This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/107456-df53-424d-9320-933bfa592b1d/1/PsLroDYGHsGsgiEW9SelrwhnRkE.roa File: PsLroDYGHsGsgiEW9SelrwhnRkE.roa (raw, json) Hash identifier: 5y2XYGLtaa7KsEQR8ClC10p0FfK3kTEXhnr5YI0ze2Y= Subject key identifier: 3E:C2:EB:A0:36:06:1E:C1:AC:82:21:16:F5:27:A5:AF:08:67:46:41 Certificate issuer: /CN=1e95a069669ed5a766eee8ebdc32e39fb148410b Certificate serial: 019BEAC188A01DC06DE1D31737398FD369FB Authority key identifier: 1E:95:A0:69:66:9E:D5:A7:66:EE:E8:EB:DC:32:E3:9F:B1:48:41:0B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HpWgaWae1adm7ujr3DLjn7FIQQs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/107456-df53-424d-9320-933bfa592b1d/1/PsLroDYGHsGsgiEW9SelrwhnRkE.roa Signing time: Fri 23 Jan 2026 12:08:30 +0000 ROA not before: Fri 23 Jan 2026 12:08:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44125 IP address blocks: 45.152.24.0/22 maxlen: 22 185.149.196.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/107456-df53-424d-9320-933bfa592b1d/1/HpWgaWae1adm7ujr3DLjn7FIQQs.crl rsync://rpki.ripe.net/repository/DEFAULT/30/107456-df53-424d-9320-933bfa592b1d/1/HpWgaWae1adm7ujr3DLjn7FIQQs.mft rsync://rpki.ripe.net/repository/DEFAULT/HpWgaWae1adm7ujr3DLjn7FIQQs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ea:c1:88:a0:1d:c0:6d:e1:d3:17:37:39:8f:d3:69:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e95a069669ed5a766eee8ebdc32e39fb148410b Validity Not Before: Jan 23 12:08:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3ec2eba036061ec1ac822116f527a5af08674641 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ae:89:a4:d6:80:11:47:e5:d6:61:0e:02:6e: 81:29:f3:89:81:5a:42:fd:ed:a5:b0:aa:4c:3d:53: c0:4e:35:02:72:6b:de:46:e6:e7:1a:00:75:3e:d4: 61:02:4f:de:6f:c1:19:54:f7:0b:0a:81:f4:8f:15: 4d:cf:49:03:e3:e9:6a:0a:4d:79:11:9f:d9:2b:95: c9:b1:38:68:38:af:04:5c:e3:a7:62:c5:56:39:5c: cb:b5:70:62:67:39:15:4f:e2:19:33:f8:77:97:0b: ab:31:98:95:03:8f:1c:0a:62:e6:7e:f8:f8:b6:f8: fc:97:da:a9:3c:f6:82:ed:6e:37:3d:b2:ed:a2:0b: b9:9c:aa:f9:aa:b3:69:08:e9:cd:2a:ca:17:11:94: c0:e1:b5:2e:8c:28:77:14:dd:a7:7d:3b:75:76:a1: c5:93:a7:8c:b0:b2:a4:e0:32:d7:f8:89:3b:3e:36: 98:5f:ae:87:db:d4:75:e3:a0:05:5b:60:8d:94:f4: c9:d7:23:8b:4a:54:ba:2c:ed:ce:e8:cc:b7:cd:50: 4f:47:c1:b4:be:cd:c0:dc:88:4a:76:7c:06:c0:d3: 8c:a5:f0:b6:b7:00:63:59:ad:12:13:84:68:cc:ba: c4:32:aa:a4:5a:68:d6:b7:23:14:dc:cf:86:15:70: c9:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:C2:EB:A0:36:06:1E:C1:AC:82:21:16:F5:27:A5:AF:08:67:46:41 X509v3 Authority Key Identifier: keyid:1E:95:A0:69:66:9E:D5:A7:66:EE:E8:EB:DC:32:E3:9F:B1:48:41:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HpWgaWae1adm7ujr3DLjn7FIQQs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/107456-df53-424d-9320-933bfa592b1d/1/PsLroDYGHsGsgiEW9SelrwhnRkE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/107456-df53-424d-9320-933bfa592b1d/1/HpWgaWae1adm7ujr3DLjn7FIQQs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.152.24.0/22 