This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/gIBhWboHIlbVLsOrG6_KrzVsgsg.roa File: gIBhWboHIlbVLsOrG6_KrzVsgsg.roa (raw, json) Hash identifier: JloPm0symVV0m3PFdsgfuUWNtGXtbv/UJhvDlmOgv8I= Subject key identifier: 80:80:61:59:BA:07:22:56:D5:2E:C3:AB:1B:AF:CA:AF:35:6C:82:C8 Certificate issuer: /CN=a509e86576c065e14bfbee8f652ab6c279ccde12 Certificate serial: 019B7F159A38CFA705EC67358254FEAADEAF Authority key identifier: A5:09:E8:65:76:C0:65:E1:4B:FB:EE:8F:65:2A:B6:C2:79:CC:DE:12 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pQnoZXbAZeFL--6PZSq2wnnM3hI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/gIBhWboHIlbVLsOrG6_KrzVsgsg.roa Signing time: Fri 02 Jan 2026 14:21:20 +0000 ROA not before: Fri 02 Jan 2026 14:21:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 24940 IP address blocks: 193.163.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.crl rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.mft rsync://rpki.ripe.net/repository/DEFAULT/pQnoZXbAZeFL--6PZSq2wnnM3hI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:9a:38:cf:a7:05:ec:67:35:82:54:fe:aa:de:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a509e86576c065e14bfbee8f652ab6c279ccde12 Validity Not Before: Jan 2 14:21:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=80806159ba072256d52ec3ab1bafcaaf356c82c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f2:24:fb:d6:7a:97:2d:ab:0c:6e:bb:83:9f: 8d:28:a7:3c:6f:ab:07:bd:ab:b6:fa:19:2e:d0:36: 48:dc:fa:43:7f:2d:9f:d7:68:f5:9b:6f:c8:fe:e0: 9e:4f:e8:ba:fb:07:43:2f:e4:27:b0:b1:10:af:28: 8b:66:d7:d5:67:06:12:21:c1:7b:fe:17:59:48:58: 6f:97:95:01:80:34:c8:44:be:97:7e:6a:b0:16:4c: c9:93:b7:fb:41:e4:56:47:52:18:58:68:62:30:80: d7:09:5c:f9:14:f6:42:b1:53:d3:f8:d2:51:2c:ef: 9e:c9:1a:bc:32:73:29:b3:65:ff:5a:c7:3f:36:19: d0:4b:c0:b7:b9:da:73:37:07:e5:d1:25:2c:de:d9: e3:ab:04:5c:b1:5f:af:83:3e:f0:91:c4:96:7d:e9: b9:98:f5:bf:e9:24:da:94:25:82:aa:9a:54:a0:b8: 1d:55:86:76:ac:83:96:9d:e6:6c:92:0a:9a:6e:34: e6:7b:71:6b:48:b8:cf:65:9f:a3:44:8a:8b:f5:91: 0c:77:e9:03:f6:97:e9:26:aa:aa:d1:4c:8d:55:87: 3c:57:5b:3c:ee:68:1f:05:73:8e:6a:7e:b4:51:fb: cf:35:c7:e3:74:3f:1f:b2:3a:7b:b7:11:cc:2d:0a: d0:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:80:61:59:BA:07:22:56:D5:2E:C3:AB:1B:AF:CA:AF:35:6C:82:C8 X509v3 Authority Key Identifier: keyid:A5:09:E8:65:76:C0:65:E1:4B:FB:EE:8F:65:2A:B6:C2:79:CC:DE:12 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pQnoZXbAZeFL--6PZSq2wnnM3hI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/gIBhWboHIlbVLsOrG6_KrzVsgsg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.163.198.