This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/b15851-a83b-415c-aee5-f9efc0457fb9/1/pCg_IO1cPrzNc2xa1m7otiwxh4Y.roa File: pCg_IO1cPrzNc2xa1m7otiwxh4Y.roa (raw, json) Hash identifier: xhDhbtSEarX85N5AGFHu5oduKKvgeHiQNe7PQ5nfYFQ= Subject key identifier: A4:28:3F:20:ED:5C:3E:BC:CD:73:6C:5A:D6:6E:E8:B6:2C:31:87:86 Certificate issuer: /CN=582c74fc59b7ab096a257d3b6299d2f6fda46a80 Certificate serial: 019B7E38C01B20F1311BD555F096B41AD993 Authority key identifier: 58:2C:74:FC:59:B7:AB:09:6A:25:7D:3B:62:99:D2:F6:FD:A4:6A:80 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WCx0_Fm3qwlqJX07YpnS9v2kaoA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/b15851-a83b-415c-aee5-f9efc0457fb9/1/pCg_IO1cPrzNc2xa1m7otiwxh4Y.roa Signing time: Fri 02 Jan 2026 10:20:06 +0000 ROA not before: Fri 02 Jan 2026 10:20:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48678 IP address blocks: 5.42.202.0/24 maxlen: 24 91.142.130.0/24 maxlen: 24 185.102.87.0/24 maxlen: 24 194.31.59.0/24 maxlen: 24 194.31.64.0/24 maxlen: 24 194.31.79.0/24 maxlen: 24 194.31.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/b15851-a83b-415c-aee5-f9efc0457fb9/1/WCx0_Fm3qwlqJX07YpnS9v2kaoA.crl rsync://rpki.ripe.net/repository/DEFAULT/3c/b15851-a83b-415c-aee5-f9efc0457fb9/1/WCx0_Fm3qwlqJX07YpnS9v2kaoA.mft rsync://rpki.ripe.net/repository/DEFAULT/WCx0_Fm3qwlqJX07YpnS9v2kaoA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 07:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:c0:1b:20:f1:31:1b:d5:55:f0:96:b4:1a:d9:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=582c74fc59b7ab096a257d3b6299d2f6fda46a80 Validity Not Before: Jan 2 10:20:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a4283f20ed5c3ebccd736c5ad66ee8b62c318786 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9f:e7:28:c8:0a:0d:4b:1d:ad:5b:34:21:c3: 4a:13:05:ba:96:3f:e1:73:49:dc:aa:90:d6:ab:eb: 48:c7:30:ee:f6:36:6c:60:c8:b2:fd:d7:6e:3f:a1: f1:dd:14:e8:f7:3b:9f:ea:8c:f8:24:b7:1d:ca:6a: e2:00:3b:d1:93:58:76:8d:1c:b3:19:2d:c1:01:cd: 6f:b2:9d:ae:79:67:91:08:29:eb:bf:20:94:f9:a1: 34:d4:c6:55:72:85:95:e6:fe:ba:0b:a4:c6:65:76: 81:d9:6e:b3:9e:f3:64:0a:81:a2:59:64:b5:a9:0a: 4c:c2:b5:63:fa:84:ea:87:ab:68:12:2f:58:4b:90: 10:26:4e:dd:83:59:09:d9:ba:d9:d7:48:aa:ef:b5: cc:f7:60:fc:68:91:0c:9a:cd:08:1d:3f:bb:36:64: d2:da:77:01:30:30:66:df:bc:a4:a0:0c:5c:42:03: 71:84:92:87:31:48:1a:1c:13:b8:71:6f:a1:5c:42: 88:95:32:5a:e1:54:97:f5:8a:6a:33:a7:cf:2d:c1: c4:39:4e:6c:b8:c9:61:93:44:32:fa:84:7c:de:77: 0a:e0:d7:8f:1b:3a:1a:d0:8e:a0:b4:83:9d:aa:37: c5:1c:a3:70:ba:ad:1b:a0:36:db:6c:e8:ca:96:2a: e9:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:28:3F:20:ED:5C:3E:BC:CD:73:6C:5A:D6:6E:E8:B6:2C:31:87:86 X509v3 Authority Key Identifier: