This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/PQMgW1HRfhVCC4A0rqKkLRtSKgI.roa File: PQMgW1HRfhVCC4A0rqKkLRtSKgI.roa (raw, json) Hash identifier: NWh4sEhWXJV1zztcEC8I1G7mQeHGMVng7Y6sdknUnN0= Subject key identifier: 3D:03:20:5B:51:D1:7E:15:42:0B:80:34:AE:A2:A4:2D:1B:52:2A:02 Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f Certificate serial: 019B7AC9069D985C0B974EAB8B621560B49A Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/PQMgW1HRfhVCC4A0rqKkLRtSKgI.roa Signing time: Thu 01 Jan 2026 18:19:13 +0000 ROA not before: Thu 01 Jan 2026 18:19:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207713 IP address blocks: 31.129.22.0/24 maxlen: 24 37.220.86.0/24 maxlen: 24 45.95.232.0/24 maxlen: 24 45.95.233.0/24 maxlen: 24 77.83.116.0/24 maxlen: 24 89.191.232.0/24 maxlen: 24 92.118.112.0/24 maxlen: 24 141.98.233.0/24 maxlen: 24 141.98.234.0/24 maxlen: 24 185.247.184.0/24 maxlen: 24 194.28.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.mft rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 21:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:06:9d:98:5c:0b:97:4e:ab:8b:62:15:60:b4:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f Validity Not Before: Jan 1 18:19:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3d03205b51d17e15420b8034aea2a42d1b522a02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:94:df:b1:da:c5:a1:9a:55:13:0a:1a:2e:76: e5:f3:2d:5f:4e:bf:a9:e0:6d:b3:33:7c:f8:3a:fe: c3:b5:7e:0e:0f:83:35:2c:46:06:29:52:cb:71:db: e2:e7:00:a7:e2:34:da:90:37:ad:75:c8:77:d9:2d: 78:98:b0:00:29:83:f0:5c:f1:57:e0:33:61:32:5d: 81:e3:3e:b6:0f:15:16:7a:db:dd:9f:bc:58:da:74: 76:ae:23:b4:ca:1d:52:33:fd:7b:62:35:ee:78:8f: 99:fe:b6:10:69:7b:0d:37:99:ba:d9:ec:b0:7b:f4: 5e:bb:34:b0:fa:be:30:db:7c:fd:37:03:cf:9d:cb: c1:35:42:10:56:77:50:17:ae:71:d5:19:af:d6:f3: d1:de:1e:b0:80:99:bc:dd:13:1b:47:30:1d:4f:a6: fd:02:43:b2:01:b2:ba:f1:ab:cd:e3:2a:78:ae:9b: 42:62:a8:44:89:e6:fd:90:87:ff:66:43:30:7d:cb: 7d:79:b6:8b:1d:96:13:0f:14:1a:4a:51:b1:3a:6b: 6f:4c:e5:5a:e3:a9:de:80:df:bd:1e:58:3d:1a:88: ad:3b:81:db:aa:d2:8d:d8:ca:34:d8:ea:75:4b:db: 23:5a:03:c7:6c:45:50:87:f9:18:a6:d5:13:75:30: 7a:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:03:20:5B:51:D1:7E:15:42:0B:80:34:AE:A2:A4:2D:1B:52:2A:02 X509v3 Authority Key Identifier: keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/PQMgW1HRfhVCC4A0rqKkLRtSKgI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.129.22.0/24 37.220.86.0/24 45.95.232.0/23 77.83.116.0/24 89.191.232.0/24 92.118.112.0/24 141.98.233.0-141.98.234.255 185.247.184.0/24 194.28.192.0/24 Signature Algorithm: sha256WithRSAEncryption 