This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/cc7843-d136-4ffb-8b99-836c312ac8c2/1/PdkGuidIdFbHKBexi9QMJypMAv8.roa File: PdkGuidIdFbHKBexi9QMJypMAv8.roa (raw, json) Hash identifier: K8tOP8wveRavTOJ44KZ953uFpm3hvlrA7bwSvcq6BUk= Subject key identifier: 3D:D9:06:BA:27:48:74:56:C7:28:17:B1:8B:D4:0C:27:2A:4C:02:FF Certificate issuer: /CN=9ba94bc14937bb0b3632374355a446724104a981 Certificate serial: 019B2CA8A9DAE10AF76589CE1AD0AF0E2F89 Authority key identifier: 9B:A9:4B:C1:49:37:BB:0B:36:32:37:43:55:A4:46:72:41:04:A9:81 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m6lLwUk3uws2MjdDVaRGckEEqYE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/cc7843-d136-4ffb-8b99-836c312ac8c2/1/PdkGuidIdFbHKBexi9QMJypMAv8.roa Signing time: Wed 17 Dec 2025 14:13:29 +0000 ROA not before: Wed 17 Dec 2025 14:13:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 208949 IP address blocks: 193.151.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/cc7843-d136-4ffb-8b99-836c312ac8c2/1/m6lLwUk3uws2MjdDVaRGckEEqYE.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/cc7843-d136-4ffb-8b99-836c312ac8c2/1/m6lLwUk3uws2MjdDVaRGckEEqYE.mft rsync://rpki.ripe.net/repository/DEFAULT/m6lLwUk3uws2MjdDVaRGckEEqYE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 17:13:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2c:a8:a9:da:e1:0a:f7:65:89:ce:1a:d0:af:0e:2f:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ba94bc14937bb0b3632374355a446724104a981 Validity Not Before: Dec 17 14:13:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=3dd906ba27487456c72817b18bd40c272a4c02ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:4d:bb:4b:c7:5e:f4:e3:4a:51:f8:2f:83:37: 2a:18:50:3c:38:86:e9:85:62:2f:0a:36:21:03:08: a7:2c:b2:91:63:69:d2:fa:14:a5:2d:a9:f2:b7:de: 31:bc:92:f9:88:ac:d1:c6:b9:ea:c3:78:d2:59:c9: c0:1f:4f:f5:b7:2e:47:c3:7d:12:db:bb:52:ab:c9: 59:f4:16:3f:f9:1a:18:ec:e2:a3:f3:6d:cc:40:26: 9c:20:53:3b:30:7b:96:a6:4c:d1:ba:90:a9:39:da: 58:54:3b:b6:00:62:76:1b:73:7d:52:c1:a7:6b:d6: b6:b0:f9:81:23:43:72:ca:09:35:56:ef:a5:cd:9e: 23:de:2a:54:f8:2a:b9:9c:56:90:f9:18:da:fb:92: 79:d9:3d:53:0b:47:2b:19:18:3d:1e:51:41:dc:1c: 71:7a:52:83:05:1f:a2:c4:04:84:81:27:aa:1a:0a: 4c:d8:96:11:9d:1d:ca:47:0a:49:83:f6:eb:da:ac: 95:6d:17:3a:6d:09:a9:4e:45:a8:1d:60:af:2e:7e: 53:24:90:aa:89:02:52:71:8e:11:b1:b2:66:66:3b: 05:f3:c8:78:63:d1:80:27:5a:10:58:0a:c5:e6:f2: b3:0d:04:cc:6c:87:97:5e:31:17:01:c4:80:7f:bc: 6c:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:D9:06:BA:27:48:74:56:C7:28:17:B1:8B:D4:0C:27:2A:4C:02:FF X509v3 Authority Key Identifier: keyid:9B:A9:4B:C1:49:37:BB:0B:36:32:37:43:55:A4:46:72:41:04:A9:81 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m6lLwUk3uws2MjdDVaRGckEEqYE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/cc7843-d136-4ffb-8b99-836c312ac8c2/1/PdkGuidIdFbHKBexi9QMJypMAv8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/cc7843-d136-4ffb-8b99-836c312ac8c2/1/m6lLwUk3uws2MjdDVaRGckEEqYE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.151.109.