This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/IPShWGUXlOQysmlHN59ggxp79no.roa File: IPShWGUXlOQysmlHN59ggxp79no.roa (raw, json) Hash identifier: h66cPY9mKXXd6y+2DIeK9BUX2MMAhCZtqkFLMLMhdLk= Subject key identifier: 20:F4:A1:58:65:17:94:E4:32:B2:69:47:37:9F:60:83:1A:7B:F6:7A Certificate issuer: /CN=aac575cafa00bc41d57c494ac1f5dbcfee78332e Certificate serial: 019B7C804248E678758E7708F7E052F9C42F Authority key identifier: AA:C5:75:CA:FA:00:BC:41:D5:7C:49:4A:C1:F5:DB:CF:EE:78:33:2E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qsV1yvoAvEHVfElKwfXbz-54My4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/IPShWGUXlOQysmlHN59ggxp79no.roa Signing time: Fri 02 Jan 2026 02:18:58 +0000 ROA not before: Fri 02 Jan 2026 02:18:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206478 IP address blocks: 185.174.32.0/22 maxlen: 22 195.225.200.0/22 maxlen: 22 2a10:4140::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.mft rsync://rpki.ripe.net/repository/DEFAULT/qsV1yvoAvEHVfElKwfXbz-54My4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:42:48:e6:78:75:8e:77:08:f7:e0:52:f9:c4:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aac575cafa00bc41d57c494ac1f5dbcfee78332e Validity Not Before: Jan 2 02:18:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=20f4a158651794e432b26947379f60831a7bf67a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:01:f9:75:61:a6:fa:8e:7c:fe:b5:5c:a7:ea: 7f:bd:01:1b:88:07:b5:21:0b:5d:0f:0c:f9:29:7f: bb:c1:f2:d8:30:fa:81:df:68:f3:29:21:84:cf:84: 61:d3:1a:27:8c:a1:80:df:d3:bd:07:a8:a1:ba:4b: f9:65:e5:3e:67:75:3d:31:c1:54:99:be:8c:5c:25: 10:9f:ae:07:6c:4f:d3:13:ba:5f:9f:7c:1c:f3:4e: e0:d6:19:8e:01:c2:e7:86:b4:b6:b1:45:65:31:29: e9:67:2f:6a:a8:d0:37:a1:f8:b4:e5:79:a8:9d:50: 5d:39:7f:7a:c1:49:f0:38:e3:66:af:d2:86:aa:8f: 69:19:52:d6:0b:92:d7:b3:bc:95:25:10:d9:3c:c7: 08:93:be:0e:dd:d8:00:f1:36:0d:d9:f1:21:4e:b2: d4:83:be:fd:1e:56:39:56:4e:11:26:b6:2e:11:17: 49:e3:a9:cd:da:8f:61:bc:eb:4d:f6:e7:6e:69:f2: f0:f8:db:03:cd:b6:aa:ce:b7:49:f7:68:e2:07:03: 43:aa:fb:96:1e:c6:55:64:ce:e2:14:b6:41:95:f7: c5:8e:9c:dd:f7:67:73:dc:19:cd:1c:18:8d:b0:75: 39:63:ef:2f:f0:9a:78:ea:24:b5:84:05:01:38:ff: aa:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:F4:A1:58:65:17:94:E4:32:B2:69:47:37:9F:60:83:1A:7B:F6:7A X509v3 Authority Key Identifier: keyid:AA:C5:75:CA:FA:00:BC:41:D5:7C:49:4A:C1:F5:DB:CF:EE:78:33:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qsV1yvoAvEHVfElKwfXbz-54My4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/IPShWGUXlOQysmlHN59ggxp79no.