keyid:58:2C:74:FC:59:B7:AB:09:6A:25:7D:3B:62:99:D2:F6:FD:A4:6A:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WCx0_Fm3qwlqJX07YpnS9v2kaoA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/b15851-a83b-415c-aee5-f9efc0457fb9/1/pCg_IO1cPrzNc2xa1m7otiwxh4Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/b15851-a83b-415c-aee5-f9efc0457fb9/1/WCx0_Fm3qwlqJX07YpnS9v2kaoA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.42.202.0/24 91.142.130.0/24 185.102.87.0/24 194.31.59.0/24 194.31.64.0/24 194.31.79.0/24 194.31.87.0/24 Signature Algorithm: sha256WithRSAEncryption 18:2a:ea:b9:2d:e9:16:d1:b0:b0:61:45:78:59:a8:75:e9:c6: 12:24:f1:cb:1a:32:d0:c8:b2:9e:35:83:b5:3f:51:b2:25:7b: 7a:fc:f9:67:54:91:3b:80:35:61:fa:81:2c:0c:80:e1:22:82: cb:37:cc:b4:dd:3e:02:1c:ea:d6:de:e4:e3:6b:77:3a:31:6f: 5d:c3:32:9e:f0:03:08:c6:aa:61:ce:99:d6:27:25:63:ec:f0: 20:02:70:e3:2e:98:2e:c2:a1:f9:90:a0:73:66:35:68:c1:14: e5:6f:1d:83:64:c8:a0:cd:5c:ed:0c:4c:f6:db:39:80:94:1e: 1e:ca:ca:ca:dc:72:a4:66:c3:47:98:d9:84:69:f9:5f:ef:d1: db:06:36:74:7e:ae:64:43:55:c4:dc:d0:76:ed:c8:91:aa:aa: 16:c9:78:b2:e9:92:46:74:ac:ee:0e:3a:36:bf:6b:af:11:55: 73:16:09:37:c2:dd:c8:2f:0e:79:47:11:d1:49:59:f5:ee:76: 1a:49:8f:63:0d:c9:d2:e3:6f:c9:4f:13:33:7f:6e:ce:cd:15: a5:10:80:14:98:23:fa:d3:f6:00:e5:c1:9d:d4:fa:86:ba:cd: 59:a5:19:85:73:96:b2:6e:47:be:12:c7:9c:eb:7a:ca:15:61: 0a:4a:29:34 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt+OMAbIPExG9VV8Ja0GtmTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4MmM3NGZjNTliN2FiMDk2YTI1N2QzYjYyOTlkMmY2ZmRh NDZhODAwHhcNMjYwMTAyMTAyMDA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNDI4M2YyMGVkNWMzZWJjY2Q3MzZjNWFkNjZlZThiNjJjMzE4Nzg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw5/nKMgKDUsdrVs0IcNKEwW6lj/h c0ncqpDWq+tIxzDu9jZsYMiy/dduP6Hx3RTo9zuf6oz4JLcdymriADvRk1h2jRyz GS3BAc1vsp2ueWeRCCnrvyCU+aE01MZVcoWV5v66C6TGZXaB2W6znvNkCoGiWWS1 qQpMwrVj+oTqh6toEi9YS5AQJk7dg1kJ2brZ10iq77XM92D8aJEMms0IHT+7NmTS 2ncBMDBm37ykoAxcQgNxhJKHMUgaHBO4cW+hXEKIlTJa4VSX9YpqM6fPLcHEOU5s uMlhk0Qy+oR83ncK4NePGzoa0I6gtIOdqjfFHKNwuq0boDbbbOjKlirpqwIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFKQoPyDtXD68zXNsWtZu6LYsMYeGMB8GA1UdIwQY MBaAFFgsdPxZt6sJaiV9O2KZ0vb9pGqAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0N4MF9GbTNxd2xxSlgwN1lwblM5djJrYW9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy9iMTU4NTEtYTgzYi00MTVjLWFlZTUt ZjllZmMwNDU3ZmI5LzEvcENnX0lPMWNQcnpOYzJ4YTFtN290aXd4aDRZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYy9iMTU4NTEtYTgzYi00MTVjLWFlZTUtZjllZmMwNDU3ZmI5 LzEvV0N4MF9GbTNxd2xxSlgwN1lwblM5djJrYW9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQABSrKAwQA W46CAwQAuWZXAwQAwh87AwQAwh9AAwQAwh9PAwQAwh9XMA0GCSqGSIb3DQEBCwUA A4IBAQAYKuq5LekW0bCwYUV4Wah16cYSJPHLGjLQyLKeNYO1P1GyJXt6/PlnVJE7 gDVh+oEsDIDhIoLLN8y03T4CHOrW3uTja3c6MW9dwzKe8AMIxqphzpnWJyVj7PAg AnDjLpguwqH5kKBzZjVowRTlbx2DZMigzVztDEz22zmAlB4eysrK3HKkZsNHmNmE aflf79HbBjZ0fq5kQ1XE3NB27ciRqqoWyXiy6ZJGdKzuDjo2v2uvEVVzFgk3wt3I Lw55RxHRSVn17nYaSY9jDcnS42/JTxMzf27OzRWlEIAUmCP60/YA5cGd1PqGus1Z pRmFc5aybke+Esec63rKFWEKSik0 -----END CERTIFICATE-----Generated at Mon Jan 19 16:54:45 2026 by rpki-client