This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/f33229-ca2d-4108-892d-4c910ae3735d/1/PAykTqlzIVXa7fwF08Y8fVg3BH8.roa File: PAykTqlzIVXa7fwF08Y8fVg3BH8.roa (raw, json) Hash identifier: 2cvx8SwCrzZMQ5UhCJ5LCDN4lqE89NDEgchpM8X0P6c= Subject key identifier: 3C:0C:A4:4E:A9:73:21:55:DA:ED:FC:05:D3:C6:3C:7D:58:37:04:7F Certificate issuer: /CN=a15237c39a325aa309b69e66fe09237da1ad0d2b Certificate serial: 019B7EA6B6927822FA046552F6FEB18288B1 Authority key identifier: A1:52:37:C3:9A:32:5A:A3:09:B6:9E:66:FE:09:23:7D:A1:AD:0D:2B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oVI3w5oyWqMJtp5m_gkjfaGtDSs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/f33229-ca2d-4108-892d-4c910ae3735d/1/PAykTqlzIVXa7fwF08Y8fVg3BH8.roa Signing time: Fri 02 Jan 2026 12:20:13 +0000 ROA not before: Fri 02 Jan 2026 12:20:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200260 IP address blocks: 193.242.222.0/24 maxlen: 24 2a13:75c1:100::/40 maxlen: 48 2a13:75c1:100::/44 maxlen: 48 2a13:75c1:110::/44 maxlen: 48 2a13:75c1:300::/40 maxlen: 48 2a13:75c1:500::/40 maxlen: 40 2a13:75c1:2000::/36 maxlen: 48 2a13:75c1:3000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/f33229-ca2d-4108-892d-4c910ae3735d/1/oVI3w5oyWqMJtp5m_gkjfaGtDSs.crl rsync://rpki.ripe.net/repository/DEFAULT/99/f33229-ca2d-4108-892d-4c910ae3735d/1/oVI3w5oyWqMJtp5m_gkjfaGtDSs.mft rsync://rpki.ripe.net/repository/DEFAULT/oVI3w5oyWqMJtp5m_gkjfaGtDSs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:b6:92:78:22:fa:04:65:52:f6:fe:b1:82:88:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15237c39a325aa309b69e66fe09237da1ad0d2b Validity Not Before: Jan 2 12:20:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3c0ca44ea9732155daedfc05d3c63c7d5837047f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:f4:97:1b:ce:17:1e:a1:32:b6:80:ed:65:e2: e9:0f:f4:44:29:c5:85:16:72:f0:96:ce:47:a3:82: 88:09:84:bc:34:3d:4e:03:69:53:68:19:52:d8:3f: f4:c9:44:1f:77:45:4b:6c:e2:56:90:20:09:6f:1b: a0:06:0b:11:7d:24:90:8e:de:88:3f:c1:ff:c8:7b: b4:bb:dc:5d:5b:94:9e:3a:cb:c8:8e:d8:37:82:e5: fc:ec:b5:a0:9e:35:db:8f:2c:3b:eb:6e:7f:8e:b1: e6:9c:39:33:9e:07:8c:a3:f5:b4:79:a8:29:26:d1: b8:ae:d9:c4:a3:0c:e9:e0:cd:b3:ca:e3:8e:0f:46: 38:90:68:ce:f4:11:3b:9f:4e:2a:e1:09:17:28:c4: df:c3:8e:d5:e9:d1:4c:de:1f:36:ce:cb:b1:ab:37: d2:f7:29:fb:2a:dc:cc:64:34:4e:b7:ed:fa:f9:d9: 2c:74:24:d0:8b:9a:80:ac:61:83:34:56:f9:48:99: d1:50:c3:5e:79:69:5f:c4:09:d8:dd:fd:4c:4a:ef: cb:52:b8:c5:0b:1a:14:d4:2f:e3:d3:2d:50:09:85: 76:0f:1f:64:0f:f6:44:b2:91:21:f3:f8:f2:7d:8c: d8:2c:73:17:6e:6d:8f:a8:25:50:f0:43:89:35:9f: ba:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:0C:A4:4E:A9:73:21:55:DA:ED:FC:05:D3:C6:3C:7D:58:37:04:7F X509v3 Authority Key Identifier: