This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/GiUhcNZekyFVTUscK3dkso0Dl_Q.roa File: GiUhcNZekyFVTUscK3dkso0Dl_Q.roa (raw, json) Hash identifier: l3f0aur1iz77FqIQ1jMZmPZcu3f2W34jlOduHg+ZYvY= Subject key identifier: 1A:25:21:70:D6:5E:93:21:55:4D:4B:1C:2B:77:64:B2:8D:03:97:F4 Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034 Certificate serial: 019B7F82D764CE0F1586F4C1EAA4C0B2085C Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/GiUhcNZekyFVTUscK3dkso0Dl_Q.roa Signing time: Fri 02 Jan 2026 16:20:39 +0000 ROA not before: Fri 02 Jan 2026 16:20:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211248 IP address blocks: 2a0b:b87:ffb4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.mft rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 07:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:d7:64:ce:0f:15:86:f4:c1:ea:a4:c0:b2:08:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034 Validity Not Before: Jan 2 16:20:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1a252170d65e9321554d4b1c2b7764b28d0397f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:40:b6:89:03:59:ed:a1:85:e7:e4:50:e8:b1: d7:74:f7:6a:53:c9:79:6d:a8:50:07:43:f9:94:51: 66:62:08:9b:1f:72:1a:17:83:20:8e:bc:a9:46:65: fb:68:d3:d8:20:53:fd:32:b0:9e:30:57:44:82:bc: 7e:5e:9a:d1:68:da:e2:7a:7e:29:95:12:48:3b:50: 74:0c:04:0b:3b:c8:53:2b:db:d9:db:be:ca:b8:25: 68:45:88:30:6c:24:89:81:93:87:30:2f:8e:0a:9e: 6e:31:be:7f:95:ff:13:02:6e:f2:7d:0a:e8:f8:e1: e2:94:1b:bc:b2:4e:66:fb:e8:79:71:36:0c:49:ff: bb:e2:c9:a7:5a:a0:e9:b3:3d:ae:bf:a9:6e:77:27: ce:54:db:1e:20:64:95:19:d9:ad:ae:79:28:6f:a7: 01:c0:07:33:0e:61:eb:7a:2b:31:80:8d:3e:73:9e: 22:c9:f5:d4:49:89:ef:65:2b:cc:3d:2e:f2:11:1a: 1a:4c:19:1d:65:81:68:43:14:b6:8b:89:10:38:0b: fb:4f:7d:3d:63:07:18:80:96:c2:00:0d:de:7b:e6: e7:b7:8e:91:08:a2:2f:c3:05:eb:19:ae:70:08:0e: 4a:3a:e2:9a:11:de:99:01:12:56:5e:5d:39:cb:52: 9f:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:25:21:70:D6:5E:93:21:55:4D:4B:1C:2B:77:64:B2:8D:03:97:F4 X509v3 Authority Key Identifier: keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/GiUhcNZekyFVTUscK3dkso0Dl_Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:b87:ffb4::/48 Signature Algorithm: sha256WithRSAEncryption d3:68:fc:f7:48:7c:18:1a:79:49:b3:e6:4a:c0:a2:37:f3:e6: 49:71:6b:9c:09:08:bf:5d:39:dd:0e:2e:f2:6c:67:5c:97:38: 68:e3:ea:49:32:f5:52:1c:c3:eb:ee:cf:12:61:c5:9c:60:28: 6d:d2:ef:35:6e:42:1d:64:05:b8:d5:08:bd:2f:5e:4f:9c:92: e0:c0:da:0a:e9:cb:ab:8c:fa:84:27:cb:2b:56:71:c9:2f:86: 6f:35:fc:1e:9f:58:10:76:5f:67:3a:ba:fc:52:79:9b:a4:78: 26:f8:c3:c9:b9:8c:f2:69:c9:37:43:28:47:3e:64:0e:64:7f: 36:02:ca:38:8b:04:41:5a:6d:73:22:9f:28:ab:cf:8b:8d:b3: 9c:05:53:8b:c1:d0:24:96:73:90:f3:6d:57:6d:11:a1:50:20: 14:f8:21:ef:f8:10:a4:02:4a:aa:92:83:88:b7:e1:6e:c0:61: 6a:69:7a:4e:05:46:64:10:da:f5:6f:0e:7e:97:5f:37:95:1f: 30:ff:9a:32:66:23:cb:5b:e7:06:8e:6c:7c:80:ff:df:6d:09: c9:09:0c:65:41:34:0a:ff:2e:c9:6d:61:38:82:d2:7b:ca:cf: 97:ae:a9:e3:f4:c0:76:7c:6a:ab:e6:ec:a2:86:a7:1b:a0:93: 60:57:33:60 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/gtdkzg8VhvTB6qTAsghcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxYTdiMGQ4ZGU4MjUxZDM2ZDdjODNmYWY2YmM3ZWZlYzcz YjUwMzQwHhcNMjYwMTAyMTYyMDM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYTI1MjE3MGQ2NWU5MzIxNTU0ZDRiMWMyYjc3NjRiMjhkMDM5N2Y0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxEC2iQNZ7aGF5+RQ6LHXdPdqU8l5 bahQB0P5lFFmYgibH3IaF4MgjrypRmX7aNPYIFP9MrCeMFdEgrx+XprRaNrien4p lRJIO1B0DAQLO8hTK9vZ277KuCVoRYgwbCSJgZOHMC+OCp5uMb5/lf8TAm7yfQro +OHilBu8sk5m++h5cTYMSf+74smnWqDpsz2uv6ludyfOVNseIGSVGdmtrnkob6cB wAczDmHreisxgI0+c54iyfXUSYnvZSvMPS7yERoaTBkdZYFoQxS2i4kQOAv7T309 YwcYgJbCAA3ee+bnt46RCKIvwwXrGa5wCA5KOuKaEd6ZARJWXl05y1KfIwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFBolIXDWXpMhVU1LHCt3ZLKNA5f0MB8GA1UdIwQY MBaAFLGnsNjeglHTbXyD+va8fv7HO1A0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2It Mzk0YWNkMjFmMzliLzEvR2lVaGNOWmVreUZWVFVzY0szZGtzbzBEbF9RLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2ItMzk0YWNkMjFmMzli LzEvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgsLh/+0 MA0GCSqGSIb3DQEBCwUAA4IBAQDTaPz3SHwYGnlJs+ZKwKI38+ZJcWucCQi/XTnd Di7ybGdclzho4+pJMvVSHMPr7s8SYcWcYCht0u81bkIdZAW41Qi9L15PnJLgwNoK 6curjPqEJ8srVnHJL4ZvNfwen1gQdl9nOrr8UnmbpHgm+MPJuYzyack3QyhHPmQO ZH82Aso4iwRBWm1zIp8oq8+LjbOcBVOLwdAklnOQ821XbRGhUCAU+CHv+BCkAkqq koOIt+FuwGFqaXpOBUZkENr1bw5+l183lR8w/5oyZiPLW+cGjmx8gP/fbQnJCQxl QTQK/y7JbWE4gtJ7ys+Xrqnj9MB2fGqr5uyihqcboJNgVzNg -----END CERTIFICATE-----Generated at Tue Jan 20 15:18:02 2026 by rpki-client