This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/ef2192-f2d9-4a56-93f6-17382539b000/1/GH-U3lzB4LZDFyVG2bUd3n4SBfE.roa File: GH-U3lzB4LZDFyVG2bUd3n4SBfE.roa (raw, json) Hash identifier: sTn8rRWu0dVA+yyqQLOUoU8NLea1KDmgRn4CRX9pCbE= Subject key identifier: 18:7F:94:DE:5C:C1:E0:B6:43:17:25:46:D9:B5:1D:DE:7E:12:05:F1 Certificate issuer: /CN=b30515f47da925d9f9013808aa9113c2bde96d9a Certificate serial: 019B775955297EF4927D7B5B2E1DDB1605B8 Authority key identifier: B3:05:15:F4:7D:A9:25:D9:F9:01:38:08:AA:91:13:C2:BD:E9:6D:9A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/swUV9H2pJdn5ATgIqpETwr3pbZo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/ef2192-f2d9-4a56-93f6-17382539b000/1/GH-U3lzB4LZDFyVG2bUd3n4SBfE.roa Signing time: Thu 01 Jan 2026 02:18:21 +0000 ROA not before: Thu 01 Jan 2026 02:18:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201661 IP address blocks: 185.53.152.0/22 maxlen: 22 2a04:cdc0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/ef2192-f2d9-4a56-93f6-17382539b000/1/swUV9H2pJdn5ATgIqpETwr3pbZo.crl rsync://rpki.ripe.net/repository/DEFAULT/1e/ef2192-f2d9-4a56-93f6-17382539b000/1/swUV9H2pJdn5ATgIqpETwr3pbZo.mft rsync://rpki.ripe.net/repository/DEFAULT/swUV9H2pJdn5ATgIqpETwr3pbZo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 11 Feb 2026 00:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:55:29:7e:f4:92:7d:7b:5b:2e:1d:db:16:05:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b30515f47da925d9f9013808aa9113c2bde96d9a Validity Not Before: Jan 1 02:18:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=187f94de5cc1e0b643172546d9b51dde7e1205f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:8e:94:19:1b:bb:71:70:ce:53:a2:d9:e8:01: cb:ae:c8:01:dd:1e:01:b1:11:6e:df:c5:8f:97:cc: df:ad:72:90:80:41:1b:05:56:19:ef:ed:25:ce:0f: 76:c8:1f:98:09:4d:a0:cd:33:7f:02:74:0c:41:e5: a0:32:95:61:e2:39:ac:a3:a8:35:cd:05:7c:8d:57: 7e:0e:7a:7a:95:78:27:78:50:ab:1c:28:4a:66:e2: 7b:76:0e:35:17:86:56:6b:74:a1:aa:94:88:9c:40: a8:6a:15:8f:a9:cf:10:dc:a2:56:5a:a5:ab:47:5a: 5a:e8:8f:39:21:0e:b3:42:b1:ed:29:b0:bb:25:ce: 5c:01:c2:59:1b:81:40:b6:60:e0:ad:14:2d:52:1c: b3:fd:b5:67:6f:cd:22:f1:b0:71:39:54:57:ad:0d: 0b:b1:5e:7f:2c:97:95:7c:dc:ea:c3:d5:75:72:7c: ab:d4:e9:cb:3a:ab:6a:cc:f8:7e:82:d2:9a:64:58: d7:77:40:cd:c0:57:50:0e:7a:8f:c7:38:5d:90:e8: 36:d8:d1:59:84:0f:9a:b2:70:7a:b3:31:60:29:ed: 46:f7:e2:e3:b2:9a:f7:1b:db:cf:a8:76:5b:38:79: 68:10:a4:f4:6d:54:e8:94:80:2f:20:b5:20:bc:68: f0:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:7F:94:DE:5C:C1:E0:B6:43:17:25:46:D9:B5:1D:DE:7E:12:05:F1 X509v3 Authority Key Identifier: keyid:B3:05:15:F4:7D:A9:25:D9:F9:01:38:08:AA:91:13:C2:BD:E9:6D:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/swUV9H2pJdn5ATgIqpETwr3pbZo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/ef2192-f2d9-4a56-93f6-17382539b000/1/GH-U3lzB4LZDFyVG2bUd3n4SBfE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/ef2192-f2d9-4a56-93f6-17382539b000/1/swUV9H2pJdn5ATgIqpETwr3pbZo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.53.152.0/22 IPv6: 2a04:cdc0::/29 Signature Algorithm: sha256WithRSAEncryption 88:e1:4a:8d:bf:6a:3d:9d:ae:2f:76:c8:cd:e7:94:36:33:db: 76:58:98:a2:99:49:77:88:cb:4e:28:49:8d:6e:41:93:a3:5d: 81:e7:12:99:af:a3:51:0f:ce:1d:f3:4e:3d:19:6a:01:2d:75: 49:2e:02:10:a1:ac:f5:99:3e:2b:13:31:46:4c:8b:bb:a3:48: 27:19:ce:9d:0c:b5:c3:ba:9e:29:e8:ae:39:5f:f1:88:0a:c6: b6:8f:d2:d3:58:2d:5e:02:b6:f1:2b:49:45:e2:44:3a:6b:36: 21:75:92:15:9a:b6:be:3f:41:7e:31:72:fe:7e:65:a9:3d:53: 17:9e:2f:f2:8a:da:cc:74:7e:9f:8b:d8:41:25:0f:78:0b:0d: b2:53:76:41:b5:a8:15:46:35:fc:d5:71:88:a6:a1:2c:0f:14: 8e:76:1f:9a:02:af:29:63:2a:a5:64:8a:09:ad:99:de:45:95: 19:e2:72:28:4f:bf:54:49:19:09:a1:a3:79:32:85:7f:12:45: 29:05:0a:af:9c:a9:5b:90:ff:8e:b3:e8:4e:bb:60:9f:65:cf: e3:0c:50:47:75:dd:21:32:e6:12:d1:73:e4:e0:0a:f7:24:06: c5:76:82:1a:2a:39:3f:67:70:95:e8:88:03:77:73:11:0c:f9: 52:a1:20:d6 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt3WVUpfvSSfXtbLh3bFgW4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzMDUxNWY0N2RhOTI1ZDlmOTAxMzgwOGFhOTExM2MyYmRl OTZkOWEwHhcNMjYwMTAxMDIxODIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxODdmOTRkZTVjYzFlMGI2NDMxNzI1NDZkOWI1MWRkZTdlMTIwNWYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo46UGRu7cXDOU6LZ6AHLrsgB3R4B sRFu38WPl8zfrXKQgEEbBVYZ7+0lzg92yB+YCU2gzTN/AnQMQeWgMpVh4jmso6g1 zQV8jVd+Dnp6lXgneFCrHChKZuJ7dg41F4ZWa3ShqpSInECoahWPqc8Q3KJWWqWr R1pa6I85IQ6zQrHtKbC7Jc5cAcJZG4FAtmDgrRQtUhyz/bVnb80i8bBxOVRXrQ0L sV5/LJeVfNzqw9V1cnyr1OnLOqtqzPh+gtKaZFjXd0DNwFdQDnqPxzhdkOg22NFZ hA+asnB6szFgKe1G9+Ljspr3G9vPqHZbOHloEKT0bVTolIAvILUgvGjwKwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFBh/lN5cweC2QxclRtm1Hd5+EgXxMB8GA1UdIwQY MBaAFLMFFfR9qSXZ+QE4CKqRE8K96W2aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3dVVjlIMnBKZG41QVRnSXFwRVR3cjNwYlpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS9lZjIxOTItZjJkOS00YTU2LTkzZjYt MTczODI1MzliMDAwLzEvR0gtVTNsekI0TFpERnlWRzJiVWQzbjRTQmZFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZS9lZjIxOTItZjJkOS00YTU2LTkzZjYtMTczODI1MzliMDAw LzEvc3dVVjlIMnBKZG41QVRnSXFwRVR3cjNwYlpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuTWYMA0E AgACMAcDBQMqBM3AMA0GCSqGSIb3DQEBCwUAA4IBAQCI4UqNv2o9na4vdsjN55Q2 M9t2WJiimUl3iMtOKEmNbkGTo12B5xKZr6NRD84d8049GWoBLXVJLgIQoaz1mT4r EzFGTIu7o0gnGc6dDLXDup4p6K45X/GICsa2j9LTWC1eArbxK0lF4kQ6azYhdZIV mra+P0F+MXL+fmWpPVMXni/yitrMdH6fi9hBJQ94Cw2yU3ZBtagVRjX81XGIpqEs DxSOdh+aAq8pYyqlZIoJrZneRZUZ4nIoT79USRkJoaN5MoV/EkUpBQqvnKlbkP+O s+hOu2CfZc/jDFBHdd0hMuYS0XPk4Ar3JAbFdoIaKjk/Z3CV6IgDd3MRDPlSoSDW -----END CERTIFICATE-----Generated at Tue Feb 10 08:38:26 2026 by rpki-client