This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/f501f6-1702-48d3-8027-96b8691f5260/1/gT43gR6yAJoDnaGMxvIht7VdQYc.roa File: gT43gR6yAJoDnaGMxvIht7VdQYc.roa (raw, json) Hash identifier: 7uisWofXo4xZS2zMATJeZxFlh1NhmZevCeBai8ijDrI= Subject key identifier: 81:3E:37:81:1E:B2:00:9A:03:9D:A1:8C:C6:F2:21:B7:B5:5D:41:87 Certificate issuer: /CN=15d1ff6bec9fbcb89e950a3a01ef2d686f0e7a31 Certificate serial: 019B7EA5605D59440C0F442B42EA4BFBA644 Authority key identifier: 15:D1:FF:6B:EC:9F:BC:B8:9E:95:0A:3A:01:EF:2D:68:6F:0E:7A:31 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FdH_a-yfvLielQo6Ae8taG8OejE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/f501f6-1702-48d3-8027-96b8691f5260/1/gT43gR6yAJoDnaGMxvIht7VdQYc.roa Signing time: Fri 02 Jan 2026 12:18:45 +0000 ROA not before: Fri 02 Jan 2026 12:18:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 19905 IP address blocks: 185.150.216.0/23 maxlen: 23 2a07:7c40::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/f501f6-1702-48d3-8027-96b8691f5260/1/FdH_a-yfvLielQo6Ae8taG8OejE.crl rsync://rpki.ripe.net/repository/DEFAULT/5e/f501f6-1702-48d3-8027-96b8691f5260/1/FdH_a-yfvLielQo6Ae8taG8OejE.mft rsync://rpki.ripe.net/repository/DEFAULT/FdH_a-yfvLielQo6Ae8taG8OejE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:60:5d:59:44:0c:0f:44:2b:42:ea:4b:fb:a6:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15d1ff6bec9fbcb89e950a3a01ef2d686f0e7a31 Validity Not Before: Jan 2 12:18:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=813e37811eb2009a039da18cc6f221b7b55d4187 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:9a:24:b1:9a:f2:80:f5:b8:c3:e5:48:32:a5: b7:9d:91:de:7d:62:ae:20:fa:c9:5e:49:cb:39:48: 20:6c:1d:b6:fd:10:25:3b:1c:ad:e0:63:b6:08:50: d3:95:2f:89:5e:53:4a:63:7a:71:f5:c6:5e:56:b3: 6b:bc:cf:0b:5c:46:3f:92:6b:7a:b9:25:a2:6f:f2: 8f:78:d7:b1:c9:3f:2b:95:b5:fa:7f:2e:a1:29:1c: 14:d5:6c:8e:57:3f:39:c8:a0:a7:b6:96:d5:16:ac: 2f:54:7e:43:aa:21:13:65:77:57:d4:38:81:a8:75: 24:8c:73:06:31:12:75:3b:6f:03:0f:42:ca:7f:15: 14:6d:19:d9:75:91:00:f0:aa:11:83:69:b1:05:72: bc:a0:f2:a6:5f:87:93:9b:a5:30:85:1d:85:e2:fe: 3a:7f:86:e2:23:d5:ba:98:75:b2:ff:21:4b:b0:fb: ea:0e:0b:80:9e:1b:3e:0f:90:3e:fd:c2:92:02:f2: f9:bb:7a:23:b4:b3:03:2f:eb:81:75:0d:97:e7:f7: b2:da:34:f1:4a:47:85:c7:43:ea:31:12:72:1d:62: 9a:f9:1c:c9:71:a6:b3:66:4f:6e:95:8b:0d:d8:6e: cc:4d:2c:08:90:9c:cd:8d:3e:12:e1:e9:c2:d4:31: 40:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:3E:37:81:1E:B2:00:9A:03:9D:A1:8C:C6:F2:21:B7:B5:5D:41:87 X509v3 Authority Key Identifier: keyid:15:D1:FF:6B:EC:9F:BC:B8:9E:95:0A:3A:01:EF:2D:68:6F:0E:7A:31 