This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/eb3e03-3968-4db2-bf80-43f6ae520b1a/1/ggAemkutc9Uj5OtMRscidUTfz_w.roa File: ggAemkutc9Uj5OtMRscidUTfz_w.roa (raw, json) Hash identifier: 2GT85Q2Z+evTjw6gSLFrkGmMogQndg6JWok6dkddHCY= Subject key identifier: 82:00:1E:9A:4B:AD:73:D5:23:E4:EB:4C:46:C7:22:75:44:DF:CF:FC Certificate issuer: /CN=897c1a88c9c89ae94254e2241c788e97c1ff3e48 Certificate serial: 019B7BA5171116728B55B0793419F129A779 Authority key identifier: 89:7C:1A:88:C9:C8:9A:E9:42:54:E2:24:1C:78:8E:97:C1:FF:3E:48 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iXwaiMnImulCVOIkHHiOl8H_Pkg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/eb3e03-3968-4db2-bf80-43f6ae520b1a/1/ggAemkutc9Uj5OtMRscidUTfz_w.roa Signing time: Thu 01 Jan 2026 22:19:35 +0000 ROA not before: Thu 01 Jan 2026 22:19:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199289 IP address blocks: 185.21.232.0/24 maxlen: 24 185.21.233.0/24 maxlen: 24 185.21.234.0/24 maxlen: 24 185.21.235.0/24 maxlen: 24 2a00:5a20::/32 maxlen: 32 2a00:5a20:1::/48 maxlen: 48 2a00:5a20:2::/48 maxlen: 48 2a00:5a20:3::/48 maxlen: 48 2a00:5a20:4::/48 maxlen: 48 2a00:5a20:5::/48 maxlen: 48 2a00:5a20:6::/48 maxlen: 48 2a00:5a20:7::/48 maxlen: 48 2a00:5a20:8::/48 maxlen: 48 2a00:5a20:9::/48 maxlen: 48 2a00:5a20:3a10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/eb3e03-3968-4db2-bf80-43f6ae520b1a/1/iXwaiMnImulCVOIkHHiOl8H_Pkg.crl rsync://rpki.ripe.net/repository/DEFAULT/55/eb3e03-3968-4db2-bf80-43f6ae520b1a/1/iXwaiMnImulCVOIkHHiOl8H_Pkg.mft rsync://rpki.ripe.net/repository/DEFAULT/iXwaiMnImulCVOIkHHiOl8H_Pkg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:17:11:16:72:8b:55:b0:79:34:19:f1:29:a7:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=897c1a88c9c89ae94254e2241c788e97c1ff3e48 Validity Not Before: Jan 1 22:19:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=82001e9a4bad73d523e4eb4c46c7227544dfcffc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:f0:c4:18:17:82:e3:8b:03:bb:0c:f2:e6:fe: c3:aa:e7:80:39:27:75:1e:15:62:52:77:d0:5c:49: 37:b6:e4:02:01:e2:cd:bd:5c:d4:b2:02:69:19:39: 95:d4:e4:de:af:15:4c:ac:b4:14:3f:db:ca:1c:85: 18:ba:af:70:21:05:7c:3c:fe:bf:e2:ff:06:49:cd: 21:0f:47:85:17:ca:70:6c:29:6d:74:26:48:f0:55: 60:b7:bd:b9:42:ff:6e:de:97:ec:56:1e:09:62:e4: b7:3b:aa:66:66:30:b2:68:05:06:76:25:74:b0:c2: 2b:76:d7:d3:60:b3:c6:8e:b5:83:05:b2:bc:c4:6e: 63:79:88:cb:4a:df:78:30:34:43:c2:2d:1d:cc:a2: 46:a3:39:d0:ed:20:2a:db:37:18:82:32:e0:10:fd: 16:51:c6:74:ac:06:47:f8:63:73:52:83:27:34:0f: 54:b9:d5:5a:55:07:a6:66:a1:b9:cc:dd:f1:cd:d6: dc:c9:59:95:74:e3:bc:9e:59:22:5e:a4:f7:58:0a: 32:6f:7c:13:b7:83:1a:e6:d5:77:b2:52:01:be:14: 56:5b:4e:a2:6a:62:83:64:df:ad:63:10:8b:35:4f: af:9d:a1:bb:47:1d:f9:82:b4:72:81:32:1d:43:c0: 0d:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:00:1E:9A:4B:AD:73:D5:23:E4:EB:4C:46:C7:22:75:44:DF:CF:FC X509v3 Authority Key Identifier: