This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/Gv7LQB0D2HxGcMaJnkbmT5Cuclw.roa File: Gv7LQB0D2HxGcMaJnkbmT5Cuclw.roa (raw, json) Hash identifier: EVAXqb8gLPR2fEK2gqCf7xzjniXS+JPRWjJLY/pJ1zQ= Subject key identifier: 1A:FE:CB:40:1D:03:D8:7C:46:70:C6:89:9E:46:E6:4F:90:AE:72:5C Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa Certificate serial: 019B7D5B1F1495DCBDFC3C6098C5E43B6C5A Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/Gv7LQB0D2HxGcMaJnkbmT5Cuclw.roa Signing time: Fri 02 Jan 2026 06:18:02 +0000 ROA not before: Fri 02 Jan 2026 06:18:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205128 IP address blocks: 217.174.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.mft rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:1f:14:95:dc:bd:fc:3c:60:98:c5:e4:3b:6c:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa Validity Not Before: Jan 2 06:18:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1afecb401d03d87c4670c6899e46e64f90ae725c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:bc:ab:af:81:39:b6:0f:a3:95:08:d9:cc:b1: 7e:25:7b:6e:71:41:cf:12:bf:f8:1c:7b:53:f7:3c: fd:26:ff:37:1d:16:db:08:42:8f:17:4a:9c:8b:58: c6:7a:4f:06:5b:62:01:4a:99:5e:f6:f2:4d:fd:9c: f2:25:d8:d2:1c:e0:2b:71:6b:85:b9:6a:97:3b:19: 3f:8c:de:73:8e:c5:49:f3:6a:5f:9a:21:0d:8f:5e: 03:88:e8:75:57:dc:91:19:aa:fb:2f:72:b0:1d:63: 41:3d:b2:a6:ab:2f:39:b4:7e:dd:d9:6a:21:d6:72: e7:bf:c7:76:61:62:00:2e:03:a0:53:5c:7c:80:5c: 69:4a:c3:c0:ba:f4:8a:7e:87:74:d4:36:cf:16:77: 35:ed:05:66:09:1f:7f:7f:13:46:d6:b4:5c:9b:43: 87:9c:58:fe:1e:ef:80:a2:0f:a4:d1:db:21:73:92: 7d:d2:da:1b:9d:37:8b:91:c4:00:8a:33:8f:88:6f: d3:77:65:70:b3:72:dc:52:1e:4a:95:4e:b3:ec:27: 4b:81:22:84:de:76:35:91:e8:28:4a:67:85:7a:3f: c5:63:54:15:5b:66:c6:d7:ec:e7:6c:a1:2a:39:0d: 5a:69:98:8c:24:5c:a0:58:4c:85:9f:81:d6:17:bc: 19:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:FE:CB:40:1D:03:D8:7C:46:70:C6:89:9E:46:E6:4F:90:AE:72:5C X509v3 Authority Key Identifier: keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/Gv7LQB0D2HxGcMaJnkbmT5Cuclw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.174.158.0/24 Signature Algorithm: sha256WithRSAEncryption 42:3b:c1:a9:e4:41:5d:0b:7d:5f:6b:75:7d:86:72:6b:09:a8: 3a:5a:79:32:02:88:2b:fc:eb:57:a5:35:76:a4:82:b9:03:87: 86:14:99:9e:7e:ed:ae:90:1d:f0:2b:45:be:9c:dc:60:31:b8: 2a:01:69:d5:80:30:28:5c:75:e9:62:a3:50:74:5c:7f:88:6d: 02:2a:05:cd:00:45:b8:b1:b8:86:65:06:f8:c8:69:ef:c6:c4: 3f:2a:10:88:71:0b:c5:58:d4:cd:7c:96:fc:d4:2e:ee:6b:97: 62:c5:77:9a:19:30:fe:1e:3c:20:81:46:22:82:4f:4b:32:d6: d1:99:cd:7c:4a:3d:4c:a4:65:93:8c:f8:85:4d:9e:74:69:b4: fc:b0:39:23:88:4c:08:d6:d6:b7:7b:43:10:22:4a:e5:00:ae: 62:74:db:ec:f8:ae:b1:6c:de:4c:7c:6c:74:ad:40:3d:a1:52: 27:26:4f:2c:f3:02:b3:57:d2:ac:8a:26:f9:42:ab:ad:cc:a3: 40:2f:53:03:3e:bf:9e:31:c2:e2:9b:f7:e7:ed:4f:96:59:04: d4:3d:b3:e6:02:76:27:9b:35:d2:1c:d5:70:0d:54:40:57:3d: 98:2d:6a:25:51:61:b7:6f:51:3e:c4:d2:0c:41:3b:ab:19:f6: 0e:44:bf:de -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9Wx8Uldy9/DxgmMXkO2xaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMzNWVhYzY0ZWE0ODAyZTY4MjQ2ODZmN2MwZDIwMWYyYzg1 Y2IyYWEwHhcNMjYwMTAyMDYxODAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYWZlY2I0MDFkMDNkODdjNDY3MGM2ODk5ZTQ2ZTY0ZjkwYWU3MjVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArLyrr4E5tg+jlQjZzLF+JXtucUHP Er/4HHtT9zz9Jv83HRbbCEKPF0qci1jGek8GW2IBSple9vJN/ZzyJdjSHOArcWuF uWqXOxk/jN5zjsVJ82pfmiENj14DiOh1V9yRGar7L3KwHWNBPbKmqy85tH7d2Woh 1nLnv8d2YWIALgOgU1x8gFxpSsPAuvSKfod01DbPFnc17QVmCR9/fxNG1rRcm0OH nFj+Hu+Aog+k0dshc5J90tobnTeLkcQAijOPiG/Td2Vws3LcUh5KlU6z7CdLgSKE 3nY1kegoSmeFej/FY1QVW2bG1+znbKEqOQ1aaZiMJFygWEyFn4HWF7wZywIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBr+y0AdA9h8RnDGiZ5G5k+QrnJcMB8GA1UdIwQY MBaAFMNerGTqSALmgkaG98DSAfLIXLKqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdzE2c1pPcElBdWFDUm9iM3dOSUI4c2hjc3FvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9jY2RkOGItNzcyMC00ZGUwLThjNDMt ZGFjYjVmMzU2ZWEzLzEvR3Y3TFFCMEQySHhHY01hSm5rYm1UNUN1Y2x3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy9jY2RkOGItNzcyMC00ZGUwLThjNDMtZGFjYjVmMzU2ZWEz LzEvdzE2c1pPcElBdWFDUm9iM3dOSUI4c2hjc3FvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA2a6eMA0G CSqGSIb3DQEBCwUAA4IBAQBCO8Gp5EFdC31fa3V9hnJrCag6WnkyAogr/OtXpTV2 pIK5A4eGFJmefu2ukB3wK0W+nNxgMbgqAWnVgDAoXHXpYqNQdFx/iG0CKgXNAEW4 sbiGZQb4yGnvxsQ/KhCIcQvFWNTNfJb81C7ua5dixXeaGTD+HjwggUYigk9LMtbR mc18Sj1MpGWTjPiFTZ50abT8sDkjiEwI1ta3e0MQIkrlAK5idNvs+K6xbN5MfGx0 rUA9oVInJk8s8wKzV9Ksiib5QqutzKNAL1MDPr+eMcLim/fn7U+WWQTUPbPmAnYn mzXSHNVwDVRAVz2YLWolUWG3b1E+xNIMQTurGfYORL/e -----END CERTIFICATE-----Generated at Fri Jan 23 18:49:34 2026 by rpki-client