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FdH_a-yfvLielQo6Ae8taG8OejE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/f501f6-1702-48d3-8027-96b8691f5260/1/gT43gR6yAJoDnaGMxvIht7VdQYc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/f501f6-1702-48d3-8027-96b8691f5260/1/FdH_a-yfvLielQo6Ae8taG8OejE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.150.216.0/23 IPv6: 2a07:7c40::/29 Signature Algorithm: sha256WithRSAEncryption ad:07:5e:30:a9:94:11:89:21:43:15:f7:89:c4:00:5f:a7:d8: ea:27:1a:32:ae:4e:f0:10:8c:91:3e:ae:05:ca:aa:d0:c2:e1: ad:c7:c0:e1:52:77:45:8d:73:30:06:73:60:02:88:a7:b4:dc: 01:c7:7e:2b:e5:5b:22:60:e7:92:57:e4:85:de:1e:b9:1a:93: de:f2:ad:5c:28:6a:da:ea:74:53:f8:0d:b3:ea:ea:be:6f:b3: f8:70:4c:b3:9e:94:96:cd:ef:af:4c:73:73:f6:98:04:dc:95: 0b:4b:45:ca:8d:98:c7:89:15:9b:24:31:f5:f8:a5:b3:5a:2e: 01:11:e7:11:10:dc:29:1c:c1:ad:55:04:02:f5:ae:8f:83:16: df:d6:cf:25:74:d3:84:df:0f:d6:61:25:f6:c7:52:99:17:35: d3:cd:d9:c3:26:d2:3c:8e:18:f9:9e:70:0f:a6:be:4f:61:a8: ec:8f:11:c0:01:00:5c:86:67:07:7a:94:74:c1:5a:b9:79:2b: 36:22:2c:47:91:92:e8:cd:e4:6a:7d:c5:14:61:14:b9:fc:a1: f0:ac:8a:a9:a4:70:e6:81:41:cf:59:1b:00:01:a3:bb:12:56: 0c:a2:57:30:69:a5:57:e9:24:8f:cd:58:35:ea:e2:b6:81:2a: 8a:33:56:a7 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt+pWBdWUQMD0QrQupL+6ZEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE1ZDFmZjZiZWM5ZmJjYjg5ZTk1MGEzYTAxZWYyZDY4NmYw ZTdhMzEwHhcNMjYwMTAyMTIxODQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MTNlMzc4MTFlYjIwMDlhMDM5ZGExOGNjNmYyMjFiN2I1NWQ0MTg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqJoksZrygPW4w+VIMqW3nZHefWKu IPrJXknLOUggbB22/RAlOxyt4GO2CFDTlS+JXlNKY3px9cZeVrNrvM8LXEY/kmt6 uSWib/KPeNexyT8rlbX6fy6hKRwU1WyOVz85yKCntpbVFqwvVH5DqiETZXdX1DiB qHUkjHMGMRJ1O28DD0LKfxUUbRnZdZEA8KoRg2mxBXK8oPKmX4eTm6UwhR2F4v46 f4biI9W6mHWy/yFLsPvqDguAnhs+D5A+/cKSAvL5u3ojtLMDL+uBdQ2X5/ey2jTx SkeFx0PqMRJyHWKa+RzJcaazZk9ulYsN2G7MTSwIkJzNjT4S4enC1DFALwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFIE+N4EesgCaA52hjMbyIbe1XUGHMB8GA1UdIwQY MBaAFBXR/2vsn7y4npUKOgHvLWhvDnoxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRmRIX2EteWZ2TGllbFFvNkFlOHRhRzhPZWpFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS9mNTAxZjYtMTcwMi00OGQzLTgwMjct OTZiODY5MWY1MjYwLzEvZ1Q0M2dSNnlBSm9EbmFHTXh2SWh0N1ZkUVljLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZS9mNTAxZjYtMTcwMi00OGQzLTgwMjctOTZiODY5MWY1MjYw LzEvRmRIX2EteWZ2TGllbFFvNkFlOHRhRzhPZWpFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBuZbYMA0E AgACMAcDBQMqB3xAMA0GCSqGSIb3DQEBCwUAA4IBAQCtB14wqZQRiSFDFfeJxABf p9jqJxoyrk7wEIyRPq4FyqrQwuGtx8DhUndFjXMwBnNgAointNwBx34r5VsiYOeS V+SF3h65GpPe8q1cKGra6nRT+A2z6uq+b7P4cEyznpSWze+vTHNz9pgE3JULS0XK jZjHiRWbJDH1+KWzWi4BEecRENwpHMGtVQQC9a6Pgxbf1s8ldNOE3w/WYSX2x1KZ FzXTzdnDJtI8jhj5nnAPpr5PYajsjxHAAQBchmcHepR0wVq5eSs2IixHkZLozeRq fcUUYRS5/KHwrIqppHDmgUHPWRsAAaO7ElYMolcwaaVX6SSPzVg16uK2gSqKM1an -----END CERTIFICATE-----Generated at Tue Jan 20 01:22:21 2026 by rpki-client