This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/wqQ7AFTuH8fBJNLPtKlniRqYwQ0.roa File: wqQ7AFTuH8fBJNLPtKlniRqYwQ0.roa (raw, json) Hash identifier: RymdRmdUujO6Ed9+P+FTjhkbjKf0N5kYD8iYvQyjuhs= Subject key identifier: C2:A4:3B:00:54:EE:1F:C7:C1:24:D2:CF:B4:A9:67:89:1A:98:C1:0D Certificate issuer: /CN=297ef9befd1a7e24c0cc9729987fc065d6b7132f Certificate serial: 019B22A70555EACC895C14BF9DB421726B57 Authority key identifier: 29:7E:F9:BE:FD:1A:7E:24:C0:CC:97:29:98:7F:C0:65:D6:B7:13:2F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KX75vv0afiTAzJcpmH_AZda3Ey8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/wqQ7AFTuH8fBJNLPtKlniRqYwQ0.roa Signing time: Mon 15 Dec 2025 15:35:29 +0000 ROA not before: Mon 15 Dec 2025 15:35:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 0 IP address blocks: 5.10.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/KX75vv0afiTAzJcpmH_AZda3Ey8.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/KX75vv0afiTAzJcpmH_AZda3Ey8.mft rsync://rpki.ripe.net/repository/DEFAULT/KX75vv0afiTAzJcpmH_AZda3Ey8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 09:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:22:a7:05:55:ea:cc:89:5c:14:bf:9d:b4:21:72:6b:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=297ef9befd1a7e24c0cc9729987fc065d6b7132f Validity Not Before: Dec 15 15:35:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=c2a43b0054ee1fc7c124d2cfb4a967891a98c10d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:fc:d2:31:00:dc:20:b6:9f:5e:86:45:07:5a: a4:a1:47:4b:72:e6:65:8c:a4:ac:54:f3:f1:f1:b5: b0:74:6c:fd:55:a4:cc:28:9c:eb:89:b1:26:67:7c: 36:d1:73:13:0e:85:d8:75:d9:52:60:ce:dd:2f:aa: a8:ad:1f:f0:2d:06:18:70:cc:43:e8:65:9d:b2:b5: d4:81:86:23:27:57:8d:67:78:98:b1:b5:a7:cd:ba: 35:d9:0c:ad:39:2d:e3:7c:98:7e:06:fe:e7:fb:4c: 0a:8a:73:96:01:f3:0a:7e:c6:07:d3:f4:74:49:29: 1b:26:b8:9e:dd:2c:e5:00:92:05:32:45:80:c5:4f: d5:59:51:6e:29:93:d9:ee:a8:80:c4:fd:41:cf:72: ba:8a:21:a2:8e:b7:5b:38:6c:fe:be:c7:a2:09:d3: a0:9d:e5:19:20:91:9e:76:f2:47:44:a5:cc:2f:5e: c5:a9:ed:e8:87:c8:e4:81:cf:18:4f:c8:74:59:e3: 1e:bb:68:5b:9a:c2:84:74:b7:14:1d:c7:22:aa:97: c7:41:8d:09:d8:8d:c8:02:62:72:ed:52:92:c8:83: 9d:1e:90:c0:33:fa:27:dd:ff:d0:5a:cd:2a:de:29: bb:89:4c:6d:58:8e:bf:b5:00:41:35:0a:ad:d8:a4: a1:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:A4:3B:00:54:EE:1F:C7:C1:24:D2:CF:B4:A9:67:89:1A:98:C1:0D X509v3 Authority Key Identifier: keyid:29:7E:F9:BE:FD:1A:7E:24:C0:CC:97:29:98:7F:C0:65:D6:B7:13:2F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KX75vv0afiTAzJcpmH_AZda3Ey8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/wqQ7AFTuH8fBJNLPtKlniRqYwQ0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/KX75vv0afiTAzJcpmH_AZda3Ey8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.10.222.