This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/gJMtWq8wsHqrA-aMuJa4zlTGmHQ.roa File: gJMtWq8wsHqrA-aMuJa4zlTGmHQ.roa (raw, json) Hash identifier: ph6so/OLFpZPFLkaG9kVD8yzMdOCcTKa12b2RAynICM= Subject key identifier: 80:93:2D:5A:AF:30:B0:7A:AB:03:E6:8C:B8:96:B8:CE:54:C6:98:74 Certificate issuer: /CN=4c7844abef711c232c84f83c807a420af3804728 Certificate serial: 019B76EB79546DF5AF1E0715EE3C7D60D97D Authority key identifier: 4C:78:44:AB:EF:71:1C:23:2C:84:F8:3C:80:7A:42:0A:F3:80:47:28 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/THhEq-9xHCMshPg8gHpCCvOARyg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/gJMtWq8wsHqrA-aMuJa4zlTGmHQ.roa Signing time: Thu 01 Jan 2026 00:18:22 +0000 ROA not before: Thu 01 Jan 2026 00:18:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42708 IP address blocks: 5.198.248.0/21 maxlen: 24 141.138.208.0/21 maxlen: 24 185.13.40.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/THhEq-9xHCMshPg8gHpCCvOARyg.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/THhEq-9xHCMshPg8gHpCCvOARyg.mft rsync://rpki.ripe.net/repository/DEFAULT/THhEq-9xHCMshPg8gHpCCvOARyg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:79:54:6d:f5:af:1e:07:15:ee:3c:7d:60:d9:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4c7844abef711c232c84f83c807a420af3804728 Validity Not Before: Jan 1 00:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=80932d5aaf30b07aab03e68cb896b8ce54c69874 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:63:89:d0:72:6f:4c:61:a9:39:89:f5:4e:af: 1c:22:7a:cb:a6:58:88:b3:12:45:d4:66:ce:5a:02: 99:83:d9:21:2a:4a:fd:57:8d:04:f8:d2:6b:b8:20: ee:c2:0f:5b:91:31:d0:39:55:a9:64:82:a0:43:a7: 70:14:55:6d:1d:e7:4c:b6:36:7c:0e:5d:dc:df:8a: 6c:e9:65:7f:ba:f1:d3:04:05:35:89:e7:b5:82:30: df:ac:59:9b:bb:32:a2:ef:9a:d3:79:5f:7d:81:70: 4e:92:76:87:5d:06:1f:3e:79:b3:5c:94:34:27:2a: 9e:7d:97:c1:eb:3b:a8:da:d1:71:5d:9a:5c:16:53: 62:0f:b9:37:9b:90:8e:39:9f:22:74:cf:aa:44:97: 90:4b:29:73:a9:07:23:51:19:77:0c:eb:d6:70:a4: ea:f3:47:7a:c9:79:60:31:7f:70:17:00:4a:8e:d0: 16:ad:be:2c:a1:92:74:69:70:db:17:91:35:7b:2c: 1a:f5:85:92:4c:40:da:84:c2:43:72:fb:f0:c8:f3: 3a:1f:40:02:fc:3a:76:e0:29:d6:87:5e:ba:bf:f3: 0c:10:b1:11:41:df:79:df:21:af:ac:c6:f8:0f:27: 4d:5e:32:4b:06:ca:93:8a:a9:e2:b9:c5:74:b7:56: 8b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:93:2D:5A:AF:30:B0:7A:AB:03:E6:8C:B8:96:B8:CE:54:C6:98:74 X509v3 Authority Key Identifier: keyid:4C:78:44:AB:EF:71:1C:23:2C:84:F8:3C:80:7A:42:0A:F3:80:47:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/THhEq-9xHCMshPg8gHpCCvOARyg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/gJMtWq8wsHqrA-aMuJa4zlTGmHQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/THhEq-9xHCMshPg8gHpCCvOARyg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.198.248.0/21 