This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/44d4a3-7a84-4499-8b71-2b105051ba59/1/Gm7B2FAaKewBeF9V__wWov1Lp1Y.roa File: Gm7B2FAaKewBeF9V__wWov1Lp1Y.roa (raw, json) Hash identifier: LT1djHWsJJKg2p/VdcPsG23ZiYOU6Oqmc3hcCAXKCo8= Subject key identifier: 1A:6E:C1:D8:50:1A:29:EC:01:78:5F:55:FF:FC:16:A2:FD:4B:A7:56 Certificate issuer: /CN=b3dd35ccff6c2b86a1fad8f103bc20070d09e50d Certificate serial: 019B7D5B9092AD4467471453CF60114BF11E Authority key identifier: B3:DD:35:CC:FF:6C:2B:86:A1:FA:D8:F1:03:BC:20:07:0D:09:E5:0D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s901zP9sK4ah-tjxA7wgBw0J5Q0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/44d4a3-7a84-4499-8b71-2b105051ba59/1/Gm7B2FAaKewBeF9V__wWov1Lp1Y.roa Signing time: Fri 02 Jan 2026 06:18:31 +0000 ROA not before: Fri 02 Jan 2026 06:18:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48763 IP address blocks: 185.173.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/44d4a3-7a84-4499-8b71-2b105051ba59/1/s901zP9sK4ah-tjxA7wgBw0J5Q0.crl rsync://rpki.ripe.net/repository/DEFAULT/47/44d4a3-7a84-4499-8b71-2b105051ba59/1/s901zP9sK4ah-tjxA7wgBw0J5Q0.mft rsync://rpki.ripe.net/repository/DEFAULT/s901zP9sK4ah-tjxA7wgBw0J5Q0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:90:92:ad:44:67:47:14:53:cf:60:11:4b:f1:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b3dd35ccff6c2b86a1fad8f103bc20070d09e50d Validity Not Before: Jan 2 06:18:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1a6ec1d8501a29ec01785f55fffc16a2fd4ba756 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:73:1c:9d:1e:8c:17:8a:e8:3c:c7:5a:c2:8c: 52:4c:6d:18:73:e5:3b:26:a1:ef:55:28:93:06:ac: a5:4a:43:ae:5a:b6:f2:7b:fb:4f:ae:9c:39:e1:be: 07:84:1b:ae:f4:5e:58:cb:e7:d4:93:d2:10:d9:62: 3f:ca:49:c0:cc:1e:9f:08:75:0f:27:6e:ac:60:65: a2:c0:28:5c:1f:6d:dc:f9:70:ad:33:68:99:b6:5c: ca:f4:4e:70:98:70:29:f3:fc:ee:d3:7f:ea:1c:b0: de:d9:3c:aa:c2:16:75:1b:a4:15:d3:70:ef:a3:83: e3:04:7a:c3:f4:5c:80:3a:9e:4e:7c:74:09:33:88: 7a:c3:aa:0c:a4:b3:97:ce:13:6e:62:d8:ab:35:87: 9b:83:08:b2:c9:e1:52:ac:1c:4c:eb:eb:70:30:9d: 2a:8d:e5:0c:9b:ca:f9:be:98:e3:47:07:33:40:93: d0:7e:85:3c:45:d5:e2:c7:63:fd:57:45:47:7c:66: 51:ed:ab:14:05:f5:3b:ac:1a:99:c7:37:3b:90:1c: bc:f4:a5:f2:f9:84:07:e5:aa:1a:06:27:75:3d:a6: fa:d0:9e:ed:7e:3d:7a:db:29:0f:c7:e0:fc:8a:44: 15:93:99:04:8b:70:2b:81:58:b6:5c:d2:e6:74:d2: b2:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:6E:C1:D8:50:1A:29:EC:01:78:5F:55:FF:FC:16:A2:FD:4B:A7:56 X509v3 Authority Key Identifier: keyid:B3:DD:35:CC:FF:6C:2B:86:A1:FA:D8:F1:03:BC:20:07:0D:09:E5:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s901zP9sK4ah-tjxA7wgBw0J5Q0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/44d4a3-7a84-4499-8b71-2b105051ba59/1/Gm7B2FAaKewBeF9V__wWov1Lp1Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/47/44d4a3-7a84-4499-8b71-2b105051ba59/1/s901zP9sK4ah-tjxA7wgBw0J5Q0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.173.157.