This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/a27b39-8011-4142-86c2-cf83d6e40558/1/PEaB6XQK_JSckDUEH_ZUUvy4XJs.roa File: PEaB6XQK_JSckDUEH_ZUUvy4XJs.roa (raw, json) Hash identifier: pHNbC9gTB8A25YDnRH1/ZymWlhpa8gI2FiyHFl3N24c= Subject key identifier: 3C:46:81:E9:74:0A:FC:94:9C:90:35:04:1F:F6:54:52:FC:B8:5C:9B Certificate issuer: /CN=bda96d02a822f46253c2aee680441d5ac27c3df5 Certificate serial: 019BF89D32C861C0D9EF2E84448975FCBF73 Authority key identifier: BD:A9:6D:02:A8:22:F4:62:53:C2:AE:E6:80:44:1D:5A:C2:7C:3D:F5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/valtAqgi9GJTwq7mgEQdWsJ8PfU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/a27b39-8011-4142-86c2-cf83d6e40558/1/PEaB6XQK_JSckDUEH_ZUUvy4XJs.roa Signing time: Mon 26 Jan 2026 04:43:30 +0000 ROA not before: Mon 26 Jan 2026 04:43:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44574 IP address blocks: 5.153.96.0/21 maxlen: 24 5.153.192.0/19 maxlen: 24 31.12.96.0/19 maxlen: 24 31.13.0.0/21 maxlen: 24 37.252.32.0/19 maxlen: 24 91.199.78.0/24 maxlen: 24 93.121.0.0/17 maxlen: 24 95.172.224.0/19 maxlen: 24 141.138.255.0/24 maxlen: 24 151.249.0.0/18 maxlen: 24 159.20.32.0/19 maxlen: 24 185.196.80.0/22 maxlen: 24 212.105.160.0/19 maxlen: 24 2001:67c:2544::/48 maxlen: 48 2a00:10e8::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/a27b39-8011-4142-86c2-cf83d6e40558/1/valtAqgi9GJTwq7mgEQdWsJ8PfU.crl rsync://rpki.ripe.net/repository/DEFAULT/16/a27b39-8011-4142-86c2-cf83d6e40558/1/valtAqgi9GJTwq7mgEQdWsJ8PfU.mft rsync://rpki.ripe.net/repository/DEFAULT/valtAqgi9GJTwq7mgEQdWsJ8PfU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:9d:32:c8:61:c0:d9:ef:2e:84:44:89:75:fc:bf:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bda96d02a822f46253c2aee680441d5ac27c3df5 Validity Not Before: Jan 26 04:43:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3c4681e9740afc949c9035041ff65452fcb85c9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:5c:bc:34:5a:5a:02:f1:40:dd:2a:68:6c:2f: e4:6e:5b:eb:49:dc:ac:84:57:53:1b:59:c0:66:30: a6:7c:69:3a:1b:42:31:d4:57:f4:7b:84:13:e0:06: 1d:18:06:e5:be:2d:63:ce:2e:74:4a:d7:17:b4:ae: 9a:37:c2:18:59:b3:71:9c:37:df:f2:61:88:0c:4f: 6a:68:bd:24:8c:32:f6:f1:04:c4:36:59:6f:71:21: 52:27:a3:10:61:dd:dd:a8:94:20:50:79:3c:a6:51: 40:05:a0:02:fd:a5:ec:4f:40:a8:63:75:7d:cd:81: 99:e4:dd:7a:ec:7c:d1:d4:89:5e:87:b7:de:40:63: 01:b0:c5:4a:6e:b4:f4:70:e2:2d:e6:40:e9:b1:e5: 01:05:4b:5e:6a:79:d8:75:f2:57:5f:93:2f:8c:61: 9d:ee:a4:c7:50:cb:87:9c:47:cf:74:b1:ee:1e:ad: 00:d1:6b:81:4c:a0:ae:90:91:d6:7e:af:98:0d:07: 48:23:77:7f:74:ba:3a:dd:f7:f8:fa:f8:7c:20:bc: 15:5d:0e:45:ea:97:2d:43:04:c8:60:d9:73:b9:a7: a6:77:e9:d7:4d:ab:85:c9:be:15:cd:c7:c5:23:3a: ad:24:f1:21:21:e0:f0:82:18:fd:c0:0a:7a:5c:89: 4c:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:46:81:E9:74:0A:FC:94:9C:90:35:04:1F:F6:54:52:FC:B8:5C:9B X509v3 Authority Key Identifier: keyid:BD:A9:6D:02:A8:22:F4:62:53:C2:AE:E6:80:44:1D:5A:C2:7C:3D:F5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/valtAqgi9GJTwq7mgEQdWsJ8PfU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a27b39-8011-4142-86c2-cf83d6e40558/1/PEaB6XQK_JSckDUEH_ZUUvy4XJs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a27b39-8011-4142-86c2-cf83d6e40558/1/valtAqgi9GJTwq7mgEQdWsJ8PfU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.153.96.0/21 