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:6d:7f:4f:22:b1:73:bc:37:36:e2:1f:83:51:25:31:28:1e: f9:cf:f7:a5:3d:fc:41:a9:dd:7c:61:46:d8:ab:55:23:f7:8d: cd:86:8c:f2:34:00:a6:cf:c0:56:34:5e:71:f6:63:b5:17:3f: 59:1a:35:20:6a:4f:57:06:a1:f8:23:7f:9f:a7:c6:cc:56:f5: 35:46:25:35:8f:90:97:72:f5:96:69:57:e7:31:40:b0:9f:07: 3a:74:25:96:01:87:28:e4:87:31:f0:c9:1c:97:be:29:4f:0a: 37:3f:0e:b7:2b:d6:91:60:c7:8f:21:2c:15:b2:6b:dd:fd:6e: a8:4d:76:3c:0c:11:86:a5:e0:99:d0:06:21:56:2f:c4:fa:4a: 97:8b:77:b3:21:b6:f3:37:90:5d:06:7a:c2:17:81:4f:8e:01: 47:9a:23:64:ec:14:98:9e:c6:23:d3:6c:45:24:a9:d3:0d:19: c8:a1:e6:de:e7:4d:04:73:10:a9:8e:5c:06:7a:b9:c8:27:a2: 74:e0:1f:16:db:48:5e:c6:e3:ef:0d:9e:a0:e4:bf:f1:26:3b: ed:e0:cf:67:71:49:41:2b:e0:ba:7f:f8:33:55:e6:14:a5:81: 53:20:66:0d:0c:42:aa:ee:7a:ea:28:a1:98:a6:89:cc:a1:09: 49:47:70:c3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZsipwVV6syJXBS/nbQhcmtXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5N2VmOWJlZmQxYTdlMjRjMGNjOTcyOTk4N2ZjMDY1ZDZi NzEzMmYwHhcNMjUxMjE1MTUzNTI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjMmE0M2IwMDU0ZWUxZmM3YzEyNGQyY2ZiNGE5Njc4OTFhOThjMTBkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp/zSMQDcILafXoZFB1qkoUdLcuZl jKSsVPPx8bWwdGz9VaTMKJzribEmZ3w20XMTDoXYddlSYM7dL6qorR/wLQYYcMxD 6GWdsrXUgYYjJ1eNZ3iYsbWnzbo12QytOS3jfJh+Bv7n+0wKinOWAfMKfsYH0/R0 SSkbJrie3SzlAJIFMkWAxU/VWVFuKZPZ7qiAxP1Bz3K6iiGijrdbOGz+vseiCdOg neUZIJGedvJHRKXML17Fqe3oh8jkgc8YT8h0WeMeu2hbmsKEdLcUHcciqpfHQY0J 2I3IAmJy7VKSyIOdHpDAM/on3f/QWs0q3im7iUxtWI6/tQBBNQqt2KShZwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMKkOwBU7h/HwSTSz7SpZ4kamMENMB8GA1UdIwQY MBaAFCl++b79Gn4kwMyXKZh/wGXWtxMvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1g3NXZ2MGFmaVRBekpjcG1IX0FaZGEzRXk4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS9iZTQ5MDktNzQ1Zi00ZDBjLWJmYWIt ZGVlNzY4NjAwMTNkLzEvd3FRN0FGVHVIOGZCSk5MUHRLbG5pUnFZd1EwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS9iZTQ5MDktNzQ1Zi00ZDBjLWJmYWItZGVlNzY4NjAwMTNk LzEvS1g3NXZ2MGFmaVRBekpjcG1IX0FaZGEzRXk4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABQreMA0G CSqGSIb3DQEBCwUAA4IBAQArbX9PIrFzvDc24h+DUSUxKB75z/elPfxBqd18YUbY q1Uj943NhozyNACmz8BWNF5x9mO1Fz9ZGjUgak9XBqH4I3+fp8bMVvU1RiU1j5CX cvWWaVfnMUCwnwc6dCWWAYco5Icx8Mkcl74pTwo3Pw63K9aRYMePISwVsmvd/W6o TXY8DBGGpeCZ0AYhVi/E+kqXi3ezIbbzN5BdBnrCF4FPjgFHmiNk7BSYnsYj02xF JKnTDRnIoebe500EcxCpjlwGernIJ6J04B8W20hexuPvDZ6g5L/xJjvt4M9ncUlB K+C6f/gzVeYUpYFTIGYNDEKq7nrqKKGYponMoQlJR3DD -----END CERTIFICATE-----Generated at Mon Dec 22 12:45:36 2025 by rpki-client