This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/GTk4_xkEVcCortfUUwlKNErPXJ8.roa File: GTk4_xkEVcCortfUUwlKNErPXJ8.roa (raw, json) Hash identifier: uEhgRh2xa40WAcBKwOTkS5sGlJsngCqmoIk1TCwsS1s= Subject key identifier: 19:39:38:FF:19:04:55:C0:A8:AE:D7:D4:53:09:4A:34:4A:CF:5C:9F Certificate issuer: /CN=ba67bff7bad1eb8384b585df7bef1206f7f19f7e Certificate serial: 019B7AC7B6AA365EE3E463123010AB34D2E7 Authority key identifier: BA:67:BF:F7:BA:D1:EB:83:84:B5:85:DF:7B:EF:12:06:F7:F1:9F:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ume_97rR64OEtYXfe-8SBvfxn34.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/GTk4_xkEVcCortfUUwlKNErPXJ8.roa Signing time: Thu 01 Jan 2026 18:17:47 +0000 ROA not before: Thu 01 Jan 2026 18:17:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 395793 IP address blocks: 209.131.64.0/24 maxlen: 24 209.131.65.0/24 maxlen: 24 209.131.66.0/24 maxlen: 24 209.131.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/ume_97rR64OEtYXfe-8SBvfxn34.crl rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/ume_97rR64OEtYXfe-8SBvfxn34.mft rsync://rpki.ripe.net/repository/DEFAULT/ume_97rR64OEtYXfe-8SBvfxn34.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 19:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:b6:aa:36:5e:e3:e4:63:12:30:10:ab:34:d2:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba67bff7bad1eb8384b585df7bef1206f7f19f7e Validity Not Before: Jan 1 18:17:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=193938ff190455c0a8aed7d453094a344acf5c9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b9:a7:e0:e7:6b:16:88:6c:ec:94:f8:47:b9: a7:0b:1d:ff:d6:fa:f4:a4:80:af:4d:e2:2e:f3:29: f5:41:76:08:88:f0:7f:45:bc:a8:f0:e8:38:7a:f2: a5:55:21:d2:7a:ef:fb:d0:26:5f:84:a6:ca:4a:71: 65:82:e4:7b:e9:33:6a:a5:4c:c3:bc:cc:ca:d2:d3: 89:84:28:e0:a5:b7:c0:59:38:fd:bd:04:c2:5d:16: 47:89:6e:b5:b2:d0:1c:96:09:d1:48:1a:4b:a6:b2: a3:e6:0b:9a:e9:ac:f0:33:77:24:30:f6:eb:cb:68: 5a:df:ff:b6:7b:1a:1b:b6:99:d4:c0:dc:1e:e3:e0: 9d:7d:2d:b4:27:83:09:8d:1d:c6:49:b7:08:a1:47: 99:b0:06:48:40:b1:9d:8c:10:a8:be:57:6c:2c:bf: bc:42:13:40:c9:a6:8a:77:b1:30:a8:9d:7a:33:39: cd:da:64:6d:cd:1c:b8:64:db:d1:6e:6a:32:f2:d7: cc:f3:64:ab:e1:a5:25:2f:80:f6:a5:26:3e:62:b5: 0f:5b:7c:a6:89:99:9d:97:40:b7:84:c6:ea:81:fd: 33:11:da:d4:32:4f:bf:95:b7:1a:23:96:11:28:4f: 9e:d2:8c:87:4d:43:a5:31:c6:01:76:0f:f8:17:5c: f5:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:39:38:FF:19:04:55:C0:A8:AE:D7:D4:53:09:4A:34:4A:CF:5C:9F X509v3 Authority Key Identifier: keyid:BA:67:BF:F7:BA:D1:EB:83:84:B5:85:DF:7B:EF:12:06:F7:F1:9F:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ume_97rR64OEtYXfe-8SBvfxn34.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/GTk4_xkEVcCortfUUwlKNErPXJ8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/ume_97rR64OEtYXfe-8SBvfxn34.