This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/G1fyBjEWDiGnXgmB608-RC5FyI4.roa File: G1fyBjEWDiGnXgmB608-RC5FyI4.roa (raw, json) Hash identifier: spXNiTVBLRKBjCGt+CIBgV3zGs5PEIPF+OMLD7TAxDY= Subject key identifier: 1B:57:F2:06:31:16:0E:21:A7:5E:09:81:EB:4F:3E:44:2E:45:C8:8E Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde Certificate serial: 019B7C801C5E01771B50BEDBDF09A1BE31BB Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/G1fyBjEWDiGnXgmB608-RC5FyI4.roa Signing time: Fri 02 Jan 2026 02:18:49 +0000 ROA not before: Fri 02 Jan 2026 02:18:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49581 IP address blocks: 5.253.246.0/24 maxlen: 24 37.221.92.0/24 maxlen: 24 37.221.94.0/24 maxlen: 24 45.13.227.0/24 maxlen: 24 45.84.196.0/24 maxlen: 24 45.84.198.0/24 maxlen: 24 45.131.108.0/24 maxlen: 24 45.131.111.0/24 maxlen: 24 45.137.203.0/24 maxlen: 24 45.142.104.0/24 maxlen: 24 45.142.107.0/24 maxlen: 24 45.147.7.0/24 maxlen: 24 92.118.207.0/24 maxlen: 24 185.117.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.mft rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:1c:5e:01:77:1b:50:be:db:df:09:a1:be:31:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde Validity Not Before: Jan 2 02:18:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1b57f20631160e21a75e0981eb4f3e442e45c88e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:19:38:73:65:a0:69:f6:1f:51:34:3c:e1:ac: 35:f4:fc:27:91:1a:b3:51:2e:88:a2:d7:5e:5b:6b: 93:5f:af:07:a8:37:bd:35:4c:44:9a:da:62:12:fb: 3e:ec:b0:0d:bd:e7:15:fc:7d:70:5d:6e:b9:28:a5: 95:94:96:7d:21:d2:8b:22:5e:43:51:89:e1:ea:9a: e0:b6:13:ac:f7:ba:01:e7:e2:d2:28:0a:26:ee:72: 2a:37:e9:a6:2b:7c:de:6f:18:1f:89:f0:48:89:f0: 97:92:c0:b6:71:f9:fc:18:e5:2b:19:06:9b:7e:6c: 4e:d5:28:12:46:9e:a2:0d:68:77:63:bb:07:e3:e4: 0c:6c:8b:69:02:91:11:1b:8e:47:85:21:64:21:4f: 4e:27:46:88:10:89:b5:f8:e7:38:14:85:dd:47:b3: 82:de:0f:12:0e:0c:86:5c:ab:52:7e:f7:ad:05:1f: 10:23:c2:d7:9b:93:fd:9e:e5:93:79:ed:0f:fb:06: f2:ce:87:06:57:ac:6f:ab:3c:0a:97:74:4d:c3:e2: c6:da:cd:ea:09:8e:23:99:5a:a4:db:04:4c:af:11: 34:e8:de:f6:af:35:f4:ae:87:dd:f7:a2:5c:93:7c: 64:1e:ff:91:91:43:cf:32:8b:c1:86:6f:6a:30:04: 88:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:57:F2:06:31:16:0E:21:A7:5E:09:81:EB:4F:3E:44:2E:45:C8:8E X509v3 Authority Key Identifier: keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/G1fyBjEWDiGnXgmB608-RC5FyI4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.253.246.0/24 37.221.92.0/24 37.221.94.0/24 45.13.227.0/24 45.84.196.0/24 45.84.198.0/24 45.131.108.0/24 45.131.111.0/24 45.137.203.0/24 