5.153.192.0/19 31.12.96.0/19 31.13.0.0/21 37.252.32.0/19 91.199.78.0/24 93.121.0.0/17 95.172.224.0/19 141.138.255.0/24 151.249.0.0/18 159.20.32.0/19 185.196.80.0/22 212.105.160.0/19 IPv6: 2001:67c:2544::/48 2a00:10e8::/29 Signature Algorithm: sha256WithRSAEncryption 88:a1:9f:4c:9a:c9:4a:6c:e8:85:5b:a7:1d:f1:09:ea:46:74: 86:70:f0:68:70:97:55:25:71:b7:d0:ff:ef:14:e2:f7:bd:83: 42:1d:27:f3:6d:bb:ab:32:74:f5:e1:1d:3d:0e:a2:27:de:e5: a6:66:fa:bd:e1:a1:78:80:7b:13:74:b9:b8:50:f0:5a:d1:70: 0c:dd:dd:ad:ad:ed:db:cf:44:37:19:d3:aa:a4:fc:fb:40:db: 2f:3f:78:2f:53:2f:10:05:5c:30:d1:93:2a:f8:01:0c:32:f5: be:ae:55:83:e3:af:31:c6:f1:d3:cc:57:50:82:a7:5e:d3:b5: 79:f0:8c:f8:b3:65:dc:45:02:a7:1d:1c:2a:6b:0b:08:d2:89: 00:52:d5:83:66:6a:86:6e:61:41:04:5a:83:3d:16:97:e7:1b: 05:95:a5:02:65:5f:e3:58:24:98:db:cc:fc:20:4c:5c:3b:ba: 57:f2:7b:d0:a5:84:52:7a:c7:f4:07:70:81:0f:3e:57:9f:65: ad:87:13:ad:87:0b:7f:22:d2:36:7a:3f:6a:5a:3e:85:2d:37: 13:f3:39:2f:bc:ac:1e:a8:13:4f:15:5e:68:d5:dc:d1:8f:06: a4:e3:ee:62:ca:b1:03:ee:0e:91:be:2b:f6:b0:dd:b7:d0:94: a5:0f:5c:f5 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgISAZv4nTLIYcDZ7y6ERIl1/L9zMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkYTk2ZDAyYTgyMmY0NjI1M2MyYWVlNjgwNDQxZDVhYzI3 YzNkZjUwHhcNMjYwMTI2MDQ0MzMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYzQ2ODFlOTc0MGFmYzk0OWM5MDM1MDQxZmY2NTQ1MmZjYjg1YzliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwVy8NFpaAvFA3SpobC/kblvrSdys hFdTG1nAZjCmfGk6G0Ix1Ff0e4QT4AYdGAblvi1jzi50StcXtK6aN8IYWbNxnDff 8mGIDE9qaL0kjDL28QTENllvcSFSJ6MQYd3dqJQgUHk8plFABaAC/aXsT0CoY3V9 zYGZ5N167HzR1Ileh7feQGMBsMVKbrT0cOIt5kDpseUBBUteannYdfJXX5MvjGGd 7qTHUMuHnEfPdLHuHq0A0WuBTKCukJHWfq+YDQdII3d/dLo63ff4+vh8ILwVXQ5F 6pctQwTIYNlzuaemd+nXTauFyb4VzcfFIzqtJPEhIeDwghj9wAp6XIlMKwIDAQAB o4ICaTCCAmUwHQYDVR0OBBYEFDxGgel0CvyUnJA1BB/2VFL8uFybMB8GA1UdIwQY MBaAFL2pbQKoIvRiU8Ku5oBEHVrCfD31MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmFsdEFxZ2k5R0pUd3E3bWdFUWRXc0o4UGZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi9hMjdiMzktODAxMS00MTQyLTg2YzIt Y2Y4M2Q2ZTQwNTU4LzEvUEVhQjZYUUtfSlNja0RVRUhfWlVVdnk0WEpzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi9hMjdiMzktODAxMS00MTQyLTg2YzItY2Y4M2Q2ZTQwNTU4 LzEvdmFsdEFxZ2k5R0pUd3E3bWdFUWRXc0o4UGZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMH8GCCsGAQUFBwEHAQH/BHAwbjBUBAIAATBOAwQDBZlgAwQF BZnAAwQFHwxgAwQDHw0AAwQFJfwgAwQAW8dOAwQHXXkAAwQFX6zgAwQAjYr/AwQG l/kAAwQFnxQgAwQCucRQAwQF1GmgMBYEAgACMBADBwAgAQZ8JUQDBQMqABDoMA0G CSqGSIb3DQEBCwUAA4IBAQCIoZ9MmslKbOiFW6cd8QnqRnSGcPBocJdVJXG30P/v FOL3vYNCHSfzbburMnT14R09DqIn3uWmZvq94aF4gHsTdLm4UPBa0XAM3d2tre3b z0Q3GdOqpPz7QNsvP3gvUy8QBVww0ZMq+AEMMvW+rlWD468xxvHTzFdQgqde07V5 8Iz4s2XcRQKnHRwqawsI0okAUtWDZmqGbmFBBFqDPRaX5xsFlaUCZV/jWCSY28z8 IExcO7pX8nvQpYRSesf0B3CBDz5Xn2WthxOthwt/ItI2ej9qWj6FLTcT8zkvvKwe qBNPFV5o1dzRjwak4+5iyrED7g6Rviv2sN230JSlD1z1 -----END CERTIFICATE-----Generated at Mon Feb 9 18:22:48 2026 by rpki-client