141.138.208.0/21 185.13.40.0/22 Signature Algorithm: sha256WithRSAEncryption 9d:cc:77:5d:18:19:f6:54:55:63:ff:a5:a1:e4:5c:fa:13:91: 04:81:36:93:61:76:0b:8e:c2:41:c7:c9:7c:13:49:2e:18:a8: d0:9a:59:6d:45:a3:a0:ac:ae:d5:e7:c4:4c:44:7c:23:91:74: 1b:5d:5c:ad:e5:a7:d5:45:41:cd:d5:8c:0e:5d:6a:27:02:9f: a8:54:5e:87:6b:bf:39:42:eb:b3:e2:0b:b3:8e:ee:e4:b0:5a: c9:ce:2f:e2:b8:44:6a:18:4a:a2:2c:cc:80:b7:4f:81:92:d2: ca:cf:2e:ff:b3:8c:2b:6c:58:fd:44:2f:4a:ca:ff:1c:ba:50: 52:15:96:fe:80:ef:6d:42:23:98:e4:b2:97:a3:db:27:f6:b5: 8f:2d:08:90:ef:9b:47:56:c1:b9:45:0e:db:da:1b:03:77:c3: 26:1c:3a:7a:e1:ff:08:39:6a:42:99:de:e0:c6:8c:1d:96:69: d2:f7:16:9d:2a:de:a7:83:f4:21:0a:74:7f:4c:dc:40:14:13: fb:f0:c5:94:83:d4:9e:6e:23:e6:d0:10:ea:94:c0:27:fb:5b: e4:e6:5c:69:c2:8e:7f:b6:8a:52:a5:d7:86:e9:ef:3a:04:20: 79:9f:6a:f9:16:1b:cb:cb:56:06:02:25:d2:55:97:ef:ae:0e: cb:ba:ed:92 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt263lUbfWvHgcV7jx9YNl9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjNzg0NGFiZWY3MTFjMjMyYzg0ZjgzYzgwN2E0MjBhZjM4 MDQ3MjgwHhcNMjYwMTAxMDAxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MDkzMmQ1YWFmMzBiMDdhYWIwM2U2OGNiODk2YjhjZTU0YzY5ODc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjGOJ0HJvTGGpOYn1Tq8cInrLpliI sxJF1GbOWgKZg9khKkr9V40E+NJruCDuwg9bkTHQOVWpZIKgQ6dwFFVtHedMtjZ8 Dl3c34ps6WV/uvHTBAU1iee1gjDfrFmbuzKi75rTeV99gXBOknaHXQYfPnmzXJQ0 JyqefZfB6zuo2tFxXZpcFlNiD7k3m5COOZ8idM+qRJeQSylzqQcjURl3DOvWcKTq 80d6yXlgMX9wFwBKjtAWrb4soZJ0aXDbF5E1eywa9YWSTEDahMJDcvvwyPM6H0AC /Dp24CnWh166v/MMELERQd953yGvrMb4DydNXjJLBsqTiqniucV0t1aLJQIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFICTLVqvMLB6qwPmjLiWuM5Uxph0MB8GA1UdIwQY MBaAFEx4RKvvcRwjLIT4PIB6QgrzgEcoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVEhoRXEtOXhIQ01zaFBnOGdIcENDdk9BUnlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi84ZDU1YzAtOWFhMC00YmU3LTgyYTgt ZGFiNmI4M2NmN2VjLzEvZ0pNdFdxOHdzSHFyQS1hTXVKYTR6bFRHbUhRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi84ZDU1YzAtOWFhMC00YmU3LTgyYTgtZGFiNmI4M2NmN2Vj LzEvVEhoRXEtOXhIQ01zaFBnOGdIcENDdk9BUnlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQDBcb4AwQD jYrQAwQCuQ0oMA0GCSqGSIb3DQEBCwUAA4IBAQCdzHddGBn2VFVj/6Wh5Fz6E5EE gTaTYXYLjsJBx8l8E0kuGKjQmlltRaOgrK7V58RMRHwjkXQbXVyt5afVRUHN1YwO XWonAp+oVF6Ha785Quuz4guzju7ksFrJzi/iuERqGEqiLMyAt0+BktLKzy7/s4wr bFj9RC9Kyv8culBSFZb+gO9tQiOY5LKXo9sn9rWPLQiQ75tHVsG5RQ7b2hsDd8Mm HDp64f8IOWpCmd7gxowdlmnS9xadKt6ng/QhCnR/TNxAFBP78MWUg9SebiPm0BDq lMAn+1vk5lxpwo5/topSpdeG6e86BCB5n2r5FhvLy1YGAiXSVZfvrg7Luu2S -----END CERTIFICATE-----Generated at Mon Jan 19 17:52:27 2026 by rpki-client