-e356-48b3-830f-156497bfe93f/1/ILgwgzh4tshhJpoOKkWDeqlIW-E.mft rsync://rpki.ripe.net/repository/DEFAULT/ILgwgzh4tshhJpoOKkWDeqlIW-E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:ca:71:0d:9c:9f:10:8e:73:dc:dd:af:32:3c:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20b830833878b6c861269a0e2a45837aa9485be1 Validity Not Before: Jan 1 20:18:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7f04e0a35fd94accf4d5786da290b6330badb4d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:86:77:78:aa:e3:47:e5:eb:9e:9f:86:57:1f: 59:04:cb:34:23:16:3f:76:32:45:2b:61:96:fe:32: 16:55:c9:54:fc:43:74:23:37:26:a3:8c:69:a7:e7: 8b:42:e6:92:08:f3:9d:e2:5b:be:02:d1:1d:bb:6f: 13:36:82:20:bc:d6:32:c1:83:de:b9:be:4d:46:7d: b7:e6:d7:11:29:07:53:4e:47:be:40:c7:8e:92:e5: 48:09:84:7f:6b:49:c5:23:27:58:67:8e:c1:80:df: ac:62:b0:f7:e5:29:7d:85:d7:99:97:c1:3e:78:79: 05:94:1d:78:9b:92:ef:fa:22:b3:87:34:70:6a:1a: 60:4e:12:df:2a:07:5c:73:f4:e1:5c:c5:d3:1e:4e: 04:52:ac:da:90:47:62:e8:9f:ad:f5:09:70:36:93: ef:db:9d:f0:e1:65:ad:8d:44:28:ca:c9:fa:0a:16: d9:d3:78:6e:4f:19:60:eb:14:ac:b3:81:b5:bb:51: f6:29:8c:89:f3:f4:ac:0b:79:07:4b:f0:a2:8a:a4: 80:d9:62:c0:70:18:4e:42:00:cd:44:f3:f6:f0:26: bb:7b:ea:bc:dd:dd:f6:8c:f9:ff:5b:cc:5b:27:88: a8:18:0b:7b:92:fc:88:1b:81:73:67:f1:f6:66:76: 0c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:04:E0:A3:5F:D9:4A:CC:F4:D5:78:6D:A2:90:B6:33:0B:AD:B4:D7 X509v3 Authority Key Identifier: keyid:20:B8:30:83:38:78:B6:C8:61:26:9A:0E:2A:45:83:7A:A9:48:5B:E1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ILgwgzh4tshhJpoOKkWDeqlIW-E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/64ff0f-e356-48b3-830f-156497bfe93f/1/fwTgo1_ZSsz01XhtopC2MwuttNc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/64ff0f-e356-48b3-830f-156497bfe93f/1/ILgwgzh4tshhJpoOKkWDeqlIW-E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.183.161.0/24 185.198.184.0/22 193.238.175.0/24 IPv6: 2a0a:8d40::/29 2a11:880::/29 2a13:a040::/29 Signature Algorithm: sha256WithRSAEncryption 1a:72:f3:50:57:5c:8e:fe:85:77:bf:66:51:73:6a:65:27:58: 42:a1:e2:9a:e3:1f:6a:4f:9f:88:fb:48:98:71:a8:99:97:15: f2:e5:0a:91:43:6d:51:7a:e0:d9:89:55:7e:0a:0b:54:72:27: 38:7d:ac:b8:0b:e4:3b:cf:46:bb:25:eb:b6:f8:46:2b:4d:63: 0b:a3:7f:3c:de:db:65:79:28:a2:c0:a4:f6:8d:da:51:9e:66: 