This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8c1e49-7dd1-448d-8815-a09266bb4d8c/1/GOIVhBnn15XT5eXlASEvxn2hNDw.roa File: GOIVhBnn15XT5eXlASEvxn2hNDw.roa (raw, json) Hash identifier: AmDJ5Odj0fdYze4B6QAdyi2ODpezKvZwj7zUISc+vO0= Subject key identifier: 18:E2:15:84:19:E7:D7:95:D3:E5:E5:E5:01:21:2F:C6:7D:A1:34:3C Certificate issuer: /CN=959efe6ef97728a4282ae2c7b05a240506571f1c Certificate serial: 019B7F825F6CF1F0770755751362E31CBAA4 Authority key identifier: 95:9E:FE:6E:F9:77:28:A4:28:2A:E2:C7:B0:5A:24:05:06:57:1F:1C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lZ7-bvl3KKQoKuLHsFokBQZXHxw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8c1e49-7dd1-448d-8815-a09266bb4d8c/1/GOIVhBnn15XT5eXlASEvxn2hNDw.roa Signing time: Fri 02 Jan 2026 16:20:08 +0000 ROA not before: Fri 02 Jan 2026 16:20:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202105 IP address blocks: 83.136.8.0/24 maxlen: 24 83.136.9.0/24 maxlen: 24 83.136.10.0/24 maxlen: 24 83.136.11.0/24 maxlen: 24 83.136.12.0/24 maxlen: 24 83.136.13.0/24 maxlen: 24 83.136.14.0/24 maxlen: 24 83.136.15.0/24 maxlen: 24 87.237.224.0/24 maxlen: 24 87.237.225.0/24 maxlen: 24 87.237.226.0/24 maxlen: 24 87.237.227.0/24 maxlen: 24 87.237.228.0/24 maxlen: 24 87.237.229.0/24 maxlen: 24 87.237.230.0/24 maxlen: 24 87.237.231.0/24 maxlen: 24 185.11.120.0/24 maxlen: 24 185.11.121.0/24 maxlen: 24 185.11.122.0/24 maxlen: 24 185.11.123.0/24 maxlen: 24 185.23.78.0/24 maxlen: 24 185.51.204.0/24 maxlen: 24 185.51.205.0/24 maxlen: 24 185.51.206.0/24 maxlen: 24 185.51.207.0/24 maxlen: 24 185.82.116.0/24 maxlen: 24 185.82.117.0/24 maxlen: 24 185.82.118.0/24 maxlen: 24 185.82.119.0/24 maxlen: 24 185.108.240.0/24 maxlen: 24 185.108.241.0/24 maxlen: 24 185.108.242.0/24 maxlen: 24 185.108.243.0/24 maxlen: 24 185.133.84.0/24 maxlen: 24 185.133.85.0/24 maxlen: 24 185.133.86.0/24 maxlen: 24 185.133.87.0/24 maxlen: 24 185.164.24.0/24 maxlen: 24 185.164.25.0/24 maxlen: 24 185.164.26.0/24 maxlen: 24 185.164.27.0/24 maxlen: 24 185.164.28.0/24 maxlen: 24 185.164.29.0/24 maxlen: 24 185.164.30.0/24 maxlen: 24 185.164.31.0/24 maxlen: 24 185.203.108.0/24 maxlen: 24 185.203.109.0/24 maxlen: 24 185.203.110.0/24 maxlen: 24 185.203.111.0/24 maxlen: 24 185.206.28.0/24 maxlen: 24 185.206.29.0/24 maxlen: 24 185.206.30.0/24 maxlen: 24 185.206.132.0/24 maxlen: 24 185.206.133.0/24 maxlen: 24 185.206.134.0/24 maxlen: 24 185.206.135.0/24 maxlen: 24 185.217.8.0/24 maxlen: 24 185.217.9.0/24 maxlen: 24 185.217.10.0/24 maxlen: 24 185.217.11.0/24 maxlen: 24 185.238.68.0/24 maxlen: 24 185.238.69.0/24 maxlen: 24 185.238.70.0/24 maxlen: 24 185.238.