This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/503603-1a5d-4900-9829-48dea1021a69/1/plItPB8o1hNBs5V2UiiNbaUAUrA.roa File: plItPB8o1hNBs5V2UiiNbaUAUrA.roa (raw, json) Hash identifier: xXIgUcms6entSFE/XBQ7IsjRqcQ1JB92BORcc15C1mo= Subject key identifier: A6:52:2D:3C:1F:28:D6:13:41:B3:95:76:52:28:8D:6D:A5:00:52:B0 Certificate issuer: /CN=08b0f12f115ad40f2c2b4aad454d2e43611c9a06 Certificate serial: 019B79EBC999E747D244CC345640D53153C8 Authority key identifier: 08:B0:F1:2F:11:5A:D4:0F:2C:2B:4A:AD:45:4D:2E:43:61:1C:9A:06 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CLDxLxFa1A8sK0qtRU0uQ2EcmgY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/503603-1a5d-4900-9829-48dea1021a69/1/plItPB8o1hNBs5V2UiiNbaUAUrA.roa Signing time: Thu 01 Jan 2026 14:17:34 +0000 ROA not before: Thu 01 Jan 2026 14:17:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29240 IP address blocks: 195.225.176.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/503603-1a5d-4900-9829-48dea1021a69/1/CLDxLxFa1A8sK0qtRU0uQ2EcmgY.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/503603-1a5d-4900-9829-48dea1021a69/1/CLDxLxFa1A8sK0qtRU0uQ2EcmgY.mft rsync://rpki.ripe.net/repository/DEFAULT/CLDxLxFa1A8sK0qtRU0uQ2EcmgY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:eb:c9:99:e7:47:d2:44:cc:34:56:40:d5:31:53:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08b0f12f115ad40f2c2b4aad454d2e43611c9a06 Validity Not Before: Jan 1 14:17:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a6522d3c1f28d61341b3957652288d6da50052b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:18:8c:35:17:79:7e:3c:0c:c2:5b:19:61:99: 57:9e:6c:a2:79:94:a2:08:87:4e:e3:ef:d2:31:2b: be:84:0b:38:d5:fd:b6:4e:29:87:22:ac:c0:a0:82: f8:7b:97:f5:00:35:20:34:1d:85:51:11:07:66:1d: 9e:52:1c:98:d9:fa:f5:5a:85:ed:e0:9a:71:f8:8f: 25:5f:b5:02:36:94:ae:a9:9b:9d:a0:e8:07:37:62: c6:59:cd:64:5c:b6:c2:8d:78:90:56:80:79:f6:93: 67:16:31:d4:b3:51:08:86:f7:7b:f3:de:64:a0:36: fe:92:5d:60:5a:ae:6b:db:a1:11:f0:8e:5f:5e:29: e1:e4:9c:f6:8f:b8:99:44:5c:7d:09:e2:8b:00:84: 9f:31:24:81:05:02:2a:bb:6b:08:fc:1c:87:18:ef: 3c:b1:56:1f:27:8a:07:29:37:d7:fd:95:a7:ac:5d: 9c:c5:4a:5e:10:dd:9b:4d:8c:c4:d0:db:15:85:70: 48:33:50:a2:2d:82:96:15:c0:c3:e1:b7:a7:73:06: 4b:51:ee:2e:42:d8:50:f1:09:64:d1:f2:a7:75:71: 40:da:b2:6b:3d:f5:78:97:3a:6f:43:7a:a0:ef:da: d4:e9:0d:b1:fd:65:63:92:1c:17:47:c6:93:73:41: 5a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:52:2D:3C:1F:28:D6:13:41:B3:95:76:52:28:8D:6D:A5:00:52:B0 X509v3 Authority Key Identifier: keyid:08:B0:F1:2F:11:5A:D4:0F:2C:2B:4A:AD:45:4D:2E:43:61:1C:9A:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CLDxLxFa1A8sK0qtRU0uQ2EcmgY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/503603-1a5d-4900-9829-48dea1021a69/1/plItPB8o1hNBs5V2UiiNbaUAUrA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/503603-1a5d-4900-9829-48dea1021a69/1/CLDxLxFa1A8sK0qtRU0uQ2EcmgY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.225.176.