This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/a71a5c-1746-43c4-a67f-a8f76bd26a27/1/PwQvETm7cRPxaiSCl5RIXoxMRHo.roa File: PwQvETm7cRPxaiSCl5RIXoxMRHo.roa (raw, json) Hash identifier: LgW22oFTQfKbq8qvGxkyVXGKtUsCBhBLz4XP/aisFIs= Subject key identifier: 3F:04:2F:11:39:BB:71:13:F1:6A:24:82:97:94:48:5E:8C:4C:44:7A Certificate issuer: /CN=736b294f965dad640f9e353bf38f9af1191479ea Certificate serial: 019B7B35CC345B759706C0C1DFABD4343A88 Authority key identifier: 73:6B:29:4F:96:5D:AD:64:0F:9E:35:3B:F3:8F:9A:F1:19:14:79:EA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c2spT5ZdrWQPnjU784-a8RkUeeo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/a71a5c-1746-43c4-a67f-a8f76bd26a27/1/PwQvETm7cRPxaiSCl5RIXoxMRHo.roa Signing time: Thu 01 Jan 2026 20:18:01 +0000 ROA not before: Thu 01 Jan 2026 20:18:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209900 IP address blocks: 45.65.88.0/22 maxlen: 23 2a09:fe00::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/a71a5c-1746-43c4-a67f-a8f76bd26a27/1/c2spT5ZdrWQPnjU784-a8RkUeeo.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/a71a5c-1746-43c4-a67f-a8f76bd26a27/1/c2spT5ZdrWQPnjU784-a8RkUeeo.mft rsync://rpki.ripe.net/repository/DEFAULT/c2spT5ZdrWQPnjU784-a8RkUeeo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:cc:34:5b:75:97:06:c0:c1:df:ab:d4:34:3a:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=736b294f965dad640f9e353bf38f9af1191479ea Validity Not Before: Jan 1 20:18:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3f042f1139bb7113f16a24829794485e8c4c447a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:66:6e:34:81:35:a2:19:87:20:ab:f9:65:df: 64:49:1c:cd:60:68:db:6b:96:90:cb:36:4c:7c:87: f7:1c:1c:2b:46:9b:88:08:dc:f0:40:77:34:a2:4c: 97:7f:28:d2:1f:85:50:9b:d0:73:0d:02:1c:ea:49: a8:97:66:c7:ea:06:cf:9d:ab:e4:a4:8a:68:3b:b8: f7:45:e3:bf:78:db:11:65:ff:26:1b:b3:60:0a:f0: 18:4a:7b:89:87:3d:15:49:1b:a2:76:7a:1e:e1:64: 7c:b3:e2:9a:a8:65:19:10:9a:53:ad:91:7f:f6:d4: 38:4c:94:f9:6a:79:73:1e:a4:c9:af:1a:ea:01:17: 2a:f6:9a:be:53:6b:cf:25:e1:36:12:05:da:a6:b0: a3:02:5e:e4:20:03:0c:af:f4:b7:83:78:b6:d9:80: 6e:83:8c:a2:0e:b6:7b:f5:26:09:f8:fc:a7:e4:22: 2c:1b:2d:f3:ef:c7:e9:47:08:04:75:d0:97:2c:17: 44:be:ca:95:ab:fc:51:b6:e8:8e:1e:fe:57:cf:3a: 4f:3a:82:63:54:f7:ea:9b:07:fe:17:d4:d4:34:1c: 03:d1:7e:bd:33:8f:04:5b:28:5d:4e:44:57:70:1b: e2:06:c8:a5:d9:e6:9d:df:16:f4:39:e9:d8:b8:59: d3:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:04:2F:11:39:BB:71:13:F1:6A:24:82:97:94:48:5E:8C:4C:44:7A X509v3 Authority Key Identifier: keyid:73:6B:29:4F:96:5D:AD:64:0F:9E:35:3B:F3:8F:9A:F1:19:14:79:EA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2spT5ZdrWQPnjU784-a8RkUeeo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a71a5c-1746-43c4-a67f-a8f76bd26a27/1/PwQvETm7cRPxaiSCl5RIXoxMRHo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a71a5c-1746-43c4-a67f-a8f76bd26a27/1/c2spT5ZdrWQPnjU784-a8RkUeeo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.65.88.0/22 