This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/5c92d1-41e5-443e-a250-01baf78ec73f/1/PeFK_yeJmAggBubY51FT5ExR7yY.roa File: PeFK_yeJmAggBubY51FT5ExR7yY.roa (raw, json) Hash identifier: kZM9hfI1X20jdNyqPobjCTSrN0qe4fcSM/JWGaBh8YA= Subject key identifier: 3D:E1:4A:FF:27:89:98:08:20:06:E6:D8:E7:51:53:E4:4C:51:EF:26 Certificate issuer: /CN=b6321eebf4f95be9f81f0f233f89f3602d2f0074 Certificate serial: 019B7EA68D232B4E905CED143F3958C86B21 Authority key identifier: B6:32:1E:EB:F4:F9:5B:E9:F8:1F:0F:23:3F:89:F3:60:2D:2F:00:74 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tjIe6_T5W-n4Hw8jP4nzYC0vAHQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/5c92d1-41e5-443e-a250-01baf78ec73f/1/PeFK_yeJmAggBubY51FT5ExR7yY.roa Signing time: Fri 02 Jan 2026 12:20:02 +0000 ROA not before: Fri 02 Jan 2026 12:20:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 30933 IP address blocks: 85.118.232.0/21 maxlen: 21 193.151.124.0/22 maxlen: 22 193.151.124.0/24 maxlen: 24 193.151.125.0/24 maxlen: 24 193.151.126.0/24 maxlen: 24 193.151.127.0/24 maxlen: 24 194.110.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/5c92d1-41e5-443e-a250-01baf78ec73f/1/tjIe6_T5W-n4Hw8jP4nzYC0vAHQ.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/5c92d1-41e5-443e-a250-01baf78ec73f/1/tjIe6_T5W-n4Hw8jP4nzYC0vAHQ.mft rsync://rpki.ripe.net/repository/DEFAULT/tjIe6_T5W-n4Hw8jP4nzYC0vAHQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:8d:23:2b:4e:90:5c:ed:14:3f:39:58:c8:6b:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b6321eebf4f95be9f81f0f233f89f3602d2f0074 Validity Not Before: Jan 2 12:20:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3de14aff278998082006e6d8e75153e44c51ef26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:fb:ce:d8:81:95:91:32:8e:7b:7e:20:e7:2a: 1f:79:d8:07:04:fa:77:6f:cd:4f:3b:48:8b:3d:a6: 2a:31:52:a3:38:23:c3:1b:a2:15:18:5b:e9:d5:d4: 96:f6:3a:22:bc:66:77:b9:3c:36:d8:a8:ad:38:1f: 39:41:6f:92:52:ce:6d:4a:60:8f:42:44:40:46:fd: 49:3f:09:4a:9b:e6:45:10:b0:f7:27:02:31:52:34: fb:e0:bd:85:96:f3:28:56:55:28:58:91:0a:ee:1e: 81:db:37:3b:4e:91:8e:d7:53:0b:22:28:f2:0d:dc: 2e:89:c7:d5:32:f1:4f:07:f8:fb:aa:09:a4:0b:79: 58:64:78:e7:0f:b7:09:77:bb:a8:0a:f1:2d:d1:b9: bf:2f:e8:56:68:cc:1c:c7:8f:ad:04:b4:d4:3e:b0: fc:12:f6:f3:36:2e:ed:ff:40:7c:99:9d:df:e8:6c: 70:7c:1a:8c:63:d2:57:83:90:b9:f3:4e:71:be:c7: 9b:d7:e1:43:fc:e4:54:49:a0:bb:48:5c:c4:00:d7: 58:77:52:c7:e4:1a:80:47:62:81:7b:7f:48:16:89: 32:49:87:76:7f:b0:6e:5f:88:d9:fe:22:ec:23:03: f8:5d:3f:c6:9f:08:24:68:33:cf:ac:ad:ce:12:e0: 31:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:E1:4A:FF:27:89:98:08:20:06:E6:D8:E7:51:53:E4:4C:51:EF:26 X509v3 Authority Key Identifier: keyid:B6:32:1E:EB:F4:F9:5B:E9:F8:1F:0F:23:3F:89:F3:60:2D:2F:00:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tjIe6_T5W-n4Hw8jP4nzYC0vAHQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/5c92d1-41e5-443e-a250-01baf78ec73f/1/PeFK_yeJmAggBubY51FT5ExR7yY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/5c92d1-41e5-443e-a250-01baf78ec73f/1/tjIe6_T5W-n4Hw8jP4nzYC0vAHQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.118.232.0/21 193.151.124.0/22 194.110.250.0/24 Signature Algorithm: sha256WithRSAEncryption 08:52:17:ef:2c:c6:b7:c3:0a:e2:6f:6b:ea:54:21:40:d1:b9: 8d:4f:d2:49:0c:0a:7c:1b:96:47:cd:1d:7a:77:61:23:ba:14: 78:ba:15:72:cd:71:9f:4d:f4:60:31:f6:4b:2d:f6:04:44:de: 15:96:fd:a2:7d:bf:7d:09:a2:94:b5:10:7f:77:c6:81:3f:9c: d3:95:69:22:2d:bb:61:3c:f6:5c:2e:54:ea:0c:03:65:f4:15: 0a:5f:6a:58:ab:85:c2:17:24:d7:44:a4:b6:15:97:76:7a:d8: eb:c4:3c:82:a0:91:83:11:61:95:5b:eb:6f:db:cc:a9:85:94: 79:92:06:75:c9:b0:f2:8b:a7:84:44:3a:97:3e:3f:6c:69:fa: d9:6c:de:0b:72:b2:dc:d3:e7:56:6c:22:58:61:31:05:31:99: c8:b3:3a:75:ce:7a:ac:5c:7b:f9:cd:20:b8:d9:32:93:42:97: ab:ea:02:c7:87:a0:fb:61:17:88:5c:c3:82:7e:57:fc:b3:93: 7b:d7:dc:13:ab:b0:75:e7:91:c7:f8:f9:7e:ca:d0:f7:a8:f6: d9:ff:2d:8a:43:38:b3:4d:66:fb:4c:c1:0a:a3:2b:39:0b:6a: c3:ed:dd:e6:40:ee:38:46:68:ac:c0:3a:77:b5:a7:59:48:94: 91:13:6d:5b -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt+po0jK06QXO0UPzlYyGshMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2MzIxZWViZjRmOTViZTlmODFmMGYyMzNmODlmMzYwMmQy ZjAwNzQwHhcNMjYwMTAyMTIyMDAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZGUxNGFmZjI3ODk5ODA4MjAwNmU2ZDhlNzUxNTNlNDRjNTFlZjI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlPvO2IGVkTKOe34g5yofedgHBPp3 b81PO0iLPaYqMVKjOCPDG6IVGFvp1dSW9joivGZ3uTw22KitOB85QW+SUs5tSmCP QkRARv1JPwlKm+ZFELD3JwIxUjT74L2FlvMoVlUoWJEK7h6B2zc7TpGO11MLIijy DdwuicfVMvFPB/j7qgmkC3lYZHjnD7cJd7uoCvEt0bm/L+hWaMwcx4+tBLTUPrD8 EvbzNi7t/0B8mZ3f6GxwfBqMY9JXg5C5805xvseb1+FD/ORUSaC7SFzEANdYd1LH 5BqAR2KBe39IFokySYd2f7BuX4jZ/iLsIwP4XT/GnwgkaDPPrK3OEuAxSwIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFD3hSv8niZgIIAbm2OdRU+RMUe8mMB8GA1UdIwQY MBaAFLYyHuv0+Vvp+B8PIz+J82AtLwB0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdGpJZTZfVDVXLW40SHc4alA0bnpZQzB2QUhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi81YzkyZDEtNDFlNS00NDNlLWEyNTAt MDFiYWY3OGVjNzNmLzEvUGVGS195ZUptQWdnQnViWTUxRlQ1RXhSN3lZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi81YzkyZDEtNDFlNS00NDNlLWEyNTAtMDFiYWY3OGVjNzNm LzEvdGpJZTZfVDVXLW40SHc4alA0bnpZQzB2QUhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQDVXboAwQC wZd8AwQAwm76MA0GCSqGSIb3DQEBCwUAA4IBAQAIUhfvLMa3wwrib2vqVCFA0bmN T9JJDAp8G5ZHzR16d2EjuhR4uhVyzXGfTfRgMfZLLfYERN4Vlv2ifb99CaKUtRB/ d8aBP5zTlWkiLbthPPZcLlTqDANl9BUKX2pYq4XCFyTXRKS2FZd2etjrxDyCoJGD EWGVW+tv28yphZR5kgZ1ybDyi6eERDqXPj9safrZbN4LcrLc0+dWbCJYYTEFMZnI szp1znqsXHv5zSC42TKTQper6gLHh6D7YReIXMOCflf8s5N719wTq7B155HH+Pl+ ytD3qPbZ/y2KQzizTWb7TMEKoys5C2rD7d3mQO44RmiswDp3tadZSJSRE21b -----END CERTIFICATE-----Generated at Sun Jan 25 21:05:03 2026 by rpki-client