This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4c1f59-0c12-4153-a15c-715f9cd63086/1/pbffqVIcAirnQONXIVnNslpP08U.roa File: pbffqVIcAirnQONXIVnNslpP08U.roa (raw, json) Hash identifier: 5VbKEPwbiJ5zZD1DvoWLqE1iDiZFdWOMUbRQcOz5CGg= Subject key identifier: A5:B7:DF:A9:52:1C:02:2A:E7:40:E3:57:21:59:CD:B2:5A:4F:D3:C5 Certificate issuer: /CN=4c988b93ab7a2999a3255eeae4e18ab23b2e0f3e Certificate serial: 019B7AC8A1AF3EA5666A17B68A1ECF9C862F Authority key identifier: 4C:98:8B:93:AB:7A:29:99:A3:25:5E:EA:E4:E1:8A:B2:3B:2E:0F:3E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TJiLk6t6KZmjJV7q5OGKsjsuDz4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4c1f59-0c12-4153-a15c-715f9cd63086/1/pbffqVIcAirnQONXIVnNslpP08U.roa Signing time: Thu 01 Jan 2026 18:18:47 +0000 ROA not before: Thu 01 Jan 2026 18:18:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49101 IP address blocks: 46.36.32.0/19 maxlen: 24 2a02:25b0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/4c1f59-0c12-4153-a15c-715f9cd63086/1/TJiLk6t6KZmjJV7q5OGKsjsuDz4.crl rsync://rpki.ripe.net/repository/DEFAULT/30/4c1f59-0c12-4153-a15c-715f9cd63086/1/TJiLk6t6KZmjJV7q5OGKsjsuDz4.mft rsync://rpki.ripe.net/repository/DEFAULT/TJiLk6t6KZmjJV7q5OGKsjsuDz4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:a1:af:3e:a5:66:6a:17:b6:8a:1e:cf:9c:86:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4c988b93ab7a2999a3255eeae4e18ab23b2e0f3e Validity Not Before: Jan 1 18:18:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a5b7dfa9521c022ae740e3572159cdb25a4fd3c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c7:be:23:dc:28:ca:09:ce:3b:32:f7:aa:94: 46:8b:4c:cc:74:f8:18:98:e4:39:1b:e9:1c:f6:69: 54:3b:48:ed:e2:70:ed:4c:22:1a:bd:8f:e8:bd:68: 9b:d4:69:33:be:28:f0:20:28:6f:f9:4b:58:b8:83: 8b:2c:97:a5:44:82:fe:5b:94:5a:df:ba:41:0c:61: d4:dd:a7:10:70:81:9e:92:47:48:5d:1b:cc:7f:62: 90:9b:cf:97:cd:e8:86:bb:5f:72:a1:0f:77:f9:78: c9:3f:2c:00:26:ce:87:5d:c0:23:94:a7:1b:f5:2e: 42:02:1b:bf:6a:bd:af:da:15:92:85:14:3f:2a:8f: 80:3d:49:c4:67:63:44:19:75:ff:6e:f0:79:fa:ff: c9:1e:4e:ad:f8:d3:b0:c6:a9:4b:0e:be:56:c8:2f: e2:7c:36:96:77:8a:d2:4c:90:9e:c3:77:79:4a:f1: 99:96:0c:8c:94:67:ee:5f:cf:d4:fe:31:e1:a1:90: f1:18:0f:18:c1:f0:00:70:09:e5:fd:64:0a:f4:3f: 92:01:9f:66:af:31:63:9a:14:a8:c6:de:7d:1d:6e: e0:d8:fa:ab:d6:a6:9a:3c:3d:71:60:50:3d:b9:42: be:0b:ae:ec:db:95:39:c5:4e:b2:20:55:ad:51:34: 04:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:B7:DF:A9:52:1C:02:2A:E7:40:E3:57:21:59:CD:B2:5A:4F:D3:C5 X509v3 Authority Key Identifier: keyid:4C:98:8B:93:AB:7A:29:99:A3:25:5E:EA:E4:E1:8A:B2:3B:2E:0F:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TJiLk6t6KZmjJV7q5OGKsjsuDz4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4c1f59-0c12-4153-a15c-715f9cd63086/1/pbffqVIcAirnQONXIVnNslpP08U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4c1f59-0c12-4153-a15c-715f9cd63086/1/TJiLk6t6KZmjJV7q5OGKsjsuDz4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.36.32.0/19 