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/8c1e49-7dd1-448d-8815-a09266bb4d8c/1/lZ7-bvl3KKQoKuLHsFokBQZXHxw.crl rsync://rpki.ripe.net/repository/DEFAULT/45/8c1e49-7dd1-448d-8815-a09266bb4d8c/1/lZ7-bvl3KKQoKuLHsFokBQZXHxw.mft rsync://rpki.ripe.net/repository/DEFAULT/lZ7-bvl3KKQoKuLHsFokBQZXHxw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:5f:6c:f1:f0:77:07:55:75:13:62:e3:1c:ba:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=959efe6ef97728a4282ae2c7b05a240506571f1c Validity Not Before: Jan 2 16:20:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=18e2158419e7d795d3e5e5e501212fc67da1343c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d0:91:e5:ea:4a:cd:80:94:ea:a6:48:0b:33: 4c:a3:30:ca:a0:f5:50:55:bf:7d:d4:1d:e5:dd:74: 06:e7:c7:1f:fe:9c:1b:22:aa:b2:82:c9:73:cc:45: 46:e5:0b:b0:3d:d5:a7:16:90:d4:38:f7:4d:45:d8: 85:80:21:c0:66:2f:1c:85:9a:5e:b1:ad:a4:36:71: 5c:e8:19:f8:cb:33:b4:d2:12:0d:ef:b9:88:e4:82: e6:a5:86:e7:4a:7d:ea:f2:74:d8:3e:ed:bf:02:18: 70:96:00:9f:31:6b:03:ac:3a:37:29:e8:5d:6f:21: 4e:27:b2:49:3f:70:8b:04:80:87:4b:a2:c6:3b:ba: 26:ae:54:b5:c9:83:01:a7:f0:46:17:72:61:28:f5: e7:a1:7e:59:4c:7a:2c:84:b2:e5:06:67:56:9b:a5: bb:f6:db:14:99:69:d6:d7:ea:20:af:be:57:67:ad: 82:48:e3:2b:c7:82:a0:24:f7:08:b6:c0:63:56:46: fe:f3:f4:0e:af:1e:d5:3d:da:59:d2:3c:6c:10:46: a8:13:84:46:38:8e:d3:1a:f3:24:cf:44:93:8d:fe: eb:70:02:75:9e:80:8f:b6:68:d2:bb:ec:56:8d:9c: 72:86:74:ab:7a:fb:da:b2:1e:cd:95:4f:07:b3:93: 5f:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:E2:15:84:19:E7:D7:95:D3:E5:E5:E5:01:21:2F:C6:7D:A1:34:3C X509v3 Authority Key Identifier: keyid:95:9E:FE:6E:F9:77:28:A4:28:2A:E2:C7:B0:5A:24:05:06:57:1F:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lZ7-bvl3KKQoKuLHsFokBQZXHxw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8c1e49-7dd1-448d-8815-a09266bb4d8c/1/GOIVhBnn15XT5eXlASEvxn2hNDw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8c1e49-7dd1-448d-8815-a09266bb4d8c/1/lZ7-bvl3KKQoKuLHsFokBQZXHxw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.136.8.0/21 87.237.224.0/21 185.11.120.0/22 185.23.78.0/24 185.51.204.0/22 185.82.116.0/22 185.108.240.0/22 185.133.84.0/22 185.164.24.0/21 185.203.108.0/22 185.206.28.0-185.206.30.255 185.206.132.0/22 185.217.8.0/22 185.238.68.0/22 Signature Algorithm: sha256WithRSAEncryption 1d:2c:81:54:8c:f8:b7:73:f0:32:71:02:de:b6:08:ce:d1:0a: b1:23:7e:73:4a:45:96:7d:20:22:bb:8e:4c:4e:2e:09:de:8b: 