This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/GhSjihUm1uIJFnECZEmwr6wzeVM.roa File: GhSjihUm1uIJFnECZEmwr6wzeVM.roa (raw, json) Hash identifier: RkS6d7zu9YD56Sn9sum8A/6fzlDw2CcrqIAmhYKwNY4= Subject key identifier: 1A:14:A3:8A:15:26:D6:E2:09:16:71:02:64:49:B0:AF:AC:33:79:53 Certificate issuer: /CN=e0dee1b06ba24a676213f976a4b50c129dcb2b73 Certificate serial: 019B79ED394302FC96EC2BA99657B8333008 Authority key identifier: E0:DE:E1:B0:6B:A2:4A:67:62:13:F9:76:A4:B5:0C:12:9D:CB:2B:73 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4N7hsGuiSmdiE_l2pLUMEp3LK3M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/GhSjihUm1uIJFnECZEmwr6wzeVM.roa Signing time: Thu 01 Jan 2026 14:19:08 +0000 ROA not before: Thu 01 Jan 2026 14:19:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 396982 IP address blocks: 212.38.240.0/24 maxlen: 24 212.38.241.0/24 maxlen: 24 212.38.242.0/24 maxlen: 24 212.38.243.0/24 maxlen: 24 212.38.244.0/24 maxlen: 24 2001:671:fc00::/40 maxlen: 40 2001:671:fd00::/40 maxlen: 40 2001:671:fe00::/40 maxlen: 40 2001:671:ff00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/4N7hsGuiSmdiE_l2pLUMEp3LK3M.crl rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/4N7hsGuiSmdiE_l2pLUMEp3LK3M.mft rsync://rpki.ripe.net/repository/DEFAULT/4N7hsGuiSmdiE_l2pLUMEp3LK3M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 21:02:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:39:43:02:fc:96:ec:2b:a9:96:57:b8:33:30:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e0dee1b06ba24a676213f976a4b50c129dcb2b73 Validity Not Before: Jan 1 14:19:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1a14a38a1526d6e2091671026449b0afac337953 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:af:cd:f0:a4:d4:aa:79:44:60:d2:62:63:9e: fa:7b:1c:92:4a:73:c0:0e:75:59:fb:16:f6:2d:c1: 30:71:75:19:4d:55:71:0b:98:27:65:cf:06:61:e9: 30:7a:35:4c:e2:e1:a2:cf:cd:fb:5e:59:34:ed:f4: bb:3a:5c:6a:12:e8:f2:e1:e6:ff:04:ee:3a:9c:c3: 05:5d:ae:6d:c7:54:6c:f9:84:2d:35:76:fa:4e:6e: 70:28:ba:90:a8:13:ea:a6:45:6a:75:0c:bd:98:6e: 13:1a:6e:03:e5:2e:0d:8b:87:6d:16:70:82:35:69: 53:ee:df:09:08:03:84:82:72:f9:15:ec:f5:d8:35: df:a2:82:be:41:72:d1:6a:46:2a:0c:4d:75:f5:b3: 48:c2:b9:34:0d:a6:b9:a8:0e:0d:97:e0:c6:e7:a9: f8:e1:ee:bd:9f:8c:6f:fd:02:ff:af:93:f7:22:64: 49:42:76:5f:6d:67:8b:53:42:1f:7a:c1:e9:8d:59: d1:13:4c:20:4a:ec:8d:88:58:ab:f8:09:92:d6:db: 4c:25:6b:8f:3d:af:f4:4c:40:a1:be:a4:8c:de:a6: bd:15:d9:2c:23:d9:97:7a:de:c5:02:44:dd:56:88: ad:ad:18:eb:1e:f5:e7:9c:f5:b6:87:14:de:ff:0a: ae:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:14:A3:8A:15:26:D6:E2:09:16:71:02:64:49:B0:AF:AC:33:79:53 X509v3 Authority Key Identifier: keyid:E0:DE:E1:B0:6B:A2:4A:67:62:13:F9:76:A4:B5:0C:12:9D:CB:2B:73 