This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/GEvyRWGXbdbHUTAehbJp3YhlTgY.roa File: GEvyRWGXbdbHUTAehbJp3YhlTgY.roa (raw, json) Hash identifier: b/xFEmDMbOi0xEK2SMYux/TUJuKIqsMzgBODuaUhYag= Subject key identifier: 18:4B:F2:45:61:97:6D:D6:C7:51:30:1E:85:B2:69:DD:88:65:4E:06 Certificate issuer: /CN=42a6e640198013de12a251f086030cd78c732516 Certificate serial: 019B7E382F9F67099DC5BB203D9E30965A0A Authority key identifier: 42:A6:E6:40:19:80:13:DE:12:A2:51:F0:86:03:0C:D7:8C:73:25:16 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/GEvyRWGXbdbHUTAehbJp3YhlTgY.roa Signing time: Fri 02 Jan 2026 10:19:30 +0000 ROA not before: Fri 02 Jan 2026 10:19:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20672 IP address blocks: 185.14.180.0/22 maxlen: 24 2a03:b6c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:2f:9f:67:09:9d:c5:bb:20:3d:9e:30:96:5a:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42a6e640198013de12a251f086030cd78c732516 Validity Not Before: Jan 2 10:19:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=184bf24561976dd6c751301e85b269dd88654e06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:14:58:e3:44:22:10:0b:44:0d:02:d9:19:af: 55:07:12:fd:13:36:b2:12:75:03:16:c7:46:fa:1b: 77:2b:c6:62:ae:a6:67:ec:71:fa:95:2c:46:50:44: d9:cc:28:ce:4a:dc:ff:4a:ee:dc:f8:2b:25:04:bd: b8:27:14:af:9f:17:cc:17:06:a2:3f:f2:59:64:73: 23:66:8e:53:b8:70:21:36:c3:3c:15:7a:b7:bc:e8: 04:d3:40:4c:38:fc:44:29:ea:9f:26:fc:83:09:e7: d8:5b:41:95:1d:a6:65:37:98:50:41:40:21:ee:59: f9:7a:6b:7d:37:a9:61:b6:c3:bd:8e:cb:c4:cb:75: 30:35:51:7c:8d:6e:32:0f:50:43:2d:52:e5:7e:bb: a6:c7:e6:71:1e:6e:75:96:66:86:8e:64:ca:9e:8b: 5c:75:3e:a2:76:d0:0c:5e:03:a5:28:64:e7:e4:77: 20:19:a6:ec:2b:8c:9b:f5:18:ae:27:23:d3:e0:45: 01:14:3c:2c:d1:c4:1f:0f:54:0e:19:97:d7:82:0e: a0:f9:5b:a3:aa:9a:70:38:75:d8:b4:e1:b7:6f:fc: 9b:ad:f2:48:75:f3:96:41:1c:81:4d:f1:59:0c:69: 72:31:ad:46:30:70:c6:41:cf:a8:fd:a3:f3:2f:d2: b9:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:4B:F2:45:61:97:6D:D6:C7:51:30:1E:85:B2:69:DD:88:65:4E:06 X509v3 Authority Key Identifier: keyid:42:A6:E6:40:19:80:13:DE:12:A2:51:F0:86:03:0C:D7:8C:73:25:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/GEvyRWGXbdbHUTAehbJp3YhlTgY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.14.180.0/22 IPv6: 2a03:b6c0::/32 Signature Algorithm: sha256WithRSAEncryption 7f:c1:20:31:dd:40:f6:5c:8a:0d:2e:63:ca:f0:82:57:36:d9: 74:36:dc:62:e5:0d:21:47:c1:4c:07:c7:c9:a7:1e:d6:a8:29: 