This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/051420-dcb7-4b21-b13e-d2db73ff31bc/1/pchuRg1QLyIFpwfwBa8mUvFC7YI.roa File: pchuRg1QLyIFpwfwBa8mUvFC7YI.roa (raw, json) Hash identifier: mgPigocKfj7ADfA3gO1GOzZIymW9WRZZ/OqjW5DV1fM= Subject key identifier: A5:C8:6E:46:0D:50:2F:22:05:A7:07:F0:05:AF:26:52:F1:42:ED:82 Certificate issuer: /CN=cf6a7a426dc519963d33d2dc6cef782fd5f2dc77 Certificate serial: 019B7DCAFA36F0C29D929EB3863C1017CF43 Authority key identifier: CF:6A:7A:42:6D:C5:19:96:3D:33:D2:DC:6C:EF:78:2F:D5:F2:DC:77 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2p6Qm3FGZY9M9LcbO94L9Xy3Hc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/051420-dcb7-4b21-b13e-d2db73ff31bc/1/pchuRg1QLyIFpwfwBa8mUvFC7YI.roa Signing time: Fri 02 Jan 2026 08:20:12 +0000 ROA not before: Fri 02 Jan 2026 08:20:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215236 IP address blocks: 2001:67c:21a8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/051420-dcb7-4b21-b13e-d2db73ff31bc/1/z2p6Qm3FGZY9M9LcbO94L9Xy3Hc.crl rsync://rpki.ripe.net/repository/DEFAULT/67/051420-dcb7-4b21-b13e-d2db73ff31bc/1/z2p6Qm3FGZY9M9LcbO94L9Xy3Hc.mft rsync://rpki.ripe.net/repository/DEFAULT/z2p6Qm3FGZY9M9LcbO94L9Xy3Hc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:fa:36:f0:c2:9d:92:9e:b3:86:3c:10:17:cf:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cf6a7a426dc519963d33d2dc6cef782fd5f2dc77 Validity Not Before: Jan 2 08:20:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a5c86e460d502f2205a707f005af2652f142ed82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:6d:97:2f:5d:dc:b9:b1:8c:0f:28:79:ea:a6: a6:73:00:77:04:17:82:f4:5d:79:54:40:8b:8d:e0: 4b:19:6e:7c:8d:d6:c0:91:a9:85:00:e8:1f:97:d4: bb:a7:85:4e:3a:cb:e9:95:be:8f:25:af:71:e1:75: 22:da:6a:66:25:df:93:aa:19:be:3b:97:5a:88:ce: 50:67:52:cd:1c:b3:71:0c:9a:91:02:26:2d:02:be: 1f:28:48:bd:81:09:87:35:c1:e2:94:c0:3b:97:b3: c4:a6:0a:1f:01:6b:ab:7b:ec:bb:84:41:31:f2:4f: ab:51:f8:bb:2f:f1:b2:96:c4:e8:49:8c:2b:c3:e2: 37:4a:0b:68:49:14:ee:60:46:b9:00:fa:d0:5b:e1: 69:1a:df:f2:dc:b8:6b:44:0b:56:d9:45:be:4c:57: bd:77:e5:92:b7:f4:3c:39:e2:50:c7:98:9f:3c:f9: fd:a0:73:65:4f:fb:2c:af:10:01:71:bc:72:4b:61: c2:b5:4a:cf:15:ad:55:f0:45:36:54:6a:41:cc:ed: 45:09:db:20:e7:4b:f0:09:8e:c0:81:e2:4f:74:4a: c8:14:58:4f:7c:45:80:59:ed:01:64:4f:cd:1b:8a: df:fe:f0:77:ce:92:58:54:49:21:39:59:43:3c:5b: 90:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:C8:6E:46:0D:50:2F:22:05:A7:07:F0:05:AF:26:52:F1:42:ED:82 X509v3 Authority Key Identifier: keyid:CF:6A:7A:42:6D:C5:19:96:3D:33:D2:DC:6C:EF:78:2F:D5:F2:DC:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2p6Qm3FGZY9M9LcbO94L9Xy3Hc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/051420-dcb7-4b21-b13e-d2db73ff31bc/1/pchuRg1QLyIFpwfwBa8mUvFC7YI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/051420-dcb7-4b21-b13e-d2db73ff31bc/1/z2p6Qm3FGZY9M9LcbO94L9Xy3Hc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:21a8::/48 