IPv6: 2a02:25b0::/32 Signature Algorithm: sha256WithRSAEncryption a4:78:ee:20:27:5a:94:75:89:95:80:f3:c9:15:ad:db:2e:12: 1f:6e:3b:ea:f0:16:76:dd:cb:7d:49:17:6c:fb:05:62:be:2b: ec:fa:f6:b3:e7:b6:06:dd:c1:f7:88:4c:7b:f9:4c:e4:01:86: 1f:33:36:48:8f:cc:77:59:fb:a7:58:ef:de:91:26:54:58:29: 11:40:de:c5:01:78:f4:a3:11:be:69:6f:3f:a2:f8:77:89:89: af:03:e4:10:aa:5b:92:fe:e7:72:52:51:f7:13:44:89:a6:2e: ba:10:7b:54:e5:9b:8f:7d:a1:1a:40:ee:60:cb:58:c8:6d:6c: 4b:a8:56:b5:74:8c:7a:c1:09:08:55:36:bf:fa:29:5a:38:8d: 77:26:db:c4:6d:31:31:70:ac:f1:0b:1b:a9:3d:d4:8c:83:a6: 76:6a:e0:d7:ac:bc:53:b3:9e:44:07:81:53:fb:ed:dd:5e:ed: 77:ef:6d:f1:6b:61:5e:a7:0b:33:c4:9a:00:74:03:5e:ea:0f: e4:e5:80:9f:47:cb:06:4b:9e:5e:90:15:3d:ca:12:c3:75:24: 03:d5:0a:f2:f9:cc:73:79:6f:e2:bd:bb:6a:a4:d1:09:44:c3: 13:35:ce:0f:05:97:ea:23:87:5d:ae:e2:8b:7d:df:30:33:22: 1b:42:d3:a3 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt6yKGvPqVmahe2ih7PnIYvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjOTg4YjkzYWI3YTI5OTlhMzI1NWVlYWU0ZTE4YWIyM2Iy ZTBmM2UwHhcNMjYwMTAxMTgxODQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNWI3ZGZhOTUyMWMwMjJhZTc0MGUzNTcyMTU5Y2RiMjVhNGZkM2M1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs8e+I9woygnOOzL3qpRGi0zMdPgY mOQ5G+kc9mlUO0jt4nDtTCIavY/ovWib1GkzvijwIChv+UtYuIOLLJelRIL+W5Ra 37pBDGHU3acQcIGekkdIXRvMf2KQm8+XzeiGu19yoQ93+XjJPywAJs6HXcAjlKcb 9S5CAhu/ar2v2hWShRQ/Ko+APUnEZ2NEGXX/bvB5+v/JHk6t+NOwxqlLDr5WyC/i fDaWd4rSTJCew3d5SvGZlgyMlGfuX8/U/jHhoZDxGA8YwfAAcAnl/WQK9D+SAZ9m rzFjmhSoxt59HW7g2Pqr1qaaPD1xYFA9uUK+C67s25U5xU6yIFWtUTQEPwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFKW336lSHAIq50DjVyFZzbJaT9PFMB8GA1UdIwQY MBaAFEyYi5OreimZoyVe6uThirI7Lg8+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVEppTGs2dDZLWm1qSlY3cTVPR0tzanN1RHo0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC80YzFmNTktMGMxMi00MTUzLWExNWMt NzE1ZjljZDYzMDg2LzEvcGJmZnFWSWNBaXJuUU9OWElWbk5zbHBQMDhVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC80YzFmNTktMGMxMi00MTUzLWExNWMtNzE1ZjljZDYzMDg2 LzEvVEppTGs2dDZLWm1qSlY3cTVPR0tzanN1RHo0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQFLiQgMA0E AgACMAcDBQAqAiWwMA0GCSqGSIb3DQEBCwUAA4IBAQCkeO4gJ1qUdYmVgPPJFa3b LhIfbjvq8BZ23ct9SRds+wVivivs+vaz57YG3cH3iEx7+UzkAYYfMzZIj8x3Wfun WO/ekSZUWCkRQN7FAXj0oxG+aW8/ovh3iYmvA+QQqluS/udyUlH3E0SJpi66EHtU 5ZuPfaEaQO5gy1jIbWxLqFa1dIx6wQkIVTa/+ilaOI13JtvEbTExcKzxCxupPdSM g6Z2auDXrLxTs55EB4FT++3dXu13723xa2FepwszxJoAdANe6g/k5YCfR8sGS55e kBU9yhLDdSQD1Qry+cxzeW/ivbtqpNEJRMMTNc4PBZfqI4ddruKLfd8wMyIbQtOj -----END CERTIFICATE-----Generated at Mon Jan 26 14:02:31 2026 by rpki-client