This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/GmXCp-ryty__BS-cMpg7Kzz_9zc.roa File: GmXCp-ryty__BS-cMpg7Kzz_9zc.roa (raw, json) Hash identifier: CX9a+ejz3MuUVit0PYjhdyQyZtSmsfc0Blvt0HfHTTs= Subject key identifier: 1A:65:C2:A7:EA:F2:B7:2F:FF:05:2F:9C:32:98:3B:2B:3C:FF:F7:37 Certificate issuer: /CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f Certificate serial: 019B7F13F9882D982578E9E56A3D96F93872 Authority key identifier: 08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/GmXCp-ryty__BS-cMpg7Kzz_9zc.roa Signing time: Fri 02 Jan 2026 14:19:34 +0000 ROA not before: Fri 02 Jan 2026 14:19:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56330 IP address blocks: 2a02:2698:3400::/38 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.mft rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Feb 2026 23:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:f9:88:2d:98:25:78:e9:e5:6a:3d:96:f9:38:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f Validity Not Before: Jan 2 14:19:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1a65c2a7eaf2b72fff052f9c32983b2b3cfff737 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:1b:24:59:60:81:36:78:0b:4d:e7:c9:76:96: 69:a0:d1:4e:88:d8:fa:a9:5e:fc:34:2e:ca:22:32: f1:88:2c:00:0a:40:02:e3:cc:2b:ea:9c:1a:e1:d6: 1d:3e:34:fc:38:34:9a:79:17:29:e2:6d:36:b0:5c: 5d:f6:ed:e0:f8:9c:3e:41:59:52:ab:ed:ad:f0:20: 6a:a0:c7:3a:5b:15:68:1d:46:43:47:90:80:59:9d: 16:e9:32:86:e1:27:cf:7d:2c:39:69:b9:d8:34:ae: f9:4e:d2:39:bf:67:c9:04:15:bf:19:ec:81:ba:43: 01:3b:eb:6a:77:d7:30:49:7c:e0:32:9d:92:8e:1e: da:fc:f9:8f:57:73:db:b8:97:c0:60:7d:25:0f:e2: 26:51:3f:cf:62:e9:18:df:d1:40:b7:81:bf:e1:bc: ae:07:48:2f:15:d5:ec:89:69:07:4c:0e:2c:22:62: 45:1d:a1:3c:09:ca:71:7a:ce:d7:ae:01:af:94:3f: 09:66:7d:25:25:08:e6:01:9a:1c:d8:3a:2e:1b:39: 44:ea:06:13:91:1d:9d:5d:ef:29:02:c1:d7:36:b3: 72:c1:b8:b0:32:ee:20:64:8f:32:5d:97:75:70:28: 29:6b:c1:54:84:71:3d:91:3d:c0:16:5b:e1:44:a0: 1b:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:65:C2:A7:EA:F2:B7:2F:FF:05:2F:9C:32:98:3B:2B:3C:FF:F7:37 X509v3 Authority Key Identifier: keyid:08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/GmXCp-ryty__BS-cMpg7Kzz_9zc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a02:2698:3400::/38 Signature Algorithm: sha256WithRSAEncryption 6f:f1:bf:19:ad:2c:ba:cc:e4:58:9e:80:8a:1b:0b:79:01:bb: 35:28:b8:d6:a4:25:53:f4:1a:aa:e5:30:2c:a9:e4:84:2f:d8: 5b:12:7a:be:cd:90:39:9f:2c:ba:b8:37:06:d4:df:45:4d:1d: 89:4e:dd:d7:10:3c:b9:b6:0d:03:b2:33:fa:9e:8e:54:d7:24: d3:28:46:b1:1f:03:60:62:2c:ac:69:45:36:fa:1c:ec:2c:89: fd:b6:5a:41:3d:56:9f:6f:76:1b:d8:b4:da:97:db:12:5f:e6: 98:74:36:5c:4d:63:63:ed:04:46:5c:b3:b8:1c:fc:9d:b7:d2: f4:fb:34:35:04:f1:f7:2c:3e:a2:17:03:83:93:c5:2f:68:b3: a1:16:4d:2b:f2:67:9b:3f:16:68:46:44:61:1e:84:73:fe:01: 9b:b8:ec:b2:94:25:06:b2:2a:f5:1c:cf:f5:a9:38:33:3d:bb: bf:1c:96:9e:27:6c:38:c0:db:ae:c8:7c:5f:84:ea:ca:25:ae: 5d:58:fb:4b:6c:ca:d2:1d:19:0b:ec:f0:c4:15:18:52:85:9b: 42:b3:cb:8e:00:3b:9f:06:72:69:d9:bb:a4:c4:cf:cb:1b:de: d4:37:ce:6d:30:38:56:25:23:b7:8d:66:3f:5e:18:2f:b2:05: 29:18:04:2f -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt/E/mILZgleOnlaj2W+ThyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4MDJiOTVjZTYyMzlkNTI2YzM1YWU3YThlMmNlYjQ4YWVi ODJiNWYwHhcNMjYwMTAyMTQxOTM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYTY1YzJhN2VhZjJiNzJmZmYwNTJmOWMzMjk4M2IyYjNjZmZmNzM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6hskWWCBNngLTefJdpZpoNFOiNj6 qV78NC7KIjLxiCwACkAC48wr6pwa4dYdPjT8ODSaeRcp4m02sFxd9u3g+Jw+QVlS q+2t8CBqoMc6WxVoHUZDR5CAWZ0W6TKG4SfPfSw5abnYNK75TtI5v2fJBBW/GeyB ukMBO+tqd9cwSXzgMp2Sjh7a/PmPV3PbuJfAYH0lD+ImUT/PYukY39FAt4G/4byu B0gvFdXsiWkHTA4sImJFHaE8Ccpxes7XrgGvlD8JZn0lJQjmAZoc2DouGzlE6gYT kR2dXe8pAsHXNrNywbiwMu4gZI8yXZd1cCgpa8FUhHE9kT3AFlvhRKAbVwIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFBplwqfq8rcv/wUvnDKYOys8//c3MB8GA1UdIwQY MBaAFAgCuVzmI51SbDWueo4s60iuuCtfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0FLNVhPWWpuVkpzTmE1NmppenJTSzY0SzE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8xMGU5NjUtNzQwOS00NGQ4LTk1MDIt Y2YwYWEzZWNhZDI4LzEvR21YQ3Atcnl0eV9fQlMtY01wZzdLenpfOXpjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC8xMGU5NjUtNzQwOS00NGQ4LTk1MDItY2YwYWEzZWNhZDI4 LzEvQ0FLNVhPWWpuVkpzTmE1NmppenJTSzY0SzE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYCKgImmDQw DQYJKoZIhvcNAQELBQADggEBAG/xvxmtLLrM5FiegIobC3kBuzUouNakJVP0Gqrl MCyp5IQv2FsSer7NkDmfLLq4NwbU30VNHYlO3dcQPLm2DQOyM/qejlTXJNMoRrEf A2BiLKxpRTb6HOwsif22WkE9Vp9vdhvYtNqX2xJf5ph0NlxNY2PtBEZcs7gc/J23 0vT7NDUE8fcsPqIXA4OTxS9os6EWTSvyZ5s/FmhGRGEehHP+AZu47LKUJQayKvUc z/WpODM9u78clp4nbDjA267IfF+E6solrl1Y+0tsytIdGQvs8MQVGFKFm0Kzy44A O58GcmnZu6TEz8sb3tQ3zm0wOFYlI7eNZj9eGC+yBSkYBC8= -----END CERTIFICATE-----Generated at Thu Feb 5 05:54:44 2026 by rpki-client