This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/cd448d-6470-4601-9e89-13fa412a17cf/1/p1a-a2lNsvZGVhwRB5Q8-ie2Sjw.roa File: p1a-a2lNsvZGVhwRB5Q8-ie2Sjw.roa (raw, json) Hash identifier: 5afAFR5HkwJfwI8pIXHWdqB0CsCFJkUcufN96ASqJRk= Subject key identifier: A7:56:BE:6B:69:4D:B2:F6:46:56:1C:11:07:94:3C:FA:27:B6:4A:3C Certificate issuer: /CN=737826f6dda5403491e487ca4eeb7d7cd76fa13e Certificate serial: 019B7BA34CDAE673CFD7414F2BD104C2FB86 Authority key identifier: 73:78:26:F6:DD:A5:40:34:91:E4:87:CA:4E:EB:7D:7C:D7:6F:A1:3E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c3gm9t2lQDSR5IfKTut9fNdvoT4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/cd448d-6470-4601-9e89-13fa412a17cf/1/p1a-a2lNsvZGVhwRB5Q8-ie2Sjw.roa Signing time: Thu 01 Jan 2026 22:17:38 +0000 ROA not before: Thu 01 Jan 2026 22:17:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214547 IP address blocks: 31.3.222.0/24 maxlen: 24 194.117.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/cd448d-6470-4601-9e89-13fa412a17cf/1/c3gm9t2lQDSR5IfKTut9fNdvoT4.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/cd448d-6470-4601-9e89-13fa412a17cf/1/c3gm9t2lQDSR5IfKTut9fNdvoT4.mft rsync://rpki.ripe.net/repository/DEFAULT/c3gm9t2lQDSR5IfKTut9fNdvoT4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:4c:da:e6:73:cf:d7:41:4f:2b:d1:04:c2:fb:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=737826f6dda5403491e487ca4eeb7d7cd76fa13e Validity Not Before: Jan 1 22:17:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a756be6b694db2f646561c1107943cfa27b64a3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:33:d0:b9:a7:5d:7c:80:c7:2d:c9:a9:61:9e: cc:1e:d6:0e:c0:53:3f:e8:47:6c:b1:2a:04:08:6c: f0:24:d2:78:60:c5:e6:21:44:91:eb:2d:d5:44:8f: d1:72:2e:d4:72:44:4d:5e:a5:da:af:c9:2e:64:cf: 26:6b:5a:79:12:71:76:45:76:07:b8:95:06:1b:60: 54:ac:8a:00:f5:a9:f7:16:b1:6d:ba:cb:2b:c3:62: 04:ad:f2:0b:c5:8c:52:2d:1f:38:49:ee:3e:ea:9b: e0:b3:c2:69:d0:53:f2:c0:de:bb:ba:62:d9:8d:20: 20:b2:a0:6b:fd:86:3c:c9:03:25:89:de:4d:2b:84: 9a:09:49:c2:43:15:3c:63:f8:4a:c4:64:43:ef:f7: bc:ad:72:09:2e:51:93:06:eb:31:af:b5:30:ea:a2: 13:e8:02:71:c7:44:fb:54:b7:04:63:54:4a:62:87: da:c6:a1:76:04:88:52:5d:1b:e1:1e:fc:ed:cb:3b: 88:cb:9f:a0:b7:c5:71:75:82:7e:1e:40:39:0a:59: e5:28:ed:d8:d1:fd:ed:96:d0:f2:82:0c:b4:9b:51: 51:31:a6:49:4b:0d:16:b1:75:5b:14:4b:79:8f:4c: 00:78:bb:e0:cd:2f:e1:89:21:2d:0e:0e:86:c3:a8: d9:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:56:BE:6B:69:4D:B2:F6:46:56:1C:11:07:94:3C:FA:27:B6:4A:3C X509v3 Authority Key Identifier: keyid:73:78:26:F6:DD:A5:40:34:91:E4:87:CA:4E:EB:7D:7C:D7:6F:A1:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3gm9t2lQDSR5IfKTut9fNdvoT4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/cd448d-6470-4601-9e89-13fa412a17cf/1/p1a-a2lNsvZGVhwRB5Q8-ie2Sjw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/cd448d-6470-4601-9e89-13fa412a17cf/1/c3gm9t2lQDSR5IfKTut9fNdvoT4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.3.222.0/24 