This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8d241f-71ea-4a1b-96ea-a99c7ee5c284/1/PJSHdZS95adkLNWcV4sGR1iLw40.roa File: PJSHdZS95adkLNWcV4sGR1iLw40.roa (raw, json) Hash identifier: 6w7h78uytxCAdBP54QlwzbmDu/qnNv60V+P+VcQ00lk= Subject key identifier: 3C:94:87:75:94:BD:E5:A7:64:2C:D5:9C:57:8B:06:47:58:8B:C3:8D Certificate issuer: /CN=62927b36b138f086358938e3acfda4638e56a792 Certificate serial: 019B7DCA414F161539131F90A531CC0F31B9 Authority key identifier: 62:92:7B:36:B1:38:F0:86:35:89:38:E3:AC:FD:A4:63:8E:56:A7:92 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YpJ7NrE48IY1iTjjrP2kY45Wp5I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8d241f-71ea-4a1b-96ea-a99c7ee5c284/1/PJSHdZS95adkLNWcV4sGR1iLw40.roa Signing time: Fri 02 Jan 2026 08:19:25 +0000 ROA not before: Fri 02 Jan 2026 08:19:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207265 IP address blocks: 45.151.128.0/22 maxlen: 22 2a10:20c0::/30 maxlen: 30 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/8d241f-71ea-4a1b-96ea-a99c7ee5c284/1/YpJ7NrE48IY1iTjjrP2kY45Wp5I.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/8d241f-71ea-4a1b-96ea-a99c7ee5c284/1/YpJ7NrE48IY1iTjjrP2kY45Wp5I.mft rsync://rpki.ripe.net/repository/DEFAULT/YpJ7NrE48IY1iTjjrP2kY45Wp5I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 02:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:41:4f:16:15:39:13:1f:90:a5:31:cc:0f:31:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62927b36b138f086358938e3acfda4638e56a792 Validity Not Before: Jan 2 08:19:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3c94877594bde5a7642cd59c578b0647588bc38d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:89:8f:2d:2c:5a:2b:b3:eb:47:d5:a2:18:1c: 7e:41:64:4f:cc:bb:da:02:3a:bc:15:4c:d8:90:96: bb:68:fd:46:6e:29:0f:af:a4:49:46:59:47:dd:5f: 37:ff:f9:85:15:b0:f0:1b:38:a5:cb:85:75:d5:82: af:64:49:1a:ca:91:a4:87:0c:b4:c4:6a:34:2a:58: fc:18:cb:c2:25:36:46:c1:13:62:1d:30:a1:42:b1: ce:e8:8e:eb:27:9c:d0:e8:f3:74:1d:88:50:3a:af: a2:25:9f:63:35:85:77:ee:c4:c7:c1:8b:d9:5d:b3: 54:68:b6:38:b9:92:7f:e7:2c:86:f7:38:3c:e2:50: 93:ac:67:9c:18:b2:a2:30:d2:8d:ad:db:3c:07:55: aa:fb:fe:74:d6:00:90:86:09:5b:30:3d:f0:88:e3: 62:23:2b:f7:4e:4f:f2:48:f3:f9:2d:d0:a3:20:4d: 86:e2:d9:09:0f:aa:8b:e2:cc:0f:b2:ec:94:30:e6: fc:4a:b6:5a:9d:ae:b6:74:c1:40:f7:ce:a6:29:75: d3:8e:54:aa:28:4f:c2:8c:cd:bb:91:5f:95:d2:ea: 0a:2f:38:8b:e9:a0:b6:ac:a3:90:e2:90:35:01:c9: 65:e6:3e:8e:94:9d:60:85:26:dd:43:1a:03:80:ac: 3e:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:94:87:75:94:BD:E5:A7:64:2C:D5:9C:57:8B:06:47:58:8B:C3:8D X509v3 Authority Key Identifier: keyid:62:92:7B:36:B1:38:F0:86:35:89:38:E3:AC:FD:A4:63:8E:56:A7:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YpJ7NrE48IY1iTjjrP2kY45Wp5I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8d241f-71ea-4a1b-96ea-a99c7ee5c284/1/PJSHdZS95adkLNWcV4sGR1iLw40.