Signature Algorithm: sha256WithRSAEncryption 8b:0c:a1:c4:f0:3d:28:68:a4:ad:f5:93:19:69:47:7d:9b:a3: 42:30:db:66:a8:e7:5e:ef:c2:e4:ba:b0:3e:4e:73:22:67:e9: 2f:1c:73:a1:0a:d0:bb:81:f2:0e:1e:48:b5:74:9c:22:c0:cb: ab:c3:07:c2:69:92:67:ed:47:db:8c:4c:65:14:03:62:43:2b: 22:9f:2a:90:cf:18:e4:29:f1:4c:bf:c6:3b:f3:5f:be:84:db: b7:a9:90:ea:32:1d:cd:6e:67:9d:b3:ff:ef:e0:1f:b4:db:8c: 78:06:d3:b0:7d:e8:bb:9a:72:fc:df:33:80:cb:f5:21:66:d3: 25:f9:d4:16:b2:b4:eb:c6:a5:bc:e5:72:56:af:8d:88:a0:0a: 4e:26:b5:92:fb:03:0e:19:6d:74:d1:b9:13:39:f1:ef:98:8d: c3:16:5e:52:9c:e0:88:9c:27:1e:82:b0:74:36:f0:ca:be:14: 75:e9:6a:d2:94:eb:6b:b8:0d:ef:bf:54:15:9f:c9:7a:94:5e: df:ae:e4:89:19:84:89:50:8b:ab:46:53:d7:d7:78:33:c7:9a: 1c:74:9e:9b:03:c3:fa:82:37:9e:8f:4c:6c:b8:ce:ea:f5:e7: 07:ff:df:57:04:5d:de:65:ff:10:53:3b:0f:23:ea:9b:fc:ed: ae:09:a2:78 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9yvo28MKdkp6zhjwQF89DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNmNmE3YTQyNmRjNTE5OTYzZDMzZDJkYzZjZWY3ODJmZDVm MmRjNzcwHhcNMjYwMTAyMDgyMDEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNWM4NmU0NjBkNTAyZjIyMDVhNzA3ZjAwNWFmMjY1MmYxNDJlZDgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtm2XL13cubGMDyh56qamcwB3BBeC 9F15VECLjeBLGW58jdbAkamFAOgfl9S7p4VOOsvplb6PJa9x4XUi2mpmJd+Tqhm+ O5daiM5QZ1LNHLNxDJqRAiYtAr4fKEi9gQmHNcHilMA7l7PEpgofAWure+y7hEEx 8k+rUfi7L/GylsToSYwrw+I3SgtoSRTuYEa5APrQW+FpGt/y3LhrRAtW2UW+TFe9 d+WSt/Q8OeJQx5ifPPn9oHNlT/ssrxABcbxyS2HCtUrPFa1V8EU2VGpBzO1FCdsg 50vwCY7AgeJPdErIFFhPfEWAWe0BZE/NG4rf/vB3zpJYVEkhOVlDPFuQPwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFKXIbkYNUC8iBacH8AWvJlLxQu2CMB8GA1UdIwQY MBaAFM9qekJtxRmWPTPS3GzveC/V8tx3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvejJwNlFtM0ZHWlk5TTlMY2JPOTRMOVh5M0hjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny8wNTE0MjAtZGNiNy00YjIxLWIxM2Ut ZDJkYjczZmYzMWJjLzEvcGNodVJnMVFMeUlGcHdmd0JhOG1VdkZDN1lJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny8wNTE0MjAtZGNiNy00YjIxLWIxM2UtZDJkYjczZmYzMWJj LzEvejJwNlFtM0ZHWlk5TTlMY2JPOTRMOVh5M0hjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfCGo MA0GCSqGSIb3DQEBCwUAA4IBAQCLDKHE8D0oaKSt9ZMZaUd9m6NCMNtmqOde78Lk urA+TnMiZ+kvHHOhCtC7gfIOHki1dJwiwMurwwfCaZJn7UfbjExlFANiQysinyqQ zxjkKfFMv8Y781++hNu3qZDqMh3Nbmeds//v4B+024x4BtOwfei7mnL83zOAy/Uh ZtMl+dQWsrTrxqW85XJWr42IoApOJrWS+wMOGW100bkTOfHvmI3DFl5SnOCInCce grB0NvDKvhR16WrSlOtruA3vv1QVn8l6lF7fruSJGYSJUIurRlPX13gzx5ocdJ6b A8P6gjeej0xsuM7q9ecH/99XBF3eZf8QUzsPI+qb/O2uCaJ4 -----END CERTIFICATE-----Generated at Mon Feb 2 07:55:39 2026 by rpki-client