This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/44zPPgoQLefQJI3vtkJc6EwhCow.roa File: 44zPPgoQLefQJI3vtkJc6EwhCow.roa (raw, json) Hash identifier: bzc7Uz3fgjL7VzDC/dK+5179ZuptpvJrsvVm26txhZQ= Subject key identifier: E3:8C:CF:3E:0A:10:2D:E7:D0:24:8D:EF:B6:42:5C:E8:4C:21:0A:8C Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346 Certificate serial: 019B7E38A604A0C014C784373EFB34CB88B2 Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/44zPPgoQLefQJI3vtkJc6EwhCow.roa Signing time: Fri 02 Jan 2026 10:20:00 +0000 ROA not before: Fri 02 Jan 2026 10:20:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12687 IP address blocks: 212.111.192.0/19 maxlen: 24 212.111.192.0/20 maxlen: 24 212.111.192.0/21 maxlen: 24 212.111.198.0/24 maxlen: 24 212.111.199.0/24 maxlen: 24 212.111.201.0/24 maxlen: 24 212.111.202.0/23 maxlen: 24 212.111.205.0/24 maxlen: 24 212.111.206.0/24 maxlen: 24 212.111.208.0/22 maxlen: 22 212.111.212.0/23 maxlen: 23 212.111.213.0/24 maxlen: 24 2a01:5c40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.mft rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 21:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:a6:04:a0:c0:14:c7:84:37:3e:fb:34:cb:88:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=19426325acb8ce609a686fa655b058968809b346 Validity Not Before: Jan 2 10:20:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e38ccf3e0a102de7d0248defb6425ce84c210a8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:0c:ee:c0:c4:e5:11:e3:ac:1a:fb:26:6f:84: fe:61:ba:c6:2d:d2:eb:25:71:6b:29:41:78:02:1e: 8f:3d:7b:a0:fc:be:6b:81:d7:72:af:3f:9c:57:f0: af:ab:8d:40:db:a5:73:16:24:e6:e2:61:69:91:84: 48:6b:fb:81:74:88:65:53:93:d5:11:a3:c8:7d:98: 3e:ab:b6:81:bc:fa:6a:b7:3c:28:e2:88:bc:01:36: e6:56:16:c2:0d:db:a9:d3:c6:2a:9f:4d:30:53:b0: 80:61:16:86:07:bf:14:b5:bf:a8:30:36:03:b7:38: bf:12:16:05:8c:17:a1:7c:56:d3:24:84:c9:40:22: 31:b6:be:58:ee:ff:2e:0f:3c:f6:a8:64:eb:a1:2b: 9e:cd:45:9c:c4:db:20:3d:4b:a6:7b:cb:10:b5:f6: d2:b6:4b:df:c9:59:a1:de:43:26:7d:ac:48:63:6f: f1:99:66:c3:1e:29:11:08:14:d6:be:7c:ab:43:fe: ba:3f:48:60:c3:ca:66:05:78:0a:a5:15:4b:86:58: 23:73:71:6d:18:0c:1a:ca:28:f1:4b:e6:2a:b1:f9: 09:37:3c:2f:48:64:73:e3:e4:1e:e9:d0:e9:ac:a8: 82:d5:4e:e4:3d:6f:f9:48:6b:55:ec:28:ad:f5:aa: eb:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:8C:CF:3E:0A:10:2D:E7:D0:24:8D:EF:B6:42:5C:E8:4C:21:0A:8C X509v3 Authority Key Identifier: keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/44zPPgoQLefQJI3vtkJc6EwhCow.