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4N7hsGuiSmdiE_l2pLUMEp3LK3M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/GhSjihUm1uIJFnECZEmwr6wzeVM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/4N7hsGuiSmdiE_l2pLUMEp3LK3M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.38.240.0-212.38.244.255 IPv6: 2001:671:fc00::/38 Signature Algorithm: sha256WithRSAEncryption 86:26:0e:42:72:fb:fe:03:e5:46:11:c5:04:f5:d2:a3:d7:e4: 21:c0:1b:d1:58:10:e8:70:99:c9:aa:b7:c2:aa:f8:aa:19:c0: 9e:0e:54:1a:e0:91:0e:14:1a:e9:d4:fb:06:29:4a:9a:9b:02: d3:42:d1:ae:81:46:11:61:e4:a7:b9:c6:0e:70:98:54:4a:9a: 3c:3d:55:e6:1e:2e:b7:96:34:e6:e3:65:44:5a:75:a0:da:ef: b2:48:18:8d:18:2b:e1:7b:68:dc:71:d9:91:33:a8:0e:ce:a6: 0a:c3:cf:d8:b0:15:68:cd:49:f3:ad:af:24:35:4a:44:db:08: 5d:74:83:d3:f2:8b:2f:3f:66:c3:56:13:b1:b3:25:e3:18:cc: 85:0e:d8:b3:7d:61:ca:37:c6:3f:6a:ee:25:43:41:f8:4a:8d: 48:6f:5f:18:c8:8b:8c:ed:a3:75:80:6a:5e:2c:1b:6f:ef:c0: 1b:10:59:64:1e:d7:e0:ab:60:ed:0a:71:cf:0d:f2:24:3e:2d: b9:70:d6:78:f4:44:5b:b6:e5:37:0a:d5:79:22:88:10:d9:26: 12:0a:63:03:fc:af:23:5d:68:80:2b:1d:7b:be:15:9c:3b:c1: c9:20:98:78:40:a3:4d:f0:c7:c1:01:72:c0:88:ed:c2:fe:38: 76:91:f7:64 -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZt57TlDAvyW7Cuplle4MzAIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUwZGVlMWIwNmJhMjRhNjc2MjEzZjk3NmE0YjUwYzEyOWRj YjJiNzMwHhcNMjYwMTAxMTQxOTA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYTE0YTM4YTE1MjZkNmUyMDkxNjcxMDI2NDQ5YjBhZmFjMzM3OTUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjK/N8KTUqnlEYNJiY576exySSnPA DnVZ+xb2LcEwcXUZTVVxC5gnZc8GYekwejVM4uGiz837Xlk07fS7OlxqEujy4eb/ BO46nMMFXa5tx1Rs+YQtNXb6Tm5wKLqQqBPqpkVqdQy9mG4TGm4D5S4Ni4dtFnCC NWlT7t8JCAOEgnL5Fez12DXfooK+QXLRakYqDE119bNIwrk0Daa5qA4Nl+DG56n4 4e69n4xv/QL/r5P3ImRJQnZfbWeLU0IfesHpjVnRE0wgSuyNiFir+AmS1ttMJWuP Pa/0TEChvqSM3qa9FdksI9mXet7FAkTdVoitrRjrHvXnnPW2hxTe/wquOQIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFBoUo4oVJtbiCRZxAmRJsK+sM3lTMB8GA1UdIwQY MBaAFODe4bBrokpnYhP5dqS1DBKdyytzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNE43aHNHdWlTbWRpRV9sMnBMVU1FcDNMSzNNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC9jMjJkYzktYzdiYS00MTU2LWE3OWMt MTVlOTBiZjg3ZmFiLzEvR2hTamloVW0xdUlKRm5FQ1pFbXdyNnd6ZVZNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC9jMjJkYzktYzdiYS00MTU2LWE3OWMtMTVlOTBiZjg3ZmFi LzEvNE43aHNHdWlTbWRpRV9sMnBMVU1FcDNMSzNNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAUBAIAATAOMAwDBATUJvAD BADUJvQwDgQCAAIwCAMGAiABBnH8MA0GCSqGSIb3DQEBCwUAA4IBAQCGJg5Ccvv+ A+VGEcUE9dKj1+QhwBvRWBDocJnJqrfCqviqGcCeDlQa4JEOFBrp1PsGKUqamwLT QtGugUYRYeSnucYOcJhUSpo8PVXmHi63ljTm42VEWnWg2u+ySBiNGCvhe2jccdmR M6gOzqYKw8/YsBVozUnzra8kNUpE2whddIPT8osvP2bDVhOxsyXjGMyFDtizfWHK N8Y/au4lQ0H4So1Ib18YyIuM7aN1gGpeLBtv78AbEFlkHtfgq2DtCnHPDfIkPi25 cNZ49ERbtuU3CtV5IogQ2SYSCmMD/K8jXWiAKx17vhWcO8HJIJh4QKNN8MfBAXLA iO3C/jh2kfdk -----END CERTIFICATE-----Generated at Fri Jan 9 06:21:09 2026 by rpki-client