keyid:A1:52:37:C3:9A:32:5A:A3:09:B6:9E:66:FE:09:23:7D:A1:AD:0D:2B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oVI3w5oyWqMJtp5m_gkjfaGtDSs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/f33229-ca2d-4108-892d-4c910ae3735d/1/PAykTqlzIVXa7fwF08Y8fVg3BH8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/f33229-ca2d-4108-892d-4c910ae3735d/1/oVI3w5oyWqMJtp5m_gkjfaGtDSs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.242.222.0/24 IPv6: 2a13:75c1:100::/40 2a13:75c1:300::/40 2a13:75c1:500::/40 2a13:75c1:2000::/35 Signature Algorithm: sha256WithRSAEncryption 0d:72:30:97:1f:73:a7:fd:6e:9b:8e:cc:84:d0:f0:ee:9a:b6: f8:96:f1:28:31:d0:84:b4:d2:dd:88:03:24:a2:b9:38:a9:96: 78:f5:1f:92:bf:49:62:de:d0:92:c9:f3:5e:a4:0c:49:d6:5b: b2:84:58:74:60:a1:f1:77:e5:72:5f:30:6a:8b:22:12:73:d7: 7e:0c:aa:51:0e:35:2d:21:ec:24:e1:db:d9:23:e2:e0:a7:35: 24:c0:97:56:72:2f:b6:e4:92:df:1e:09:3b:f2:a4:b6:cf:9e: 29:6e:59:32:9d:0f:18:b8:b4:75:7d:87:1b:6d:0d:b6:4d:46: 23:2d:c8:7c:06:0c:6f:d3:d1:24:e4:4a:ae:96:be:99:3b:02: fb:29:d1:4c:f3:b4:d9:ed:ca:a1:1f:3f:ed:85:d3:3b:b0:23: cc:6a:76:6e:e4:e6:3d:93:f9:95:ed:54:d6:64:c3:08:1d:fe: 87:49:a5:2e:e3:aa:d7:7c:4d:88:43:c9:f2:a7:56:65:8c:3f: 07:be:9e:40:20:fc:0b:9d:a3:73:8f:6d:ce:d3:3c:72:49:d2: 66:e3:63:5b:59:72:7b:b8:3c:5d:c9:a5:0c:52:c8:52:a9:ea: 2f:5d:41:30:8b:52:57:a4:28:10:e2:34:2d:79:ec:01:f7:7e: 33:96:05:05 -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgISAZt+praSeCL6BGVS9v6xgoixMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExNTIzN2MzOWEzMjVhYTMwOWI2OWU2NmZlMDkyMzdkYTFh ZDBkMmIwHhcNMjYwMTAyMTIyMDEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYzBjYTQ0ZWE5NzMyMTU1ZGFlZGZjMDVkM2M2M2M3ZDU4MzcwNDdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoPSXG84XHqEytoDtZeLpD/REKcWF FnLwls5Ho4KICYS8ND1OA2lTaBlS2D/0yUQfd0VLbOJWkCAJbxugBgsRfSSQjt6I P8H/yHu0u9xdW5SeOsvIjtg3guX87LWgnjXbjyw7625/jrHmnDkzngeMo/W0eagp JtG4rtnEowzp4M2zyuOOD0Y4kGjO9BE7n04q4QkXKMTfw47V6dFM3h82zsuxqzfS 9yn7KtzMZDROt+36+dksdCTQi5qArGGDNFb5SJnRUMNeeWlfxAnY3f1MSu/LUrjF CxoU1C/j0y1QCYV2Dx9kD/ZEspEh8/jyfYzYLHMXbm2PqCVQ8EOJNZ+6AwIDAQAB o4ICMTCCAi0wHQYDVR0OBBYEFDwMpE6pcyFV2u38BdPGPH1YNwR/MB8GA1UdIwQY MBaAFKFSN8OaMlqjCbaeZv4JI32hrQ0rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1ZJM3c1b3lXcU1KdHA1bV9na2pmYUd0RFNzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9mMzMyMjktY2EyZC00MTA4LTg5MmQt NGM5MTBhZTM3MzVkLzEvUEF5a1RxbHpJVlhhN2Z3RjA4WThmVmczQkg4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OS9mMzMyMjktY2EyZC00MTA4LTg5MmQtNGM5MTBhZTM3MzVk LzEvb1ZJM3c1b3lXcU1KdHA1bV9na2pmYUd0RFNzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEcGCCsGAQUFBwEHAQH/BDgwNjAMBAIAATAGAwQAwfLeMCYE AgACMCADBgAqE3XBAQMGACoTdcEDAwYAKhN1wQUDBgUqE3XBIDANBgkqhkiG9w0B AQsFAAOCAQEADXIwlx9zp/1um47MhNDw7pq2+JbxKDHQhLTS3YgDJKK5OKmWePUf kr9JYt7QksnzXqQMSdZbsoRYdGCh8Xflcl8waosiEnPXfgyqUQ41LSHsJOHb2SPi 4Kc1JMCXVnIvtuSS3x4JO/Kkts+eKW5ZMp0PGLi0dX2HG20Ntk1GIy3IfAYMb9PR JORKrpa+mTsC+ynRTPO02e3KoR8/7YXTO7AjzGp2buTmPZP5le1U1mTDCB3+h0ml LuOq13xNiEPJ8qdWZYw/B76eQCD8C52jc49tztM8cknSZuNjW1lye7g8XcmlDFLI UqnqL11BMItSV6QoEOI0LXnsAfd+M5YFBQ== -----END CERTIFICATE-----Generated at Sun Jan 25 17:19:51 2026 by rpki-client