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.111.192.0/19 IPv6: 2a01:5c40::/32 Signature Algorithm: sha256WithRSAEncryption bc:6a:8b:98:ce:4f:2d:d8:b2:e6:c7:8e:fc:77:f9:a8:67:3f: 60:a5:a4:b2:f4:38:b4:b3:ec:4e:66:b2:8c:d3:28:76:ec:52: c4:84:a9:5e:2c:00:44:02:3a:31:50:cb:9d:b6:3e:4b:e5:02: 54:3a:ac:a2:46:17:61:ad:a4:23:55:c3:ea:a1:af:1f:77:aa: 09:40:8d:c2:ad:41:5c:3f:0a:78:0d:da:38:e5:c2:82:78:6a: ea:10:11:b0:b4:79:1c:6b:d8:cd:7c:b9:6e:9b:b2:7e:02:e7: 82:a0:c9:86:1b:ff:58:c6:d0:d2:6f:08:7d:f4:cf:78:26:86: ed:b9:1b:c4:fe:cd:d5:5a:8e:21:a4:af:6b:57:4d:e6:98:8a: 4b:86:0b:67:95:97:fe:f3:88:76:a8:fb:4d:7c:ae:13:8c:e6: 9b:8f:e4:cf:fd:a5:09:49:87:ae:50:23:d2:70:c2:5a:5e:81: 70:e6:a0:10:67:e4:af:7f:97:c9:94:c0:eb:89:1e:71:78:06: 20:8b:4f:73:2f:fc:d4:bf:9e:71:8b:e1:a8:ee:13:12:20:24: 93:35:b9:0c:bd:72:b5:1a:87:76:dd:93:d3:ca:29:b0:13:8b: 6b:11:e3:c8:fa:6e:a6:30:65:d9:cb:0c:39:c0:b9:74:2c:3b: 7d:1b:25:24 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt+OKYEoMAUx4Q3Pvs0y4iyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE5NDI2MzI1YWNiOGNlNjA5YTY4NmZhNjU1YjA1ODk2ODgw OWIzNDYwHhcNMjYwMTAyMTAyMDAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMzhjY2YzZTBhMTAyZGU3ZDAyNDhkZWZiNjQyNWNlODRjMjEwYThjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqQzuwMTlEeOsGvsmb4T+YbrGLdLr JXFrKUF4Ah6PPXug/L5rgddyrz+cV/Cvq41A26VzFiTm4mFpkYRIa/uBdIhlU5PV EaPIfZg+q7aBvPpqtzwo4oi8ATbmVhbCDdup08Yqn00wU7CAYRaGB78Utb+oMDYD tzi/EhYFjBehfFbTJITJQCIxtr5Y7v8uDzz2qGTroSuezUWcxNsgPUume8sQtfbS tkvfyVmh3kMmfaxIY2/xmWbDHikRCBTWvnyrQ/66P0hgw8pmBXgKpRVLhlgjc3Ft GAwayijxS+YqsfkJNzwvSGRz4+Qe6dDprKiC1U7kPW/5SGtV7Cit9arrIQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFOOMzz4KEC3n0CSN77ZCXOhMIQqMMB8GA1UdIwQY MBaAFBlCYyWsuM5gmmhvplWwWJaICbNGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR1VKakpheTR6bUNhYUctbVZiQllsb2dKczBZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS84YjZmYjAtYTg3NS00OTQ3LThhZTQt MDNmNGM3MTEzYzM0LzEvNDR6UFBnb1FMZWZRSkkzdnRrSmM2RXdoQ293LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS84YjZmYjAtYTg3NS00OTQ3LThhZTQtMDNmNGM3MTEzYzM0 LzEvR1VKakpheTR6bUNhYUctbVZiQllsb2dKczBZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQF1G/AMA0E AgACMAcDBQAqAVxAMA0GCSqGSIb3DQEBCwUAA4IBAQC8aouYzk8t2LLmx478d/mo Zz9gpaSy9Di0s+xOZrKM0yh27FLEhKleLABEAjoxUMudtj5L5QJUOqyiRhdhraQj VcPqoa8fd6oJQI3CrUFcPwp4Ddo45cKCeGrqEBGwtHkca9jNfLlum7J+AueCoMmG G/9YxtDSbwh99M94JobtuRvE/s3VWo4hpK9rV03mmIpLhgtnlZf+84h2qPtNfK4T jOabj+TP/aUJSYeuUCPScMJaXoFw5qAQZ+Svf5fJlMDriR5xeAYgi09zL/zUv55x i+Go7hMSICSTNbkMvXK1God23ZPTyimwE4trEePI+m6mMGXZyww5wLl0LDt9GyUk -----END CERTIFICATE-----Generated at Sat Jan 10 04:58:13 2026 by rpki-client