This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/GtLN875AMsU5_ahlkmocxAUh5EM.roa File: GtLN875AMsU5_ahlkmocxAUh5EM.roa (raw, json) Hash identifier: irtfrvq51uYuMW8qlslsIniYXKoM8xsUWZf7aX7ayYM= Subject key identifier: 1A:D2:CD:F3:BE:40:32:C5:39:FD:A8:65:92:6A:1C:C4:05:21:E4:43 Certificate issuer: /CN=8ac7eae649d9547b0ad0ab007ab4e8a48ded4d5d Certificate serial: 019B7C7EF3D876667EE8D393DA921F128134 Authority key identifier: 8A:C7:EA:E6:49:D9:54:7B:0A:D0:AB:00:7A:B4:E8:A4:8D:ED:4D:5D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/isfq5knZVHsK0KsAerTopI3tTV0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/GtLN875AMsU5_ahlkmocxAUh5EM.roa Signing time: Fri 02 Jan 2026 02:17:33 +0000 ROA not before: Fri 02 Jan 2026 02:17:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207054 IP address blocks: 45.10.12.0/22 maxlen: 22 45.15.92.0/22 maxlen: 22 66.81.144.0/21 maxlen: 21 185.167.112.0/22 maxlen: 22 185.231.192.0/22 maxlen: 22 194.58.24.0/22 maxlen: 22 2a0b:1a00::/29 maxlen: 29 2a0e:2680::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/isfq5knZVHsK0KsAerTopI3tTV0.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/isfq5knZVHsK0KsAerTopI3tTV0.mft rsync://rpki.ripe.net/repository/DEFAULT/isfq5knZVHsK0KsAerTopI3tTV0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7e:f3:d8:76:66:7e:e8:d3:93:da:92:1f:12:81:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8ac7eae649d9547b0ad0ab007ab4e8a48ded4d5d Validity Not Before: Jan 2 02:17:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1ad2cdf3be4032c539fda865926a1cc40521e443 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:99:b3:a6:55:6b:0d:95:29:d2:9d:e4:20:60: 87:6f:b3:b9:70:05:f0:f8:56:94:b3:24:4b:2f:14: 89:ee:9a:28:d2:ff:43:34:b9:6a:81:f1:94:f6:a9: 5c:d4:bb:51:e3:16:71:ed:bc:a9:0b:e8:1b:3f:91: d9:78:b0:d4:ee:75:8b:a0:58:f3:d2:2e:06:91:9d: 64:97:03:8c:50:af:95:93:fe:86:01:95:c8:98:d7: 11:6e:b0:ae:86:4e:3c:1f:16:fe:3e:b1:8f:93:f2: 6a:b2:51:da:60:16:06:ad:77:73:3e:8c:fe:8f:5b: cd:ad:e6:49:ee:1d:df:6d:86:b4:d0:3a:4e:71:ee: ad:c7:ec:7e:f4:4e:cc:07:bf:91:05:16:15:65:65: 93:89:bd:ce:db:c8:c6:ef:0d:37:6a:c4:f1:a6:82: cc:e9:f4:64:05:d2:af:ad:9d:7d:08:76:53:e9:74: b5:77:b1:04:0f:49:66:70:43:8a:87:02:8e:75:a5: 44:94:ff:f6:87:22:0f:b9:01:48:1e:45:d3:eb:07: be:e6:15:cb:46:42:55:bf:e6:fc:3b:4c:d8:fd:ec: e8:eb:65:5e:cf:45:3d:f1:d2:b6:cf:dd:d6:a8:12: ef:44:de:8a:8a:dc:fd:a7:44:42:22:15:48:ab:2b: a6:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:D2:CD:F3:BE:40:32:C5:39:FD:A8:65:92:6A:1C:C4:05:21:E4:43 X509v3 Authority Key Identifier: keyid:8A:C7:EA:E6:49:D9:54:7B:0A:D0:AB:00:7A:B4:E8:A4:8D:ED:4D:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/isfq5knZVHsK0KsAerTopI3tTV0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/GtLN875AMsU5_ahlkmocxAUh5EM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/isfq5knZVHsK0KsAerTopI3tTV0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.10.12.0/22 