185.149.196.0/22 Signature Algorithm: sha256WithRSAEncryption 25:ad:1c:e0:82:25:77:7d:66:2b:eb:13:8b:45:9e:45:db:16: 6b:ff:df:63:0f:d6:12:6f:04:86:3f:fc:ad:83:5e:7d:b9:94: e2:aa:13:94:dc:cb:53:71:00:1b:ad:8a:dc:26:30:e4:52:69: e5:34:71:9b:d6:98:ba:ef:08:bf:f8:9b:3d:9f:1d:6f:2a:51: 20:f5:6e:b3:74:b3:ad:b4:15:12:7b:71:ce:3f:c7:2b:3d:03: e5:0a:2c:28:a3:ee:16:68:6c:93:08:94:40:3f:20:6f:1a:63: 81:14:4d:ca:cd:c3:89:4d:14:5d:da:6f:76:76:01:0a:9c:2e: 41:10:10:17:29:ec:74:22:9d:78:99:a4:b3:da:c6:8c:3c:4e: f6:eb:d8:5c:dc:ea:bd:e5:dc:df:c7:e5:69:59:0a:70:d9:54: 0e:a4:60:60:c3:86:5c:c5:cf:a2:29:25:9f:6e:f0:a9:27:85: fd:5f:5e:45:c5:40:ef:f0:19:1e:bd:66:6f:33:28:d8:be:63: 55:60:05:6a:3c:13:c9:34:09:1b:fb:53:32:d4:c2:09:58:48: ad:d6:11:52:b8:50:c7:09:97:ec:cd:ae:6b:89:51:00:c8:f2: ea:e5:33:c8:08:db:13:a7:b2:71:1d:62:7b:c0:71:78:40:17: 9f:1c:6a:f3 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZvqwYigHcBt4dMXNzmP02n7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlOTVhMDY5NjY5ZWQ1YTc2NmVlZThlYmRjMzJlMzlmYjE0 ODQxMGIwHhcNMjYwMTIzMTIwODMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZWMyZWJhMDM2MDYxZWMxYWM4MjIxMTZmNTI3YTVhZjA4Njc0NjQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArK6JpNaAEUfl1mEOAm6BKfOJgVpC /e2lsKpMPVPATjUCcmveRubnGgB1PtRhAk/eb8EZVPcLCoH0jxVNz0kD4+lqCk15 EZ/ZK5XJsThoOK8EXOOnYsVWOVzLtXBiZzkVT+IZM/h3lwurMZiVA48cCmLmfvj4 tvj8l9qpPPaC7W43PbLtogu5nKr5qrNpCOnNKsoXEZTA4bUujCh3FN2nfTt1dqHF k6eMsLKk4DLX+Ik7PjaYX66H29R146AFW2CNlPTJ1yOLSlS6LO3O6My3zVBPR8G0 vs3A3IhKdnwGwNOMpfC2twBjWa0SE4RozLrEMqqkWmjWtyMU3M+GFXDJ4wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFD7C66A2Bh7BrIIhFvUnpa8IZ0ZBMB8GA1UdIwQY MBaAFB6VoGlmntWnZu7o69wy45+xSEELMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHBXZ2FXYWUxYWRtN3VqcjNETGpuN0ZJUVFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8xMDc0NTYtZGY1My00MjRkLTkzMjAt OTMzYmZhNTkyYjFkLzEvUHNMcm9EWUdIc0dzZ2lFVzlTZWxyd2huUmtFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC8xMDc0NTYtZGY1My00MjRkLTkzMjAtOTMzYmZhNTkyYjFk LzEvSHBXZ2FXYWUxYWRtN3VqcjNETGpuN0ZJUVFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCLZgYAwQC uZXEMA0GCSqGSIb3DQEBCwUAA4IBAQAlrRzggiV3fWYr6xOLRZ5F2xZr/99jD9YS bwSGP/ytg159uZTiqhOU3MtTcQAbrYrcJjDkUmnlNHGb1pi67wi/+Js9nx1vKlEg 9W6zdLOttBUSe3HOP8crPQPlCiwoo+4WaGyTCJRAPyBvGmOBFE3KzcOJTRRd2m92 dgEKnC5BEBAXKex0Ip14maSz2saMPE7269hc3Oq95dzfx+VpWQpw2VQOpGBgw4Zc xc+iKSWfbvCpJ4X9X15FxUDv8BkevWZvMyjYvmNVYAVqPBPJNAkb+1My1MIJWEit 1hFSuFDHCZfsza5riVEAyPLq5TPICNsTp7JxHWJ7wHF4QBefHGrz -----END CERTIFICATE-----Generated at Mon Feb 2 08:07:41 2026 by rpki-client