This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/PpYNah4fHkcw05KeovjW9S2qVl0.roa File: PpYNah4fHkcw05KeovjW9S2qVl0.roa (raw, json) Hash identifier: x2GYY7CYMx0xtXbQmww1xtUp90lVT0uz/2yv6eUgwgQ= Subject key identifier: 3E:96:0D:6A:1E:1F:1E:47:30:D3:92:9E:A2:F8:D6:F5:2D:AA:56:5D Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Certificate serial: 019B7E3935FC8741E75C88AC3FFD4C30A7B8 Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/PpYNah4fHkcw05KeovjW9S2qVl0.roa Signing time: Fri 02 Jan 2026 10:20:37 +0000 ROA not before: Fri 02 Jan 2026 10:20:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205091 IP address blocks: 163.5.172.0/24 maxlen: 24 163.5.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.mft rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 13:02:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:35:fc:87:41:e7:5c:88:ac:3f:fd:4c:30:a7:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Validity Not Before: Jan 2 10:20:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3e960d6a1e1f1e4730d3929ea2f8d6f52daa565d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:34:bf:33:f7:7f:66:77:75:fe:9d:46:4a:94: 06:9b:6b:37:f3:41:ed:99:77:17:a7:f3:f1:a5:f9: 87:62:0a:9b:a4:e2:df:a0:7f:ee:5b:fa:59:c9:7b: 12:ce:da:e4:c3:d4:b2:da:5b:c5:97:8a:5f:0f:32: b0:16:ff:6e:bb:35:b9:dc:49:9b:d9:5d:b8:86:2e: dc:c3:68:5b:75:55:79:45:9c:c6:c3:be:e2:f1:2c: 3b:57:93:98:8e:8b:11:4d:5c:6c:4f:f2:66:46:e2: ab:7f:43:93:00:f3:93:27:e6:b6:07:cd:b3:f8:5d: dd:fa:03:59:c2:26:45:b9:47:92:ea:99:27:14:3c: 06:10:1c:40:3f:e8:e1:21:20:45:da:c8:74:38:e7: b6:50:61:85:49:f8:b7:cb:ef:3b:6d:54:dd:53:f3: ea:fa:65:33:72:43:b4:f6:ba:55:8c:07:ca:5c:f5: f4:ab:2c:bb:e8:25:9d:b4:bd:06:de:0d:a3:8b:d6: 8a:54:8b:64:26:0f:47:d9:73:53:e2:3e:68:72:59: 89:b8:47:81:6e:0d:6f:aa:b6:49:c0:04:f9:6b:26: 6e:fc:43:1b:09:b8:e0:d1:4d:a7:dd:5d:64:b8:63: eb:6c:81:d7:b0:df:60:b8:2f:b5:3e:2a:d6:9d:6d: c4:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:96:0D:6A:1E:1F:1E:47:30:D3:92:9E:A2:F8:D6:F5:2D:AA:56:5D X509v3 Authority Key Identifier: keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/PpYNah4fHkcw05KeovjW9S2qVl0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.5.172.0/24 163.5.188.0/24 Signature Algorithm: sha256WithRSAEncryption a3:ac:99:88:0f:10:5d:97:d0:1e:ed:c9:86:18:02:cb:25:1f: e6:05:9a:31:f5:0a:5e:6a:77:6d:d5:36:57:c8:73:6d:8d:fc: 47:6b:0e:0c:9a:05:67:61:2a:3d:93:d4:68:4e:d2:74:05:63: 84:96:58:4b:85:f1:f7:a6:aa:85:2a:33:93:93:5c:44:a3:e9: 84:2d:d4:d9:1b:74:ff:5d:1a:91:b9:11:ce:84:de:a4:d4:b9: 18:c4:55:07:05:c0:85:e0:63:8e:dc:30:5e:17:0a:63:54:d3: a1:8c:1b:2f:8a:35:2e:67:97:b4:08:62:8a:04:bd:2a:f8:cf: 72:02:66:fa:b5:63:5d:93:16:71:b5:cc:cf:ee:d5:bc:a7:3e: 59:a4:5d:7a:f9:f0:6e:4f:f3:54:54:50:f3:af:42:02:ab:1b: d6:58:6f:2f:04:96:6c:3a:be:5a:8c:ba:77:77:a0:2e:04:c1: 03:51:a0:1e:92:5c:30:bf:c2:0e:91:e2:2d:96:ed:56:25:d4: ef:46:58:f5:e9:42:da:19:86:b7:d2:74:eb:78:80:95:00:72: fe:0b:f3:82:1a:e6:8b:f3:6e:a3:cf:e1:45:9a:cf:3a:bf:cf: cf:0b:8a:4d:9f:54:c1:5f:a3:54:90:1e:05:de:a5:ad:56:79: a3:b8:f4:69 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+OTX8h0HnXIisP/1MMKe4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2 MjRiY2IwHhcNMjYwMTAyMTAyMDM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZTk2MGQ2YTFlMWYxZTQ3MzBkMzkyOWVhMmY4ZDZmNTJkYWE1NjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjTS/M/d/Znd1/p1GSpQGm2s380Ht mXcXp/PxpfmHYgqbpOLfoH/uW/pZyXsSztrkw9Sy2lvFl4pfDzKwFv9uuzW53Emb 2V24hi7cw2hbdVV5RZzGw77i8Sw7V5OYjosRTVxsT/JmRuKrf0OTAPOTJ+a2B82z +F3d+gNZwiZFuUeS6pknFDwGEBxAP+jhISBF2sh0OOe2UGGFSfi3y+87bVTdU/Pq +mUzckO09rpVjAfKXPX0qyy76CWdtL0G3g2ji9aKVItkJg9H2XNT4j5oclmJuEeB bg1vqrZJwAT5ayZu/EMbCbjg0U2n3V1kuGPrbIHXsN9guC+1PirWnW3EbQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFD6WDWoeHx5HMNOSnqL41vUtqlZdMB8GA1UdIwQY MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt OWZlOTQxMDhmZjAxLzEvUHBZTmFoNGZIa2N3MDVLZW92alc5UzJxVmwwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAowWsAwQA owW8MA0GCSqGSIb3DQEBCwUAA4IBAQCjrJmIDxBdl9Ae7cmGGALLJR/mBZox9Qpe andt1TZXyHNtjfxHaw4MmgVnYSo9k9RoTtJ0BWOEllhLhfH3pqqFKjOTk1xEo+mE LdTZG3T/XRqRuRHOhN6k1LkYxFUHBcCF4GOO3DBeFwpjVNOhjBsvijUuZ5e0CGKK BL0q+M9yAmb6tWNdkxZxtczP7tW8pz5ZpF16+fBuT/NUVFDzr0ICqxvWWG8vBJZs Or5ajLp3d6AuBMEDUaAeklwwv8IOkeItlu1WJdTvRlj16ULaGYa30nTreICVAHL+ C/OCGuaL826jz+FFms86v8/PC4pNn1TBX6NUkB4F3qWtVnmjuPRp -----END CERTIFICATE-----Generated at Mon Jan 19 19:59:15 2026 by rpki-client