This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/PRDpqr__phj4tP6vnFDWrcpfKxA.roa File: PRDpqr__phj4tP6vnFDWrcpfKxA.roa (raw, json) Hash identifier: uHPAo/HsN4Jrrpq/omD/PHKhS8n8qFVXJSt+wnrhtig= Subject key identifier: 3D:10:E9:AA:BF:FF:A6:18:F8:B4:FE:AF:9C:50:D6:AD:CA:5F:2B:10 Certificate issuer: /CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51 Certificate serial: 019B77C67DF9ABFE529BE1A618B1291DA94C Authority key identifier: 2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/PRDpqr__phj4tP6vnFDWrcpfKxA.roa Signing time: Thu 01 Jan 2026 04:17:35 +0000 ROA not before: Thu 01 Jan 2026 04:17:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 22773 IP address blocks: 5.249.176.0/22 maxlen: 24 37.19.64.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.mft rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 21:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:7d:f9:ab:fe:52:9b:e1:a6:18:b1:29:1d:a9:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51 Validity Not Before: Jan 1 04:17:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3d10e9aabfffa618f8b4feaf9c50d6adca5f2b10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a1:10:6e:bb:7b:db:86:07:4c:3d:57:2d:80: 6a:57:b8:70:c4:56:e0:da:c8:b7:d6:5b:0b:03:17: 3b:b9:33:82:87:93:58:9b:30:bf:c0:f8:85:43:39: 4f:07:c1:2f:1b:56:93:a0:c2:dd:ce:8f:43:cf:aa: 5b:d4:af:91:87:7a:72:c7:90:24:fd:7e:1c:01:76: 44:d5:e0:ba:3e:da:9d:0c:91:de:19:31:32:69:96: d0:b8:c2:e2:76:8d:63:9d:d1:24:9b:b9:2b:a4:23: 4b:12:aa:41:a3:aa:13:9b:ba:90:ce:1d:27:bd:83: db:95:8b:79:78:68:af:12:5a:22:11:f8:3f:17:36: a1:f8:00:0a:56:58:8d:1f:ce:63:3b:24:d4:e2:b5: 12:74:dc:18:d9:a7:7e:3f:07:f1:e7:2d:b3:e5:bb: 1d:08:3a:44:15:94:98:f5:e6:4b:a9:79:a1:49:c7: 16:06:9e:02:ee:dd:44:0d:6c:72:91:be:32:1d:6b: e5:49:d8:56:64:d3:de:df:a7:b9:aa:b2:1a:f0:2b: 1d:b0:a8:e9:c4:79:4b:a0:55:1f:48:f5:f8:0d:4b: 3c:08:1d:12:47:50:8c:76:b4:f0:4f:1a:2f:da:83: 25:1b:0c:79:a0:12:f9:b2:44:c7:1a:ca:06:71:f1: 0d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:10:E9:AA:BF:FF:A6:18:F8:B4:FE:AF:9C:50:D6:AD:CA:5F:2B:10 X509v3 Authority Key Identifier: keyid:2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/PRDpqr__phj4tP6vnFDWrcpfKxA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.249.176.0/22 37.19.64.0/22 Signature Algorithm: sha256WithRSAEncryption 13:32:63:98:2a:f6:41:fa:15:a6:3c:b6:dd:88:95:6e:87:2c: 59:b8:17:ae:28:96:2a:f0:99:63:c0:db:52:00:cf:5a:1d:d7: 