This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/05b0d2-16ba-4d71-a218-43e6bff9a25e/1/PmIn_U--JR3Xnw9txK9fby2nHWY.roa File: PmIn_U--JR3Xnw9txK9fby2nHWY.roa (raw, json) Hash identifier: SdqMhCiXZdZ/z+X9AdYU9yxlt0arQdXcxKPk86s3gIE= Subject key identifier: 3E:62:27:FD:4F:BE:25:1D:D7:9F:0F:6D:C4:AF:5F:6F:2D:A7:1D:66 Certificate issuer: /CN=4593b9ac0a486b0037765d605c8b1c8104046f0a Certificate serial: 019AF326FBA8BE90CADA34D61EC11398FE1A Authority key identifier: 45:93:B9:AC:0A:48:6B:00:37:76:5D:60:5C:8B:1C:81:04:04:6F:0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RZO5rApIawA3dl1gXIscgQQEbwo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/05b0d2-16ba-4d71-a218-43e6bff9a25e/1/PmIn_U--JR3Xnw9txK9fby2nHWY.roa Signing time: Sat 06 Dec 2025 10:13:29 +0000 ROA not before: Sat 06 Dec 2025 10:13:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 13335 IP address blocks: 144.124.208.0/24 maxlen: 24 144.124.211.0/24 maxlen: 24 158.94.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/05b0d2-16ba-4d71-a218-43e6bff9a25e/1/RZO5rApIawA3dl1gXIscgQQEbwo.crl rsync://rpki.ripe.net/repository/DEFAULT/41/05b0d2-16ba-4d71-a218-43e6bff9a25e/1/RZO5rApIawA3dl1gXIscgQQEbwo.mft rsync://rpki.ripe.net/repository/DEFAULT/RZO5rApIawA3dl1gXIscgQQEbwo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:26:fb:a8:be:90:ca:da:34:d6:1e:c1:13:98:fe:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4593b9ac0a486b0037765d605c8b1c8104046f0a Validity Not Before: Dec 6 10:13:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=3e6227fd4fbe251dd79f0f6dc4af5f6f2da71d66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:0e:4a:9d:75:5f:cc:df:63:a5:93:75:6c:a2: 5f:1e:af:42:81:39:61:26:64:5d:74:e5:4f:83:5f: 88:d1:6e:e2:71:21:ad:1e:db:e9:8b:b0:a4:09:89: e0:5e:17:85:1b:fa:80:4a:9f:db:cf:2c:e3:15:de: a8:3e:ed:65:a6:c7:b3:15:d7:b0:64:c8:2e:c9:32: e4:6f:7a:68:75:c3:1f:1b:9b:22:62:6f:cb:cd:38: 85:82:e8:75:ea:ee:99:88:36:07:12:99:0b:0c:3b: 47:9e:4f:70:12:97:bf:3b:0e:c9:d6:b2:df:47:af: ee:62:e7:a0:25:cd:d2:7f:79:26:a5:18:a1:ae:11: 4d:cd:0a:e9:48:5f:94:98:c5:42:4e:e2:a5:1e:68: ef:73:b6:49:49:f2:24:de:da:a6:ec:9a:b3:ab:60: 15:a7:1a:04:2f:77:80:73:64:47:84:57:bb:62:13: c6:db:92:12:2c:fb:34:10:ef:a2:24:55:dc:24:a1: a5:b6:31:2f:15:17:8c:8b:d5:86:08:67:62:d1:3b: da:e9:ac:8b:77:b3:0e:19:e9:5b:da:d7:47:08:7a: 5d:6b:5a:e8:18:55:fc:4e:cb:e2:51:d1:25:29:2a: 30:4d:d6:61:93:bf:3d:58:40:d6:d6:08:e5:b4:64: f5:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:62:27:FD:4F:BE:25:1D:D7:9F:0F:6D:C4:AF:5F:6F:2D:A7:1D:66 X509v3 Authority Key Identifier: keyid:45:93:B9:AC:0A:48:6B:00:37:76:5D:60:5C:8B:1C:81:04:04:6F:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RZO5rApIawA3dl1gXIscgQQEbwo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/05b0d2-16ba-4d71-a218-43e6bff9a25e/1/PmIn_U--JR3Xnw9txK9fby2nHWY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/05b0d2-16ba-4d71-a218-43e6bff9a25e/1/RZO5rApIawA3dl1gXIscgQQEbwo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.124.208.0/24 144.124.211.0/24 158.94.212.