This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9c0278-542c-4467-ac7c-24aee2b0e82b/1/PM2xutOtApHOjMCZG4fRaGN19-A.roa File: PM2xutOtApHOjMCZG4fRaGN19-A.roa (raw, json) Hash identifier: cmOF+MvtNkb0EB47v73B7IdtgsKunZ1G49rR7QDbH58= Subject key identifier: 3C:CD:B1:BA:D3:AD:02:91:CE:8C:C0:99:1B:87:D1:68:63:75:F7:E0 Certificate issuer: /CN=5be719f985df394a42ac11e5cbc8f82b4b7aec5d Certificate serial: 019B7F1474872A088A29E0E8216CD8B7AEB3 Authority key identifier: 5B:E7:19:F9:85:DF:39:4A:42:AC:11:E5:CB:C8:F8:2B:4B:7A:EC:5D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W-cZ-YXfOUpCrBHly8j4K0t67F0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9c0278-542c-4467-ac7c-24aee2b0e82b/1/PM2xutOtApHOjMCZG4fRaGN19-A.roa Signing time: Fri 02 Jan 2026 14:20:05 +0000 ROA not before: Fri 02 Jan 2026 14:20:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56818 IP address blocks: 91.227.254.0/24 maxlen: 24 192.162.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/9c0278-542c-4467-ac7c-24aee2b0e82b/1/W-cZ-YXfOUpCrBHly8j4K0t67F0.crl rsync://rpki.ripe.net/repository/DEFAULT/35/9c0278-542c-4467-ac7c-24aee2b0e82b/1/W-cZ-YXfOUpCrBHly8j4K0t67F0.mft rsync://rpki.ripe.net/repository/DEFAULT/W-cZ-YXfOUpCrBHly8j4K0t67F0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:74:87:2a:08:8a:29:e0:e8:21:6c:d8:b7:ae:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5be719f985df394a42ac11e5cbc8f82b4b7aec5d Validity Not Before: Jan 2 14:20:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3ccdb1bad3ad0291ce8cc0991b87d1686375f7e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:e1:88:8d:69:53:9c:55:40:5a:f9:76:49:dd: 94:6f:69:bb:9f:9f:66:4f:55:b3:a5:e3:d6:cf:1d: e3:2d:dd:82:4a:61:74:47:36:fd:97:60:52:f6:95: e1:43:9e:fd:c3:c0:65:68:eb:bd:b2:0d:6c:d6:7d: a6:28:43:be:59:3a:57:13:72:c2:b7:25:67:31:3d: e7:e2:c3:ae:b4:ee:fe:fe:fe:8d:cb:4f:ba:ff:7d: 1d:26:04:99:a7:0b:cb:02:36:02:4b:82:ac:6d:7c: f5:c0:5f:68:84:f9:f0:d2:b0:53:40:2b:ee:c6:96: 4c:0e:60:64:35:75:b1:36:8a:f5:73:65:be:60:d0: 7d:8b:17:b6:ff:bd:59:a1:58:77:45:ce:3b:10:64: f1:e5:52:81:4c:46:37:e4:8a:93:06:74:b0:06:ad: 57:3a:42:14:16:66:45:07:ca:df:9f:97:e8:b0:2f: f7:16:96:43:56:06:7c:2d:e0:cb:5d:f8:ab:e5:89: 18:15:59:cf:ad:95:7f:ca:3e:be:25:ef:fe:a0:41: 66:2d:be:ce:ac:40:5e:8d:d2:c0:c5:83:c7:ca:46: 22:61:90:e7:ed:9a:42:f8:c3:c9:41:6f:d6:37:da: 03:d9:fc:de:6a:5b:1c:0a:3f:b8:f9:ab:90:3a:57: 95:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:CD:B1:BA:D3:AD:02:91:CE:8C:C0:99:1B:87:D1:68:63:75:F7:E0 X509v3 Authority Key Identifier: keyid:5B:E7:19:F9:85:DF:39:4A:42:AC:11:E5:CB:C8:F8:2B:4B:7A:EC:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W-cZ-YXfOUpCrBHly8j4K0t67F0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9c0278-542c-4467-ac7c-24aee2b0e82b/1/PM2xutOtApHOjMCZG4fRaGN19-A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9c0278-542c-4467-ac7c-24aee2b0e82b/1/W-cZ-YXfOUpCrBHly8j4K0t67F0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.227.254.0/24 