This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/1d8fca-b462-4313-a523-e411b43dc68a/1/gGTUtih5jVa-QbWTlOxD1xFHxEM.roa File: gGTUtih5jVa-QbWTlOxD1xFHxEM.roa (raw, json) Hash identifier: V1056kAulKAWgU4sgdguF4s6mRxgfRsvQzLGzFRcugQ= Subject key identifier: 80:64:D4:B6:28:79:8D:56:BE:41:B5:93:94:EC:43:D7:11:47:C4:43 Certificate issuer: /CN=53f39d2f20e2d9b4f96cbd1337ea32da518d8ec8 Certificate serial: 019B78A310981B1C513F164ED72CAEF5A15E Authority key identifier: 53:F3:9D:2F:20:E2:D9:B4:F9:6C:BD:13:37:EA:32:DA:51:8D:8E:C8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U_OdLyDi2bT5bL0TN-oy2lGNjsg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/1d8fca-b462-4313-a523-e411b43dc68a/1/gGTUtih5jVa-QbWTlOxD1xFHxEM.roa Signing time: Thu 01 Jan 2026 08:18:31 +0000 ROA not before: Thu 01 Jan 2026 08:18:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59929 IP address blocks: 195.12.60.0/24 maxlen: 24 195.12.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/1d8fca-b462-4313-a523-e411b43dc68a/1/U_OdLyDi2bT5bL0TN-oy2lGNjsg.crl rsync://rpki.ripe.net/repository/DEFAULT/14/1d8fca-b462-4313-a523-e411b43dc68a/1/U_OdLyDi2bT5bL0TN-oy2lGNjsg.mft rsync://rpki.ripe.net/repository/DEFAULT/U_OdLyDi2bT5bL0TN-oy2lGNjsg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:10:98:1b:1c:51:3f:16:4e:d7:2c:ae:f5:a1:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53f39d2f20e2d9b4f96cbd1337ea32da518d8ec8 Validity Not Before: Jan 1 08:18:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8064d4b628798d56be41b59394ec43d71147c443 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:1d:10:42:cb:74:f8:6a:7e:6e:6b:d9:a6:cb: b3:09:79:43:9b:f1:f4:0b:46:eb:42:6f:73:04:b8: dc:bb:de:c6:13:25:78:d8:7c:95:c2:08:da:b6:97: 9a:30:a4:f8:66:cb:9e:04:e6:1d:d7:36:b0:52:ec: 7c:78:7c:65:b0:ca:cd:2d:11:cd:83:f4:8a:1e:5b: 34:d2:fc:a2:2d:2b:70:cf:ff:09:54:d4:4a:81:21: cb:25:c9:ca:82:c0:fc:27:f3:94:f9:c9:24:27:57: d1:46:ef:a3:0a:c6:31:d7:26:54:21:6c:e0:fa:2b: a0:53:8a:a0:19:bb:6d:3a:0d:c8:9b:38:1b:75:19: cd:44:23:ab:79:e3:4b:13:c4:1d:1f:4e:a5:86:49: af:40:3b:20:1c:c8:41:dd:a6:96:37:71:ea:78:bb: d4:ad:4b:42:28:e3:0c:43:b8:f8:45:db:30:e2:c4: af:f0:90:12:98:ec:99:5a:98:1f:e5:90:6c:01:5c: 14:d2:63:34:97:ab:3b:2d:0a:24:95:ad:0d:0b:16: 79:d8:c0:c0:43:76:d5:89:67:b1:ad:dc:48:3a:ec: 02:03:b2:0c:09:e1:e5:0b:0f:2f:3b:20:0c:d9:9b: 1a:29:3a:da:43:44:f5:d4:6f:6e:f3:8c:d2:9e:28: 56:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:64:D4:B6:28:79:8D:56:BE:41:B5:93:94:EC:43:D7:11:47:C4:43 X509v3 Authority Key Identifier: keyid:53:F3:9D:2F:20:E2:D9:B4:F9:6C:BD:13:37:EA:32:DA:51:8D:8E:C8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U_OdLyDi2bT5bL0TN-oy2lGNjsg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/1d8fca-b462-4313-a523-e411b43dc68a/1/gGTUtih5jVa-QbWTlOxD1xFHxEM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/1d8fca-b462-4313-a523-e411b43dc68a/1/U_OdLyDi2bT5bL0TN-oy2lGNjsg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.12.60.0/23 