IPv6: 2a09:fe00::/29 Signature Algorithm: sha256WithRSAEncryption 80:35:ee:dc:c6:61:b2:5f:05:e4:10:fd:41:48:ce:74:57:12: 05:54:23:b2:66:22:95:7a:1e:74:65:ee:35:cd:70:3d:93:ea: 63:b1:01:6e:b7:8e:7b:53:c7:2c:12:35:9c:50:c1:3f:2f:9d: 57:8c:f9:a8:00:2a:72:a0:76:cc:b6:ad:44:bb:ff:d9:f7:be: dc:57:4e:74:58:70:ee:4d:dc:86:69:19:8e:ea:4b:14:f1:ee: c0:c1:61:74:a4:bd:7b:5d:cd:37:7d:ee:32:3e:84:26:c4:54: 39:d5:6f:3f:fa:d0:c9:5e:62:34:b6:1e:1f:3f:73:2a:3c:29: a5:90:7a:c7:a3:72:bc:e1:8e:77:ac:b4:16:da:73:fa:bc:a4: fc:f8:86:b9:56:a2:d8:e8:4a:50:59:cc:7b:65:15:e3:6d:94: 0f:e1:7f:3c:bd:85:a9:6b:61:2c:27:6a:41:01:6b:ab:d4:ad: 47:cd:cc:23:be:d1:a8:da:7e:db:15:9a:2d:c3:24:75:8d:f8: ae:70:37:42:6b:fd:14:39:83:27:f3:8e:79:05:d6:7f:c3:28: 43:83:5b:c7:c5:03:64:f7:75:fa:3a:f8:8b:19:a3:87:5a:7a: f1:95:f5:6f:7e:68:cf:a9:4c:e4:9f:d9:0c:79:65:b7:b4:5b: 87:89:22:ee -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt7Ncw0W3WXBsDB36vUNDqIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDczNmIyOTRmOTY1ZGFkNjQwZjllMzUzYmYzOGY5YWYxMTkx NDc5ZWEwHhcNMjYwMTAxMjAxODAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZjA0MmYxMTM5YmI3MTEzZjE2YTI0ODI5Nzk0NDg1ZThjNGM0NDdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAumZuNIE1ohmHIKv5Zd9kSRzNYGjb a5aQyzZMfIf3HBwrRpuICNzwQHc0okyXfyjSH4VQm9BzDQIc6kmol2bH6gbPnavk pIpoO7j3ReO/eNsRZf8mG7NgCvAYSnuJhz0VSRuidnoe4WR8s+KaqGUZEJpTrZF/ 9tQ4TJT5anlzHqTJrxrqARcq9pq+U2vPJeE2EgXaprCjAl7kIAMMr/S3g3i22YBu g4yiDrZ79SYJ+Pyn5CIsGy3z78fpRwgEddCXLBdEvsqVq/xRtuiOHv5XzzpPOoJj VPfqmwf+F9TUNBwD0X69M48EWyhdTkRXcBviBsil2ead3xb0OenYuFnTZwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFD8ELxE5u3ET8WokgpeUSF6MTER6MB8GA1UdIwQY MBaAFHNrKU+WXa1kD541O/OPmvEZFHnqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYzJzcFQ1WmRyV1FQbmpVNzg0LWE4UmtVZWVvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC9hNzFhNWMtMTc0Ni00M2M0LWE2N2Yt YThmNzZiZDI2YTI3LzEvUHdRdkVUbTdjUlB4YWlTQ2w1UklYb3hNUkhvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC9hNzFhNWMtMTc0Ni00M2M0LWE2N2YtYThmNzZiZDI2YTI3 LzEvYzJzcFQ1WmRyV1FQbmpVNzg0LWE4UmtVZWVvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCLUFYMA0E AgACMAcDBQMqCf4AMA0GCSqGSIb3DQEBCwUAA4IBAQCANe7cxmGyXwXkEP1BSM50 VxIFVCOyZiKVeh50Ze41zXA9k+pjsQFut457U8csEjWcUME/L51XjPmoACpyoHbM tq1Eu//Z977cV050WHDuTdyGaRmO6ksU8e7AwWF0pL17Xc03fe4yPoQmxFQ51W8/ +tDJXmI0th4fP3MqPCmlkHrHo3K84Y53rLQW2nP6vKT8+Ia5VqLY6EpQWcx7ZRXj bZQP4X88vYWpa2EsJ2pBAWur1K1HzcwjvtGo2n7bFZotwyR1jfiucDdCa/0UOYMn 8455BdZ/wyhDg1vHxQNk93X6OviLGaOHWnrxlfVvfmjPqUzkn9kMeWW3tFuHiSLu -----END CERTIFICATE-----Generated at Mon Feb 9 22:16:05 2026 by rpki-client