This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/b01290-d76d-42d8-a234-f9512499e05c/1/PKvdlpJ1ioVFdzx4cmvf922LkCE.roa File: PKvdlpJ1ioVFdzx4cmvf922LkCE.roa (raw, json) Hash identifier: aRdv2940DLJU3Ci+MzEr5pIlKj6EAcoZu0+e9m+CnU0= Subject key identifier: 3C:AB:DD:96:92:75:8A:85:45:77:3C:78:72:6B:DF:F7:6D:8B:90:21 Certificate issuer: /CN=323ab5ba98bef5d0d9bd0cea031a1fe13777a486 Certificate serial: 019B7C80A15A126BC5AFBBE7B3C4A070DF30 Authority key identifier: 32:3A:B5:BA:98:BE:F5:D0:D9:BD:0C:EA:03:1A:1F:E1:37:77:A4:86 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mjq1upi-9dDZvQzqAxof4Td3pIY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/b01290-d76d-42d8-a234-f9512499e05c/1/PKvdlpJ1ioVFdzx4cmvf922LkCE.roa Signing time: Fri 02 Jan 2026 02:19:23 +0000 ROA not before: Fri 02 Jan 2026 02:19:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 38983 IP address blocks: 5.172.216.0/21 maxlen: 24 185.64.192.0/22 maxlen: 24 185.122.152.0/22 maxlen: 22 188.126.96.0/19 maxlen: 24 188.126.108.0/23 maxlen: 23 188.126.112.0/21 maxlen: 22 2a09:f400::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/b01290-d76d-42d8-a234-f9512499e05c/1/Mjq1upi-9dDZvQzqAxof4Td3pIY.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/b01290-d76d-42d8-a234-f9512499e05c/1/Mjq1upi-9dDZvQzqAxof4Td3pIY.mft rsync://rpki.ripe.net/repository/DEFAULT/Mjq1upi-9dDZvQzqAxof4Td3pIY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:a1:5a:12:6b:c5:af:bb:e7:b3:c4:a0:70:df:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=323ab5ba98bef5d0d9bd0cea031a1fe13777a486 Validity Not Before: Jan 2 02:19:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3cabdd9692758a8545773c78726bdff76d8b9021 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:ed:cd:64:89:bb:f2:28:71:6f:d9:12:ee:a9: 63:35:b1:48:8c:65:9c:99:66:7b:b3:bd:ea:17:a2: ad:97:c1:04:b3:5e:02:21:b6:a9:eb:d1:c2:f1:a5: 2d:36:1d:ef:50:04:74:63:b5:23:db:77:8f:6c:22: 3d:b2:80:f8:81:b2:ed:56:0b:05:f1:c0:79:be:45: 3b:f9:f9:f6:a7:49:69:26:ab:fe:17:51:b0:67:0a: de:89:2f:c1:85:de:d3:91:98:41:ab:8a:45:41:27: 76:ac:53:f2:dc:8a:90:ec:46:02:75:73:0f:bc:96: b2:e9:19:e4:7c:ea:ad:99:90:b2:1a:c5:c1:0b:46: bc:5b:47:79:db:21:8c:23:5d:81:76:a6:2d:7d:b5: 01:96:e0:77:2e:83:ef:00:22:51:f1:27:94:c8:b1: 73:aa:a5:df:1a:6e:cc:e5:1a:ed:b0:4e:32:0e:df: 0e:e7:5d:4c:6c:cf:25:81:3d:96:a5:fb:77:16:ef: 6c:cf:70:6a:fa:1e:80:9c:be:16:2b:cf:ff:a4:5e: 30:3a:e3:31:5f:c7:6d:48:d0:b7:c1:ba:80:05:e9: 6f:6c:10:85:0d:71:12:49:f7:57:64:17:a7:43:5d: d1:59:48:03:53:7d:4d:49:4b:46:53:71:aa:ba:17: 80:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:AB:DD:96:92:75:8A:85:45:77:3C:78:72:6B:DF:F7:6D:8B:90:21 X509v3 Authority Key Identifier: keyid:32:3A:B5:BA:98:BE:F5:D0:D9:BD:0C:EA:03:1A:1F:E1:37:77:A4:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mjq1upi-9dDZvQzqAxof4Td3pIY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/b01290-d76d-42d8-a234-f9512499e05c/1/PKvdlpJ1ioVFdzx4cmvf922LkCE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/b01290-d76d-42d8-a234-f9512499e05c/1/Mjq1upi-9dDZvQzqAxof4Td3pIY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.172.216.0/21 185.64.192.0/22 185.122.152.0/22 188.126.96.0/19 IPv6: 2a09:f400::/29 Signature Algorithm: sha256WithRSAEncryption 47:1a:a3:25:01:54:aa:96:20:cf:86:47:63:7c:a0:31:b1:6b: 3a:15:56:41:81:19:36:e0:f6:20:15:fe:50:68:dd:fc:15:9c: a8:c8:8d:ee:ab:02:00:ab:99:96:51:14:a7:1e:23:31:64:ee: 53:6b:ad:fb:9e:fe:51:4d:0e:cf:de:70:cc:27:89:d7:da:c3: 01:bd:af:82:40:e6:c1:ad:86:40:8f:39:60:d6:bf:ab:f8:5e: 8c:e7:6c:54:8f:72:9c:be:93:e3:2e:50:a0:70:6c:c5:f2:e0: fe:e8:ea:54:b3:4f:04:68:50:1d:d5:93:c9:ae:28:eb:cc:99: 14:c7:78:d9:cf:1a:1b:4e:5e:40:97:99:d0:8c:1a:0e:b7:c5: dc:ab:b3:c3:41:fe:a5:f8:f0:01:2a:8b:dc:71:0c:b3:09:03: 4d:c9:9d:d1:dc:6a:2f:c9:ae:30:da:8d:e9:ce:af:10:0b:14: 5b:3c:17:36:a0:b4:34:e1:7f:b9:cd:b9:54:7e:df:73:a6:b1: 62:c5:e7:75:a7:11:93:06:e7:89:7b:25:a5:37:bd:b4:42:b0: 11:a0:c9:f5:32:42:98:e8:ad:2e:20:0b:5c:22:25:02:f8:97: 11:e9:6f:40:c3:e4:65:6b:ea:44:42:24:2e:0b:4c:cb:71:57: 6c:17:2b:0f -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgISAZt8gKFaEmvFr7vns8SgcN8wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyM2FiNWJhOThiZWY1ZDBkOWJkMGNlYTAzMWExZmUxMzc3 N2E0ODYwHhcNMjYwMTAyMDIxOTIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzY2FiZGQ5NjkyNzU4YTg1NDU3NzNjNzg3MjZiZGZmNzZkOGI5MDIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5O3NZIm78ihxb9kS7qljNbFIjGWc mWZ7s73qF6Ktl8EEs14CIbap69HC8aUtNh3vUAR0Y7Uj23ePbCI9soD4gbLtVgsF 8cB5vkU7+fn2p0lpJqv+F1GwZwreiS/Bhd7TkZhBq4pFQSd2rFPy3IqQ7EYCdXMP vJay6RnkfOqtmZCyGsXBC0a8W0d52yGMI12BdqYtfbUBluB3LoPvACJR8SeUyLFz qqXfGm7M5RrtsE4yDt8O511MbM8lgT2Wpft3Fu9sz3Bq+h6AnL4WK8//pF4wOuMx X8dtSNC3wbqABelvbBCFDXESSfdXZBenQ13RWUgDU31NSUtGU3GquheAXwIDAQAB o4ICKjCCAiYwHQYDVR0OBBYEFDyr3ZaSdYqFRXc8eHJr3/dti5AhMB8GA1UdIwQY MBaAFDI6tbqYvvXQ2b0M6gMaH+E3d6SGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWpxMXVwaS05ZERadlF6cUF4b2Y0VGQzcElZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9iMDEyOTAtZDc2ZC00MmQ4LWEyMzQt Zjk1MTI0OTllMDVjLzEvUEt2ZGxwSjFpb1ZGZHp4NGNtdmY5MjJMa0NFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9iMDEyOTAtZDc2ZC00MmQ4LWEyMzQtZjk1MTI0OTllMDVj LzEvTWpxMXVwaS05ZERadlF6cUF4b2Y0VGQzcElZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwQDBazYAwQC uUDAAwQCuXqYAwQFvH5gMA0EAgACMAcDBQMqCfQAMA0GCSqGSIb3DQEBCwUAA4IB AQBHGqMlAVSqliDPhkdjfKAxsWs6FVZBgRk24PYgFf5QaN38FZyoyI3uqwIAq5mW URSnHiMxZO5Ta637nv5RTQ7P3nDMJ4nX2sMBva+CQObBrYZAjzlg1r+r+F6M52xU j3KcvpPjLlCgcGzF8uD+6OpUs08EaFAd1ZPJrijrzJkUx3jZzxobTl5Al5nQjBoO t8Xcq7PDQf6l+PABKovccQyzCQNNyZ3R3Govya4w2o3pzq8QCxRbPBc2oLQ04X+5 zblUft9zprFixed1pxGTBueJeyWlN720QrARoMn1MkKY6K0uIAtcIiUC+JcR6W9A w+Rla+pEQiQuC0zLcVdsFysP -----END CERTIFICATE-----Generated at Tue Feb 10 04:35:49 2026 by rpki-client