Signature Algorithm: sha256WithRSAEncryption 0a:4e:9f:07:4c:7d:bf:f4:03:02:bc:c6:6c:80:6e:12:a2:68: 34:b8:06:58:a6:1e:14:0c:de:62:f3:8d:fa:47:30:4c:2f:7c: d5:52:eb:ca:5d:3a:80:71:d2:21:7c:41:44:ee:89:6e:92:4a: 27:9a:4f:35:bb:39:77:3f:8d:93:af:20:cb:4a:9b:a9:d0:aa: 73:3e:f8:1d:e2:1f:21:5b:65:59:6f:63:33:a7:ff:a7:36:fe: 33:14:70:e6:34:5b:c7:0d:31:16:87:bc:40:66:fd:5b:2f:ab: b1:62:a5:c0:cb:0a:69:bf:24:38:dc:c7:61:3a:8a:be:85:33: c6:67:a8:ad:07:b9:8a:1a:56:e8:8e:30:68:51:bd:35:da:8b: b6:34:52:82:dc:13:c1:90:94:03:e8:80:6b:68:86:af:0f:31: 4a:23:a0:af:88:51:e1:80:56:ba:23:8d:2d:58:4e:e2:64:22: 81:a5:57:69:0c:a2:7a:c6:c4:8a:85:ba:b8:30:4b:fc:d5:24: 86:28:6d:61:39:e1:2b:34:6f:4d:b1:de:d4:11:d9:b1:7a:a1: 64:21:97:07:42:e4:b9:d3:3d:93:2b:e1:ee:c9:97:61:5f:a7: 6a:81:78:82:69:16:79:fb:b7:77:94:e5:ac:02:8a:09:b9:92: d3:4f:bd:a0 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4oxCYGxxRPxZO1yyu9aFeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzZjM5ZDJmMjBlMmQ5YjRmOTZjYmQxMzM3ZWEzMmRhNTE4 ZDhlYzgwHhcNMjYwMTAxMDgxODMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MDY0ZDRiNjI4Nzk4ZDU2YmU0MWI1OTM5NGVjNDNkNzExNDdjNDQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuB0QQst0+Gp+bmvZpsuzCXlDm/H0 C0brQm9zBLjcu97GEyV42HyVwgjatpeaMKT4ZsueBOYd1zawUux8eHxlsMrNLRHN g/SKHls00vyiLStwz/8JVNRKgSHLJcnKgsD8J/OU+ckkJ1fRRu+jCsYx1yZUIWzg +iugU4qgGbttOg3ImzgbdRnNRCOreeNLE8QdH06lhkmvQDsgHMhB3aaWN3HqeLvU rUtCKOMMQ7j4Rdsw4sSv8JASmOyZWpgf5ZBsAVwU0mM0l6s7LQokla0NCxZ52MDA Q3bViWexrdxIOuwCA7IMCeHlCw8vOyAM2ZsaKTraQ0T11G9u84zSnihW4wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIBk1LYoeY1WvkG1k5TsQ9cRR8RDMB8GA1UdIwQY MBaAFFPznS8g4tm0+Wy9EzfqMtpRjY7IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVV9PZEx5RGkyYlQ1YkwwVE4tb3kybEdOanNnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8xZDhmY2EtYjQ2Mi00MzEzLWE1MjMt ZTQxMWI0M2RjNjhhLzEvZ0dUVXRpaDVqVmEtUWJXVGxPeEQxeEZIeEVNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC8xZDhmY2EtYjQ2Mi00MzEzLWE1MjMtZTQxMWI0M2RjNjhh LzEvVV9PZEx5RGkyYlQ1YkwwVE4tb3kybEdOanNnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwww8MA0G CSqGSIb3DQEBCwUAA4IBAQAKTp8HTH2/9AMCvMZsgG4Somg0uAZYph4UDN5i8436 RzBML3zVUuvKXTqAcdIhfEFE7olukkonmk81uzl3P42TryDLSpup0KpzPvgd4h8h W2VZb2Mzp/+nNv4zFHDmNFvHDTEWh7xAZv1bL6uxYqXAywppvyQ43MdhOoq+hTPG Z6itB7mKGlbojjBoUb012ou2NFKC3BPBkJQD6IBraIavDzFKI6CviFHhgFa6I40t WE7iZCKBpVdpDKJ6xsSKhbq4MEv81SSGKG1hOeErNG9Nsd7UEdmxeqFkIZcHQuS5 0z2TK+HuyZdhX6dqgXiCaRZ5+7d3lOWsAooJuZLTT72g -----END CERTIFICATE-----Generated at Tue Feb 10 01:02:03 2026 by rpki-client