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.174.32.0/22 195.225.200.0/22 IPv6: 2a10:4140::/29 Signature Algorithm: sha256WithRSAEncryption 34:e1:2f:e6:ad:a6:9a:a7:92:cd:8c:71:23:84:d6:cd:76:45: fd:73:91:6e:dd:c2:c9:93:f0:d0:49:1a:04:d2:6b:18:82:2b: d1:ca:2b:18:02:2b:d5:86:67:fd:de:6f:71:e9:0d:38:8c:c6: 2f:b7:08:ed:39:dc:77:66:a7:ff:f9:9f:e5:75:fb:24:1d:62: 1b:40:25:5d:43:61:b2:be:a8:7b:23:24:32:f6:fe:7a:6e:59: 2b:4c:df:f6:11:1d:8c:9c:88:ef:79:ab:19:25:49:d6:8c:92: 86:75:7c:71:52:3c:48:2b:c2:66:3e:70:14:db:fb:ab:cf:27: dd:16:d0:09:0f:52:69:a9:f4:53:59:26:d7:01:44:ac:6c:f4: 8d:94:89:90:0f:e4:fc:c5:ef:1b:86:d6:b0:22:86:76:30:3a: e6:e6:09:e5:12:82:0c:97:d7:71:ff:43:34:0c:96:61:e4:cc: 6c:b3:70:99:06:cf:79:0f:9d:40:1d:db:2a:d3:0a:79:ba:10: b7:0a:8a:ca:f7:29:f7:8d:2b:a3:91:72:94:4f:be:5f:9d:60: 7b:1f:a7:26:59:08:b8:b6:95:ec:dc:39:13:d5:c6:e4:3d:8c: 56:c9:54:01:bb:9b:40:55:cc:10:fe:00:a9:06:47:c8:cb:e6: af:7c:d5:db -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt8gEJI5nh1jncI9+BS+cQvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhYzU3NWNhZmEwMGJjNDFkNTdjNDk0YWMxZjVkYmNmZWU3 ODMzMmUwHhcNMjYwMTAyMDIxODU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMGY0YTE1ODY1MTc5NGU0MzJiMjY5NDczNzlmNjA4MzFhN2JmNjdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzAH5dWGm+o58/rVcp+p/vQEbiAe1 IQtdDwz5KX+7wfLYMPqB32jzKSGEz4Rh0xonjKGA39O9B6ihukv5ZeU+Z3U9McFU mb6MXCUQn64HbE/TE7pfn3wc807g1hmOAcLnhrS2sUVlMSnpZy9qqNA3ofi05Xmo nVBdOX96wUnwOONmr9KGqo9pGVLWC5LXs7yVJRDZPMcIk74O3dgA8TYN2fEhTrLU g779HlY5Vk4RJrYuERdJ46nN2o9hvOtN9uduafLw+NsDzbaqzrdJ92jiBwNDqvuW HsZVZM7iFLZBlffFjpzd92dz3BnNHBiNsHU5Y+8v8Jp46iS1hAUBOP+qyQIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFCD0oVhlF5TkMrJpRzefYIMae/Z6MB8GA1UdIwQY MBaAFKrFdcr6ALxB1XxJSsH128/ueDMuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcXNWMXl2b0F2RUhWZkVsS3dmWGJ6LTU0TXk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi8zNWQ1OTgtYzMyYy00OWE3LWIxZjYt OGY5MTNlMjY5NmU1LzEvSVBTaFdHVVhsT1F5c21sSE41OWdneHA3OW5vLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi8zNWQ1OTgtYzMyYy00OWE3LWIxZjYtOGY5MTNlMjY5NmU1 LzEvcXNWMXl2b0F2RUhWZkVsS3dmWGJ6LTU0TXk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCua4gAwQC w+HIMA0EAgACMAcDBQMqEEFAMA0GCSqGSIb3DQEBCwUAA4IBAQA04S/mraaap5LN jHEjhNbNdkX9c5Fu3cLJk/DQSRoE0msYgivRyisYAivVhmf93m9x6Q04jMYvtwjt Odx3Zqf/+Z/ldfskHWIbQCVdQ2Gyvqh7IyQy9v56blkrTN/2ER2MnIjveasZJUnW jJKGdXxxUjxIK8JmPnAU2/urzyfdFtAJD1JpqfRTWSbXAUSsbPSNlImQD+T8xe8b htawIoZ2MDrm5gnlEoIMl9dx/0M0DJZh5Mxss3CZBs95D51AHdsq0wp5uhC3CorK 9yn3jSujkXKUT75fnWB7H6cmWQi4tpXs3DkT1cbkPYxWyVQBu5tAVcwQ/gCpBkfI y+avfNXb -----END CERTIFICATE-----Generated at Tue Feb 10 01:13:28 2026 by rpki-client