This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/kZWW_ntfYvdgmDKHXouZXpr8UMU.roa File: kZWW_ntfYvdgmDKHXouZXpr8UMU.roa (raw, json) Hash identifier: pybDSm/TxiDymAX06iB+SSYkpRn7EWk4DKtBzvh17SE= Subject key identifier: 91:95:96:FE:7B:5F:62:F7:60:98:32:87:5E:8B:99:5E:9A:FC:50:C5 Certificate issuer: /CN=de4794d9fcab23ec05dddd5048a3fc7204002a2a Certificate serial: 019B7D5C40766F2328C0D891336B99AE5A87 Authority key identifier: DE:47:94:D9:FC:AB:23:EC:05:DD:DD:50:48:A3:FC:72:04:00:2A:2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3keU2fyrI-wF3d1QSKP8cgQAKio.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/kZWW_ntfYvdgmDKHXouZXpr8UMU.roa Signing time: Fri 02 Jan 2026 06:19:16 +0000 ROA not before: Fri 02 Jan 2026 06:19:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210744 IP address blocks: 185.22.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.crl rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft rsync://rpki.ripe.net/repository/DEFAULT/3keU2fyrI-wF3d1QSKP8cgQAKio.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:40:76:6f:23:28:c0:d8:91:33:6b:99:ae:5a:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=de4794d9fcab23ec05dddd5048a3fc7204002a2a Validity Not Before: Jan 2 06:19:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=919596fe7b5f62f7609832875e8b995e9afc50c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:29:c9:b4:46:0f:49:64:54:ba:ca:6f:ef:39: 3d:ce:44:7e:7e:90:97:95:1d:97:4c:a2:e2:18:7c: f3:94:94:1a:0e:4a:4e:66:38:68:42:97:2d:0a:29: d1:6d:18:82:14:ce:fc:29:b1:02:00:7a:f6:60:3c: 4d:35:fa:c2:3c:ae:fc:f8:ea:09:bb:91:aa:f3:dd: bf:b8:7e:ba:b9:59:80:43:88:f2:41:7a:99:1b:65: 1a:11:0d:00:ec:02:19:cb:59:b2:4f:9e:77:c0:56: e9:9d:1f:5a:d8:10:b8:a4:eb:08:49:12:2c:fc:96: 72:9a:1a:c2:96:ab:e6:1f:1c:d1:9c:de:53:79:ca: 61:5e:36:04:8a:e9:ef:ff:44:c4:79:8d:20:46:81: 64:ed:c2:18:b9:63:4f:6a:60:93:02:85:d4:c0:ff: 21:27:39:67:e9:4a:10:06:5c:a3:32:4d:ff:0c:81: f4:04:e9:04:25:1e:53:28:11:ea:86:55:7a:1c:e5: d3:8d:79:fe:f2:66:93:e1:c0:0b:93:2d:26:9d:cd: b6:22:4d:f9:be:05:aa:b0:91:c0:15:2d:b0:1d:b7: 64:a0:11:02:2e:c6:ce:8b:6e:d6:1f:11:0f:5f:4d: 39:88:2a:9d:46:8c:b7:bc:1a:dd:74:a1:e8:e4:5b: cf:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:95:96:FE:7B:5F:62:F7:60:98:32:87:5E:8B:99:5E:9A:FC:50:C5 X509v3 Authority Key Identifier: keyid:DE:47:94:D9:FC:AB:23:EC:05:DD:DD:50:48:A3:FC:72:04:00:2A:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3keU2fyrI-wF3d1QSKP8cgQAKio.