This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/pLi1qq2wcSmdgCiUnjjCoQErQdA.roa File: pLi1qq2wcSmdgCiUnjjCoQErQdA.roa (raw, json) Hash identifier: 7prO26MADaOtqZ/YBeNHajM4pUEvbdbYtkMA592/T+U= Subject key identifier: A4:B8:B5:AA:AD:B0:71:29:9D:80:28:94:9E:38:C2:A1:01:2B:41:D0 Certificate issuer: /CN=d0f4fa80758753b243a2165eddea75dbeee826c4 Certificate serial: 019B7E37460E1C869D50997363FCBE49CC52 Authority key identifier: D0:F4:FA:80:75:87:53:B2:43:A2:16:5E:DD:EA:75:DB:EE:E8:26:C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0PT6gHWHU7JDohZe3ep12-7oJsQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/pLi1qq2wcSmdgCiUnjjCoQErQdA.roa Signing time: Fri 02 Jan 2026 10:18:30 +0000 ROA not before: Fri 02 Jan 2026 10:18:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12637 IP address blocks: 185.255.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.crl rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.mft rsync://rpki.ripe.net/repository/DEFAULT/0PT6gHWHU7JDohZe3ep12-7oJsQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 19:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:46:0e:1c:86:9d:50:99:73:63:fc:be:49:cc:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d0f4fa80758753b243a2165eddea75dbeee826c4 Validity Not Before: Jan 2 10:18:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a4b8b5aaadb071299d8028949e38c2a1012b41d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:be:da:8b:f5:84:1f:2a:50:ca:e2:71:f2:3e: 2c:5c:3b:0d:b5:0f:6f:aa:05:de:1e:77:a2:5f:c9: c5:4c:a8:4b:11:11:7e:48:8c:a9:b7:12:ea:a3:66: d0:42:04:a6:aa:c3:38:23:94:2a:32:cb:b6:0e:71: f5:20:bd:2b:7b:65:bf:39:48:3a:78:70:72:a7:97: 09:28:dd:cd:f8:cd:70:13:f8:9b:f4:a2:8d:20:92: 9e:c8:79:8c:ca:f0:55:6a:be:2e:1c:18:fe:ef:b7: 7c:34:bd:22:8b:69:5a:fb:8b:c4:0b:84:c5:ec:d4: 62:ed:16:47:f9:55:db:16:b4:37:c9:b1:f3:eb:2f: ce:03:18:c9:d2:2f:4f:65:30:2d:d9:00:4f:e1:67: 44:23:e9:ad:32:83:de:e6:d7:0f:04:c8:42:8e:4b: 7e:24:d5:25:8e:a4:9d:82:2f:c1:2f:86:70:b9:80: 19:e2:02:7a:f3:a4:ac:ac:ae:65:49:4a:66:9f:ff: 5b:22:68:f5:36:65:bf:ea:13:53:4e:8e:c5:b0:90: d5:92:64:79:59:6e:a6:d2:6b:96:2b:be:23:8c:1e: e0:75:e9:77:a8:7e:ca:cf:47:73:19:a3:b7:30:09: ec:bd:0d:41:98:82:52:cf:ee:15:9f:47:20:2f:c1: 6e:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:B8:B5:AA:AD:B0:71:29:9D:80:28:94:9E:38:C2:A1:01:2B:41:D0 X509v3 Authority Key Identifier: keyid:D0:F4:FA:80:75:87:53:B2:43:A2:16:5E:DD:EA:75:DB:EE:E8:26:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0PT6gHWHU7JDohZe3ep12-7oJsQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/pLi1qq2wcSmdgCiUnjjCoQErQdA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.255.138.0/24 