This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/e6ac01-8bfb-4ef3-bfa7-e57440260be0/1/GzWcoTtAUqi5IHJ21cRxIUTLGpc.roa File: GzWcoTtAUqi5IHJ21cRxIUTLGpc.roa (raw, json) Hash identifier: AGr5HxX1J7ElW4g5zJTR1ojXT/07CVW4IMiNxRldrY4= Subject key identifier: 1B:35:9C:A1:3B:40:52:A8:B9:20:72:76:D5:C4:71:21:44:CB:1A:97 Certificate issuer: /CN=1d157824c638c718a07b535e0d824cb24afc070c Certificate serial: 019B7C11AF74AF6913F6A528822C4973DADF Authority key identifier: 1D:15:78:24:C6:38:C7:18:A0:7B:53:5E:0D:82:4C:B2:4A:FC:07:0C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HRV4JMY4xxige1NeDYJMskr8Bww.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/e6ac01-8bfb-4ef3-bfa7-e57440260be0/1/GzWcoTtAUqi5IHJ21cRxIUTLGpc.roa Signing time: Fri 02 Jan 2026 00:18:12 +0000 ROA not before: Fri 02 Jan 2026 00:18:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209472 IP address blocks: 88.218.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/e6ac01-8bfb-4ef3-bfa7-e57440260be0/1/HRV4JMY4xxige1NeDYJMskr8Bww.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/e6ac01-8bfb-4ef3-bfa7-e57440260be0/1/HRV4JMY4xxige1NeDYJMskr8Bww.mft rsync://rpki.ripe.net/repository/DEFAULT/HRV4JMY4xxige1NeDYJMskr8Bww.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:af:74:af:69:13:f6:a5:28:82:2c:49:73:da:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d157824c638c718a07b535e0d824cb24afc070c Validity Not Before: Jan 2 00:18:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1b359ca13b4052a8b9207276d5c4712144cb1a97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:3a:1b:e7:fc:f3:d8:2e:1e:24:b9:7b:76:c2: 2f:4d:00:e9:5a:26:42:51:4e:3d:d3:2f:80:00:e3: 40:54:cd:15:be:d2:f5:d9:34:e9:b0:3b:d4:ee:61: 89:27:f2:12:63:6e:b0:35:a8:4c:da:94:fa:9f:94: 96:e9:ed:d1:dd:e2:c9:4a:4a:9f:8a:4a:a0:ea:16: 0b:a3:8f:af:2c:b1:f4:98:2c:80:89:d4:6e:d1:23: 50:19:76:df:60:05:d4:f8:7b:4c:a3:dc:54:82:68: 3b:c5:85:78:cb:9a:c2:f3:c2:33:9a:78:bf:33:80: 1e:3c:95:9c:80:6f:38:40:12:01:86:63:17:c6:0e: 8e:d3:94:f6:31:54:b2:44:98:0f:9e:22:53:40:25: c7:46:d6:cd:27:b5:04:3a:f6:11:18:df:70:97:90: 50:93:2a:af:6d:11:2b:0d:87:1b:27:19:f0:75:22: 98:7b:82:9c:3c:1e:a8:fd:5e:38:7e:af:e8:0b:04: 79:8d:34:67:28:76:bb:71:d0:ba:63:bf:b1:ac:80: 0b:50:08:38:b7:2e:59:ca:07:0b:5c:5a:94:9b:56: a3:b4:ed:a7:aa:52:8f:c9:b2:5b:6c:22:07:9d:9e: 1c:c3:43:b6:68:11:36:86:a9:ae:07:aa:54:27:b0: 79:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:35:9C:A1:3B:40:52:A8:B9:20:72:76:D5:C4:71:21:44:CB:1A:97 X509v3 Authority Key Identifier: keyid:1D:15:78:24:C6:38:C7:18:A0:7B:53:5E:0D:82:4C:B2:4A:FC:07:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HRV4JMY4xxige1NeDYJMskr8Bww.