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.131.64.0-209.131.66.255 209.131.68.0/24 Signature Algorithm: sha256WithRSAEncryption 26:da:40:d0:0c:13:f6:af:fc:a0:ef:2c:f8:a7:2d:80:d5:07: d0:ba:b8:5c:bf:88:86:6a:6b:58:13:57:dc:32:66:e1:a8:25: 4b:e0:4e:15:e0:3b:52:1b:a8:35:03:bd:97:9d:13:49:3d:10: 8d:a1:98:11:f7:5a:09:92:e6:2c:fb:25:ce:00:bb:8a:dd:0b: ef:f8:b0:d0:79:9b:30:23:4c:9c:b2:5a:71:94:95:dd:84:71: e8:52:21:34:1e:b3:ed:3c:2a:2a:b6:7d:19:b7:69:0f:7f:6f: 23:1c:7f:6c:1b:fd:65:95:cb:80:52:04:61:7b:70:2d:ff:2b: 8d:85:61:d2:a5:b1:57:d5:9c:e9:0a:34:35:73:7c:43:0b:e2: 6a:47:d9:6e:df:0d:b2:92:ed:a1:ab:23:8c:0c:6a:91:5b:a8: 57:d8:58:05:84:77:bf:7c:87:83:07:68:72:8d:95:53:36:df: 3a:98:89:61:60:4d:b0:20:e9:20:57:fc:09:c7:77:40:5a:3f: 8e:da:3c:58:e5:10:68:dc:18:ec:57:29:b2:d0:bf:b3:0f:9c: a3:82:d1:ea:a4:72:d7:40:71:27:64:88:bd:0b:d9:86:a1:fa: 7a:fa:1a:df:93:03:ab:86:f2:b2:63:03:0a:48:ce:5c:61:ef: 0c:7e:d1:b1 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZt6x7aqNl7j5GMSMBCrNNLnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhNjdiZmY3YmFkMWViODM4NGI1ODVkZjdiZWYxMjA2Zjdm MTlmN2UwHhcNMjYwMTAxMTgxNzQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxOTM5MzhmZjE5MDQ1NWMwYThhZWQ3ZDQ1MzA5NGEzNDRhY2Y1YzlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArrmn4OdrFohs7JT4R7mnCx3/1vr0 pICvTeIu8yn1QXYIiPB/Rbyo8Og4evKlVSHSeu/70CZfhKbKSnFlguR76TNqpUzD vMzK0tOJhCjgpbfAWTj9vQTCXRZHiW61stAclgnRSBpLprKj5gua6azwM3ckMPbr y2ha3/+2exobtpnUwNwe4+CdfS20J4MJjR3GSbcIoUeZsAZIQLGdjBCovldsLL+8 QhNAyaaKd7EwqJ16MznN2mRtzRy4ZNvRbmoy8tfM82Sr4aUlL4D2pSY+YrUPW3ym iZmdl0C3hMbqgf0zEdrUMk+/lbcaI5YRKE+e0oyHTUOlMcYBdg/4F1z1EQIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFBk5OP8ZBFXAqK7X1FMJSjRKz1yfMB8GA1UdIwQY MBaAFLpnv/e60euDhLWF33vvEgb38Z9+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdW1lXzk3clI2NE9FdFlYZmUtOFNCdmZ4bjM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi80YTI0NGQtNTFkMS00MTQzLWI2YWYt ZGE0NTM4MDIyYWM3LzEvR1RrNF94a0VWY0NvcnRmVVV3bEtORXJQWEo4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Zi80YTI0NGQtNTFkMS00MTQzLWI2YWYtZGE0NTM4MDIyYWM3 LzEvdW1lXzk3clI2NE9FdFlYZmUtOFNCdmZ4bjM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBAbRg0AD BADRg0IDBADRg0QwDQYJKoZIhvcNAQELBQADggEBACbaQNAME/av/KDvLPinLYDV B9C6uFy/iIZqa1gTV9wyZuGoJUvgThXgO1IbqDUDvZedE0k9EI2hmBH3WgmS5iz7 Jc4Au4rdC+/4sNB5mzAjTJyyWnGUld2EcehSITQes+08Kiq2fRm3aQ9/byMcf2wb /WWVy4BSBGF7cC3/K42FYdKlsVfVnOkKNDVzfEML4mpH2W7fDbKS7aGrI4wMapFb qFfYWAWEd798h4MHaHKNlVM23zqYiWFgTbAg6SBX/AnHd0BaP47aPFjlEGjcGOxX KbLQv7MPnKOC0eqkctdAcSdkiL0L2Yah+nr6Gt+TA6uG8rJjAwpIzlxh7wx+0bE= -----END CERTIFICATE-----Generated at Sun Jan 18 04:09:28 2026 by rpki-client