This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/1PIZRMmdZRgI3Wa4_ZzyHe2oYE0.roa File: 1PIZRMmdZRgI3Wa4_ZzyHe2oYE0.roa (raw, json) Hash identifier: xdWJ3eNp9bQHQv3VXJLaKMRo3GljyMICAdW2Em7ImoM= Subject key identifier: D4:F2:19:44:C9:9D:65:18:08:DD:66:B8:FD:9C:F2:1D:ED:A8:60:4D Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7 Certificate serial: 019B7CEDD8DCD05CAF6E6E3DF1DAEE68B512 Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/1PIZRMmdZRgI3Wa4_ZzyHe2oYE0.roa Signing time: Fri 02 Jan 2026 04:18:40 +0000 ROA not before: Fri 02 Jan 2026 04:18:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 996 IP address blocks: 62.72.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.mft rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 12:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:d8:dc:d0:5c:af:6e:6e:3d:f1:da:ee:68:b5:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7 Validity Not Before: Jan 2 04:18:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d4f21944c99d651808dd66b8fd9cf21deda8604d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:46:7f:2c:8a:86:81:75:9d:e9:8a:c3:5e:78: 78:31:00:40:5a:44:a3:6d:94:14:a7:51:82:0b:a3: 50:16:4e:5d:ea:e8:a1:38:3c:6b:d6:a4:a6:4d:4b: 60:fb:76:95:d1:85:41:a4:90:56:aa:27:4b:32:d3: a8:00:35:0c:d3:b8:d4:18:19:db:7b:81:52:ed:b2: 2d:87:19:4d:85:5f:5c:d5:b1:4a:90:56:19:e0:0a: fd:fd:56:50:ca:dc:27:c6:60:0c:0e:ba:06:f6:de: 19:fd:d2:ae:c0:ba:7f:a2:79:a5:6c:e1:e3:b1:df: 87:1d:56:dc:96:71:96:15:e7:db:2a:e2:d0:4f:a9: 58:8d:05:70:b0:e9:2c:90:d4:b0:4e:1c:74:93:de: 8a:d3:e9:94:c9:d4:7f:2e:0f:f5:35:1d:5a:92:bb: 95:6a:a2:96:0e:bc:d7:11:c1:e2:ee:19:21:4c:a7: 5e:3f:89:ed:39:56:c8:94:52:e0:ee:42:28:85:a0: 07:72:e2:be:59:d0:40:85:d8:f7:3e:85:de:b2:e3: 73:5b:b6:16:c2:b2:45:13:9f:aa:d8:dd:40:94:8a: 71:61:6a:5a:ef:f2:c0:33:28:b2:4e:6b:e2:95:d4: ff:3c:5c:0f:e0:92:90:69:2a:3a:3c:2d:08:fc:08: 2b:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:F2:19:44:C9:9D:65:18:08:DD:66:B8:FD:9C:F2:1D:ED:A8:60:4D X509v3 Authority Key Identifier: keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/1PIZRMmdZRgI3Wa4_ZzyHe2oYE0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.72.190.0/24 Signature Algorithm: sha256WithRSAEncryption 08:75:fd:83:27:5d:a8:17:66:11:e0:5c:f4:19:24:dd:fe:55: de:29:28:54:d7:71:12:b0:8a:b1:60:e7:41:fb:ab:71:f5:80: 0e:0c:64:71:7b:fa:94:2a:98:a1:54:c5:06:c4:28:1d:38:ec: b9:0d:cc:4b:c4:12:dd:27:73:07:9e:af:d4:32:dd:55:86:43: af:c1:8e:8e:68:8c:06:ba:e7:8c:b9:43:99:17:88:f3:91:b4: 2b:9e:e8:8f:97:f8:df:a4:21:a1:66:71:61:32:6c:ef:61:d0: 83:1e:aa:7b:95:85:b2:84:fd:c8:3a:e8:c5:50:47:80:32:ad: 6f:36:af:ba:71:f8:62:ec:58:2a:98:48:49:13:63:6a:26:2c: f1:60:a7:b4:3c:40:b8:cb:98:45:d5:a4:ae:c9:82:b8:b6:85: f1:33:0d:0d:07:27:f8:c6:81:d6:73:9d:a4:70:f7:c1:0e:ec: 4a:e3:07:90:8e:bf:89:e0:4e:f9:fa:cd:06:20:2d:ad:cc:82: ee:80:ff:a5:40:d1:1f:83:42:39:c1:4c:43:27:33:1f:85:51: 86:99:07:06:52:39:df:64:2e:98:89:51:1a:c0:f9:93:aa:de: 55:0b:6d:c0:29:1f:41:a2:80:0a:bc:37:87:ac:b6:92:84:7c: 8f:05:e5:55 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87djc0Fyvbm498druaLUSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE1ZjE5MDc0NTQ4ZDJhMjk0ZTQzODVkOTVjZDY3NTI0OTBl ZTQ2ZDcwHhcNMjYwMTAyMDQxODQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNGYyMTk0NGM5OWQ2NTE4MDhkZDY2YjhmZDljZjIxZGVkYTg2MDRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj0Z/LIqGgXWd6YrDXnh4MQBAWkSj bZQUp1GCC6NQFk5d6uihODxr1qSmTUtg+3aV0YVBpJBWqidLMtOoADUM07jUGBnb e4FS7bIthxlNhV9c1bFKkFYZ4Ar9/VZQytwnxmAMDroG9t4Z/dKuwLp/onmlbOHj sd+HHVbclnGWFefbKuLQT6lYjQVwsOkskNSwThx0k96K0+mUydR/Lg/1NR1akruV aqKWDrzXEcHi7hkhTKdeP4ntOVbIlFLg7kIohaAHcuK+WdBAhdj3PoXesuNzW7YW wrJFE5+q2N1AlIpxYWpa7/LAMyiyTmvildT/PFwP4JKQaSo6PC0I/AgrZwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNTyGUTJnWUYCN1muP2c8h3tqGBNMB8GA1UdIwQY MBaAFBXxkHRUjSopTkOF2VzWdSSQ7kbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2Qt NTYyNDRmNDMwZGNjLzEvMVBJWlJNbWRaUmdJM1dhNF9aenlIZTJvWUUwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2QtNTYyNDRmNDMwZGNj LzEvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPki+MA0G CSqGSIb3DQEBCwUAA4IBAQAIdf2DJ12oF2YR4Fz0GSTd/lXeKShU13ESsIqxYOdB +6tx9YAODGRxe/qUKpihVMUGxCgdOOy5DcxLxBLdJ3MHnq/UMt1VhkOvwY6OaIwG uueMuUOZF4jzkbQrnuiPl/jfpCGhZnFhMmzvYdCDHqp7lYWyhP3IOujFUEeAMq1v Nq+6cfhi7FgqmEhJE2NqJizxYKe0PEC4y5hF1aSuyYK4toXxMw0NByf4xoHWc52k cPfBDuxK4weQjr+J4E75+s0GIC2tzILugP+lQNEfg0I5wUxDJzMfhVGGmQcGUjnf ZC6YiVEawPmTqt5VC23AKR9BooAKvDeHrLaShHyPBeVV -----END CERTIFICATE-----Generated at Fri Jan 2 17:50:40 2026 by rpki-client