192.162.200.0/22 Signature Algorithm: sha256WithRSAEncryption 35:3b:ae:7b:4c:cf:9f:34:5e:c7:6f:88:5f:83:bc:6d:9d:98: 7c:18:6b:c3:df:f5:08:f8:c7:41:18:49:f5:87:1c:a6:8f:8d: 0f:3b:30:24:bd:47:ee:13:1a:2c:b8:2b:29:51:fb:2e:0d:88: 3c:5c:70:3a:31:c9:87:c9:7b:dd:8e:78:1a:b8:cf:37:61:25: 6d:88:f1:76:98:fd:bb:9b:f2:6e:16:b5:03:3b:b5:c6:19:f9: c0:bc:a8:e5:21:33:2c:e1:b1:c6:0f:92:11:35:fe:d4:4a:9d: a3:e2:8b:aa:d1:20:dc:80:6f:ef:00:a9:6a:78:64:6a:bd:2a: 6f:2d:7e:1b:e2:af:3f:eb:ee:5b:7f:81:d4:7c:57:7b:88:95: 60:a8:fa:c6:2e:b9:4d:2e:b8:fd:92:63:6f:21:45:41:6d:d4: 9e:b4:72:1a:d7:94:4a:72:79:36:26:97:b5:c0:47:86:ce:bc: 77:d6:92:73:33:2f:82:ea:84:ad:e5:63:8a:c6:92:8b:a4:c9: 46:be:0a:d6:0f:07:21:03:42:d6:9a:01:b2:03:34:10:ad:b4: 66:19:5d:f4:35:e2:46:0e:58:fa:33:5a:e6:77:5c:ef:0f:28: 8f:0a:35:7c:1c:31:83:65:ed:38:a1:ca:83:90:88:83:b6:c9: ec:36:e8:88 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/FHSHKgiKKeDoIWzYt66zMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDViZTcxOWY5ODVkZjM5NGE0MmFjMTFlNWNiYzhmODJiNGI3 YWVjNWQwHhcNMjYwMTAyMTQyMDA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzY2NkYjFiYWQzYWQwMjkxY2U4Y2MwOTkxYjg3ZDE2ODYzNzVmN2UwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7+GIjWlTnFVAWvl2Sd2Ub2m7n59m T1WzpePWzx3jLd2CSmF0Rzb9l2BS9pXhQ579w8BlaOu9sg1s1n2mKEO+WTpXE3LC tyVnMT3n4sOutO7+/v6Ny0+6/30dJgSZpwvLAjYCS4KsbXz1wF9ohPnw0rBTQCvu xpZMDmBkNXWxNor1c2W+YNB9ixe2/71ZoVh3Rc47EGTx5VKBTEY35IqTBnSwBq1X OkIUFmZFB8rfn5fosC/3FpZDVgZ8LeDLXfir5YkYFVnPrZV/yj6+Je/+oEFmLb7O rEBejdLAxYPHykYiYZDn7ZpC+MPJQW/WN9oD2fzealscCj+4+auQOleV7wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFDzNsbrTrQKRzozAmRuH0WhjdffgMB8GA1UdIwQY MBaAFFvnGfmF3zlKQqwR5cvI+CtLeuxdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVy1jWi1ZWGZPVXBDckJIbHk4ajRLMHQ2N0YwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS85YzAyNzgtNTQyYy00NDY3LWFjN2Mt MjRhZWUyYjBlODJiLzEvUE0yeHV0T3RBcEhPak1DWkc0ZlJhR04xOS1BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS85YzAyNzgtNTQyYy00NDY3LWFjN2MtMjRhZWUyYjBlODJi LzEvVy1jWi1ZWGZPVXBDckJIbHk4ajRLMHQ2N0YwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAW+P+AwQC wKLIMA0GCSqGSIb3DQEBCwUAA4IBAQA1O657TM+fNF7Hb4hfg7xtnZh8GGvD3/UI +MdBGEn1hxymj40POzAkvUfuExosuCspUfsuDYg8XHA6McmHyXvdjngauM83YSVt iPF2mP27m/JuFrUDO7XGGfnAvKjlITMs4bHGD5IRNf7USp2j4ouq0SDcgG/vAKlq eGRqvSpvLX4b4q8/6+5bf4HUfFd7iJVgqPrGLrlNLrj9kmNvIUVBbdSetHIa15RK cnk2Jpe1wEeGzrx31pJzMy+C6oSt5WOKxpKLpMlGvgrWDwchA0LWmgGyAzQQrbRm GV30NeJGDlj6M1rmd1zvDyiPCjV8HDGDZe04ocqDkIiDtsnsNuiI -----END CERTIFICATE-----Generated at Tue Feb 10 02:58:25 2026 by rpki-client