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:cd:bb:4b:74:b1:69:be:a2:fb:ad:26:c1:13:f7:b1:8a:d1: 28:56:4a:6b:7a:25:d6:98:52:bb:55:1b:cd:0e:72:c9:3c:ee: 83:aa:d8:57:3c:1d:6f:38:e5:3f:73:8f:37:53:90:41:10:61: 89:ec:28:4f:81:61:fc:49:4d:68:ef:7c:44:5a:da:ab:96:df: 50:49:1a:a0:24:18:30:13:a2:fd:4f:1a:80:bc:f3:f6:9b:44: 4f:37:be:2f:50:d1:30:f6:ab:46:ab:f6:59:97:ac:b5:d8:fd: b4:21:8d:f8:45:3d:68:fc:be:ef:83:53:4d:61:f3:b0:7c:04: 9a:d1:bc:ea:96:50:e7:eb:7d:8b:e7:67:c2:8f:bb:4a:55:3e: 68:22:aa:ad:e4:9f:e5:66:80:d2:45:c1:30:43:72:95:94:1b: a5:af:52:85:c9:ab:18:93:02:f7:50:c5:91:cd:96:23:49:05: 82:42:2b:3e:97:34:59:e8:2b:27:68:82:df:89:3a:4e:cc:34: ca:7e:73:59:10:c1:66:99:18:2d:7b:fd:16:54:ad:04:c3:e1: 04:aa:22:76:c9:3a:a9:23:af:90:b1:42:d8:62:b6:cc:40:60: 31:57:e9:b2:c1:a6:11:23:4e:c3:0f:4d:62:05:a5:39:5d:80: 12:e0:79:23 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZrzJvuovpDK2jTWHsETmP4aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ1OTNiOWFjMGE0ODZiMDAzNzc2NWQ2MDVjOGIxYzgxMDQw NDZmMGEwHhcNMjUxMjA2MTAxMzI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZTYyMjdmZDRmYmUyNTFkZDc5ZjBmNmRjNGFmNWY2ZjJkYTcxZDY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnw5KnXVfzN9jpZN1bKJfHq9CgTlh JmRddOVPg1+I0W7icSGtHtvpi7CkCYngXheFG/qASp/bzyzjFd6oPu1lpsezFdew ZMguyTLkb3podcMfG5siYm/LzTiFguh16u6ZiDYHEpkLDDtHnk9wEpe/Ow7J1rLf R6/uYuegJc3Sf3kmpRihrhFNzQrpSF+UmMVCTuKlHmjvc7ZJSfIk3tqm7Jqzq2AV pxoEL3eAc2RHhFe7YhPG25ISLPs0EO+iJFXcJKGltjEvFReMi9WGCGdi0Tva6ayL d7MOGelb2tdHCHpda1roGFX8TsviUdElKSowTdZhk789WEDW1gjltGT11wIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFD5iJ/1PviUd158PbcSvX28tpx1mMB8GA1UdIwQY MBaAFEWTuawKSGsAN3ZdYFyLHIEEBG8KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUlpPNXJBcElhd0EzZGwxZ1hJc2NnUVFFYndvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS8wNWIwZDItMTZiYS00ZDcxLWEyMTgt NDNlNmJmZjlhMjVlLzEvUG1Jbl9VLS1KUjNYbnc5dHhLOWZieTJuSFdZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS8wNWIwZDItMTZiYS00ZDcxLWEyMTgtNDNlNmJmZjlhMjVl LzEvUlpPNXJBcElhd0EzZGwxZ1hJc2NnUVFFYndvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAkHzQAwQA kHzTAwQAnl7UMA0GCSqGSIb3DQEBCwUAA4IBAQAuzbtLdLFpvqL7rSbBE/exitEo VkpreiXWmFK7VRvNDnLJPO6DqthXPB1vOOU/c483U5BBEGGJ7ChPgWH8SU1o73xE Wtqrlt9QSRqgJBgwE6L9TxqAvPP2m0RPN74vUNEw9qtGq/ZZl6y12P20IY34RT1o /L7vg1NNYfOwfASa0bzqllDn632L52fCj7tKVT5oIqqt5J/lZoDSRcEwQ3KVlBul r1KFyasYkwL3UMWRzZYjSQWCQis+lzRZ6CsnaILfiTpOzDTKfnNZEMFmmRgte/0W VK0Ew+EEqiJ2yTqpI6+QsULYYrbMQGAxV+mywaYRI07DD01iBaU5XYAS4Hkj -----END CERTIFICATE-----Generated at Sun Dec 7 08:08:43 2025 by rpki-client