keyid:89:7C:1A:88:C9:C8:9A:E9:42:54:E2:24:1C:78:8E:97:C1:FF:3E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iXwaiMnImulCVOIkHHiOl8H_Pkg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/eb3e03-3968-4db2-bf80-43f6ae520b1a/1/ggAemkutc9Uj5OtMRscidUTfz_w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/eb3e03-3968-4db2-bf80-43f6ae520b1a/1/iXwaiMnImulCVOIkHHiOl8H_Pkg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.21.232.0/22 IPv6: 2a00:5a20::/32 Signature Algorithm: sha256WithRSAEncryption 31:1b:1e:26:9b:0c:08:27:54:1a:ec:0e:5f:17:76:8b:db:ee: f3:d1:36:60:96:99:b1:5b:6f:0d:2a:48:63:da:1e:ba:dd:ef: ad:bb:0d:19:ff:98:f3:90:3e:2c:b5:e6:14:43:5a:d7:5f:26: 42:b2:3d:3b:d6:bc:b4:46:1d:cd:a6:80:87:35:90:57:47:2e: cc:90:09:60:f7:d9:f2:ba:48:0b:0b:9b:1a:8e:ab:04:40:ea: b2:07:14:ea:7c:23:85:a7:91:60:fb:2f:37:23:cf:7a:e7:41: 9d:8a:c7:e9:2e:d4:27:ad:e1:ed:80:78:aa:a8:cb:66:75:20: 17:c4:88:73:bf:bc:52:86:0a:1b:e7:fc:44:e1:7c:1b:90:d5: e6:11:26:19:2a:07:53:ae:68:1a:25:19:0c:ef:fc:82:51:9e: 0f:e7:8a:3e:8e:b0:b3:59:8b:ee:43:13:95:6f:16:89:10:50: da:8c:62:af:15:c6:03:d8:c0:0c:8f:4e:58:3f:a8:3d:50:45: d1:0b:c1:10:a0:90:26:b3:f4:e9:cd:9c:0a:c0:7f:97:73:c1: 6d:43:70:5c:f4:4e:9f:88:00:f7:25:44:f1:47:0e:7f:f1:d7: c2:aa:f3:5d:68:fa:cd:bf:3d:3c:93:b4:62:d6:df:47:6c:37: e4:7b:2f:8c -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt7pRcRFnKLVbB5NBnxKad5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5N2MxYTg4YzljODlhZTk0MjU0ZTIyNDFjNzg4ZTk3YzFm ZjNlNDgwHhcNMjYwMTAxMjIxOTM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MjAwMWU5YTRiYWQ3M2Q1MjNlNGViNGM0NmM3MjI3NTQ0ZGZjZmZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjvDEGBeC44sDuwzy5v7DqueAOSd1 HhViUnfQXEk3tuQCAeLNvVzUsgJpGTmV1OTerxVMrLQUP9vKHIUYuq9wIQV8PP6/ 4v8GSc0hD0eFF8pwbCltdCZI8FVgt725Qv9u3pfsVh4JYuS3O6pmZjCyaAUGdiV0 sMIrdtfTYLPGjrWDBbK8xG5jeYjLSt94MDRDwi0dzKJGoznQ7SAq2zcYgjLgEP0W UcZ0rAZH+GNzUoMnNA9UudVaVQemZqG5zN3xzdbcyVmVdOO8nlkiXqT3WAoyb3wT t4Ma5tV3slIBvhRWW06iamKDZN+tYxCLNU+vnaG7Rx35grRygTIdQ8ANowIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFIIAHppLrXPVI+TrTEbHInVE38/8MB8GA1UdIwQY MBaAFIl8GojJyJrpQlTiJBx4jpfB/z5IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVh3YWlNbkltdWxDVk9Ja0hIaU9sOEhfUGtnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS9lYjNlMDMtMzk2OC00ZGIyLWJmODAt NDNmNmFlNTIwYjFhLzEvZ2dBZW1rdXRjOVVqNU90TVJzY2lkVVRmel93LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS9lYjNlMDMtMzk2OC00ZGIyLWJmODAtNDNmNmFlNTIwYjFh LzEvaVh3YWlNbkltdWxDVk9Ja0hIaU9sOEhfUGtnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuRXoMA0E AgACMAcDBQAqAFogMA0GCSqGSIb3DQEBCwUAA4IBAQAxGx4mmwwIJ1Qa7A5fF3aL 2+7z0TZglpmxW28NKkhj2h663e+tuw0Z/5jzkD4steYUQ1rXXyZCsj071ry0Rh3N poCHNZBXRy7MkAlg99nyukgLC5sajqsEQOqyBxTqfCOFp5Fg+y83I89650Gdisfp LtQnreHtgHiqqMtmdSAXxIhzv7xShgob5/xE4XwbkNXmESYZKgdTrmgaJRkM7/yC UZ4P54o+jrCzWYvuQxOVbxaJEFDajGKvFcYD2MAMj05YP6g9UEXRC8EQoJAms/Tp zZwKwH+Xc8FtQ3Bc9E6fiAD3JUTxRw5/8dfCqvNdaPrNvz08k7Ri1t9HbDfkey+M -----END CERTIFICATE-----Generated at Tue Feb 10 00:01:43 2026 by rpki-client