This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/8450a1-66db-48c6-93b8-947859c0ecc4/1/PzE7Xo74WSE5IepeAcF3qHZnsjo.roa File: PzE7Xo74WSE5IepeAcF3qHZnsjo.roa (raw, json) Hash identifier: DmGaRaKHvP4r6YlqDGNyrpBgSveCtDMrds7C4QXYmAE= Subject key identifier: 3F:31:3B:5E:8E:F8:59:21:39:21:EA:5E:01:C1:77:A8:76:67:B2:3A Certificate issuer: /CN=9a62e26a1cafff5530a70190c8d000c10f24b966 Certificate serial: 019B7F15A7754A3B80FE6BC0C3E50458EB5F Authority key identifier: 9A:62:E2:6A:1C:AF:FF:55:30:A7:01:90:C8:D0:00:C1:0F:24:B9:66 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mmLiahyv_1UwpwGQyNAAwQ8kuWY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/8450a1-66db-48c6-93b8-947859c0ecc4/1/PzE7Xo74WSE5IepeAcF3qHZnsjo.roa Signing time: Fri 02 Jan 2026 14:21:24 +0000 ROA not before: Fri 02 Jan 2026 14:21:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209624 IP address blocks: 139.28.148.0/22 maxlen: 22 2a09:7c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/8450a1-66db-48c6-93b8-947859c0ecc4/1/mmLiahyv_1UwpwGQyNAAwQ8kuWY.crl rsync://rpki.ripe.net/repository/DEFAULT/8c/8450a1-66db-48c6-93b8-947859c0ecc4/1/mmLiahyv_1UwpwGQyNAAwQ8kuWY.mft rsync://rpki.ripe.net/repository/DEFAULT/mmLiahyv_1UwpwGQyNAAwQ8kuWY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 11 Feb 2026 00:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:a7:75:4a:3b:80:fe:6b:c0:c3:e5:04:58:eb:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9a62e26a1cafff5530a70190c8d000c10f24b966 Validity Not Before: Jan 2 14:21:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3f313b5e8ef859213921ea5e01c177a87667b23a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8c:96:3c:ed:76:84:a2:62:85:2b:05:17:e1: 86:7a:6f:5a:49:1e:2d:2a:ed:4f:38:67:12:73:92: 45:73:74:8b:a1:5c:00:d2:35:bf:e7:09:c7:73:df: 77:72:52:b1:2e:6f:ff:9e:76:2c:bf:f3:6b:ad:3f: 82:da:ed:e2:34:62:57:7c:55:ae:0b:51:83:d7:15: 55:d0:02:12:15:18:65:0e:a5:11:bd:ae:bd:91:c8: d0:d2:b5:aa:fd:53:08:4b:44:0d:74:0b:20:e3:16: 64:05:a5:8c:fb:9c:1f:d8:66:aa:1e:f2:c1:a3:b3: e7:68:cf:60:9e:4c:b0:fa:68:e0:24:95:c9:ef:e8: d3:24:5d:33:ed:86:86:6d:a3:9a:e2:55:1f:15:c1: 04:11:56:c1:8e:f8:f6:23:b7:77:b4:1b:3c:4a:c8: 5b:c5:cd:cb:c7:c9:bc:69:f3:03:98:33:f1:63:88: 03:44:30:f7:1b:b3:29:bd:52:40:c0:d6:20:dc:aa: a1:14:f3:55:a9:0b:8a:7f:a4:01:c2:b7:f8:49:3a: ba:9f:c0:65:c4:db:ca:cd:d2:09:b2:02:9e:66:5f: 6c:01:d6:83:59:f9:24:44:02:ef:0d:7f:70:85:ce: 14:88:be:a4:2f:e6:2e:9d:8c:8b:72:7a:a9:b6:e8: 6b:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:31:3B:5E:8E:F8:59:21:39:21:EA:5E:01:C1:77:A8:76:67:B2:3A X509v3 Authority Key Identifier: keyid:9A:62:E2:6A:1C:AF:FF:55:30:A7:01:90:C8:D0:00:C1:0F:24:B9:66 