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:5e:01:d0:1c:25:9c:42:96:14:5f:69:3c:8f:cc:ca:fe:d4: a6:7a:3d:de:5f:78:98:10:fe:e9:91:6d:82:e1:66:3c:4c:f7: 76:e5:57:96:c0:3d:5b:dd:b7:78:8e:6d:16:b8:7e:b3:d5:fe: 3c:99:13:ce:aa:fe:23:a5:3c:24:7a:f5:6f:da:e8:ae:da:7f: 26:37:0e:0b:0f:3a:69:8c:cb:20:64:b3:8e:70:e1:8c:dc:ae: 38:05:63:74:26:13:ec:6c:2a:ed:e4:6b:97:52:00:ce:2b:e2: 78:09:a0:93:a7:43:35:31:fe:79:e4:92:d2:4b:a9:c4:35:c5: e7:58:51:0a:88:4e:6d:9f:d6:e7:e1:be:26:b1:1b:5c:c9:cd: 03:25:7b:e9:44:9a:66:be:79:51:af:02:fb:14:18:7d:40:81: 4a:11:26:cb:79:44:7b:ff:90:08:ce:9f:59:f2:76:46:21:54: fb:8a:e9:2f:ab:3b:bc:20:8f:83:23:ea:22:a8:b2:f8:41:b8: bc:43:02:44:a5:3f:98:22:b6:12:39:1d:33:4c:6c:b7:44:d5: 7f:34:f8:5e:43:18:c3:74:47:a3:78:f7:1a:23:be:c9:ec:dc: 6c:67:be:11:d9:50:d6:68:9f:08:53:72:b7:06:ff:08:eb:22: b9:df:d0:01 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt568mZ50fSRMw0VkDVMVPIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4YjBmMTJmMTE1YWQ0MGYyYzJiNGFhZDQ1NGQyZTQzNjEx YzlhMDYwHhcNMjYwMTAxMTQxNzM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNjUyMmQzYzFmMjhkNjEzNDFiMzk1NzY1MjI4OGQ2ZGE1MDA1MmIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0BiMNRd5fjwMwlsZYZlXnmyieZSi CIdO4+/SMSu+hAs41f22TimHIqzAoIL4e5f1ADUgNB2FUREHZh2eUhyY2fr1WoXt 4Jpx+I8lX7UCNpSuqZudoOgHN2LGWc1kXLbCjXiQVoB59pNnFjHUs1EIhvd7895k oDb+kl1gWq5r26ER8I5fXinh5Jz2j7iZRFx9CeKLAISfMSSBBQIqu2sI/ByHGO88 sVYfJ4oHKTfX/ZWnrF2cxUpeEN2bTYzE0NsVhXBIM1CiLYKWFcDD4bencwZLUe4u QthQ8Qlk0fKndXFA2rJrPfV4lzpvQ3qg79rU6Q2x/WVjkhwXR8aTc0FahQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKZSLTwfKNYTQbOVdlIojW2lAFKwMB8GA1UdIwQY MBaAFAiw8S8RWtQPLCtKrUVNLkNhHJoGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0xEeEx4RmExQThzSzBxdFJVMHVRMkVjbWdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy81MDM2MDMtMWE1ZC00OTAwLTk4Mjkt NDhkZWExMDIxYTY5LzEvcGxJdFBCOG8xaE5CczVWMlVpaU5iYVVBVXJBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy81MDM2MDMtMWE1ZC00OTAwLTk4MjktNDhkZWExMDIxYTY5 LzEvQ0xEeEx4RmExQThzSzBxdFJVMHVRMkVjbWdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCw+GwMA0G CSqGSIb3DQEBCwUAA4IBAQBNXgHQHCWcQpYUX2k8j8zK/tSmej3eX3iYEP7pkW2C 4WY8TPd25VeWwD1b3bd4jm0WuH6z1f48mRPOqv4jpTwkevVv2uiu2n8mNw4LDzpp jMsgZLOOcOGM3K44BWN0JhPsbCrt5GuXUgDOK+J4CaCTp0M1Mf555JLSS6nENcXn WFEKiE5tn9bn4b4msRtcyc0DJXvpRJpmvnlRrwL7FBh9QIFKESbLeUR7/5AIzp9Z 8nZGIVT7iukvqzu8II+DI+oiqLL4Qbi8QwJEpT+YIrYSOR0zTGy3RNV/NPheQxjD dEejePcaI77J7NxsZ74R2VDWaJ8IU3K3Bv8I6yK539AB -----END CERTIFICATE-----Generated at Sun Jan 25 22:14:05 2026 by rpki-client