This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/PGqTe5lOkkEyuwR3Eh8tAne2VFA.roa File: PGqTe5lOkkEyuwR3Eh8tAne2VFA.roa (raw, json) Hash identifier: t0yx70bSt8bBXkM8RKNcruGRMLRlmLBgwYo2hfKRZ1o= Subject key identifier: 3C:6A:93:7B:99:4E:92:41:32:BB:04:77:12:1F:2D:02:77:B6:54:50 Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Certificate serial: 019B7C1364C537316F64F8552DDC0B72612E Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/PGqTe5lOkkEyuwR3Eh8tAne2VFA.roa Signing time: Fri 02 Jan 2026 00:20:04 +0000 ROA not before: Fri 02 Jan 2026 00:20:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 18229 IP address blocks: 185.255.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.mft rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 19:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:64:c5:37:31:6f:64:f8:55:2d:dc:0b:72:61:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Validity Not Before: Jan 2 00:20:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3c6a937b994e924132bb0477121f2d0277b65450 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:87:e5:00:7a:b4:11:12:3d:1f:a1:1d:45:fc: 61:c1:fb:ac:88:4d:63:7a:e2:ac:c3:d8:72:2f:cd: 2b:bb:59:86:5c:a9:9c:13:6a:9c:50:ad:49:95:41: f6:e0:dd:6b:fd:9f:cb:f3:75:f7:79:a8:fc:cf:1f: 01:41:01:da:4e:54:28:e5:75:7e:c0:3b:af:99:34: 68:d6:0c:76:36:e9:0b:e0:d5:d0:78:0a:3e:aa:02: d4:e4:d6:53:54:e9:ee:59:bf:d2:3f:08:5f:88:45: 54:1d:a5:84:0c:07:0e:3d:f0:78:ba:c5:37:08:c6: 0f:e5:a4:22:05:a6:7b:50:8e:60:44:c6:10:2c:fa: a0:bb:28:11:0b:fe:d8:34:9e:7e:74:6c:0a:06:cf: a5:47:e3:3b:bd:c8:39:98:0d:a0:1a:aa:b8:75:71: 2d:74:c7:bd:e2:00:ce:21:c2:61:91:2f:77:a7:43: 35:7a:89:9a:48:aa:56:e5:ad:06:a3:aa:68:e8:c2: c0:7e:c9:91:ef:f9:d8:a1:8a:7d:7a:90:f8:a9:e9: b0:90:45:1d:84:51:aa:2e:4e:d6:90:14:c3:2d:97: a7:28:3a:d7:9e:db:82:e5:62:ff:09:0e:24:f4:8b: 5d:ba:0f:83:66:9e:73:e6:2a:06:e8:03:fe:92:85: e7:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:6A:93:7B:99:4E:92:41:32:BB:04:77:12:1F:2D:02:77:B6:54:50 X509v3 Authority Key Identifier: keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/PGqTe5lOkkEyuwR3Eh8tAne2VFA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.255.127.0/24 Signature Algorithm: sha256WithRSAEncryption 16:cf:ec:66:60:92:ad:06:fd:a3:96:e8:72:31:36:0c:e0:15: 42:c9:ae:14:4e:b6:58:b6:79:12:41:fc:a0:c9:e2:53:af:41: ad:6d:df:88:09:7e:a8:d2:ac:c4:3c:4d:a1:99:5c:c1:dc:1b: aa:98:29:a3:d1:52:1f:8c:67:aa:39:b5:da:ad:9c:7b:d4:9b: f6:8e:a5:5f:1c:5f:c8:52:23:96:72:7c:6e:48:c1:af:2f:aa: 9a:5f:6f:b6:ea:91:f1:d4:58:ff:04:c7:51:b9:99:15:10:0c: e1:e0:8a:1f:ee:0f:aa:24:17:1b:b1:67:37:a2:b4:14:05:05: 41:25:c3:44:b2:66:a5:06:6b:90:17:7f:c9:55:d1:e0:93:59: 21:b0:f9:f4:c8:68:fb:41:5d:f5:ae:93:2b:97:2e:88:fa:da: b5:d1:db:cc:51:03:93:8c:b1:7a:5c:5b:4e:95:b9:56:9f:2c: 4b:a0:20:0a:63:89:a1:aa:6e:27:5b:b4:1f:aa:af:a7:a5:42: 22:66:3b:d0:7a:76:a6:bb:77:05:16:14:aa:05:03:ad:9d:bd: 1d:7c:68:a7:93:bc:76:8f:32:a4:d6:01:3f:47:4e:98:d9:6f: 6a:0f:fd:16:64:f7:58:80:09:c3:0f:b9:c2:55:e0:ce:13:35: 75:e8:c9:e0 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8E2TFNzFvZPhVLdwLcmEuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx MTRjYWYwHhcNMjYwMTAyMDAyMDA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYzZhOTM3Yjk5NGU5MjQxMzJiYjA0NzcxMjFmMmQwMjc3YjY1NDUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1YflAHq0ERI9H6EdRfxhwfusiE1j euKsw9hyL80ru1mGXKmcE2qcUK1JlUH24N1r/Z/L83X3eaj8zx8BQQHaTlQo5XV+ wDuvmTRo1gx2NukL4NXQeAo+qgLU5NZTVOnuWb/SPwhfiEVUHaWEDAcOPfB4usU3 CMYP5aQiBaZ7UI5gRMYQLPqguygRC/7YNJ5+dGwKBs+lR+M7vcg5mA2gGqq4dXEt dMe94gDOIcJhkS93p0M1eomaSKpW5a0Go6po6MLAfsmR7/nYoYp9epD4qemwkEUd hFGqLk7WkBTDLZenKDrXntuC5WL/CQ4k9Itdug+DZp5z5ioG6AP+koXn0wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDxqk3uZTpJBMrsEdxIfLQJ3tlRQMB8GA1UdIwQY MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt YjQzNDJiYTkxYWJjLzEvUEdxVGU1bE9ra0V5dXdSM0VoOHRBbmUyVkZBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuf9/MA0G CSqGSIb3DQEBCwUAA4IBAQAWz+xmYJKtBv2jluhyMTYM4BVCya4UTrZYtnkSQfyg yeJTr0Gtbd+ICX6o0qzEPE2hmVzB3BuqmCmj0VIfjGeqObXarZx71Jv2jqVfHF/I UiOWcnxuSMGvL6qaX2+26pHx1Fj/BMdRuZkVEAzh4Iof7g+qJBcbsWc3orQUBQVB JcNEsmalBmuQF3/JVdHgk1khsPn0yGj7QV31rpMrly6I+tq10dvMUQOTjLF6XFtO lblWnyxLoCAKY4mhqm4nW7Qfqq+npUIiZjvQenamu3cFFhSqBQOtnb0dfGink7x2 jzKk1gE/R06Y2W9qD/0WZPdYgAnDD7nCVeDOEzV16Mng -----END CERTIFICATE-----Generated at Fri Jan 2 23:53:18 2026 by rpki-client