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:3b:d2:62:96:74:18:73:45:fb:df:ab:07:97:09:cd:a3:8b: cc:7c:23:03:7f:51:bb:3f:1d:ed:f0:8b:d1:f6:f5:83:af:ef: 30:1b:86:5a:b9:cc:6e:24:9f:c9:49:9c:0f:01:73:88:dc:07: 43:3e:60:8b:d9:bf:a5:f4:2d:bc:00:57:6f:60:a6:7c:8a:bc: d9:ea:0c:87:77:ec:ba:db:a9:a9:18:2e:0f:1c:df:d2:1d:cf: 90:82:0b:ee:bd:49:44:2c:9a:72:d2:91:3b:4a:93:43:d1:8f: 1a:4d:5d:80:b6:bf:b8:93:43:70:ed:29:24:8c:22:30:7a:f4: 8f:60:dc:57:01:55:67:a3:51:34:0a:85:bd:29:dc:4f:9c:36: 8b:f8:05:59:b2:73:11:20:59:3f:37:cb:da:9b:62:2d:e4:10: 60:c4:8b:f7:f8:8e:7f:fe:39:9a:b1:f8:32:48:41:68:d9:78: 65:84:53:41:96:f7:c5:08:ea:58:d4:aa:50:92:15:1d:b0:bf: f3:e0:9a:73:a9:9f:63:a9:59:e8:70:1b:04:2d:bb:43:34:a5: 5c:d1:5a:63:fd:7d:1c:43:30:a0:d5:22:5c:26:c4:5d:71:a2: c1:9d:7c:92:8b:02:2e:fd:c4:e5:52:12:74:4c:33:93:99:a7: 47:c4:70:48 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9W5CSrURnRxRTz2ARS/EeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzZGQzNWNjZmY2YzJiODZhMWZhZDhmMTAzYmMyMDA3MGQw OWU1MGQwHhcNMjYwMTAyMDYxODMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYTZlYzFkODUwMWEyOWVjMDE3ODVmNTVmZmZjMTZhMmZkNGJhNzU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo3McnR6MF4roPMdawoxSTG0Yc+U7 JqHvVSiTBqylSkOuWrbye/tPrpw54b4HhBuu9F5Yy+fUk9IQ2WI/yknAzB6fCHUP J26sYGWiwChcH23c+XCtM2iZtlzK9E5wmHAp8/zu03/qHLDe2TyqwhZ1G6QV03Dv o4PjBHrD9FyAOp5OfHQJM4h6w6oMpLOXzhNuYtirNYebgwiyyeFSrBxM6+twMJ0q jeUMm8r5vpjjRwczQJPQfoU8RdXix2P9V0VHfGZR7asUBfU7rBqZxzc7kBy89KXy +YQH5aoaBid1Pab60J7tfj162ykPx+D8ikQVk5kEi3ArgVi2XNLmdNKy4wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBpuwdhQGinsAXhfVf/8FqL9S6dWMB8GA1UdIwQY MBaAFLPdNcz/bCuGofrY8QO8IAcNCeUNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczkwMXpQOXNLNGFoLXRqeEE3d2dCdzBKNVEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny80NGQ0YTMtN2E4NC00NDk5LThiNzEt MmIxMDUwNTFiYTU5LzEvR203QjJGQWFLZXdCZUY5Vl9fd1dvdjFMcDFZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ny80NGQ0YTMtN2E4NC00NDk5LThiNzEtMmIxMDUwNTFiYTU5 LzEvczkwMXpQOXNLNGFoLXRqeEE3d2dCdzBKNVEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAua2dMA0G CSqGSIb3DQEBCwUAA4IBAQBvO9JilnQYc0X736sHlwnNo4vMfCMDf1G7Px3t8IvR 9vWDr+8wG4ZaucxuJJ/JSZwPAXOI3AdDPmCL2b+l9C28AFdvYKZ8irzZ6gyHd+y6 26mpGC4PHN/SHc+QggvuvUlELJpy0pE7SpND0Y8aTV2Atr+4k0Nw7SkkjCIwevSP YNxXAVVno1E0CoW9KdxPnDaL+AVZsnMRIFk/N8vam2It5BBgxIv3+I5//jmasfgy SEFo2XhlhFNBlvfFCOpY1KpQkhUdsL/z4JpzqZ9jqVnocBsELbtDNKVc0Vpj/X0c QzCg1SJcJsRdcaLBnXySiwIu/cTlUhJ0TDOTmadHxHBI -----END CERTIFICATE-----Generated at Wed Jan 21 17:16:55 2026 by rpki-client