This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/pgGnSHyUvU2MCidf2eDuWrDOeCY.roa File: pgGnSHyUvU2MCidf2eDuWrDOeCY.roa (raw, json) Hash identifier: oty+EyubS3vsZNVfWcxWo/GIVhsqz3pi2U3eHoewYe4= Subject key identifier: A6:01:A7:48:7C:94:BD:4D:8C:0A:27:5F:D9:E0:EE:5A:B0:CE:78:26 Certificate issuer: /CN=88ea5255f88d4b957189c142f8ac5681c50c68a6 Certificate serial: 019B7CECBE1CDB759C7485A7C4AEEDC12B95 Authority key identifier: 88:EA:52:55:F8:8D:4B:95:71:89:C1:42:F8:AC:56:81:C5:0C:68:A6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iOpSVfiNS5VxicFC-KxWgcUMaKY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/pgGnSHyUvU2MCidf2eDuWrDOeCY.roa Signing time: Fri 02 Jan 2026 04:17:28 +0000 ROA not before: Fri 02 Jan 2026 04:17:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202787 IP address blocks: 185.137.8.0/24 maxlen: 24 185.137.9.0/24 maxlen: 24 185.137.10.0/24 maxlen: 24 185.137.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.crl rsync://rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.mft rsync://rpki.ripe.net/repository/DEFAULT/iOpSVfiNS5VxicFC-KxWgcUMaKY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ec:be:1c:db:75:9c:74:85:a7:c4:ae:ed:c1:2b:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88ea5255f88d4b957189c142f8ac5681c50c68a6 Validity Not Before: Jan 2 04:17:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a601a7487c94bd4d8c0a275fd9e0ee5ab0ce7826 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:6d:52:36:f6:88:6e:c2:ec:ae:46:1d:aa:40: 40:2f:91:38:c2:25:ea:1f:52:1a:0e:04:15:31:58: 05:eb:c3:78:e7:96:ad:85:04:45:ef:fe:c5:f2:ea: 46:bd:82:e9:a3:d5:5e:99:29:5c:fc:4b:0f:99:40: 15:85:4c:fa:db:17:2c:0f:8d:8d:7f:15:23:f3:36: 4e:bf:ce:29:40:ca:8e:3b:15:f4:2b:99:bc:2e:99: 49:df:36:9c:1a:d4:f1:c8:85:19:22:b8:1e:47:23: 84:d2:a5:73:72:c7:c9:68:c6:60:6c:e8:3e:8e:4a: f6:a2:0e:d4:97:c4:75:26:d3:20:33:6d:74:7a:75: 0c:1c:aa:85:f4:c5:f8:b4:5f:17:12:ec:e2:c7:56: d8:be:f3:a1:ff:13:47:10:18:b8:b8:3c:0d:9c:d8: af:e1:d9:f6:81:8b:15:cb:81:86:2b:7f:cf:08:05: b7:05:26:de:20:ee:8c:fa:b0:ba:b5:27:1f:a0:9c: 4d:3f:53:c8:20:e1:ed:22:e9:68:d3:56:31:ac:69: 5d:8a:8d:00:bc:34:7a:0f:3d:44:7f:e7:fa:bc:e3: 22:a7:ba:63:7b:86:cc:e1:98:7d:cf:97:fa:d0:ba: ad:a1:bb:05:53:62:7e:fb:13:ee:f1:35:00:c1:04: 24:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:01:A7:48:7C:94:BD:4D:8C:0A:27:5F:D9:E0:EE:5A:B0:CE:78:26 X509v3 Authority Key Identifier: keyid:88:EA:52:55:F8:8D:4B:95:71:89:C1:42:F8:AC:56:81:C5:0C:68:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOpSVfiNS5VxicFC-KxWgcUMaKY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/pgGnSHyUvU2MCidf2eDuWrDOeCY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.137.8.0/22 