This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/3de94a-1e60-4eb8-9a5e-a142087ce890/1/gMgy66IeqRUWzHc_Tz_B5xCML94.roa File: gMgy66IeqRUWzHc_Tz_B5xCML94.roa (raw, json) Hash identifier: alaMur7cm6u5buHk6RtnuNKVEJYn50JpsYiMrntsAII= Subject key identifier: 80:C8:32:EB:A2:1E:A9:15:16:CC:77:3F:4F:3F:C1:E7:10:8C:2F:DE Certificate issuer: /CN=d654436ed3242bddb96fdf139a1253deb986dfd0 Certificate serial: 019B797E564F8DA4A790A2DE007A000865C8 Authority key identifier: D6:54:43:6E:D3:24:2B:DD:B9:6F:DF:13:9A:12:53:DE:B9:86:DF:D0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1lRDbtMkK925b98TmhJT3rmG39A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/3de94a-1e60-4eb8-9a5e-a142087ce890/1/gMgy66IeqRUWzHc_Tz_B5xCML94.roa Signing time: Thu 01 Jan 2026 12:18:01 +0000 ROA not before: Thu 01 Jan 2026 12:18:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 28753 IP address blocks: 37.58.48.0/20 maxlen: 20 46.165.192.0/18 maxlen: 18 78.159.96.0/19 maxlen: 19 84.16.224.0/19 maxlen: 19 91.109.16.0/20 maxlen: 20 178.162.192.0/18 maxlen: 18 185.17.144.0/22 maxlen: 22 212.95.32.0/19 maxlen: 19 217.20.112.0/20 maxlen: 20 2a00:c98::/32 maxlen: 48 2a00:c98:2052::/48 maxlen: 48 2a00:c98:2222::/48 maxlen: 48 2a00:c98:4000::/36 maxlen: 48 2a00:c98:4005::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/3de94a-1e60-4eb8-9a5e-a142087ce890/1/1lRDbtMkK925b98TmhJT3rmG39A.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/3de94a-1e60-4eb8-9a5e-a142087ce890/1/1lRDbtMkK925b98TmhJT3rmG39A.mft rsync://rpki.ripe.net/repository/DEFAULT/1lRDbtMkK925b98TmhJT3rmG39A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 12:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:56:4f:8d:a4:a7:90:a2:de:00:7a:00:08:65:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d654436ed3242bddb96fdf139a1253deb986dfd0 Validity Not Before: Jan 1 12:18:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=80c832eba21ea91516cc773f4f3fc1e7108c2fde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:9e:1b:0a:98:f7:87:95:05:f6:26:f0:6f:98: b8:00:df:c4:03:66:47:6e:0a:64:f6:9d:8d:72:17: 90:7f:32:22:ee:cf:fc:b5:b0:9a:d0:88:28:c0:dc: 09:00:fe:a5:82:23:d1:8d:a9:5d:98:07:0b:d5:13: f2:c3:01:af:0e:cc:3a:f2:a2:9d:d9:83:29:9b:43: 28:ad:25:02:cc:0d:57:d3:29:34:4e:ce:80:7d:6d: 40:ad:c9:92:62:6e:bd:5f:2f:c5:9d:46:f4:e8:92: 47:fb:68:4a:4e:45:cd:c1:fd:63:ba:b5:03:f1:83: 94:c1:2b:7e:60:48:75:05:1b:87:82:4d:ee:9a:80: 5b:bc:d1:1e:fa:16:a1:1c:e6:fb:43:d8:34:fb:04: 18:a3:4f:79:81:00:b5:d3:8e:f4:72:3a:14:b0:7e: 6b:49:eb:36:35:33:be:6d:55:d2:f1:27:30:42:4e: 97:2c:e5:df:ae:27:bf:4b:b4:0c:5f:55:ad:f3:8d: f4:fd:fc:ae:65:b9:cd:69:77:a7:ca:43:d5:97:84: a4:d4:e6:a1:40:fc:5a:44:de:fd:0d:66:99:7b:a7: 3a:ec:53:3b:64:bc:b5:6d:ce:5d:27:ea:bc:5a:3b: 22:e0:9b:45:14:33:46:3a:36:b4:10:93:ad:bf:fd: 4f:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:C8:32:EB:A2:1E:A9:15:16:CC:77:3F:4F:3F:C1:E7:10:8C:2F:DE X509v3 Authority Key Identifier: keyid:D6:54:43:6E:D3:24:2B:DD:B9:6F:DF:13:9A:12:53:DE:B9:86:DF:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1lRDbtMkK925b98TmhJT3rmG39A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/3de94a-1e60-4eb8-9a5e-a142087ce890/1/gMgy66IeqRUWzHc_Tz_B5xCML94.