79:3d:73:ca:c1:3f:b7:f0:7f:ea:25:9e:a3:c1:c1:d9:93:e2: 3b:ee:0b:f5:3f:fc:5e:3f:1c:fa:04:ce:14:c3:ce:b4:53:12: 98:3a:e8:9b:d5:ea:fd:51:a5:40:1e:3f:2b:b6:58:b0:38:e9: 3e:30:df:c1:9a:65:d3:bf:cd:bc:4c:4f:1b:80:7a:a1:51:68: 11:c5:6b:6c:bb:a4:78:81:70:23:07:3f:f7:dd:1e:6c:af:96: 53:00:49:df:ba:03:d3:10:ba:86:36:e0:35:bf:25:38:56:ef: 3e:90:53:ab:8f:d3:cf:7e:03:f2:1f:f0:d2:75:2d:7d:3e:7a: 2d:72:96:be:2a:91:e6:12:62:88:97:49:c2:f8:3b:49:db:93: 10:9a:13:09:2c:62:1b:8c:2d:ca:f2:be:c7:1f:a7:4e:de:49: 24:15:6c:f1:4c:4c:ab:30:7a:bb:b5:e9:b9:6c:21:4f:ea:39: 97:5e:6b:54:8e:7a:33:5b:1f:73:f8:b7:1e:81:c9:2e:36:cc: e2:ee:72:2e:78:96:5a:06:e5:2f:84:a0:a3:09:65:bf:4c:92: 91:d9:60:a1:03:6d:2e:79:1f:79:ad:7f:ad:d7:85:2b:d8:fb: 29:4c:0f:77:8f:3b:b7:8a:38:ba:72:4f:f9:9e:cf:b4:54:96: 5c:f5:73:60 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgISAZt6yQadmFwLl06ri2IVYLSaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1YjFkMTNjMmUyNmUxMjc4NjI0NmE1ZWM0YzViZWE2OTg2 NGIyMGYwHhcNMjYwMTAxMTgxOTEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZDAzMjA1YjUxZDE3ZTE1NDIwYjgwMzRhZWEyYTQyZDFiNTIyYTAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqJTfsdrFoZpVEwoaLnbl8y1fTr+p 4G2zM3z4Ov7DtX4OD4M1LEYGKVLLcdvi5wCn4jTakDetdch32S14mLAAKYPwXPFX 4DNhMl2B4z62DxUWetvdn7xY2nR2riO0yh1SM/17YjXueI+Z/rYQaXsNN5m62eyw e/ReuzSw+r4w23z9NwPPncvBNUIQVndQF65x1Rmv1vPR3h6wgJm83RMbRzAdT6b9 AkOyAbK68avN4yp4rptCYqhEieb9kIf/ZkMwfct9ebaLHZYTDxQaSlGxOmtvTOVa 46negN+9Hlg9GoitO4HbqtKN2Mo02Op1S9sjWgPHbEVQh/kYptUTdTB66wIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFD0DIFtR0X4VQguANK6ipC0bUioCMB8GA1UdIwQY MBaAFAWx0TwuJuEnhiRqXsTFvqaYZLIPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmJIUlBDNG00U2VHSkdwZXhNVy1wcGhrc2c4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9jNjEwOTItNzM0YS00ZWVmLTlkNjct NDkwNTI0M2JjODI4LzEvUFFNZ1cxSFJmaFZDQzRBMHJxS2tMUnRTS2dJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOC9jNjEwOTItNzM0YS00ZWVmLTlkNjctNDkwNTI0M2JjODI4 LzEvQmJIUlBDNG00U2VHSkdwZXhNVy1wcGhrc2c4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFcGCCsGAQUFBwEHAQH/BEgwRjBEBAIAATA+AwQAH4EWAwQA JdxWAwQBLV/oAwQATVN0AwQAWb/oAwQAXHZwMAwDBACNYukDBACNYuoDBAC597gD BADCHMAwDQYJKoZIhvcNAQELBQADggEBAHk9c8rBP7fwf+olnqPBwdmT4jvuC/U/ /F4/HPoEzhTDzrRTEpg66JvV6v1RpUAePyu2WLA46T4w38GaZdO/zbxMTxuAeqFR aBHFa2y7pHiBcCMHP/fdHmyvllMASd+6A9MQuoY24DW/JThW7z6QU6uP089+A/If 8NJ1LX0+ei1ylr4qkeYSYoiXScL4O0nbkxCaEwksYhuMLcryvscfp07eSSQVbPFM TKsweru16blsIU/qOZdea1SOejNbH3P4tx6ByS42zOLuci54lloG5S+EoKMJZb9M kpHZYKEDbS55H3mtf63XhSvY+ylMD3ePO7eKOLpyT/mez7RUllz1c2A= -----END CERTIFICATE-----Generated at Sat Jan 10 03:16:16 2026 by rpki-client