194.117.87.0/24 Signature Algorithm: sha256WithRSAEncryption a4:c3:77:f4:a4:9c:10:57:70:f8:81:c0:c4:8b:b5:47:32:b6: 3f:f4:41:61:8c:49:98:fa:da:6f:6a:43:f7:b5:34:71:6f:62: 01:ad:89:93:46:01:8a:8f:7d:10:17:18:b8:10:e1:f2:01:3f: 84:4d:21:b4:2a:7a:a8:79:29:ae:bc:0c:3f:58:b7:a7:80:eb: ca:83:8a:b6:18:3a:e4:b9:ce:73:db:2e:e6:a5:56:e8:70:7f: 2d:32:36:16:70:f9:09:ca:00:ba:d1:e2:6e:b8:1d:6b:fb:93: 7e:fb:05:13:66:10:e5:b4:19:77:1c:b8:10:3a:dc:56:cd:1b: 39:3c:95:d6:1d:da:9c:2e:ba:30:50:d4:02:ed:f1:55:1c:a2: 61:b5:d5:ee:b0:99:fe:9f:65:fc:fe:a2:63:f0:71:34:68:e2: 7d:30:cb:4f:31:d2:03:6d:9c:dc:15:eb:71:29:6f:fc:de:07: 87:ed:98:ef:cb:b4:44:82:e6:69:1c:7f:5d:fc:4c:22:14:b5: e4:3a:a2:7b:0c:75:6e:37:1f:15:69:05:27:14:a3:07:ad:67: ec:40:3b:1a:54:17:fc:be:15:84:60:da:4d:04:ca:8d:45:00: df:93:92:00:05:39:25:81:6c:40:9d:43:94:03:fd:b1:bc:a7: 6a:5c:4a:e2 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7o0za5nPP10FPK9EEwvuGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDczNzgyNmY2ZGRhNTQwMzQ5MWU0ODdjYTRlZWI3ZDdjZDc2 ZmExM2UwHhcNMjYwMTAxMjIxNzM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNzU2YmU2YjY5NGRiMmY2NDY1NjFjMTEwNzk0M2NmYTI3YjY0YTNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArjPQuaddfIDHLcmpYZ7MHtYOwFM/ 6EdssSoECGzwJNJ4YMXmIUSR6y3VRI/Rci7UckRNXqXar8kuZM8ma1p5EnF2RXYH uJUGG2BUrIoA9an3FrFtussrw2IErfILxYxSLR84Se4+6pvgs8Jp0FPywN67umLZ jSAgsqBr/YY8yQMlid5NK4SaCUnCQxU8Y/hKxGRD7/e8rXIJLlGTBusxr7Uw6qIT 6AJxx0T7VLcEY1RKYofaxqF2BIhSXRvhHvztyzuIy5+gt8VxdYJ+HkA5ClnlKO3Y 0f3tltDyggy0m1FRMaZJSw0WsXVbFEt5j0wAeLvgzS/hiSEtDg6Gw6jZnwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFKdWvmtpTbL2RlYcEQeUPPontko8MB8GA1UdIwQY MBaAFHN4JvbdpUA0keSHyk7rfXzXb6E+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYzNnbTl0MmxRRFNSNUlmS1R1dDlmTmR2b1Q0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9jZDQ0OGQtNjQ3MC00NjAxLTllODkt MTNmYTQxMmExN2NmLzEvcDFhLWEybE5zdlpHVmh3UkI1UTgtaWUyU2p3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi9jZDQ0OGQtNjQ3MC00NjAxLTllODktMTNmYTQxMmExN2Nm LzEvYzNnbTl0MmxRRFNSNUlmS1R1dDlmTmR2b1Q0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAHwPeAwQA wnVXMA0GCSqGSIb3DQEBCwUAA4IBAQCkw3f0pJwQV3D4gcDEi7VHMrY/9EFhjEmY +tpvakP3tTRxb2IBrYmTRgGKj30QFxi4EOHyAT+ETSG0KnqoeSmuvAw/WLengOvK g4q2GDrkuc5z2y7mpVbocH8tMjYWcPkJygC60eJuuB1r+5N++wUTZhDltBl3HLgQ OtxWzRs5PJXWHdqcLrowUNQC7fFVHKJhtdXusJn+n2X8/qJj8HE0aOJ9MMtPMdID bZzcFetxKW/83geH7Zjvy7REguZpHH9d/EwiFLXkOqJ7DHVuNx8VaQUnFKMHrWfs QDsaVBf8vhWEYNpNBMqNRQDfk5IABTklgWxAnUOUA/2xvKdqXEri -----END CERTIFICATE-----Generated at Mon Feb 9 18:30:13 2026 by rpki-client