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/3de94a-1e60-4eb8-9a5e-a142087ce890/1/1lRDbtMkK925b98TmhJT3rmG39A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.58.48.0/20 46.165.192.0/18 78.159.96.0/19 84.16.224.0/19 91.109.16.0/20 178.162.192.0/18 185.17.144.0/22 212.95.32.0/19 217.20.112.0/20 IPv6: 2a00:c98::/32 Signature Algorithm: sha256WithRSAEncryption 4e:b0:58:f5:27:e8:3e:c6:77:38:f8:2c:ab:3a:c0:dc:ee:df: 77:76:13:f3:63:e7:0b:e3:44:fe:f9:ab:4c:91:74:4e:71:8f: 60:cb:0d:a1:1a:ce:23:50:2b:db:5c:d1:39:ee:56:a5:7f:95: 77:6b:6a:e0:d2:d8:0c:73:17:fa:a5:ae:46:f1:8c:56:3f:a0: 7a:e0:c7:26:31:c3:a1:12:02:40:cf:5f:1c:9f:d1:fb:42:5f: 22:c7:85:01:9b:73:6d:f2:15:c6:65:84:40:19:34:14:32:b6: 0b:15:c1:db:ea:f0:1c:78:b9:18:bc:2a:c3:47:c6:ea:65:a9: 31:34:fd:39:08:ec:2d:84:9e:3b:a5:6d:53:cc:0c:78:f4:2b: 15:06:c3:95:8a:3f:af:2f:59:c2:ff:ba:cb:74:46:1f:91:c2: 6f:87:63:92:83:a7:ba:aa:34:e7:11:aa:91:ae:f8:78:86:aa: 5e:b2:45:de:89:9e:9a:f0:37:42:cd:08:b6:ff:62:ce:0b:a5: 11:59:14:dd:c4:2d:09:9d:0b:08:02:6a:db:00:3d:11:38:06: 66:c4:d4:d7:e4:bc:a5:65:1a:e9:45:ab:53:81:ab:cb:57:ab: 85:a5:32:8c:4d:30:da:81:a4:e8:c3:c2:88:27:39:62:be:bf: da:e8:a2:68 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgISAZt5flZPjaSnkKLeAHoACGXIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ2NTQ0MzZlZDMyNDJiZGRiOTZmZGYxMzlhMTI1M2RlYjk4 NmRmZDAwHhcNMjYwMTAxMTIxODAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MGM4MzJlYmEyMWVhOTE1MTZjYzc3M2Y0ZjNmYzFlNzEwOGMyZmRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0J4bCpj3h5UF9ibwb5i4AN/EA2ZH bgpk9p2NcheQfzIi7s/8tbCa0IgowNwJAP6lgiPRjaldmAcL1RPywwGvDsw68qKd 2YMpm0MorSUCzA1X0yk0Ts6AfW1ArcmSYm69Xy/FnUb06JJH+2hKTkXNwf1jurUD 8YOUwSt+YEh1BRuHgk3umoBbvNEe+hahHOb7Q9g0+wQYo095gQC10470cjoUsH5r Ses2NTO+bVXS8ScwQk6XLOXfrie/S7QMX1Wt8430/fyuZbnNaXenykPVl4Sk1Oah QPxaRN79DWaZe6c67FM7ZLy1bc5dJ+q8Wjsi4JtFFDNGOja0EJOtv/1P7QIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFIDIMuuiHqkVFsx3P08/wecQjC/eMB8GA1UdIwQY MBaAFNZUQ27TJCvduW/fE5oSU965ht/QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMWxSRGJ0TWtLOTI1Yjk4VG1oSlQzcm1HMzlBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi8zZGU5NGEtMWU2MC00ZWI4LTlhNWUt YTE0MjA4N2NlODkwLzEvZ01neTY2SWVxUlVXekhjX1R6X0I1eENNTDk0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi8zZGU5NGEtMWU2MC00ZWI4LTlhNWUtYTE0MjA4N2NlODkw LzEvMWxSRGJ0TWtLOTI1Yjk4VG1oSlQzcm1HMzlBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMF4GCCsGAQUFBwEHAQH/BE8wTTA8BAIAATA2AwQEJTowAwQG LqXAAwQFTp9gAwQFVBDgAwQEW20QAwQGsqLAAwQCuRGQAwQF1F8gAwQE2RRwMA0E AgACMAcDBQAqAAyYMA0GCSqGSIb3DQEBCwUAA4IBAQBOsFj1J+g+xnc4+CyrOsDc 7t93dhPzY+cL40T++atMkXROcY9gyw2hGs4jUCvbXNE57lalf5V3a2rg0tgMcxf6 pa5G8YxWP6B64McmMcOhEgJAz18cn9H7Ql8ix4UBm3Nt8hXGZYRAGTQUMrYLFcHb 6vAceLkYvCrDR8bqZakxNP05COwthJ47pW1TzAx49CsVBsOVij+vL1nC/7rLdEYf kcJvh2OSg6e6qjTnEaqRrvh4hqpeskXeiZ6a8DdCzQi2/2LOC6URWRTdxC0JnQsI AmrbAD0ROAZmxNTX5LylZRrpRatTgavLV6uFpTKMTTDagaTow8KIJzlivr/a6KJo -----END CERTIFICATE-----Generated at Wed Jan 7 17:16:53 2026 by rpki-client