This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/caa743-1c13-4a25-9f6a-65be5503165d/1/gnrzL3jyRlcBtVcsWS9Y5A_BL44.roa File: gnrzL3jyRlcBtVcsWS9Y5A_BL44.roa (raw, json) Hash identifier: PhKB03egTh15leaOC+yb5z47cf5akEmY1WAfSKLXVsI= Subject key identifier: 82:7A:F3:2F:78:F2:46:57:01:B5:57:2C:59:2F:58:E4:0F:C1:2F:8E Certificate issuer: /CN=5a376c8008d6abd962341563dd2a4dccaf153cba Certificate serial: 019B7D5C61C6C84D08E52BD206F1562FEF6D Authority key identifier: 5A:37:6C:80:08:D6:AB:D9:62:34:15:63:DD:2A:4D:CC:AF:15:3C:BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WjdsgAjWq9liNBVj3SpNzK8VPLo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/caa743-1c13-4a25-9f6a-65be5503165d/1/gnrzL3jyRlcBtVcsWS9Y5A_BL44.roa Signing time: Fri 02 Jan 2026 06:19:24 +0000 ROA not before: Fri 02 Jan 2026 06:19:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203446 IP address blocks: 31.214.244.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/caa743-1c13-4a25-9f6a-65be5503165d/1/WjdsgAjWq9liNBVj3SpNzK8VPLo.crl rsync://rpki.ripe.net/repository/DEFAULT/42/caa743-1c13-4a25-9f6a-65be5503165d/1/WjdsgAjWq9liNBVj3SpNzK8VPLo.mft rsync://rpki.ripe.net/repository/DEFAULT/WjdsgAjWq9liNBVj3SpNzK8VPLo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:61:c6:c8:4d:08:e5:2b:d2:06:f1:56:2f:ef:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5a376c8008d6abd962341563dd2a4dccaf153cba Validity Not Before: Jan 2 06:19:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=827af32f78f2465701b5572c592f58e40fc12f8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:89:1c:27:61:12:d7:17:32:df:10:51:14:9a: d4:57:62:97:bf:a8:84:e2:80:85:09:25:95:3c:72: a0:06:95:40:fd:f5:d2:07:82:be:58:0a:b0:48:70: 39:9e:24:cc:0a:c0:2b:29:10:0d:63:45:b3:16:f7: 8e:94:41:1f:10:32:36:27:93:20:3c:20:4c:96:c2: 4f:2d:ce:34:ef:30:34:32:fd:84:42:84:cb:c3:ea: 6d:55:57:10:70:86:df:f5:82:83:67:c6:39:22:76: a2:9b:a6:c1:57:2a:99:73:7c:8c:a7:59:8c:60:93: 3f:42:5f:b6:9c:60:b9:49:b2:0c:3a:97:7d:0d:67: 55:ea:07:cc:c5:bd:36:27:58:46:98:96:12:dd:25: 08:4a:ad:1a:85:a1:b5:a4:16:91:af:cf:1f:94:7b: d9:2e:ff:4b:77:f4:a7:bc:78:83:0a:ea:d5:8e:ee: de:5b:82:8c:02:22:12:ad:ef:20:cb:4c:08:72:6b: 5f:1b:32:e1:c4:0a:7a:d4:d3:3b:da:96:13:33:c5: 3a:50:fb:05:82:29:37:b4:a2:48:14:f6:da:1f:7c: d4:f1:a4:4e:63:95:04:be:15:e5:ce:7c:13:df:3e: 39:53:17:25:5d:51:87:45:6e:52:fe:89:62:8f:88: bd:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:7A:F3:2F:78:F2:46:57:01:B5:57:2C:59:2F:58:E4:0F:C1:2F:8E X509v3 Authority Key Identifier: keyid:5A:37:6C:80:08:D6:AB:D9:62:34:15:63:DD:2A:4D:CC:AF:15:3C:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WjdsgAjWq9liNBVj3SpNzK8VPLo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/caa743-1c13-4a25-9f6a-65be5503165d/1/gnrzL3jyRlcBtVcsWS9Y5A_BL44.