8e:c0:f9:6e:0f:ce:0e:07:2e:80:51:3c:69:c5:e2:f1:97:5a: e2:b0:da:1b:27:cc:c4:db:c7:56:51:62:14:43:d0:34:23:3b: ce:d0:a6:c2:55:32:e2:0e:ef:51:28:c1:6c:eb:c3:38:27:34: 66:c3:9c:95:98:ba:ae:84:73:dd:d3:7e:65:22:c9:46:bf:20: ff:4f:05:f2:b3:71:8a:67:52:af:c8:56:22:0f:94:01:07:7c: 46:c2:a8:20:70:be:1b:fb:d1:d0:14:4b:f9:e4:78:c1:7a:0f: b0:1c:db:7b:4f:72:bb:5b:d3:32:48:c1:ac:7e:24:c3:ba:50: 66:51:8e:98:9d:d9:92:ca:9c:ac:77:5a:a2:24:63:08:74:30: b4:b8:58:6b:76:75:bd:ef:42:e6:d0:82:eb:91:f7:c9:e0:79: 06:7e:de:d9:bf:37:51:39:66:be:85:66:34:42:d5:c4:27:7c: 13:c7:6a:84:2d:e0:90:fb:a8:86:bb:13:80:59:bc:62:f7:11: 36:1e:59:c4:e1:7f:87:b6:1a:8f:1a:68:90:0b:60:b6:9d:55: 28:07:86:94 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt3xn35q/5Sm+GmGLEpHalMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJlODI5NjNmZjFhYTcwYWIxMGQxZDMzZTg2YjFkNmQ0OTRk NmNlNTEwHhcNMjYwMTAxMDQxNzM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZDEwZTlhYWJmZmZhNjE4ZjhiNGZlYWY5YzUwZDZhZGNhNWYyYjEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvKEQbrt724YHTD1XLYBqV7hwxFbg 2si31lsLAxc7uTOCh5NYmzC/wPiFQzlPB8EvG1aToMLdzo9Dz6pb1K+Rh3pyx5Ak /X4cAXZE1eC6PtqdDJHeGTEyaZbQuMLido1jndEkm7krpCNLEqpBo6oTm7qQzh0n vYPblYt5eGivEloiEfg/Fzah+AAKVliNH85jOyTU4rUSdNwY2ad+Pwfx5y2z5bsd CDpEFZSY9eZLqXmhSccWBp4C7t1EDWxykb4yHWvlSdhWZNPe36e5qrIa8CsdsKjp xHlLoFUfSPX4DUs8CB0SR1CMdrTwTxov2oMlGwx5oBL5skTHGsoGcfEN2wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFD0Q6aq//6YY+LT+r5xQ1q3KXysQMB8GA1UdIwQY MBaAFC6Clj/xqnCrENHTPoax1tSU1s5RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTG9LV1BfR3FjS3NRMGRNLWhySFcxSlRXemxFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi85NTdjNjgtNmYyNy00MGVkLWFiZWQt ZGY2NGYwZTgyMzYwLzEvUFJEcHFyX19waGo0dFA2dm5GRFdyY3BmS3hBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi85NTdjNjgtNmYyNy00MGVkLWFiZWQtZGY2NGYwZTgyMzYw LzEvTG9LV1BfR3FjS3NRMGRNLWhySFcxSlRXemxFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCBfmwAwQC JRNAMA0GCSqGSIb3DQEBCwUAA4IBAQATMmOYKvZB+hWmPLbdiJVuhyxZuBeuKJYq 8JljwNtSAM9aHdeOwPluD84OBy6AUTxpxeLxl1risNobJ8zE28dWUWIUQ9A0IzvO 0KbCVTLiDu9RKMFs68M4JzRmw5yVmLquhHPd035lIslGvyD/TwXys3GKZ1KvyFYi D5QBB3xGwqggcL4b+9HQFEv55HjBeg+wHNt7T3K7W9MySMGsfiTDulBmUY6YndmS ypysd1qiJGMIdDC0uFhrdnW970Lm0ILrkffJ4HkGft7ZvzdROWa+hWY0QtXEJ3wT x2qELeCQ+6iGuxOAWbxi9xE2HlnE4X+HthqPGmiQC2C2nVUoB4aU -----END CERTIFICATE-----Generated at Sun Jan 25 09:18:39 2026 by rpki-client