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8d241f-71ea-4a1b-96ea-a99c7ee5c284/1/YpJ7NrE48IY1iTjjrP2kY45Wp5I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.151.128.0/22 IPv6: 2a10:20c0::/30 Signature Algorithm: sha256WithRSAEncryption 8f:b4:b2:d9:2d:95:64:be:63:7e:f1:c4:d1:6d:cf:91:06:16: ea:78:55:27:1f:a6:37:21:0a:bb:c9:94:ff:91:44:28:47:95: 23:9b:2b:33:ff:0e:c3:15:48:b4:78:65:42:b9:6e:a4:45:d2: 23:c1:91:17:cd:b5:97:55:b7:e1:4e:56:9b:b4:b3:37:fe:39: 84:f4:ec:81:cb:51:74:f7:4e:0d:ac:ed:3a:51:5b:f5:3a:a9: 9b:99:1b:4a:5d:c4:4b:86:cd:1a:df:5e:af:47:32:90:1f:a3: cd:e4:b6:6f:5b:ea:ff:63:38:9b:97:37:a4:15:b8:25:74:27: 02:cc:42:c4:57:a2:aa:a9:4e:1c:96:c3:1f:c2:3d:05:f8:d5: c7:35:18:fd:51:14:a8:84:de:53:33:9b:56:3c:61:01:3b:d9: 19:5c:76:3c:3b:60:1a:58:01:e4:19:2d:e6:2e:6d:d0:ab:4f: 2b:49:a2:9b:7d:de:e4:11:e0:a2:5c:0d:1e:2d:b2:0f:a9:1f: 9d:00:e0:be:24:95:33:2c:55:3e:22:d6:3a:0f:23:19:e6:a1: 03:da:f7:42:c3:10:f2:82:c6:df:d1:4e:c9:2a:c9:39:c2:e4: ca:c4:9a:08:a8:91:3f:9f:8d:8e:9e:cf:37:a4:e7:8c:da:16: e0:88:11:1d -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt9ykFPFhU5Ex+QpTHMDzG5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyOTI3YjM2YjEzOGYwODYzNTg5MzhlM2FjZmRhNDYzOGU1 NmE3OTIwHhcNMjYwMTAyMDgxOTI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYzk0ODc3NTk0YmRlNWE3NjQyY2Q1OWM1NzhiMDY0NzU4OGJjMzhkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzomPLSxaK7PrR9WiGBx+QWRPzLva Ajq8FUzYkJa7aP1GbikPr6RJRllH3V83//mFFbDwGzily4V11YKvZEkaypGkhwy0 xGo0Klj8GMvCJTZGwRNiHTChQrHO6I7rJ5zQ6PN0HYhQOq+iJZ9jNYV37sTHwYvZ XbNUaLY4uZJ/5yyG9zg84lCTrGecGLKiMNKNrds8B1Wq+/501gCQhglbMD3wiONi Iyv3Tk/ySPP5LdCjIE2G4tkJD6qL4swPsuyUMOb8SrZana62dMFA986mKXXTjlSq KE/CjM27kV+V0uoKLziL6aC2rKOQ4pA1Acll5j6OlJ1ghSbdQxoDgKw+RQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFDyUh3WUveWnZCzVnFeLBkdYi8ONMB8GA1UdIwQY MBaAFGKSezaxOPCGNYk446z9pGOOVqeSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWXBKN05yRTQ4SVkxaVRqanJQMmtZNDVXcDVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy84ZDI0MWYtNzFlYS00YTFiLTk2ZWEt YTk5YzdlZTVjMjg0LzEvUEpTSGRaUzk1YWRrTE5XY1Y0c0dSMWlMdzQwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy84ZDI0MWYtNzFlYS00YTFiLTk2ZWEtYTk5YzdlZTVjMjg0 LzEvWXBKN05yRTQ4SVkxaVRqanJQMmtZNDVXcDVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCLZeAMA0E AgACMAcDBQIqECDAMA0GCSqGSIb3DQEBCwUAA4IBAQCPtLLZLZVkvmN+8cTRbc+R BhbqeFUnH6Y3IQq7yZT/kUQoR5Ujmysz/w7DFUi0eGVCuW6kRdIjwZEXzbWXVbfh TlabtLM3/jmE9OyBy1F0904NrO06UVv1OqmbmRtKXcRLhs0a316vRzKQH6PN5LZv W+r/YziblzekFbgldCcCzELEV6KqqU4clsMfwj0F+NXHNRj9URSohN5TM5tWPGEB O9kZXHY8O2AaWAHkGS3mLm3Qq08rSaKbfd7kEeCiXA0eLbIPqR+dAOC+JJUzLFU+ ItY6DyMZ5qED2vdCwxDygsbf0U7JKsk5wuTKxJoIqJE/n42Ons83pOeM2hbgiBEd -----END CERTIFICATE-----Generated at Mon Jan 12 05:15:56 2026 by rpki-client