This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/Goc8dmo6uMPGno49eSakRENXy-M.roa File: Goc8dmo6uMPGno49eSakRENXy-M.roa (raw, json) Hash identifier: A4NcBu04l2qGeJrt8GE/iHS3lS8FNGDXYgx5VmbenRc= Subject key identifier: 1A:87:3C:76:6A:3A:B8:C3:C6:9E:8E:3D:79:26:A4:44:43:57:CB:E3 Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da Certificate serial: 019B7E37B51D9493E32F1C2D9D5060E5071D Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/Goc8dmo6uMPGno49eSakRENXy-M.roa Signing time: Fri 02 Jan 2026 10:18:58 +0000 ROA not before: Fri 02 Jan 2026 10:18:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 32002 IP address blocks: 155.2.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.mft rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 00:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:b5:1d:94:93:e3:2f:1c:2d:9d:50:60:e5:07:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da Validity Not Before: Jan 2 10:18:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1a873c766a3ab8c3c69e8e3d7926a4444357cbe3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:22:cb:e2:e0:14:c5:5f:72:42:d5:21:48:26: 08:54:68:40:87:d8:e0:a3:59:23:58:8c:72:6d:dc: 42:fc:34:27:a5:d4:8f:fc:fe:05:71:a4:d5:d9:9b: da:29:53:26:1c:41:0a:0c:3b:00:e3:39:68:8f:38: 27:e5:da:19:ca:1b:0b:00:ae:4b:ba:3c:19:a9:24: 0f:9f:2c:f2:08:60:6d:f1:b7:8f:95:5e:11:1c:54: 19:d1:17:87:b5:25:de:14:a1:23:ee:c0:0c:a6:b2: 63:f2:7a:44:c3:3f:14:ba:d8:c0:03:62:12:bf:a8: ab:67:fb:59:64:e2:bb:f6:4f:0d:02:2c:01:3e:81: e8:d5:50:9f:7b:3a:d8:7d:ae:c1:6f:fc:01:a1:cd: ae:fa:21:8c:5d:03:12:c1:bb:0d:bd:8e:3d:2a:cd: ba:db:97:11:3e:37:d0:06:ce:39:70:4b:07:06:de: 8d:70:40:32:0a:2b:b5:51:6a:97:76:2f:d5:04:75: 80:4b:4b:f9:ae:2e:c9:d5:c6:5b:d9:70:2d:cc:e5: 70:30:cb:cb:df:e0:e7:b4:9f:b7:64:3c:45:ee:5e: 76:af:9f:2b:78:f5:d3:0a:b8:e1:27:a7:c2:7c:d8: b9:ff:d8:cf:0d:e7:34:d3:8e:3b:cd:58:a0:a7:48: 06:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:87:3C:76:6A:3A:B8:C3:C6:9E:8E:3D:79:26:A4:44:43:57:CB:E3 X509v3 Authority Key Identifier: keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/Goc8dmo6uMPGno49eSakRENXy-M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 155.2.214.0/24 Signature Algorithm: sha256WithRSAEncryption 19:a9:03:1a:b1:81:96:26:5f:5f:39:f4:f9:57:e8:7c:6f:cb: 4e:2f:d6:67:38:d3:87:d0:e8:d3:c1:fc:af:34:85:c8:53:16: 2f:55:a7:cc:ec:07:20:26:93:9c:27:34:5d:b6:68:74:67:46: 25:9e:d5:c8:e0:7a:53:09:bf:03:1f:62:5e:ac:53:a9:db:07: b8:cd:e1:fa:dd:b2:98:28:58:cb:ff:0e:69:31:a7:15:2c:9a: 6c:9a:83:49:eb:2c:9a:08:4c:35:09:ce:ef:63:ad:56:e1:2e: e9:ba:e8:06:b5:66:85:ab:79:f4:77:d0:3e:05:38:d5:7e:f2: a6:f9:c9:f5:ba:c7:3b:f4:f5:d5:1b:ec:80:fb:ee:20:25:72: 1a:fd:dd:12:c2:e0:7e:83:16:20:ad:1e:09:8a:22:06:39:6e: a9:d2:5a:56:07:87:2d:f3:a5:8b:00:21:e9:7c:27:74:b7:91: f5:f5:62:97:5a:80:eb:e7:a8:b9:05:21:ca:5c:0e:3d:40:7e: d0:89:db:97:48:f1:01:17:95:4e:a0:77:13:c8:1f:2d:59:72: a2:a2:97:ad:3d:8c:b7:b3:4b:7e:09:7c:c0:47:40:e6:03:41: 94:9d:5e:01:9d:12:15:31:31:df:75:83:a7:70:2c:d5:c7:45: 6e:62:55:5e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+N7UdlJPjLxwtnVBg5QcdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwNGE1ODA0N2YzN2JiYzA1Nzk0NGJiZjhjYWQ4NzQyODc5 NTkyZGEwHhcNMjYwMTAyMTAxODU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYTg3M2M3NjZhM2FiOGMzYzY5ZThlM2Q3OTI2YTQ0NDQzNTdjYmUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3SLL4uAUxV9yQtUhSCYIVGhAh9jg o1kjWIxybdxC/DQnpdSP/P4FcaTV2ZvaKVMmHEEKDDsA4zlojzgn5doZyhsLAK5L ujwZqSQPnyzyCGBt8bePlV4RHFQZ0ReHtSXeFKEj7sAMprJj8npEwz8UutjAA2IS v6irZ/tZZOK79k8NAiwBPoHo1VCfezrYfa7Bb/wBoc2u+iGMXQMSwbsNvY49Ks26 25cRPjfQBs45cEsHBt6NcEAyCiu1UWqXdi/VBHWAS0v5ri7J1cZb2XAtzOVwMMvL 3+DntJ+3ZDxF7l52r58rePXTCrjhJ6fCfNi5/9jPDec00447zVigp0gGdQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBqHPHZqOrjDxp6OPXkmpERDV8vjMB8GA1UdIwQY MBaAFPBKWAR/N7vAV5RLv4yth0KHlZLaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYt ZjVmYjcxYjlhNTFmLzEvR29jOGRtbzZ1TVBHbm80OWVTYWtSRU5YeS1NLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYtZjVmYjcxYjlhNTFm LzEvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmwLWMA0G CSqGSIb3DQEBCwUAA4IBAQAZqQMasYGWJl9fOfT5V+h8b8tOL9ZnONOH0OjTwfyv NIXIUxYvVafM7AcgJpOcJzRdtmh0Z0YlntXI4HpTCb8DH2JerFOp2we4zeH63bKY KFjL/w5pMacVLJpsmoNJ6yyaCEw1Cc7vY61W4S7puugGtWaFq3n0d9A+BTjVfvKm +cn1usc79PXVG+yA++4gJXIa/d0SwuB+gxYgrR4JiiIGOW6p0lpWB4ct86WLACHp fCd0t5H19WKXWoDr56i5BSHKXA49QH7QiduXSPEBF5VOoHcTyB8tWXKiopetPYy3 s0t+CXzAR0DmA0GUnV4BnRIVMTHfdYOncCzVx0VuYlVe -----END CERTIFICATE-----Generated at Fri Jan 23 04:39:13 2026 by rpki-client