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mmLiahyv_1UwpwGQyNAAwQ8kuWY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/8450a1-66db-48c6-93b8-947859c0ecc4/1/PzE7Xo74WSE5IepeAcF3qHZnsjo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/8450a1-66db-48c6-93b8-947859c0ecc4/1/mmLiahyv_1UwpwGQyNAAwQ8kuWY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.28.148.0/22 IPv6: 2a09:7c0::/29 Signature Algorithm: sha256WithRSAEncryption 6a:64:83:a9:ac:c1:62:51:51:94:78:4f:55:f3:be:52:fe:4e: 4d:ba:41:f9:2e:95:19:76:54:dd:31:d4:1f:a5:0f:1a:99:60: f7:31:c2:ed:f0:ba:ba:3a:67:a3:e4:61:ee:00:87:48:9f:29: 1f:aa:36:ac:a2:ca:90:ff:38:e6:42:26:9b:50:42:e0:ff:53: 55:4f:9a:aa:2d:a7:df:11:4e:31:c3:21:f1:b4:9a:27:6b:d6: 0f:ff:a5:76:82:29:c9:0b:82:bc:98:47:75:ab:4c:45:c2:6b: f3:75:07:f2:7b:c1:45:dd:0e:42:d9:1a:97:86:8d:e8:64:47: 8c:af:bf:6f:fb:0c:2c:54:eb:cf:37:d5:77:4c:fd:3b:6a:df: 5d:a3:fe:81:d3:b7:85:a5:48:77:1b:ea:b4:56:1f:c5:8d:d7: f8:07:f9:de:63:b2:52:7e:9f:c5:bd:5f:fd:b0:6e:bf:bf:96: 53:4c:9e:fc:70:5e:30:d0:98:85:1c:4b:50:bb:f3:ff:a9:0c: c1:84:d4:75:88:fa:34:2f:81:2a:f3:0b:9e:43:39:00:94:40: 12:05:f0:74:1e:c4:07:d8:d9:61:a2:83:c2:0e:a6:9c:98:64: 7b:49:89:38:61:23:c0:35:ca:dd:05:8d:17:e8:df:f3:26:85: 16:c6:d7:c1 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/Fad1SjuA/mvAw+UEWOtfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhNjJlMjZhMWNhZmZmNTUzMGE3MDE5MGM4ZDAwMGMxMGYy NGI5NjYwHhcNMjYwMTAyMTQyMTI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZjMxM2I1ZThlZjg1OTIxMzkyMWVhNWUwMWMxNzdhODc2NjdiMjNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvYyWPO12hKJihSsFF+GGem9aSR4t Ku1POGcSc5JFc3SLoVwA0jW/5wnHc993clKxLm//nnYsv/NrrT+C2u3iNGJXfFWu C1GD1xVV0AISFRhlDqURva69kcjQ0rWq/VMIS0QNdAsg4xZkBaWM+5wf2GaqHvLB o7PnaM9gnkyw+mjgJJXJ7+jTJF0z7YaGbaOa4lUfFcEEEVbBjvj2I7d3tBs8Sshb xc3Lx8m8afMDmDPxY4gDRDD3G7MpvVJAwNYg3KqhFPNVqQuKf6QBwrf4STq6n8Bl xNvKzdIJsgKeZl9sAdaDWfkkRALvDX9whc4UiL6kL+YunYyLcnqptuhrzwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFD8xO16O+FkhOSHqXgHBd6h2Z7I6MB8GA1UdIwQY MBaAFJpi4mocr/9VMKcBkMjQAMEPJLlmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbW1MaWFoeXZfMVV3cHdHUXlOQUF3UThrdVdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy84NDUwYTEtNjZkYi00OGM2LTkzYjgt OTQ3ODU5YzBlY2M0LzEvUHpFN1hvNzRXU0U1SWVwZUFjRjNxSFpuc2pvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yy84NDUwYTEtNjZkYi00OGM2LTkzYjgtOTQ3ODU5YzBlY2M0 LzEvbW1MaWFoeXZfMVV3cHdHUXlOQUF3UThrdVdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCixyUMA0E AgACMAcDBQMqCQfAMA0GCSqGSIb3DQEBCwUAA4IBAQBqZIOprMFiUVGUeE9V875S /k5NukH5LpUZdlTdMdQfpQ8amWD3McLt8Lq6Omej5GHuAIdInykfqjasosqQ/zjm QiabUELg/1NVT5qqLaffEU4xwyHxtJona9YP/6V2ginJC4K8mEd1q0xFwmvzdQfy e8FF3Q5C2RqXho3oZEeMr79v+wwsVOvPN9V3TP07at9do/6B07eFpUh3G+q0Vh/F jdf4B/neY7JSfp/FvV/9sG6/v5ZTTJ78cF4w0JiFHEtQu/P/qQzBhNR1iPo0L4Eq 8wueQzkAlEASBfB0HsQH2NlhooPCDqacmGR7SYk4YSPANcrdBY0X6N/zJoUWxtfB -----END CERTIFICATE-----Generated at Tue Feb 10 08:38:24 2026 by rpki-client