44:c3:3b:e4:79:45:aa:19:81:52:6f:cb:ea:00:65:ef:e7:da: 40:6c:73:5e:e6:a8:e8:27:b6:7d:a2:77:e6:de:d0:99:71:e2: 8b:50:c6:91:7f:dd:25:36:2c:e4:ce:0e:71:64:95:52:23:a6: d5:c5:99:e6:95:04:2c:b7:63:a9:64:63:44:fa:b4:65:42:fa: 3e:cb:0e:29:d4:c1:77:09:45:7b:17:d5:6f:7a:0e:e8:32:7e: 33:af:01:83:29:ab:92:ca:43:4c:23:f0:af:7a:31:29:f5:fe: 7c:34:ba:8d:f0:16:b1:77:a7:3d:79:5d:53:4d:2c:43:72:90: ea:cd:30:d2:4a:7d:1e:fa:4d:4e:3e:e0:b8:26:ba:59:e2:cc: 27:1e:a2:8b:81:e4:c9:13:f9:7f:5e:66:46:e5:17:13:d4:e0: a3:01:44:b2 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgISAZt7NcpxDZyfEI5z3N2vMjxbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwYjgzMDgzMzg3OGI2Yzg2MTI2OWEwZTJhNDU4MzdhYTk0 ODViZTEwHhcNMjYwMTAxMjAxODAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZjA0ZTBhMzVmZDk0YWNjZjRkNTc4NmRhMjkwYjYzMzBiYWRiNGQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlIZ3eKrjR+Xrnp+GVx9ZBMs0IxY/ djJFK2GW/jIWVclU/EN0Izcmo4xpp+eLQuaSCPOd4lu+AtEdu28TNoIgvNYywYPe ub5NRn235tcRKQdTTke+QMeOkuVICYR/a0nFIydYZ47BgN+sYrD35Sl9hdeZl8E+ eHkFlB14m5Lv+iKzhzRwahpgThLfKgdcc/ThXMXTHk4EUqzakEdi6J+t9QlwNpPv 253w4WWtjUQoysn6ChbZ03huTxlg6xSss4G1u1H2KYyJ8/SsC3kHS/CiiqSA2WLA cBhOQgDNRPP28Ca7e+q83d32jPn/W8xbJ4ioGAt7kvyIG4FzZ/H2ZnYM9QIDAQAB o4ICMjCCAi4wHQYDVR0OBBYEFH8E4KNf2UrM9NV4baKQtjMLrbTXMB8GA1UdIwQY MBaAFCC4MIM4eLbIYSaaDipFg3qpSFvhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSUxnd2d6aDR0c2hoSnBvT0trV0RlcWxJVy1FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi82NGZmMGYtZTM1Ni00OGIzLTgzMGYt MTU2NDk3YmZlOTNmLzEvZndUZ28xX1pTc3owMVhodG9wQzJNd3V0dE5jLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi82NGZmMGYtZTM1Ni00OGIzLTgzMGYtMTU2NDk3YmZlOTNm LzEvSUxnd2d6aDR0c2hoSnBvT0trV0RlcWxJVy1FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEgGCCsGAQUFBwEHAQH/BDkwNzAYBAIAATASAwQABbehAwQC uca4AwQAwe6vMBsEAgACMBUDBQMqCo1AAwUDKhEIgAMFAyoToEAwDQYJKoZIhvcN AQELBQADggEBABpy81BXXI7+hXe/ZlFzamUnWEKh4prjH2pPn4j7SJhxqJmXFfLl CpFDbVF64NmJVX4KC1RyJzh9rLgL5DvPRrsl67b4RitNYwujfzze22V5KKLApPaN 2lGeZkTDO+R5RaoZgVJvy+oAZe/n2kBsc17mqOgntn2id+be0Jlx4otQxpF/3SU2 LOTODnFklVIjptXFmeaVBCy3Y6lkY0T6tGVC+j7LDinUwXcJRXsX1W96DugyfjOv AYMpq5LKQ0wj8K96MSn1/nw0uo3wFrF3pz15XVNNLENykOrNMNJKfR76TU4+4Lgm ulnizCceoouB5MkT+X9eZkblFxPU4KMBRLI= -----END CERTIFICATE-----Generated at Mon Feb 9 20:05:19 2026 by rpki-client