This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/19ddad-c458-441e-984e-573f17d2aef3/1/bXgR8m5zIy_GMOS_a3seOOEoPYQ.roa File: bXgR8m5zIy_GMOS_a3seOOEoPYQ.roa (raw, json) Hash identifier: dQET79lWM3bPQ1IRR0iZoVaViZjUeP97gYh31kK/K0E= Subject key identifier: 6D:78:11:F2:6E:73:23:2F:C6:30:E4:BF:6B:7B:1E:38:E1:28:3D:84 Certificate issuer: /CN=b4cd96b27e8843504bb5bd55c329ec02db9f0ffd Certificate serial: 019B79ECC25FB1B2A395E285F70D738B6779 Authority key identifier: B4:CD:96:B2:7E:88:43:50:4B:B5:BD:55:C3:29:EC:02:DB:9F:0F:FD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tM2Wsn6IQ1BLtb1VwynsAtufD_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/19ddad-c458-441e-984e-573f17d2aef3/1/bXgR8m5zIy_GMOS_a3seOOEoPYQ.roa Signing time: Thu 01 Jan 2026 14:18:37 +0000 ROA not before: Thu 01 Jan 2026 14:18:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50629 IP address blocks: 45.157.236.0/22 maxlen: 22 2a0f:4e80::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/19ddad-c458-441e-984e-573f17d2aef3/1/tM2Wsn6IQ1BLtb1VwynsAtufD_0.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/19ddad-c458-441e-984e-573f17d2aef3/1/tM2Wsn6IQ1BLtb1VwynsAtufD_0.mft rsync://rpki.ripe.net/repository/DEFAULT/tM2Wsn6IQ1BLtb1VwynsAtufD_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 08:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:c2:5f:b1:b2:a3:95:e2:85:f7:0d:73:8b:67:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4cd96b27e8843504bb5bd55c329ec02db9f0ffd Validity Not Before: Jan 1 14:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6d7811f26e73232fc630e4bf6b7b1e38e1283d84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:34:14:7c:a0:a8:eb:7e:71:bc:1f:b6:19:6f: 57:5f:bf:cd:33:9e:57:07:95:51:38:1d:59:93:21: 11:a2:31:ca:f3:58:6d:f7:d9:6d:eb:20:1a:97:70: cc:2c:cc:a3:21:8e:3f:09:da:ca:15:ba:4b:82:b3: a6:7e:3c:b7:72:43:4c:9d:11:f0:4c:5a:b0:d3:5c: 07:e4:22:40:66:75:56:f8:0c:33:be:f0:8b:c9:20: 0e:7f:63:50:d5:43:02:5c:63:17:07:03:da:0c:42: 35:27:c2:39:d1:c0:a2:6f:12:23:98:82:8d:7c:73: d6:83:b4:b0:9e:df:1e:1c:41:85:a0:77:bb:8f:8a: 07:eb:fb:7c:00:14:4c:2b:de:65:ae:00:0f:5c:43: c2:c5:34:76:83:b9:28:48:0f:69:c6:00:d0:eb:b9: a9:75:09:2c:5e:ea:d1:26:96:08:98:27:a7:4e:cb: 25:92:fd:5f:1b:f5:32:b0:f6:45:0b:0b:bb:96:36: a0:13:8d:41:82:64:b8:33:8c:7c:31:8a:25:92:45: c3:b8:5a:e2:c2:39:73:16:55:02:ba:f4:c9:15:b3: 2a:75:9a:d3:0e:f2:ee:47:f0:c4:d2:fc:92:0e:d2: 24:2c:85:49:38:75:da:33:c1:71:a3:25:00:30:b8: 03:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:78:11:F2:6E:73:23:2F:C6:30:E4:BF:6B:7B:1E:38:E1:28:3D:84 X509v3 Authority Key Identifier: keyid:B4:CD:96:B2:7E:88:43:50:4B:B5:BD:55:C3:29:EC:02:DB:9F:0F:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tM2Wsn6IQ1BLtb1VwynsAtufD_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/19ddad-c458-441e-984e-573f17d2aef3/1/bXgR8m5zIy_GMOS_a3seOOEoPYQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/19ddad-c458-441e-984e-573f17d2aef3/1/tM2Wsn6IQ1BLtb1VwynsAtufD_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.157.236.0/22 IPv6: 2a0f:4e80::/29 Signature Algorithm: sha256WithRSAEncryption 24:ae:1d:fb:1d:84:65:f7:c3:c8:78:38:03:18:3b:d2:83:18: 97:0b:95:1b:62:0a:81:87:d8:20:0d:8e:87:a4:49:17:1b:0b: 9a:1b:7c:ab:29:97:28:54:b2:d5:d4:6d:d8:cc:88:89:8d:0e: 0c:eb:63:f6:80:e6:3a:06:fe:9b:08:28:28:a3:9d:f9:fb:40: bb:50:db:2e:a1:79:c1:a1:69:8f:c1:5f:57:c8:ca:92:84:f4: 0c:4e:fb:f2:31:5d:b4:9a:aa:4c:7e:6a:e0:d0:fb:0a:a4:35: 7c:57:c8:50:c4:8c:a1:69:d5:9f:a3:3f:54:69:5f:05:12:c4: 04:1d:23:e4:f1:7b:a5:de:8a:c8:5d:ce:df:db:cd:2e:93:e2: b1:cb:75:a6:7d:9b:d7:ef:bf:fe:da:d3:87:0d:e5:61:71:93: e1:e0:e2:eb:d6:cd:70:79:b0:99:dc:b3:06:b4:e7:6e:25:5a: f5:d2:f2:7b:64:f9:f8:6b:20:70:5f:06:c6:2d:7c:37:67:0b: f8:fc:c6:bf:a3:0a:97:de:7b:f3:d6:d7:e4:4b:1c:aa:a0:ca: 89:57:30:ae:b3:6d:b8:7b:1a:f0:e0:68:8e:36:bb:df:7e:1f: 39:44:17:5a:c3:cd:64:84:0e:8c:2c:fb:96:0a:e1:29:43:bb: d6:ad:ae:97 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt57MJfsbKjleKF9w1zi2d5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0Y2Q5NmIyN2U4ODQzNTA0YmI1YmQ1NWMzMjllYzAyZGI5 ZjBmZmQwHhcNMjYwMTAxMTQxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZDc4MTFmMjZlNzMyMzJmYzYzMGU0YmY2YjdiMWUzOGUxMjgzZDg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtjQUfKCo635xvB+2GW9XX7/NM55X B5VROB1ZkyERojHK81ht99lt6yAal3DMLMyjIY4/CdrKFbpLgrOmfjy3ckNMnRHw TFqw01wH5CJAZnVW+AwzvvCLySAOf2NQ1UMCXGMXBwPaDEI1J8I50cCibxIjmIKN fHPWg7Swnt8eHEGFoHe7j4oH6/t8ABRMK95lrgAPXEPCxTR2g7koSA9pxgDQ67mp dQksXurRJpYImCenTsslkv1fG/UysPZFCwu7ljagE41BgmS4M4x8MYolkkXDuFri wjlzFlUCuvTJFbMqdZrTDvLuR/DE0vySDtIkLIVJOHXaM8FxoyUAMLgDOwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFG14EfJucyMvxjDkv2t7HjjhKD2EMB8GA1UdIwQY MBaAFLTNlrJ+iENQS7W9VcMp7ALbnw/9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdE0yV3NuNklRMUJMdGIxVnd5bnNBdHVmRF8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy8xOWRkYWQtYzQ1OC00NDFlLTk4NGUt NTczZjE3ZDJhZWYzLzEvYlhnUjhtNXpJeV9HTU9TX2Ezc2VPT0VvUFlRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy8xOWRkYWQtYzQ1OC00NDFlLTk4NGUtNTczZjE3ZDJhZWYz LzEvdE0yV3NuNklRMUJMdGIxVnd5bnNBdHVmRF8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCLZ3sMA0E AgACMAcDBQMqD06AMA0GCSqGSIb3DQEBCwUAA4IBAQAkrh37HYRl98PIeDgDGDvS gxiXC5UbYgqBh9ggDY6HpEkXGwuaG3yrKZcoVLLV1G3YzIiJjQ4M62P2gOY6Bv6b CCgoo535+0C7UNsuoXnBoWmPwV9XyMqShPQMTvvyMV20mqpMfmrg0PsKpDV8V8hQ xIyhadWfoz9UaV8FEsQEHSPk8Xul3orIXc7f280uk+Kxy3WmfZvX77/+2tOHDeVh cZPh4OLr1s1webCZ3LMGtOduJVr10vJ7ZPn4ayBwXwbGLXw3Zwv4/Ma/owqX3nvz 1tfkSxyqoMqJVzCus224exrw4GiONrvffh85RBdaw81khA6MLPuWCuEpQ7vWra6X -----END CERTIFICATE-----Generated at Mon Jan 26 15:58:29 2026 by rpki-client