32:e0:19:2e:40:e0:c5:35:fc:90:ca:c6:54:db:48:d8:2f:2b: 65:03:2c:48:02:4b:f5:3b:14:2d:94:e2:89:39:13:2b:f1:a1: 2c:ca:9b:10:3e:70:06:8c:26:65:76:5c:fc:f8:3a:2f:ec:4a: 84:03:5a:f6:d2:6a:d9:c9:55:ed:6a:e2:ae:4f:a9:22:06:65: 2c:5d:d3:db:ad:ed:6f:97:bc:4c:e2:fb:40:72:4c:dd:10:fb: 2b:90:9d:69:25:bd:cd:c4:2e:47:e1:99:a9:ea:d6:9a:6a:19: 57:35:b6:7e:91:2f:7f:7e:2e:fa:bd:fb:91:08:68:2a:1a:46: fc:76:c0:ee:28:03:5c:df:f2:0b:4c:61:94:b6:ab:8f:a0:5b: aa:e0:8b:c0:c9:e6:8b:ba:c3:3a:0b:6d:ba:f4:5f:7c:5d:de: d2:e9:c4:00:43:bc:59:8f:17:ef:82:06:06:e4:30:49:04:33: a3:34:4e:e0:e7:3e:6c:4f:26:c3:c4:c3:89:2e:59:a3:3a:f2: 3e:60:62:7d:f5:a2:91:f5:1d:42:96:2a:cb:28:63:76:6a:f0: de:1a:9b:2e -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt+OC+fZwmdxbsgPZ4wlloKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyYTZlNjQwMTk4MDEzZGUxMmEyNTFmMDg2MDMwY2Q3OGM3 MzI1MTYwHhcNMjYwMTAyMTAxOTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxODRiZjI0NTYxOTc2ZGQ2Yzc1MTMwMWU4NWIyNjlkZDg4NjU0ZTA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5BRY40QiEAtEDQLZGa9VBxL9Ezay EnUDFsdG+ht3K8ZirqZn7HH6lSxGUETZzCjOStz/Su7c+CslBL24JxSvnxfMFwai P/JZZHMjZo5TuHAhNsM8FXq3vOgE00BMOPxEKeqfJvyDCefYW0GVHaZlN5hQQUAh 7ln5emt9N6lhtsO9jsvEy3UwNVF8jW4yD1BDLVLlfrumx+ZxHm51lmaGjmTKnotc dT6idtAMXgOlKGTn5HcgGabsK4yb9RiuJyPT4EUBFDws0cQfD1QOGZfXgg6g+Vuj qppwOHXYtOG3b/ybrfJIdfOWQRyBTfFZDGlyMa1GMHDGQc+o/aPzL9K5awIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFBhL8kVhl23Wx1EwHoWyad2IZU4GMB8GA1UdIwQY MBaAFEKm5kAZgBPeEqJR8IYDDNeMcyUWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUXFibVFCbUFFOTRTb2xId2hnTU0xNHh6SlJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9iYTJmM2QtNmJkMi00ZjMyLTgxYWYt YzI4NzY3MGNjZTUxLzEvR0V2eVJXR1hiZGJIVVRBZWhiSnAzWWhsVGdZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi9iYTJmM2QtNmJkMi00ZjMyLTgxYWYtYzI4NzY3MGNjZTUx LzEvUXFibVFCbUFFOTRTb2xId2hnTU0xNHh6SlJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuQ60MA0E AgACMAcDBQAqA7bAMA0GCSqGSIb3DQEBCwUAA4IBAQB/wSAx3UD2XIoNLmPK8IJX Ntl0Ntxi5Q0hR8FMB8fJpx7WqCky4BkuQODFNfyQysZU20jYLytlAyxIAkv1OxQt lOKJORMr8aEsypsQPnAGjCZldlz8+Dov7EqEA1r20mrZyVXtauKuT6kiBmUsXdPb re1vl7xM4vtAckzdEPsrkJ1pJb3NxC5H4Zmp6taaahlXNbZ+kS9/fi76vfuRCGgq Gkb8dsDuKANc3/ILTGGUtquPoFuq4IvAyeaLusM6C2269F98Xd7S6cQAQ7xZjxfv ggYG5DBJBDOjNE7g5z5sTybDxMOJLlmjOvI+YGJ99aKR9R1ClirLKGN2avDeGpsu -----END CERTIFICATE-----Generated at Tue Feb 10 02:58:27 2026 by rpki-client