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/caa743-1c13-4a25-9f6a-65be5503165d/1/WjdsgAjWq9liNBVj3SpNzK8VPLo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.214.244.0/24 Signature Algorithm: sha256WithRSAEncryption 87:7a:25:22:1e:13:6e:88:8b:e0:6c:d2:66:a8:01:18:68:b4: d4:9a:fc:dd:be:aa:2a:ed:ee:3d:62:ee:c7:4c:0f:83:32:bb: d6:54:65:df:29:4f:90:b2:34:58:ab:b8:ed:73:07:1e:81:62: 4a:f6:2a:68:ea:95:ea:b6:72:08:e8:64:2a:2a:67:3c:c1:f7: 10:81:99:c7:ca:ce:9a:aa:3a:b6:9a:62:01:65:f7:06:eb:92: a5:42:f3:b8:d7:7d:e7:80:ce:fc:1a:b4:a0:e2:6a:eb:41:15: 43:7e:1c:23:f2:0d:18:b3:77:95:5f:23:43:41:1b:0c:5e:2b: f7:1b:31:a9:c1:83:2f:a6:78:77:5d:70:3c:94:b3:1e:05:42: 97:d3:19:fa:38:0d:f4:da:4c:ea:79:fa:c8:61:51:fd:aa:aa: 0f:7a:0f:14:18:6b:b5:52:41:81:68:0e:7b:cd:2c:4c:d8:61: 45:84:ad:90:02:c2:f8:4d:f4:ce:e8:52:c1:ba:1e:89:df:56: 6c:df:ac:10:3d:94:38:86:46:8c:97:64:3a:ba:0b:84:fe:41: 2b:2d:97:99:ad:cd:01:e1:22:42:0e:c6:c2:ee:7f:1c:2e:6d: 96:d5:cb:d1:2d:27:6d:f0:0f:57:2b:e1:ff:6c:07:c3:bd:d7: 32:ce:20:41 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XGHGyE0I5SvSBvFWL+9tMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVhMzc2YzgwMDhkNmFiZDk2MjM0MTU2M2RkMmE0ZGNjYWYx NTNjYmEwHhcNMjYwMTAyMDYxOTI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MjdhZjMyZjc4ZjI0NjU3MDFiNTU3MmM1OTJmNThlNDBmYzEyZjhlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj4kcJ2ES1xcy3xBRFJrUV2KXv6iE 4oCFCSWVPHKgBpVA/fXSB4K+WAqwSHA5niTMCsArKRANY0WzFveOlEEfEDI2J5Mg PCBMlsJPLc407zA0Mv2EQoTLw+ptVVcQcIbf9YKDZ8Y5Inaim6bBVyqZc3yMp1mM YJM/Ql+2nGC5SbIMOpd9DWdV6gfMxb02J1hGmJYS3SUISq0ahaG1pBaRr88flHvZ Lv9Ld/SnvHiDCurVju7eW4KMAiISre8gy0wIcmtfGzLhxAp61NM72pYTM8U6UPsF gik3tKJIFPbaH3zU8aROY5UEvhXlznwT3z45UxclXVGHRW5S/olij4i9rQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIJ68y948kZXAbVXLFkvWOQPwS+OMB8GA1UdIwQY MBaAFFo3bIAI1qvZYjQVY90qTcyvFTy6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV2pkc2dBaldxOWxpTkJWajNTcE56SzhWUExvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi9jYWE3NDMtMWMxMy00YTI1LTlmNmEt NjViZTU1MDMxNjVkLzEvZ25yekwzanlSbGNCdFZjc1dTOVk1QV9CTDQ0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi9jYWE3NDMtMWMxMy00YTI1LTlmNmEtNjViZTU1MDMxNjVk LzEvV2pkc2dBaldxOWxpTkJWajNTcE56SzhWUExvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAH9b0MA0G CSqGSIb3DQEBCwUAA4IBAQCHeiUiHhNuiIvgbNJmqAEYaLTUmvzdvqoq7e49Yu7H TA+DMrvWVGXfKU+QsjRYq7jtcwcegWJK9ipo6pXqtnII6GQqKmc8wfcQgZnHys6a qjq2mmIBZfcG65KlQvO4133ngM78GrSg4mrrQRVDfhwj8g0Ys3eVXyNDQRsMXiv3 GzGpwYMvpnh3XXA8lLMeBUKX0xn6OA302kzqefrIYVH9qqoPeg8UGGu1UkGBaA57 zSxM2GFFhK2QAsL4TfTO6FLBuh6J31Zs36wQPZQ4hkaMl2Q6uguE/kErLZeZrc0B 4SJCDsbC7n8cLm2W1cvRLSdt8A9XK+H/bAfDvdcyziBB -----END CERTIFICATE-----Generated at Wed Jan 21 09:23:03 2026 by rpki-client