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:9a:69:ea:75:4b:f7:42:b9:34:bc:55:2b:11:b4:f1:f3:6b: 90:07:1d:98:8c:f0:2f:82:7e:ec:f8:61:a3:52:57:19:82:8c: 58:21:b2:48:ab:b3:79:7c:81:3f:1d:a6:cc:22:87:0f:a9:78: 7f:c3:b2:bc:a3:43:b1:26:94:7a:1d:d9:c3:8a:b3:9f:42:46: a2:c5:94:3a:bd:8e:9c:a0:5c:99:93:33:a8:e6:01:20:68:ec: a3:cd:67:ce:53:a3:c5:8e:e1:83:72:58:55:71:a7:e9:05:d7: 9e:e5:03:d1:09:f7:b0:3e:be:b7:bd:c1:bb:42:27:66:be:a9: 95:c1:7d:9a:3c:fb:38:c0:f5:34:11:fb:dc:08:2b:e4:42:f6: f1:17:e9:d0:a6:a7:15:97:fd:84:c7:77:e5:f4:32:12:dd:d8: 89:b4:14:25:36:87:59:d3:61:c2:29:18:1f:9c:8f:94:3b:31: 5e:82:c1:4e:4e:b1:6a:e8:fa:0a:91:97:2c:74:a1:5d:2a:d3: 18:82:ee:83:ef:6c:d6:b1:2a:93:3f:cf:78:74:d7:f3:29:03: 4e:07:38:b4:d9:4d:7c:b3:cc:f6:01:28:3b:b5:f6:49:5f:4d: 8e:e4:42:7f:5a:89:e9:ad:79:51:af:94:53:68:1b:ef:32:43: ca:c9:77:31 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZssqKna4Qr3ZYnOGtCvDi+JMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDliYTk0YmMxNDkzN2JiMGIzNjMyMzc0MzU1YTQ0NjcyNDEw NGE5ODEwHhcNMjUxMjE3MTQxMzI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZGQ5MDZiYTI3NDg3NDU2YzcyODE3YjE4YmQ0MGMyNzJhNGMwMmZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt027S8de9ONKUfgvgzcqGFA8OIbp hWIvCjYhAwinLLKRY2nS+hSlLanyt94xvJL5iKzRxrnqw3jSWcnAH0/1ty5Hw30S 27tSq8lZ9BY/+RoY7OKj823MQCacIFM7MHuWpkzRupCpOdpYVDu2AGJ2G3N9UsGn a9a2sPmBI0Nyygk1Vu+lzZ4j3ipU+Cq5nFaQ+Rja+5J52T1TC0crGRg9HlFB3Bxx elKDBR+ixASEgSeqGgpM2JYRnR3KRwpJg/br2qyVbRc6bQmpTkWoHWCvLn5TJJCq iQJScY4RsbJmZjsF88h4Y9GAJ1oQWArF5vKzDQTMbIeXXjEXAcSAf7xsdQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFD3ZBronSHRWxygXsYvUDCcqTAL/MB8GA1UdIwQY MBaAFJupS8FJN7sLNjI3Q1WkRnJBBKmBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbTZsTHdVazN1d3MyTWpkRFZhUkdja0VFcVlFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS9jYzc4NDMtZDEzNi00ZmZiLThiOTkt ODM2YzMxMmFjOGMyLzEvUGRrR3VpZElkRmJIS0JleGk5UU1KeXBNQXY4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS9jYzc4NDMtZDEzNi00ZmZiLThiOTktODM2YzMxMmFjOGMy LzEvbTZsTHdVazN1d3MyTWpkRFZhUkdja0VFcVlFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwZdtMA0G CSqGSIb3DQEBCwUAA4IBAQAbmmnqdUv3Qrk0vFUrEbTx82uQBx2YjPAvgn7s+GGj UlcZgoxYIbJIq7N5fIE/HabMIocPqXh/w7K8o0OxJpR6HdnDirOfQkaixZQ6vY6c oFyZkzOo5gEgaOyjzWfOU6PFjuGDclhVcafpBdee5QPRCfewPr63vcG7QidmvqmV wX2aPPs4wPU0EfvcCCvkQvbxF+nQpqcVl/2Ex3fl9DIS3diJtBQlNodZ02HCKRgf nI+UOzFegsFOTrFq6PoKkZcsdKFdKtMYgu6D72zWsSqTP894dNfzKQNOBzi02U18 s8z2ASg7tfZJX02O5EJ/WonprXlRr5RTaBvvMkPKyXcx -----END CERTIFICATE-----Generated at Sat Dec 20 03:21:07 2025 by rpki-client