45.142.104.0/24 45.142.107.0/24 45.147.7.0/24 92.118.207.0/24 185.117.3.0/24 Signature Algorithm: sha256WithRSAEncryption 11:43:23:3f:a1:50:93:75:48:5d:05:5b:a1:5b:d3:9d:48:b9: d2:3d:18:99:e4:fd:08:e1:2a:11:09:da:7b:7d:cf:15:5b:5d: 3c:6e:b0:de:1a:5e:92:8d:30:fd:c3:4d:d1:c1:e8:70:30:67: e9:3b:fa:4f:19:b1:23:42:b5:c0:bf:7f:69:de:b4:4f:c5:4e: 6a:91:02:98:ee:d1:6d:83:f8:53:89:cf:76:07:e2:d8:6c:17: 21:3f:e2:ca:ee:32:58:18:fd:6a:3c:89:48:55:ee:0e:50:b7: 7a:14:62:74:9c:9c:e4:27:86:38:7d:b9:51:f3:90:77:c5:04: a7:0a:7d:d4:d8:a7:4c:a4:5f:95:40:d8:2b:4c:52:f1:fc:29: 35:3b:04:a7:9f:dc:42:5b:8c:a1:83:c0:24:5f:40:bf:a6:42: 8d:d4:c6:e0:51:49:45:53:08:fd:48:34:1f:f7:4c:0c:56:bb: a4:98:07:f5:28:5e:a3:a8:7f:4b:96:a8:91:19:66:eb:8a:41: a1:ff:9b:61:07:f0:c3:05:b7:81:41:8e:3e:c2:41:de:39:86: 25:f0:0c:db:33:fb:70:e7:51:6f:d9:33:ea:d1:94:d1:23:1f: 17:d7:e8:6c:4a:64:fe:91:da:77:ab:c9:3b:ff:67:c9:ef:90: d2:a6:ef:60 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgISAZt8gBxeAXcbUL7b3wmhvjG7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiMDQxNWJmYzQzYjM4ZTljZmQxYTEyOTk1MjAyZTg3NjM3 NTJmZGUwHhcNMjYwMTAyMDIxODQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYjU3ZjIwNjMxMTYwZTIxYTc1ZTA5ODFlYjRmM2U0NDJlNDVjODhlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuxk4c2WgafYfUTQ84aw19PwnkRqz US6IotdeW2uTX68HqDe9NUxEmtpiEvs+7LANvecV/H1wXW65KKWVlJZ9IdKLIl5D UYnh6prgthOs97oB5+LSKAom7nIqN+mmK3zebxgfifBIifCXksC2cfn8GOUrGQab fmxO1SgSRp6iDWh3Y7sH4+QMbItpApERG45HhSFkIU9OJ0aIEIm1+Oc4FIXdR7OC 3g8SDgyGXKtSfvetBR8QI8LXm5P9nuWTee0P+wbyzocGV6xvqzwKl3RNw+LG2s3q CY4jmVqk2wRMrxE06N72rzX0rofd96Jck3xkHv+RkUPPMovBhm9qMASIJwIDAQAB o4ICVzCCAlMwHQYDVR0OBBYEFBtX8gYxFg4hp14JgetPPkQuRciOMB8GA1UdIwQY MBaAFBsEFb/EOzjpz9GhKZUgLodjdS/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1Nzgt YTNjYTBkYjgzMjU0LzEvRzFmeUJqRVdEaUduWGdtQjYwOC1SQzVGeUk0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1NzgtYTNjYTBkYjgzMjU0 LzEvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMG0GCCsGAQUFBwEHAQH/BF4wXDBaBAIAATBUAwQABf32AwQA Jd1cAwQAJd1eAwQALQ3jAwQALVTEAwQALVTGAwQALYNsAwQALYNvAwQALYnLAwQA LY5oAwQALY5rAwQALZMHAwQAXHbPAwQAuXUDMA0GCSqGSIb3DQEBCwUAA4IBAQAR QyM/oVCTdUhdBVuhW9OdSLnSPRiZ5P0I4SoRCdp7fc8VW108brDeGl6SjTD9w03R wehwMGfpO/pPGbEjQrXAv39p3rRPxU5qkQKY7tFtg/hTic92B+LYbBchP+LK7jJY GP1qPIlIVe4OULd6FGJ0nJzkJ4Y4fblR85B3xQSnCn3U2KdMpF+VQNgrTFLx/Ck1 OwSnn9xCW4yhg8AkX0C/pkKN1MbgUUlFUwj9SDQf90wMVrukmAf1KF6jqH9LlqiR GWbrikGh/5thB/DDBbeBQY4+wkHeOYYl8AzbM/tw51Fv2TPq0ZTRIx8X1+hsSmT+ kdp3q8k7/2fJ75DSpu9g -----END CERTIFICATE-----Generated at Mon Jan 19 19:59:30 2026 by rpki-client