This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/pgFdtWnRq5i8GLT27YipBvzk6dA.roa File: pgFdtWnRq5i8GLT27YipBvzk6dA.roa (raw, json) Hash identifier: 88AynRXmPm9TAuHfwplc7WdKo6e+QNJzvr4aEJwgVZw= Subject key identifier: A6:01:5D:B5:69:D1:AB:98:BC:18:B4:F6:ED:88:A9:06:FC:E4:E9:D0 Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Certificate serial: 019B7C136AE19A3E13D4F35FC3A190322D8C Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/pgFdtWnRq5i8GLT27YipBvzk6dA.roa Signing time: Fri 02 Jan 2026 00:20:05 +0000 ROA not before: Fri 02 Jan 2026 00:20:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 36530 IP address blocks: 185.206.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.mft rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 19:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:6a:e1:9a:3e:13:d4:f3:5f:c3:a1:90:32:2d:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Validity Not Before: Jan 2 00:20:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a6015db569d1ab98bc18b4f6ed88a906fce4e9d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ba:19:a9:1a:4d:a9:36:8a:69:bd:dc:c7:96: 20:97:01:30:e5:2d:3c:f9:fd:f6:5f:b3:9c:3a:1c: 36:d0:93:c8:32:43:cc:c6:4f:a9:d0:92:8f:20:59: 9a:08:d6:46:93:2e:ad:fe:e4:86:18:ed:0b:cd:ad: 86:78:f5:37:19:b4:53:d8:b8:4e:f2:a5:d1:f6:13: 78:a0:c1:e9:a8:ce:5b:aa:67:ee:6c:38:ad:10:6f: d4:bd:fd:cc:42:d4:13:d4:74:fb:4e:47:48:8e:bb: 5a:57:cf:8d:2a:b6:cf:1c:57:6a:87:bc:75:2a:38: 6b:4e:e2:84:46:70:60:35:72:d5:23:24:a8:8f:29: 6b:6f:81:7a:74:49:09:76:c6:7c:23:3f:ff:59:0b: 77:3c:bc:ee:20:00:a0:4c:86:6d:6e:37:85:9d:16: b0:69:33:1c:3c:09:f9:eb:b3:1d:81:6f:b4:f9:bb: 17:f7:27:e2:d4:be:9a:f3:b9:4e:f8:5e:41:4d:e0: 0e:23:39:d4:b5:0f:df:4c:0d:42:53:5a:9a:a7:9e: 85:d1:f6:e1:62:ae:c5:de:a9:ad:d8:e7:cd:94:8c: d0:7b:ca:53:10:62:2d:ed:2a:f8:61:f7:b0:a0:24: 14:95:9a:8e:3a:73:67:45:13:23:c0:55:63:51:dc: 2b:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:01:5D:B5:69:D1:AB:98:BC:18:B4:F6:ED:88:A9:06:FC:E4:E9:D0 X509v3 Authority Key Identifier: keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/pgFdtWnRq5i8GLT27YipBvzk6dA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.206.250.0/24 Signature Algorithm: sha256WithRSAEncryption 67:82:a8:40:b9:9f:70:f5:b8:c2:c1:b1:a3:9a:80:60:fa:1e: 31:c7:4e:b4:d8:6c:ca:e8:4f:d2:70:16:e5:c7:82:8c:1f:a0: e8:1e:91:76:c3:90:c9:c7:8a:29:08:8b:c4:28:b8:a4:e6:73: 18:12:21:8b:3f:f9:b2:92:3a:69:a1:a8:4e:1a:27:37:43:1b: ec:60:78:1f:ac:69:c7:8a:06:74:4a:58:0d:08:99:c6:56:0c: dc:d7:7f:0b:3f:a1:71:7b:9d:57:96:4c:e2:33:b8:75:18:f4: 5b:16:83:2f:74:bc:3c:6d:f9:9e:7e:c5:ec:48:23:1b:e5:4c: d2:d8:b4:b0:6c:81:b8:78:c4:34:03:78:74:6f:db:e3:88:74: 36:cf:07:25:fa:e1:02:8a:f3:f6:ec:3a:4f:1a:74:dd:89:8a: dd:67:47:06:f6:73:af:26:99:06:92:c5:86:6d:cd:dc:c8:5b: 75:f4:da:9d:4e:ea:1a:8b:36:0d:32:8a:20:c3:ed:5f:a4:95: 7a:1c:d7:33:9e:74:c2:ae:27:86:d7:36:cb:5c:2a:00:8a:4b: f9:05:64:c0:81:0b:a5:32:53:77:af:4c:a8:18:33:25:43:5b: 31:60:8f:58:b6:79:52:8a:00:cb:b7:f7:f4:7c:dd:ca:ca:8c: 10:f9:a0:e4 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8E2rhmj4T1PNfw6GQMi2MMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx MTRjYWYwHhcNMjYwMTAyMDAyMDA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNjAxNWRiNTY5ZDFhYjk4YmMxOGI0ZjZlZDg4YTkwNmZjZTRlOWQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv7oZqRpNqTaKab3cx5YglwEw5S08 +f32X7OcOhw20JPIMkPMxk+p0JKPIFmaCNZGky6t/uSGGO0Lza2GePU3GbRT2LhO 8qXR9hN4oMHpqM5bqmfubDitEG/Uvf3MQtQT1HT7TkdIjrtaV8+NKrbPHFdqh7x1 KjhrTuKERnBgNXLVIySojylrb4F6dEkJdsZ8Iz//WQt3PLzuIACgTIZtbjeFnRaw aTMcPAn567MdgW+0+bsX9yfi1L6a87lO+F5BTeAOIznUtQ/fTA1CU1qap56F0fbh Yq7F3qmt2OfNlIzQe8pTEGIt7Sr4YfewoCQUlZqOOnNnRRMjwFVjUdwrSwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKYBXbVp0auYvBi09u2IqQb85OnQMB8GA1UdIwQY MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt YjQzNDJiYTkxYWJjLzEvcGdGZHRXblJxNWk4R0xUMjdZaXBCdnprNmRBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuc76MA0G CSqGSIb3DQEBCwUAA4IBAQBngqhAuZ9w9bjCwbGjmoBg+h4xx0602GzK6E/ScBbl x4KMH6DoHpF2w5DJx4opCIvEKLik5nMYEiGLP/mykjppoahOGic3QxvsYHgfrGnH igZ0SlgNCJnGVgzc138LP6Fxe51XlkziM7h1GPRbFoMvdLw8bfmefsXsSCMb5UzS 2LSwbIG4eMQ0A3h0b9vjiHQ2zwcl+uECivP27DpPGnTdiYrdZ0cG9nOvJpkGksWG bc3cyFt19NqdTuoaizYNMoogw+1fpJV6HNcznnTCrieG1zbLXCoAikv5BWTAgQul MlN3r0yoGDMlQ1sxYI9YtnlSigDLt/f0fN3KyowQ+aDk -----END CERTIFICATE-----Generated at Fri Jan 2 23:53:24 2026 by rpki-client