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/kZWW_ntfYvdgmDKHXouZXpr8UMU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.22.228.0/24 Signature Algorithm: sha256WithRSAEncryption 34:05:8e:76:3f:e9:e1:68:fa:36:ca:83:cd:97:ba:93:4c:09: 20:16:a6:81:36:c4:21:77:d4:2d:2e:05:e9:5f:5b:fc:57:3b: 44:72:6a:86:e6:cf:45:22:a3:b6:2f:1a:13:8c:a0:23:ad:36: 05:6a:42:14:d3:c6:e2:91:9e:6c:95:15:97:7a:f2:6e:ab:6c: 0a:0b:02:d4:c9:ab:df:8c:f5:02:61:68:ee:0f:91:86:2c:00: 15:49:13:d2:49:b0:92:d4:2d:a7:92:da:f9:52:60:20:e2:55: 1c:29:4e:1f:c5:62:f4:77:64:32:12:30:64:f4:e5:07:a2:dc: 93:d0:2c:13:96:75:52:c2:c6:22:d9:81:2c:ba:71:58:84:59: 8a:76:ea:e7:62:15:6b:42:3f:1c:89:6d:82:cc:53:b9:c8:c4: 10:da:3b:32:ba:39:fb:15:99:66:2b:8a:68:9c:2d:3b:49:6e: 48:28:78:27:87:b8:2f:f8:04:4d:bf:4d:71:29:3c:18:ba:90: 7e:f9:0f:64:05:ca:94:5f:57:b7:3e:54:78:62:8d:9a:86:e5: 2f:a8:62:6c:00:0a:e9:92:a3:94:1a:c3:6b:e4:74:13:a9:54: 06:90:81:b6:78:cb:73:87:71:97:05:09:ac:fd:a7:d1:8b:5f: b3:84:ef:da -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XEB2byMowNiRM2uZrlqHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRlNDc5NGQ5ZmNhYjIzZWMwNWRkZGQ1MDQ4YTNmYzcyMDQw MDJhMmEwHhcNMjYwMTAyMDYxOTE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MTk1OTZmZTdiNWY2MmY3NjA5ODMyODc1ZThiOTk1ZTlhZmM1MGM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4inJtEYPSWRUuspv7zk9zkR+fpCX lR2XTKLiGHzzlJQaDkpOZjhoQpctCinRbRiCFM78KbECAHr2YDxNNfrCPK78+OoJ u5Gq892/uH66uVmAQ4jyQXqZG2UaEQ0A7AIZy1myT553wFbpnR9a2BC4pOsISRIs /JZymhrClqvmHxzRnN5TecphXjYEiunv/0TEeY0gRoFk7cIYuWNPamCTAoXUwP8h Jzln6UoQBlyjMk3/DIH0BOkEJR5TKBHqhlV6HOXTjXn+8maT4cALky0mnc22Ik35 vgWqsJHAFS2wHbdkoBECLsbOi27WHxEPX005iCqdRoy3vBrddKHo5FvPrQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJGVlv57X2L3YJgyh16LmV6a/FDFMB8GA1UdIwQY MBaAFN5HlNn8qyPsBd3dUEij/HIEACoqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM2tlVTJmeXJJLXdGM2QxUVNLUDhjZ1FBS2lvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8wODAwZmUtOWJkMi00ODhiLThjNDIt ZjAxMTI5Mzk1M2Y1LzEva1pXV19udGZZdmRnbURLSFhvdVpYcHI4VU1VLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi8wODAwZmUtOWJkMi00ODhiLThjNDItZjAxMTI5Mzk1M2Y1 LzEvM2tlVTJmeXJJLXdGM2QxUVNLUDhjZ1FBS2lvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuRbkMA0G CSqGSIb3DQEBCwUAA4IBAQA0BY52P+nhaPo2yoPNl7qTTAkgFqaBNsQhd9QtLgXp X1v8VztEcmqG5s9FIqO2LxoTjKAjrTYFakIU08bikZ5slRWXevJuq2wKCwLUyavf jPUCYWjuD5GGLAAVSRPSSbCS1C2nktr5UmAg4lUcKU4fxWL0d2QyEjBk9OUHotyT 0CwTlnVSwsYi2YEsunFYhFmKdurnYhVrQj8ciW2CzFO5yMQQ2jsyujn7FZlmK4po nC07SW5IKHgnh7gv+ARNv01xKTwYupB++Q9kBcqUX1e3PlR4Yo2ahuUvqGJsAArp kqOUGsNr5HQTqVQGkIG2eMtzh3GXBQms/afRi1+zhO/a -----END CERTIFICATE-----Generated at Mon Feb 9 19:55:04 2026 by rpki-client