89:a0:3e:c0:17:40:f6:05:f6:2f:8b:68:17:88:0c:d2:e1:a9: 88:b7:98:dd:54:30:fc:6c:9f:44:12:eb:d9:dc:83:1f:c2:96: d1:1f:14:c0:46:3f:74:8c:34:4a:ab:77:7c:f0:31:c0:a1:3c: 1d:24:15:d3:d1:2c:d5:27:46:0e:72:ae:cf:9d:48:7f:d4:c7: 8b:84:db:c0:8c:e5:00:9d:f9:c1:31:6a:83:51:c1:d0:98:90: 0e:f0:4c:14:4d:3d:3d:a9:68:4c:d8:ad:d8:35:24:61:8e:f3: 7f:89:6e:f4:78:a9:77:7f:da:0e:11:b8:e4:1f:7c:12:bf:27: 0a:94:4f:46:08:0a:0d:ae:88:c2:23:df:30:d7:8a:43:a0:a8: 35:6e:d4:cd:60:80:8b:dc:1d:1c:6b:c6:57:72:1d:fc:5f:52: e9:61:33:43:b0:f7:9a:d6:43:71:07:a8:b4:53:9d:de:0d:0b: 9f:22:16:49:49:9d:9a:b9:47:9c:e7:b0:ea:bd:de:0f:5f:ed: 49:68:65:1d:a3:58:c5:aa:32:61:ac:28:e7:13:e0:37:3f:c8: fb:74:39:7c -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgISAZt/gl9s8fB3B1V1E2LjHLqkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1OWVmZTZlZjk3NzI4YTQyODJhZTJjN2IwNWEyNDA1MDY1 NzFmMWMwHhcNMjYwMTAyMTYyMDA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxOGUyMTU4NDE5ZTdkNzk1ZDNlNWU1ZTUwMTIxMmZjNjdkYTEzNDNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAudCR5epKzYCU6qZICzNMozDKoPVQ Vb991B3l3XQG58cf/pwbIqqygslzzEVG5QuwPdWnFpDUOPdNRdiFgCHAZi8chZpe sa2kNnFc6Bn4yzO00hIN77mI5ILmpYbnSn3q8nTYPu2/AhhwlgCfMWsDrDo3Kehd byFOJ7JJP3CLBICHS6LGO7omrlS1yYMBp/BGF3JhKPXnoX5ZTHoshLLlBmdWm6W7 9tsUmWnW1+ogr75XZ62CSOMrx4KgJPcItsBjVkb+8/QOrx7VPdpZ0jxsEEaoE4RG OI7TGvMkz0STjf7rcAJ1noCPtmjSu+xWjZxyhnSrevvash7NlU8Hs5NfbQIDAQAB o4ICXzCCAlswHQYDVR0OBBYEFBjiFYQZ59eV0+Xl5QEhL8Z9oTQ8MB8GA1UdIwQY MBaAFJWe/m75dyikKCrix7BaJAUGVx8cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbFo3LWJ2bDNLS1FvS3VMSHNGb2tCUVpYSHh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS84YzFlNDktN2RkMS00NDhkLTg4MTUt YTA5MjY2YmI0ZDhjLzEvR09JVmhCbm4xNVhUNWVYbEFTRXZ4bjJoTkR3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NS84YzFlNDktN2RkMS00NDhkLTg4MTUtYTA5MjY2YmI0ZDhj LzEvbFo3LWJ2bDNLS1FvS3VMSHNGb2tCUVpYSHh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMHUGCCsGAQUFBwEHAQH/BGYwZDBiBAIAATBcAwQDU4gIAwQD V+3gAwQCuQt4AwQAuRdOAwQCuTPMAwQCuVJ0AwQCuWzwAwQCuYVUAwQDuaQYAwQC uctsMAwDBAK5zhwDBAC5zh4DBAK5zoQDBAK52QgDBAK57kQwDQYJKoZIhvcNAQEL BQADggEBAB0sgVSM+Ldz8DJxAt62CM7RCrEjfnNKRZZ9ICK7jkxOLgnei4mgPsAX QPYF9i+LaBeIDNLhqYi3mN1UMPxsn0QS69ncgx/CltEfFMBGP3SMNEqrd3zwMcCh PB0kFdPRLNUnRg5yrs+dSH/Ux4uE28CM5QCd+cExaoNRwdCYkA7wTBRNPT2paEzY rdg1JGGO83+JbvR4qXd/2g4RuOQffBK/JwqUT0YICg2uiMIj3zDXikOgqDVu1M1g gIvcHRxrxldyHfxfUulhM0Ow95rWQ3EHqLRTnd4NC58iFklJnZq5R5znsOq93g9f 7UloZR2jWMWqMmGsKOcT4Dc/yPt0OXw= -----END CERTIFICATE-----Generated at Tue Jan 27 08:47:12 2026 by rpki-client