45.15.92.0/22 66.81.144.0/21 185.167.112.0/22 185.231.192.0/22 194.58.24.0/22 IPv6: 2a0b:1a00::/29 2a0e:2680::/29 Signature Algorithm: sha256WithRSAEncryption 0b:2e:59:38:00:52:b4:41:c9:83:09:5f:5c:32:ae:62:f2:4c: c7:48:ad:b5:19:dc:93:85:f9:cd:09:6e:ba:1d:f0:dd:16:d0: 02:f9:27:7c:77:01:85:c2:06:be:97:7e:3b:50:4a:47:90:9f: 62:80:08:ee:d8:5a:dd:ba:d0:bf:a7:21:f7:de:a9:40:ea:6c: e8:ef:49:c1:45:01:6a:10:0e:2a:89:0a:03:dd:51:6a:f2:e6: a4:5f:e3:96:8a:e8:da:2b:36:3a:5c:b9:73:22:0d:fe:5d:2c: 8d:86:30:c8:92:7f:e9:a1:d6:ae:dd:23:24:60:bd:ba:86:53: 50:58:72:20:f4:3e:a5:e3:c1:70:89:bd:8a:49:85:d8:5d:a7: 82:47:d6:af:82:47:ce:90:d2:01:a1:b6:04:96:e9:39:42:50: 6b:7f:26:a5:53:d5:26:95:ee:f5:4a:2c:54:6c:03:69:3a:17: 6e:3f:da:83:52:cf:f6:5a:5b:48:24:e0:91:04:61:d1:d9:7f: 42:bc:e5:83:b8:17:2e:86:37:21:54:a9:38:36:22:ae:fc:f4: 50:db:24:1c:bc:03:a5:52:42:ad:cd:31:89:85:ac:9c:7c:10: eb:66:5b:a6:af:d5:d9:51:fc:c2:b0:5c:da:69:d6:f5:7d:27: 60:05:f8:d5 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgISAZt8fvPYdmZ+6NOT2pIfEoE0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhYzdlYWU2NDlkOTU0N2IwYWQwYWIwMDdhYjRlOGE0OGRl ZDRkNWQwHhcNMjYwMTAyMDIxNzMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYWQyY2RmM2JlNDAzMmM1MzlmZGE4NjU5MjZhMWNjNDA1MjFlNDQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiZmzplVrDZUp0p3kIGCHb7O5cAXw +FaUsyRLLxSJ7poo0v9DNLlqgfGU9qlc1LtR4xZx7bypC+gbP5HZeLDU7nWLoFjz 0i4GkZ1klwOMUK+Vk/6GAZXImNcRbrCuhk48Hxb+PrGPk/JqslHaYBYGrXdzPoz+ j1vNreZJ7h3fbYa00DpOce6tx+x+9E7MB7+RBRYVZWWTib3O28jG7w03asTxpoLM 6fRkBdKvrZ19CHZT6XS1d7EED0lmcEOKhwKOdaVElP/2hyIPuQFIHkXT6we+5hXL RkJVv+b8O0zY/ezo62Vez0U98dK2z93WqBLvRN6Kitz9p0RCIhVIqyumiwIDAQAB o4ICPTCCAjkwHQYDVR0OBBYEFBrSzfO+QDLFOf2oZZJqHMQFIeRDMB8GA1UdIwQY MBaAFIrH6uZJ2VR7CtCrAHq06KSN7U1dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXNmcTVrblpWSHNLMEtzQWVyVG9wSTN0VFYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC82N2RiMGItMWQxMC00Yzk3LTlhZjYt YWMwMWYwYzU2NjJiLzEvR3RMTjg3NUFNc1U1X2FobGttb2N4QVVoNUVNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC82N2RiMGItMWQxMC00Yzk3LTlhZjYtYWMwMWYwYzU2NjJi LzEvaXNmcTVrblpWSHNLMEtzQWVyVG9wSTN0VFYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFMGCCsGAQUFBwEHAQH/BEQwQjAqBAIAATAkAwQCLQoMAwQC LQ9cAwQDQlGQAwQCuadwAwQCuefAAwQCwjoYMBQEAgACMA4DBQMqCxoAAwUDKg4m gDANBgkqhkiG9w0BAQsFAAOCAQEACy5ZOABStEHJgwlfXDKuYvJMx0ittRnck4X5 zQluuh3w3RbQAvknfHcBhcIGvpd+O1BKR5CfYoAI7tha3brQv6ch996pQOps6O9J wUUBahAOKokKA91RavLmpF/jloro2is2Oly5cyIN/l0sjYYwyJJ/6aHWrt0jJGC9 uoZTUFhyIPQ+pePBcIm9ikmF2F2ngkfWr4JHzpDSAaG2BJbpOUJQa38mpVPVJpXu 9UosVGwDaToXbj/ag1LP9lpbSCTgkQRh0dl/Qrzlg7gXLoY3IVSpODYirvz0UNsk HLwDpVJCrc0xiYWsnHwQ62Zbpq/V2VH8wrBc2mnW9X0nYAX41Q== -----END CERTIFICATE-----Generated at Mon Feb 9 18:44:03 2026 by rpki-client