This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/GNYsH8Ssdi0wuq0MtkzjAz5IOK8.roa File: GNYsH8Ssdi0wuq0MtkzjAz5IOK8.roa (raw, json) Hash identifier: YBipqhCas3UTGUmAt3vdoKG8URq62fHTpLk/b0OQbks= Subject key identifier: 18:D6:2C:1F:C4:AC:76:2D:30:BA:AD:0C:B6:4C:E3:03:3E:48:38:AF Certificate issuer: /CN=9f0743496c7ff3effb870601139cad9d2f271e10 Certificate serial: 019B77C6CDE657AD815AF16CD5544DF4720D Authority key identifier: 9F:07:43:49:6C:7F:F3:EF:FB:87:06:01:13:9C:AD:9D:2F:27:1E:10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/GNYsH8Ssdi0wuq0MtkzjAz5IOK8.roa Signing time: Thu 01 Jan 2026 04:17:55 +0000 ROA not before: Thu 01 Jan 2026 04:17:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203144 IP address blocks: 185.89.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/nwdDSWx_8-_7hwYBE5ytnS8nHhA.crl rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/nwdDSWx_8-_7hwYBE5ytnS8nHhA.mft rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:cd:e6:57:ad:81:5a:f1:6c:d5:54:4d:f4:72:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9f0743496c7ff3effb870601139cad9d2f271e10 Validity Not Before: Jan 1 04:17:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=18d62c1fc4ac762d30baad0cb64ce3033e4838af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:4e:b6:72:71:79:36:42:75:c8:94:78:44:17: 73:1d:f5:81:21:a8:8c:74:9b:9c:df:3a:ae:1f:da: e3:28:07:ca:d7:9d:40:f8:01:98:f3:45:ee:11:82: ed:6e:bc:9d:ac:a4:3a:18:39:68:02:e6:eb:5b:ae: bf:78:aa:98:b6:2e:f9:6a:83:fa:c1:df:2d:d1:d0: 55:f1:a2:5c:ef:a4:a5:7e:f4:dd:8c:ed:a6:ec:c4: 7c:e5:59:27:5e:62:05:50:a7:19:79:17:50:8a:59: 05:0c:77:eb:a7:a1:69:7b:30:69:c4:bf:18:37:f8: a8:d7:ee:77:6e:80:b8:b3:9a:18:cc:37:f5:75:35: 2f:a6:14:ed:a6:a7:1d:03:29:f4:86:1f:fa:ca:a0: 0b:c1:df:5b:fd:ff:ae:60:93:5a:08:ae:9c:55:f0: 6f:34:85:8b:9e:ef:34:54:b4:95:b4:a0:b2:85:b9: 2c:c5:c6:57:b7:19:fc:55:95:7c:14:de:b0:11:d3: 7a:22:99:d1:1e:8b:d9:30:a6:41:b2:e3:38:36:ea: 40:44:32:64:da:60:51:da:f9:e2:08:ad:2f:0d:ca: de:79:7c:28:ec:63:78:64:d3:0a:82:82:ea:98:9e: d4:7c:cc:af:b7:75:5a:f7:25:b9:28:1b:c9:3e:29: 67:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:D6:2C:1F:C4:AC:76:2D:30:BA:AD:0C:B6:4C:E3:03:3E:48:38:AF X509v3 Authority Key Identifier: keyid:9F:07:43:49:6C:7F:F3:EF:FB:87:06:01:13:9C:AD:9D:2F:27:1E:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/GNYsH8Ssdi0wuq0MtkzjAz5IOK8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/nwdDSWx_8-_7hwYBE5ytnS8nHhA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.89.249.