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:1c:b9:52:50:e1:3b:ba:11:63:95:58:f4:10:3f:25:fb:2b: bc:09:22:29:fa:aa:3b:29:ac:ca:cf:08:34:d1:5e:df:7a:50: 56:e1:ea:1f:87:62:17:a0:87:97:e3:e4:54:40:c2:f4:62:b2: eb:9a:aa:b0:53:dc:57:6e:b2:76:15:1b:0e:a4:f8:63:c6:b9: 4b:8e:aa:55:9b:8d:6f:75:c3:7b:d3:05:de:89:46:4e:dc:fd: be:d1:d9:03:7b:59:e7:83:bb:7e:87:1c:51:76:44:cd:fe:a0: 85:05:e1:a2:11:04:3c:fa:6c:51:10:b7:22:d3:23:56:71:8d: 25:68:e2:9b:b6:f3:14:9d:d4:6c:7e:e6:c4:c9:c2:b4:6c:d9: af:49:c9:77:0b:34:1d:13:1f:b4:ad:98:90:6e:ca:eb:d3:48: 4f:94:52:c6:a6:b5:2d:a7:b1:e6:55:b9:e0:c8:40:93:e9:5a: 15:ae:f7:f1:98:dc:38:84:c4:5c:40:75:1c:45:4d:2c:2e:fb: e1:eb:0f:c8:14:88:68:f3:67:22:5b:5e:a1:b6:00:99:87:ab: 83:d1:ff:0d:bf:39:97:f9:fe:95:2b:4b:04:b4:ee:5f:11:7c: 37:8e:5a:96:87:68:34:d5:e7:ff:c9:1d:5f:2d:1a:ba:b0:c9: b4:1d:2f:6b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FZo4z6cF7Gc1glT+qt6vMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1MDllODY1NzZjMDY1ZTE0YmZiZWU4ZjY1MmFiNmMyNzlj Y2RlMTIwHhcNMjYwMTAyMTQyMTIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MDgwNjE1OWJhMDcyMjU2ZDUyZWMzYWIxYmFmY2FhZjM1NmM4MmM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyfIk+9Z6ly2rDG67g5+NKKc8b6sH vau2+hku0DZI3PpDfy2f12j1m2/I/uCeT+i6+wdDL+QnsLEQryiLZtfVZwYSIcF7 /hdZSFhvl5UBgDTIRL6XfmqwFkzJk7f7QeRWR1IYWGhiMIDXCVz5FPZCsVPT+NJR LO+eyRq8MnMps2X/Wsc/NhnQS8C3udpzNwfl0SUs3tnjqwRcsV+vgz7wkcSWfem5 mPW/6STalCWCqppUoLgdVYZ2rIOWneZskgqabjTme3FrSLjPZZ+jRIqL9ZEMd+kD 9pfpJqqq0UyNVYc8V1s87mgfBXOOan60UfvPNcfjdD8fsjp7txHMLQrQ4QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFICAYVm6ByJW1S7Dqxuvyq81bILIMB8GA1UdIwQY MBaAFKUJ6GV2wGXhS/vuj2UqtsJ5zN4SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFFub1pYYkFaZUZMLS02UFpTcTJ3bm5NM2hJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC8wMTQyNDUtODY4NS00YWYzLTkzODct YTBmNTc0MmIxYjA0LzEvZ0lCaFdib0hJbGJWTHNPckc2X0tyelZzZ3NnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC8wMTQyNDUtODY4NS00YWYzLTkzODctYTBmNTc0MmIxYjA0 LzEvcFFub1pYYkFaZUZMLS02UFpTcTJ3bm5NM2hJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwaPGMA0G CSqGSIb3DQEBCwUAA4IBAQA6HLlSUOE7uhFjlVj0ED8l+yu8CSIp+qo7KazKzwg0 0V7felBW4eofh2IXoIeX4+RUQML0YrLrmqqwU9xXbrJ2FRsOpPhjxrlLjqpVm41v dcN70wXeiUZO3P2+0dkDe1nng7t+hxxRdkTN/qCFBeGiEQQ8+mxRELci0yNWcY0l aOKbtvMUndRsfubEycK0bNmvScl3CzQdEx+0rZiQbsrr00hPlFLGprUtp7HmVbng yECT6VoVrvfxmNw4hMRcQHUcRU0sLvvh6w/IFIho82ciW16htgCZh6uD0f8NvzmX +f6VK0sEtO5fEXw3jlqWh2g01ef/yR1fLRq6sMm0HS9r -----END CERTIFICATE-----Generated at Tue Jan 20 12:27:12 2026 by rpki-client