This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/PIEMIRczLIOfdUkkwdVSw8e9KPM.roa File: PIEMIRczLIOfdUkkwdVSw8e9KPM.roa (raw, json) Hash identifier: NPUtmhTPQAwtBBDWToashg8KhDzj3KM74Q0F8kyz/dg= Subject key identifier: 3C:81:0C:21:17:33:2C:83:9F:75:49:24:C1:D5:52:C3:C7:BD:28:F3 Certificate issuer: /CN=d08da9cf00d4d58b854ffc62010f235b06df354a Certificate serial: 019B7FF1702B1949553A0815244C8779E244 Authority key identifier: D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/PIEMIRczLIOfdUkkwdVSw8e9KPM.roa Signing time: Fri 02 Jan 2026 18:21:27 +0000 ROA not before: Fri 02 Jan 2026 18:21:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214941 IP address blocks: 193.160.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.crl rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.mft rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 05:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f1:70:2b:19:49:55:3a:08:15:24:4c:87:79:e2:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d08da9cf00d4d58b854ffc62010f235b06df354a Validity Not Before: Jan 2 18:21:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3c810c2117332c839f754924c1d552c3c7bd28f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:c1:ba:22:b0:97:29:7a:b3:5a:5b:7b:52:05: df:7b:0b:e1:2b:01:b6:fd:da:a1:49:a4:06:e0:68: 15:6b:37:58:ed:83:41:06:bc:4a:6a:bc:17:0f:4a: 67:37:61:55:24:5c:fe:09:17:17:e7:41:a4:e0:2f: a4:64:90:09:08:30:d7:55:e5:8e:16:a4:3f:54:19: 95:bb:93:c4:03:de:36:8a:de:29:1f:13:76:5c:39: 51:b5:0b:f5:64:0c:97:69:90:a0:6f:6f:73:96:ef: 1a:82:e3:41:91:28:80:97:84:7c:11:e8:e9:52:a3: 9d:49:d0:e1:34:f5:66:de:2f:93:9e:c5:35:9e:1c: 03:a8:18:b0:5d:7d:b5:10:b8:d4:ad:92:92:18:d9: d3:94:9a:a0:a1:c0:1d:bb:9f:b0:06:73:da:34:33: a4:08:80:32:5c:a9:65:e2:ea:e1:41:a5:bc:ee:7f: 88:46:7f:1d:bd:e6:09:9b:96:65:ce:0c:8f:c5:70: 6a:f3:18:61:c7:cd:c2:11:a8:16:8a:1f:55:0d:d4: 1e:4e:cc:26:e0:43:ae:12:80:13:58:4a:7b:37:c2: e7:12:06:20:46:2f:9f:a9:7d:93:ef:dc:94:42:ec: 21:cc:c4:03:92:c7:bc:55:ec:3b:89:ef:4d:72:b0: 0d:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:81:0C:21:17:33:2C:83:9F:75:49:24:C1:D5:52:C3:C7:BD:28:F3 X509v3 Authority Key Identifier: keyid:D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/PIEMIRczLIOfdUkkwdVSw8e9KPM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.160.222.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:5c:ba:d2:38:c8:c5:07:6e:18:a8:f9:2a:90:0f:e2:c9:4f: 97:58:51:d2:96:75:c7:57:e4:cc:16:f1:ef:b5:9c:40:98:01: bf:7b:de:f3:bc:10:3f:3b:67:a1:18:9e:cd:7a:62:87:78:a3: 44:36:6f:58:e9:cd:27:e6:f0:8e:db:25:f2:bb:81:8d:57:83: b3:6c:7c:30:94:3b:b4:1f:35:b4:c3:9b:0a:d2:c2:39:1e:4c: 64:50:ec:64:e1:f1:63:fb:72:de:48:7d:38:40:75:1d:52:5d: e3:b2:28:8f:d4:34:a9:bc:42:94:d9:fa:04:e2:6c:46:08:7c: cd:a0:40:98:ec:cc:b5:fe:a5:2f:59:8d:ea:ba:cd:98:e5:07: f1:3f:98:9d:8e:e6:48:ad:e5:e4:dd:33:f6:48:33:e2:40:a7: ce:9c:43:81:8c:e7:9c:f4:f8:08:bd:66:fe:41:ab:9a:f0:73: 21:4f:12:16:0b:8e:d0:dd:7d:8d:07:63:42:74:68:13:25:3d: bd:15:2a:3b:5b:11:96:b1:c5:12:34:71:6c:7b:f7:e4:6c:31: 4a:dd:93:d7:3f:b0:86:31:0f:9d:77:06:57:9e:e4:ca:7e:5f: c1:62:e3:5e:65:05:c0:e0:58:64:23:a2:95:cb:43:c5:a0:fe: f2:7f:a1:1f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/8XArGUlVOggVJEyHeeJEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwOGRhOWNmMDBkNGQ1OGI4NTRmZmM2MjAxMGYyMzViMDZk ZjM1NGEwHhcNMjYwMTAyMTgyMTI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYzgxMGMyMTE3MzMyYzgzOWY3NTQ5MjRjMWQ1NTJjM2M3YmQyOGYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo8G6IrCXKXqzWlt7UgXfewvhKwG2 /dqhSaQG4GgVazdY7YNBBrxKarwXD0pnN2FVJFz+CRcX50Gk4C+kZJAJCDDXVeWO FqQ/VBmVu5PEA942it4pHxN2XDlRtQv1ZAyXaZCgb29zlu8aguNBkSiAl4R8Eejp UqOdSdDhNPVm3i+TnsU1nhwDqBiwXX21ELjUrZKSGNnTlJqgocAdu5+wBnPaNDOk CIAyXKll4urhQaW87n+IRn8dveYJm5ZlzgyPxXBq8xhhx83CEagWih9VDdQeTswm 4EOuEoATWEp7N8LnEgYgRi+fqX2T79yUQuwhzMQDkse8Vew7ie9NcrANDwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDyBDCEXMyyDn3VJJMHVUsPHvSjzMB8GA1UdIwQY MBaAFNCNqc8A1NWLhU/8YgEPI1sG3zVKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMEkycHp3RFUxWXVGVF94aUFROGpXd2JmTlVvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS9mZWJlZjgtYTBlYS00YzdlLTg4MDYt MjBlMTk3ODBjYjJlLzEvUElFTUlSY3pMSU9mZFVra3dkVlN3OGU5S1BNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS9mZWJlZjgtYTBlYS00YzdlLTg4MDYtMjBlMTk3ODBjYjJl LzEvMEkycHp3RFUxWXVGVF94aUFROGpXd2JmTlVvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwaDeMA0G CSqGSIb3DQEBCwUAA4IBAQBbXLrSOMjFB24YqPkqkA/iyU+XWFHSlnXHV+TMFvHv tZxAmAG/e97zvBA/O2ehGJ7NemKHeKNENm9Y6c0n5vCO2yXyu4GNV4OzbHwwlDu0 HzW0w5sK0sI5HkxkUOxk4fFj+3LeSH04QHUdUl3jsiiP1DSpvEKU2foE4mxGCHzN oECY7My1/qUvWY3qus2Y5QfxP5idjuZIreXk3TP2SDPiQKfOnEOBjOec9PgIvWb+ Qaua8HMhTxIWC47Q3X2NB2NCdGgTJT29FSo7WxGWscUSNHFse/fkbDFK3ZPXP7CG MQ+ddwZXnuTKfl/BYuNeZQXA4FhkI6KVy0PFoP7yf6Ef -----END CERTIFICATE-----Generated at Mon Jan 19 14:37:21 2026 by rpki-client