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:60:6a:3d:cf:f8:8c:b0:6b:32:34:a1:88:49:f6:18:30:2e: 61:32:36:6f:98:33:0b:c6:ba:91:e1:f3:29:50:27:de:f9:d2: 57:e1:eb:76:06:f1:26:6b:cb:4c:ac:3e:b3:9d:d2:78:52:eb: 66:3a:43:9d:b0:59:4c:da:2d:82:fd:d7:69:db:0d:4d:b2:68: 0e:b3:c4:fe:63:34:2b:f5:8c:6d:e0:5a:9d:0e:73:af:17:0d: 17:d2:4c:a8:4a:d7:dc:d0:38:5e:95:f0:db:e2:05:4a:f2:b1: 65:65:f2:48:8e:d2:d5:17:3e:8e:75:5b:fa:60:ec:bc:3a:7b: 16:23:ed:ca:e2:2c:1a:02:13:bd:76:1d:88:91:85:bf:ce:cb: 5c:0a:59:97:59:2b:ca:a2:41:d6:3c:34:dd:8c:6e:38:cc:70: 56:17:8f:a4:fc:60:69:e4:cd:bf:b1:47:9f:d6:41:6e:7e:eb: 1b:f9:29:45:ef:f1:1f:9c:ec:87:aa:f0:2a:7a:2c:11:f3:8f: 05:31:32:0c:b9:ad:7c:98:f9:2c:58:7b:5c:ec:46:a2:82:ea: b2:37:3c:e1:7f:13:61:7f:de:22:31:11:20:ad:70:86:eb:85: ac:64:ec:40:1f:cb:82:81:53:25:e6:9e:f6:fd:b7:23:77:52: 35:cd:72:b0 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xs3mV62BWvFs1VRN9HINMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlmMDc0MzQ5NmM3ZmYzZWZmYjg3MDYwMTEzOWNhZDlkMmYy NzFlMTAwHhcNMjYwMTAxMDQxNzU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxOGQ2MmMxZmM0YWM3NjJkMzBiYWFkMGNiNjRjZTMwMzNlNDgzOGFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmU62cnF5NkJ1yJR4RBdzHfWBIaiM dJuc3zquH9rjKAfK151A+AGY80XuEYLtbrydrKQ6GDloAubrW66/eKqYti75aoP6 wd8t0dBV8aJc76SlfvTdjO2m7MR85VknXmIFUKcZeRdQilkFDHfrp6FpezBpxL8Y N/io1+53boC4s5oYzDf1dTUvphTtpqcdAyn0hh/6yqALwd9b/f+uYJNaCK6cVfBv NIWLnu80VLSVtKCyhbksxcZXtxn8VZV8FN6wEdN6IpnRHovZMKZBsuM4NupARDJk 2mBR2vniCK0vDcreeXwo7GN4ZNMKgoLqmJ7UfMyvt3Va9yW5KBvJPilnowIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBjWLB/ErHYtMLqtDLZM4wM+SDivMB8GA1UdIwQY MBaAFJ8HQ0lsf/Pv+4cGAROcrZ0vJx4QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbndkRFNXeF84LV83aHdZQkU1eXRuUzhuSGhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS8yMmI3YWItZmMxMS00MDdhLWJkM2Mt NjM0MTEzNjdkOTBhLzEvR05Zc0g4U3NkaTB3dXEwTXRrempBejVJT0s4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS8yMmI3YWItZmMxMS00MDdhLWJkM2MtNjM0MTEzNjdkOTBh LzEvbndkRFNXeF84LV83aHdZQkU1eXRuUzhuSGhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuVn5MA0G CSqGSIb3DQEBCwUAA4IBAQCOYGo9z/iMsGsyNKGISfYYMC5hMjZvmDMLxrqR4fMp UCfe+dJX4et2BvEma8tMrD6zndJ4UutmOkOdsFlM2i2C/ddp2w1NsmgOs8T+YzQr 9Yxt4FqdDnOvFw0X0kyoStfc0DhelfDb4gVK8rFlZfJIjtLVFz6OdVv6YOy8OnsW I+3K4iwaAhO9dh2IkYW/zstcClmXWSvKokHWPDTdjG44zHBWF4+k/GBp5M2/sUef 1kFufusb+SlF7/EfnOyHqvAqeiwR848FMTIMua18mPksWHtc7EaiguqyNzzhfxNh f94iMREgrXCG64WsZOxAH8uCgVMl5p72/bcjd1I1zXKw -----END CERTIFICATE-----Generated at Mon Jan 19 23:23:27 2026 by rpki-client