This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/GkloadKipNGLxGdn49lnbZG57SQ.roa File: GkloadKipNGLxGdn49lnbZG57SQ.roa (raw, json) Hash identifier: HQ8BBGVI4OetCOmU12/iTT2SoIrhzR4vqVTSloeX4A8= Subject key identifier: 1A:49:68:69:D2:A2:A4:D1:8B:C4:67:67:E3:D9:67:6D:91:B9:ED:24 Certificate issuer: /CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3 Certificate serial: 019B79ED0181D298324069A29BEAC952FBF2 Authority key identifier: 35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/GkloadKipNGLxGdn49lnbZG57SQ.roa Signing time: Thu 01 Jan 2026 14:18:54 +0000 ROA not before: Thu 01 Jan 2026 14:18:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201995 IP address blocks: 185.63.84.0/24 maxlen: 24 2a06:4300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:01:81:d2:98:32:40:69:a2:9b:ea:c9:52:fb:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3 Validity Not Before: Jan 1 14:18:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1a496869d2a2a4d18bc46767e3d9676d91b9ed24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c9:18:7a:35:bf:9d:df:8a:92:49:e2:78:0f: 1f:66:4b:34:92:da:bd:3e:d5:df:03:50:c6:8a:03: 52:0e:68:b9:ca:b1:90:ba:a8:76:f9:e4:42:8f:f3: 84:39:a4:1d:f6:85:03:1c:6c:8e:40:84:94:9a:fc: 5f:45:0a:b8:32:4e:8d:d1:f2:4b:ed:84:de:41:d2: eb:50:e3:8f:42:b3:74:0f:e0:2c:ec:c4:16:47:0d: 6b:08:3e:cb:57:3e:6c:61:20:10:7b:d8:d8:bb:b2: 9e:82:25:7f:c5:4d:29:08:e2:4d:f6:d4:02:fc:f7: 3c:7a:1e:1a:0b:d2:e5:37:06:d2:bd:65:c8:c1:a0: 71:1b:c9:ee:6b:13:d1:af:aa:a5:55:0f:a1:7f:35: 15:b0:3d:45:25:c4:62:c1:5c:2c:83:4e:5e:74:72: b5:b0:ab:78:e7:b4:90:9b:07:6a:13:b7:1f:8f:1a: 88:0a:fd:6c:53:e3:23:46:58:1a:96:d5:fc:1f:8c: e0:9f:69:f5:58:7b:91:77:e9:3e:9b:71:b0:b2:e1: d1:22:e3:65:6f:2a:d9:10:c5:05:48:64:b1:ff:fc: 92:ab:53:e0:d5:eb:ab:81:1e:e3:fe:6d:d9:52:9a: ad:24:27:74:49:68:3c:8c:1e:97:51:6e:4b:60:8e: 30:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:49:68:69:D2:A2:A4:D1:8B:C4:67:67:E3:D9:67:6D:91:B9:ED:24 X509v3 Authority Key Identifier: keyid:35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/GkloadKipNGLxGdn49lnbZG57SQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.63.84.0/24 IPv6: 2a06:4300::/32 Signature Algorithm: sha256WithRSAEncryption 6e:16:16:de:79:e1:59:f4:10:cf:60:4c:03:ea:0c:6f:e8:1e: 59:dc:5e:e6:a2:b6:bc:1e:2e:dd:a0:fd:b9:ef:f9:89:34:9d: 89:16:13:ae:6d:81:31:25:f8:98:a7:75:51:82:56:5e:97:8c: d1:4c:40:49:01:65:31:38:68:09:46:0f:de:26:c6:ac:f0:a1: 72:45:59:33:70:60:1a:23:65:72:e0:f8:28:38:ff:6f:b5:d6: 80:f2:59:c4:be:76:a3:bb:68:5b:6d:2c:f1:82:e0:a9:a6:01: 19:e9:fb:c1:82:bd:ae:23:07:ab:4b:3a:79:93:ca:76:96:2f: 45:d9:02:a2:57:45:36:c7:2f:56:99:51:7b:fe:ed:b7:ac:72: 82:c8:f9:19:33:0f:39:ef:a2:78:cb:58:2d:d8:6f:b5:ad:f6: c3:a5:b1:05:e6:71:a4:67:c0:ba:d3:9a:b8:3f:8b:a6:9e:15: b0:57:89:a9:e9:f3:71:de:d3:55:78:62:ef:41:53:29:48:dd: 88:d2:4b:5e:6e:21:72:1b:a2:ea:7f:bc:cc:d3:78:22:ec:4d: af:29:d6:8a:e4:13:76:ea:7d:21:8b:a1:70:02:da:70:f3:48: 03:db:93:a0:55:61:32:f1:33:38:2f:4e:99:5d:28:f7:f8:49: 18:33:13:64 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt57QGB0pgyQGmim+rJUvvyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1MzNkNDM5MDM1Y2NkYzVmMGMzOWQxYjNmYjE2MTk1YjU1 NWZjYTMwHhcNMjYwMTAxMTQxODU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYTQ5Njg2OWQyYTJhNGQxOGJjNDY3NjdlM2Q5Njc2ZDkxYjllZDI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsMkYejW/nd+KkknieA8fZks0ktq9 PtXfA1DGigNSDmi5yrGQuqh2+eRCj/OEOaQd9oUDHGyOQISUmvxfRQq4Mk6N0fJL 7YTeQdLrUOOPQrN0D+As7MQWRw1rCD7LVz5sYSAQe9jYu7KegiV/xU0pCOJN9tQC /Pc8eh4aC9LlNwbSvWXIwaBxG8nuaxPRr6qlVQ+hfzUVsD1FJcRiwVwsg05edHK1 sKt457SQmwdqE7cfjxqICv1sU+MjRlgaltX8H4zgn2n1WHuRd+k+m3GwsuHRIuNl byrZEMUFSGSx//ySq1Pg1eurgR7j/m3ZUpqtJCd0SWg8jB6XUW5LYI4wFwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFBpJaGnSoqTRi8RnZ+PZZ22Rue0kMB8GA1UdIwQY MBaAFDUz1DkDXM3F8MOdGz+xYZW1VfyjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTlRQVU9RTmN6Y1h3dzUwYlA3RmhsYlZWX0tNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy84Y2YyYTYtNDUyOS00M2Q5LWI3ODIt MzZlODVhYmU1MmZmLzEvR2tsb2FkS2lwTkdMeEdkbjQ5bG5iWkc1N1NRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy84Y2YyYTYtNDUyOS00M2Q5LWI3ODItMzZlODVhYmU1MmZm LzEvTlRQVU9RTmN6Y1h3dzUwYlA3RmhsYlZWX0tNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuT9UMA0E AgACMAcDBQAqBkMAMA0GCSqGSIb3DQEBCwUAA4IBAQBuFhbeeeFZ9BDPYEwD6gxv 6B5Z3F7mora8Hi7doP257/mJNJ2JFhOubYExJfiYp3VRglZel4zRTEBJAWUxOGgJ Rg/eJsas8KFyRVkzcGAaI2Vy4PgoOP9vtdaA8lnEvnaju2hbbSzxguCppgEZ6fvB gr2uIwerSzp5k8p2li9F2QKiV0U2xy9WmVF7/u23rHKCyPkZMw8576J4y1gt2G+1 rfbDpbEF5nGkZ8C605q4P4umnhWwV4mp6fNx3tNVeGLvQVMpSN2I0ktebiFyG6Lq f7zM03gi7E2vKdaK5BN26n0hi6FwAtpw80gD25OgVWEy8TM4L06ZXSj3+EkYMxNk -----END CERTIFICATE-----Generated at Mon Feb 9 23:41:49 2026 by rpki-client