This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/b19bd8-e1d8-4388-a3b6-12255e3612ec/1/gX94KHujeqBgf1OQw3kvDwZSXYw.roa File: gX94KHujeqBgf1OQw3kvDwZSXYw.roa (raw, json) Hash identifier: iWZ0LIZisJBiwchMv/ZPll0lS2mW3PKbeX5QIpLootw= Subject key identifier: 81:7F:78:28:7B:A3:7A:A0:60:7F:53:90:C3:79:2F:0F:06:52:5D:8C Certificate issuer: /CN=bde2db8498ee8f7b3ab5caae83829596620702c1 Certificate serial: 019B7A5AF13112B172637D6FA2AA2C94161D Authority key identifier: BD:E2:DB:84:98:EE:8F:7B:3A:B5:CA:AE:83:82:95:96:62:07:02:C1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/veLbhJjuj3s6tcqug4KVlmIHAsE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/b19bd8-e1d8-4388-a3b6-12255e3612ec/1/gX94KHujeqBgf1OQw3kvDwZSXYw.roa Signing time: Thu 01 Jan 2026 16:18:58 +0000 ROA not before: Thu 01 Jan 2026 16:18:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41325 IP address blocks: 84.38.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/b19bd8-e1d8-4388-a3b6-12255e3612ec/1/veLbhJjuj3s6tcqug4KVlmIHAsE.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/b19bd8-e1d8-4388-a3b6-12255e3612ec/1/veLbhJjuj3s6tcqug4KVlmIHAsE.mft rsync://rpki.ripe.net/repository/DEFAULT/veLbhJjuj3s6tcqug4KVlmIHAsE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 12:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:f1:31:12:b1:72:63:7d:6f:a2:aa:2c:94:16:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bde2db8498ee8f7b3ab5caae83829596620702c1 Validity Not Before: Jan 1 16:18:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=817f78287ba37aa0607f5390c3792f0f06525d8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:fc:e9:d2:4d:71:15:a7:b3:20:a0:5c:b6:bd: ed:39:fa:d6:47:e1:fb:b5:d6:b1:b3:b5:a0:b6:b2: 5e:cd:ba:ae:ad:4b:07:e5:ff:33:01:7f:32:73:56: e8:11:e3:82:a1:03:77:2b:16:74:07:00:2f:0c:f1: 51:8e:8e:e5:b3:c2:ae:69:2c:86:af:9f:5e:d5:e5: 59:32:18:26:ec:3c:80:29:5a:f2:e7:01:13:34:d1: ef:77:4d:ca:ea:fd:b2:e0:69:b5:83:48:92:cc:de: 1c:12:5c:af:c7:b8:6b:7f:8a:41:a8:c0:89:77:f6: 3e:91:74:ef:d6:17:0b:1e:35:1e:c1:a2:38:fb:ad: 9b:a8:b6:4c:82:7b:7d:0e:1b:4c:c9:41:d5:6b:67: cd:b3:ec:02:30:79:b6:67:fa:1d:05:c8:8b:db:af: fd:f1:0e:4c:d4:a3:22:25:be:14:f7:b3:69:6b:78: 5e:14:f8:b2:5b:f8:7c:1d:7b:dc:9b:dd:83:91:22: 57:22:15:c7:b9:ff:6a:65:32:17:ee:34:bd:ae:91: 35:45:01:c0:eb:47:a0:0f:83:fa:96:3b:a5:ce:29: 7c:9c:71:60:4b:79:ba:98:31:8f:ca:5e:35:84:79: 53:37:27:70:7f:e9:41:8d:02:ed:42:f8:29:27:c2: 71:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:7F:78:28:7B:A3:7A:A0:60:7F:53:90:C3:79:2F:0F:06:52:5D:8C X509v3 Authority Key Identifier: keyid:BD:E2:DB:84:98:EE:8F:7B:3A:B5:CA:AE:83:82:95:96:62:07:02:C1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/veLbhJjuj3s6tcqug4KVlmIHAsE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b19bd8-e1d8-4388-a3b6-12255e3612ec/1/gX94KHujeqBgf1OQw3kvDwZSXYw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b19bd8-e1d8-4388-a3b6-12255e3612ec/1/veLbhJjuj3s6tcqug4KVlmIHAsE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 84.38.48.0/20 Signature Algorithm: sha256WithRSAEncryption 7b:ca:53:b2:ba:be:34:43:fc:7d:c1:df:57:0d:26:0e:e4:83: b2:ed:36:52:0a:c4:7e:19:5c:92:0d:6b:f7:ac:94:f0:72:f0: 6d:83:dc:e7:fa:78:b9:fe:6f:2b:39:ef:3c:de:2c:52:5e:73: c4:81:b1:5a:29:fa:0e:30:85:b6:8a:54:b6:b2:9b:59:d9:e0: b5:b0:be:59:38:e0:aa:c3:d2:43:46:d5:56:53:ae:1f:d0:fe: fa:30:62:50:8d:61:2e:72:5b:65:ce:ed:c1:60:e9:03:bb:fd: 7e:4a:a5:72:23:ff:64:db:45:5b:db:fb:14:f3:95:94:02:73: bd:d9:fa:01:9e:49:83:58:02:eb:29:c9:2f:4c:07:12:ab:ef: b8:cf:1f:07:4a:9d:b2:be:0e:db:44:c3:e8:b4:09:dc:bf:7b: f4:dd:fc:9a:4a:0b:50:ab:26:9d:73:9a:a8:f9:80:6f:85:41: cc:cb:55:62:84:86:4d:d5:1f:09:35:b5:de:ab:e2:2a:dc:2d: 56:72:5d:9d:6f:ed:62:b3:91:16:28:86:8a:b7:90:b0:c7:ad: 8a:16:06:22:73:6f:3a:2b:ed:5e:2a:d1:58:4a:a2:8b:be:4d: ac:5b:03:cd:bc:3f:b0:b6:c6:a8:f5:eb:77:ac:98:6e:b2:44: 74:e2:b1:0f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6WvExErFyY31voqoslBYdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkZTJkYjg0OThlZThmN2IzYWI1Y2FhZTgzODI5NTk2NjIw NzAyYzEwHhcNMjYwMTAxMTYxODU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MTdmNzgyODdiYTM3YWEwNjA3ZjUzOTBjMzc5MmYwZjA2NTI1ZDhjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Pzp0k1xFaezIKBctr3tOfrWR+H7 tdaxs7WgtrJezbqurUsH5f8zAX8yc1boEeOCoQN3KxZ0BwAvDPFRjo7ls8KuaSyG r59e1eVZMhgm7DyAKVry5wETNNHvd03K6v2y4Gm1g0iSzN4cElyvx7hrf4pBqMCJ d/Y+kXTv1hcLHjUewaI4+62bqLZMgnt9DhtMyUHVa2fNs+wCMHm2Z/odBciL26/9 8Q5M1KMiJb4U97Npa3heFPiyW/h8HXvcm92DkSJXIhXHuf9qZTIX7jS9rpE1RQHA 60egD4P6ljulzil8nHFgS3m6mDGPyl41hHlTNydwf+lBjQLtQvgpJ8JxhQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIF/eCh7o3qgYH9TkMN5Lw8GUl2MMB8GA1UdIwQY MBaAFL3i24SY7o97OrXKroOClZZiBwLBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmVMYmhKanVqM3M2dGNxdWc0S1ZsbUlIQXNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi9iMTliZDgtZTFkOC00Mzg4LWEzYjYt MTIyNTVlMzYxMmVjLzEvZ1g5NEtIdWplcUJnZjFPUXcza3ZEd1pTWFl3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi9iMTliZDgtZTFkOC00Mzg4LWEzYjYtMTIyNTVlMzYxMmVj LzEvdmVMYmhKanVqM3M2dGNxdWc0S1ZsbUlIQXNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEVCYwMA0G CSqGSIb3DQEBCwUAA4IBAQB7ylOyur40Q/x9wd9XDSYO5IOy7TZSCsR+GVySDWv3 rJTwcvBtg9zn+ni5/m8rOe883ixSXnPEgbFaKfoOMIW2ilS2sptZ2eC1sL5ZOOCq w9JDRtVWU64f0P76MGJQjWEucltlzu3BYOkDu/1+SqVyI/9k20Vb2/sU85WUAnO9 2foBnkmDWALrKckvTAcSq++4zx8HSp2yvg7bRMPotAncv3v03fyaSgtQqyadc5qo +YBvhUHMy1VihIZN1R8JNbXeq+Iq3C1Wcl2db+1is5EWKIaKt5Cwx62KFgYic286 K+1eKtFYSqKLvk2sWwPNvD+wtsao9et3rJhuskR04rEP -----END CERTIFICATE-----Generated at Fri Jan 9 16:28:18 2026 by rpki-client