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/e6ac01-8bfb-4ef3-bfa7-e57440260be0/1/GzWcoTtAUqi5IHJ21cRxIUTLGpc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/e6ac01-8bfb-4ef3-bfa7-e57440260be0/1/HRV4JMY4xxige1NeDYJMskr8Bww.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 88.218.220.0/24 Signature Algorithm: sha256WithRSAEncryption 84:c6:86:f1:26:b0:81:a8:72:b1:0b:df:7b:62:49:a9:a3:59: f7:51:4e:85:7d:c7:e2:ba:37:78:71:44:e1:13:bf:3b:0e:5a: 5a:7d:3a:02:4c:84:ec:cc:b2:66:10:b3:55:46:2a:25:d9:2c: 18:0a:af:a5:64:e8:3a:79:63:5b:cb:74:17:0f:9c:f7:f5:9f: e1:5d:8c:f8:74:a6:e2:89:94:d6:82:81:13:dd:a4:bd:8d:64: 33:b3:b9:db:2a:64:c0:03:a9:a1:e8:42:35:69:09:c4:2f:35: 6b:db:15:a5:c0:39:4c:5a:97:7e:9e:27:6d:fa:19:59:30:7f: 1f:26:11:66:d8:07:1a:51:2b:bb:77:f0:f8:c9:75:c2:64:09: be:1c:54:06:d7:4c:cb:8a:42:b6:f9:16:8d:ea:82:ee:fe:b0: ea:90:e6:3f:fc:21:40:34:cd:db:0e:95:b3:06:e6:a4:36:ec: 2a:6b:ea:16:f1:63:ce:43:40:ff:ff:a8:d8:b0:c1:65:67:ab: 51:a9:2e:dc:ab:15:54:ef:71:f3:2a:aa:27:17:e7:93:57:17: 4b:d0:89:05:fa:88:e2:6e:ee:71:41:b9:2b:be:66:86:d2:1e: 2d:05:cb:1f:c9:e5:e4:8c:ab:3f:cd:15:1b:cf:74:12:3c:19: 98:99:1e:94 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8Ea90r2kT9qUogixJc9rfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkMTU3ODI0YzYzOGM3MThhMDdiNTM1ZTBkODI0Y2IyNGFm YzA3MGMwHhcNMjYwMTAyMDAxODEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYjM1OWNhMTNiNDA1MmE4YjkyMDcyNzZkNWM0NzEyMTQ0Y2IxYTk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiDob5/zz2C4eJLl7dsIvTQDpWiZC UU490y+AAONAVM0VvtL12TTpsDvU7mGJJ/ISY26wNahM2pT6n5SW6e3R3eLJSkqf ikqg6hYLo4+vLLH0mCyAidRu0SNQGXbfYAXU+HtMo9xUgmg7xYV4y5rC88Izmni/ M4AePJWcgG84QBIBhmMXxg6O05T2MVSyRJgPniJTQCXHRtbNJ7UEOvYRGN9wl5BQ kyqvbRErDYcbJxnwdSKYe4KcPB6o/V44fq/oCwR5jTRnKHa7cdC6Y7+xrIALUAg4 ty5ZygcLXFqUm1ajtO2nqlKPybJbbCIHnZ4cw0O2aBE2hqmuB6pUJ7B5xQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBs1nKE7QFKouSBydtXEcSFEyxqXMB8GA1UdIwQY MBaAFB0VeCTGOMcYoHtTXg2CTLJK/AcMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFJWNEpNWTR4eGlnZTFOZURZSk1za3I4Qnd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC9lNmFjMDEtOGJmYi00ZWYzLWJmYTct ZTU3NDQwMjYwYmUwLzEvR3pXY29UdEFVcWk1SUhKMjFjUnhJVVRMR3BjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC9lNmFjMDEtOGJmYi00ZWYzLWJmYTctZTU3NDQwMjYwYmUw LzEvSFJWNEpNWTR4eGlnZTFOZURZSk1za3I4Qnd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWNrcMA0G CSqGSIb3DQEBCwUAA4IBAQCExobxJrCBqHKxC997Ykmpo1n3UU6Ffcfiujd4cUTh E787DlpafToCTITszLJmELNVRiol2SwYCq+lZOg6eWNby3QXD5z39Z/hXYz4dKbi iZTWgoET3aS9jWQzs7nbKmTAA6mh6EI1aQnELzVr2xWlwDlMWpd+nidt+hlZMH8f JhFm2AcaUSu7d/D4yXXCZAm+HFQG10zLikK2+RaN6oLu/rDqkOY//CFANM3bDpWz BuakNuwqa+oW8WPOQ0D//6jYsMFlZ6tRqS7cqxVU73HzKqonF+eTVxdL0IkF+oji bu5xQbkrvmaG0h4tBcsfyeXkjKs/zRUbz3QSPBmYmR6U -----END CERTIFICATE-----Generated at Mon Jan 12 00:14:48 2026 by rpki-client