Signature Algorithm: sha256WithRSAEncryption 00:82:bd:72:f1:af:4c:94:40:b8:9c:d1:b6:3a:93:94:06:3f: 16:b6:60:a5:a3:a8:b9:ca:17:b0:d1:c0:01:de:84:ae:b5:4a: e3:2f:c4:76:a8:87:72:bc:f7:ff:4a:fc:12:a8:84:25:38:d8: e0:e5:8a:64:ec:1d:58:52:03:80:fe:54:ec:9e:8c:bc:f0:ed: ea:6b:45:6d:dd:f2:c6:6d:ba:10:12:1f:a5:c5:50:ff:ef:88: fe:86:ab:c8:cc:59:f9:e8:30:2f:29:28:82:24:ba:f4:a4:73: da:c3:4f:83:92:35:32:13:6b:6e:0d:0d:64:b9:a8:fb:9c:6e: 7f:d1:58:be:1f:66:29:41:22:cb:ae:e3:fd:03:30:0d:04:ff: cd:06:67:65:0b:8d:63:1e:af:68:57:08:fb:ce:40:d0:80:94: ac:33:40:50:5a:66:ea:b3:31:b6:63:8f:da:00:a2:a1:7f:cb: ba:f5:0b:aa:bc:ed:f5:48:00:9d:7f:91:e4:ad:1e:54:fc:20: b5:6e:31:79:64:d4:32:27:64:23:5a:c9:3c:40:5a:16:e2:25: e5:6f:36:64:36:40:f7:8f:c4:48:af:92:23:9e:51:e1:b5:d9: 4b:dd:32:0e:fd:1f:95:b6:19:77:63:9b:99:04:47:0e:1d:00: ca:8c:d4:84 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+N0YOHIadUJlzY/y+ScxSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwZjRmYTgwNzU4NzUzYjI0M2EyMTY1ZWRkZWE3NWRiZWVl ODI2YzQwHhcNMjYwMTAyMTAxODMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNGI4YjVhYWFkYjA3MTI5OWQ4MDI4OTQ5ZTM4YzJhMTAxMmI0MWQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxr7ai/WEHypQyuJx8j4sXDsNtQ9v qgXeHneiX8nFTKhLERF+SIyptxLqo2bQQgSmqsM4I5QqMsu2DnH1IL0re2W/OUg6 eHByp5cJKN3N+M1wE/ib9KKNIJKeyHmMyvBVar4uHBj+77d8NL0ii2la+4vEC4TF 7NRi7RZH+VXbFrQ3ybHz6y/OAxjJ0i9PZTAt2QBP4WdEI+mtMoPe5tcPBMhCjkt+ JNUljqSdgi/BL4ZwuYAZ4gJ686SsrK5lSUpmn/9bImj1NmW/6hNTTo7FsJDVkmR5 WW6m0muWK74jjB7gdel3qH7Kz0dzGaO3MAnsvQ1BmIJSz+4Vn0cgL8FuiQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKS4taqtsHEpnYAolJ44wqEBK0HQMB8GA1UdIwQY MBaAFND0+oB1h1OyQ6IWXt3qddvu6CbEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMFBUNmdIV0hVN0pEb2haZTNlcDEyLTdvSnNRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi9jYTVjMTktZTQ5Ni00OWU4LThiOTMt NzJhMWYzNzcxOWJiLzEvcExpMXFxMndjU21kZ0NpVW5qakNvUUVyUWRBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi9jYTVjMTktZTQ5Ni00OWU4LThiOTMtNzJhMWYzNzcxOWJi LzEvMFBUNmdIV0hVN0pEb2haZTNlcDEyLTdvSnNRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuf+KMA0G CSqGSIb3DQEBCwUAA4IBAQAAgr1y8a9MlEC4nNG2OpOUBj8WtmClo6i5yhew0cAB 3oSutUrjL8R2qIdyvPf/SvwSqIQlONjg5Ypk7B1YUgOA/lTsnoy88O3qa0Vt3fLG bboQEh+lxVD/74j+hqvIzFn56DAvKSiCJLr0pHPaw0+DkjUyE2tuDQ1kuaj7nG5/ 0Vi+H2YpQSLLruP9AzANBP/NBmdlC41jHq9oVwj7zkDQgJSsM0BQWmbqszG2Y4/a AKKhf8u69QuqvO31SACdf5HkrR5U/CC1bjF5ZNQyJ2QjWsk8QFoW4iXlbzZkNkD3 j8RIr5IjnlHhtdlL3TIO/R+Vthl3Y5uZBEcOHQDKjNSE -----END CERTIFICATE-----Generated at Tue Jan 27 04:23:08 2026 by rpki-client