Signature Algorithm: sha256WithRSAEncryption 65:8a:57:7c:5b:6f:c7:ce:d3:c5:e4:6e:c3:87:dd:00:37:21: 47:42:9a:8f:1e:4f:fc:46:a1:e2:96:85:89:30:07:e3:5a:8e: 6e:48:01:b5:ae:b4:b6:f2:37:3a:98:0e:d1:65:40:7c:cd:6e: 6b:3a:46:43:2b:bd:4c:53:cb:60:6a:07:7d:60:48:55:eb:66: 4b:dd:80:a3:d9:18:fa:16:b8:97:de:eb:d6:53:e5:0a:50:ed: d3:d4:51:06:d3:ac:cb:12:30:40:bc:d8:eb:23:52:74:12:ab: 0d:9a:54:f3:f5:8f:00:81:4a:d3:78:d0:45:4f:d7:e3:b6:e3: 66:b6:f5:ea:c9:28:3f:cb:55:19:43:cc:f9:77:79:1e:67:ad: 53:ca:1d:a5:d1:a5:55:eb:9b:46:b3:08:7f:f5:92:96:08:7e: c7:b0:80:d8:41:63:66:20:6b:72:6b:e1:4b:eb:46:50:5d:5b: 02:40:3d:f9:3c:00:4e:24:e4:46:83:08:be:da:5b:30:bb:26: 9f:db:54:25:17:fa:47:94:33:0a:98:67:c8:1c:99:03:d0:a9: d6:08:97:95:39:8b:30:2a:05:18:9d:43:77:ce:07:4f:a6:9f: 5c:c8:f4:63:4d:c6:20:12:94:a2:e8:11:20:27:2c:fd:91:0b: a9:1d:15:c4 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87L4c23WcdIWnxK7twSuVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4ZWE1MjU1Zjg4ZDRiOTU3MTg5YzE0MmY4YWM1NjgxYzUw YzY4YTYwHhcNMjYwMTAyMDQxNzI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNjAxYTc0ODdjOTRiZDRkOGMwYTI3NWZkOWUwZWU1YWIwY2U3ODI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA321SNvaIbsLsrkYdqkBAL5E4wiXq H1IaDgQVMVgF68N455athQRF7/7F8upGvYLpo9VemSlc/EsPmUAVhUz62xcsD42N fxUj8zZOv84pQMqOOxX0K5m8LplJ3zacGtTxyIUZIrgeRyOE0qVzcsfJaMZgbOg+ jkr2og7Ul8R1JtMgM210enUMHKqF9MX4tF8XEuzix1bYvvOh/xNHEBi4uDwNnNiv 4dn2gYsVy4GGK3/PCAW3BSbeIO6M+rC6tScfoJxNP1PIIOHtIulo01YxrGldio0A vDR6Dz1Ef+f6vOMip7pje4bM4Zh9z5f60LqtobsFU2J++xPu8TUAwQQklwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKYBp0h8lL1NjAonX9ng7lqwzngmMB8GA1UdIwQY MBaAFIjqUlX4jUuVcYnBQvisVoHFDGimMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaU9wU1ZmaU5TNVZ4aWNGQy1LeFdnY1VNYUtZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS9iYjg3MjctNzhmNy00MDFmLTkzMzkt ZTdjZTI2ODg0YmU2LzEvcGdHblNIeVV2VTJNQ2lkZjJlRHVXckRPZUNZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS9iYjg3MjctNzhmNy00MDFmLTkzMzktZTdjZTI2ODg0YmU2 LzEvaU9wU1ZmaU5TNVZ4aWNGQy1LeFdnY1VNYUtZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuYkIMA0G CSqGSIb3DQEBCwUAA4IBAQBlild8W2/HztPF5G7Dh90ANyFHQpqPHk/8RqHiloWJ MAfjWo5uSAG1rrS28jc6mA7RZUB8zW5rOkZDK71MU8tgagd9YEhV62ZL3YCj2Rj6 FriX3uvWU+UKUO3T1FEG06zLEjBAvNjrI1J0EqsNmlTz9Y8AgUrTeNBFT9fjtuNm tvXqySg/y1UZQ8z5d3keZ61Tyh2l0aVV65tGswh/9ZKWCH7HsIDYQWNmIGtya+FL 60ZQXVsCQD35PABOJORGgwi+2lswuyaf21QlF/pHlDMKmGfIHJkD0KnWCJeVOYsw KgUYnUN3zgdPpp9cyPRjTcYgEpSi6BEgJyz9kQupHRXE -----END CERTIFICATE-----Generated at Mon Feb 9 20:05:19 2026 by rpki-client