This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/0a206f-1acd-495d-a8b7-6494e20e2b05/1/gcVNUuUdoSo3U3pakJzDIPh24c4.roa File: gcVNUuUdoSo3U3pakJzDIPh24c4.roa (raw, json) Hash identifier: 7JCmU5EFsrp83gdEC4TMm8cosiIzFZVUHWLg8MKyDJ0= Subject key identifier: 81:C5:4D:52:E5:1D:A1:2A:37:53:7A:5A:90:9C:C3:20:F8:76:E1:CE Certificate issuer: /CN=6034561c039ac6450bec8fd595c148cc770aa036 Certificate serial: 019B79ED5B5EA36C1DB652CD4BCEE8D77613 Authority key identifier: 60:34:56:1C:03:9A:C6:45:0B:EC:8F:D5:95:C1:48:CC:77:0A:A0:36 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YDRWHAOaxkUL7I_VlcFIzHcKoDY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/0a206f-1acd-495d-a8b7-6494e20e2b05/1/gcVNUuUdoSo3U3pakJzDIPh24c4.roa Signing time: Thu 01 Jan 2026 14:19:17 +0000 ROA not before: Thu 01 Jan 2026 14:19:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211991 IP address blocks: 185.233.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/0a206f-1acd-495d-a8b7-6494e20e2b05/1/YDRWHAOaxkUL7I_VlcFIzHcKoDY.crl rsync://rpki.ripe.net/repository/DEFAULT/70/0a206f-1acd-495d-a8b7-6494e20e2b05/1/YDRWHAOaxkUL7I_VlcFIzHcKoDY.mft rsync://rpki.ripe.net/repository/DEFAULT/YDRWHAOaxkUL7I_VlcFIzHcKoDY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:5b:5e:a3:6c:1d:b6:52:cd:4b:ce:e8:d7:76:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6034561c039ac6450bec8fd595c148cc770aa036 Validity Not Before: Jan 1 14:19:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=81c54d52e51da12a37537a5a909cc320f876e1ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e4:37:ac:b0:b7:96:ff:3d:13:34:14:0a:dc: df:2d:c3:05:f1:f2:a3:c1:48:d8:91:32:e7:7c:d3: 8f:35:ce:70:02:90:b3:96:8d:d6:30:51:d3:5e:8a: 28:86:da:3e:bd:18:5c:78:cc:2b:4d:a2:c6:1b:1f: cb:5f:96:2e:a2:77:a4:5a:85:51:37:27:ae:87:69: 03:10:02:a1:7e:ed:4a:11:87:86:9f:37:d7:6e:b0: 9c:2d:87:96:cf:7b:ed:b7:4d:72:f3:3c:9a:d0:64: 0a:b0:9e:75:f5:a8:36:bb:3a:3e:98:bf:df:55:be: 23:61:33:e0:1e:db:5e:55:f1:f2:1e:0a:04:c1:29: 33:ee:eb:c2:51:ad:d7:26:1e:02:2a:ed:fd:08:a9: 2c:22:bb:91:58:2f:3a:89:fd:dd:27:5a:8f:14:f4: ae:1b:c3:71:f2:37:80:ca:a0:7c:4c:eb:b6:07:be: 13:e0:d3:3c:dc:45:67:1a:25:4c:1a:fe:5e:69:47: 48:51:e4:9c:56:c8:74:fd:e3:2a:a8:c7:23:0d:ff: 27:50:78:54:c2:34:94:92:78:1c:4b:ff:02:2b:d2: 84:ed:43:91:d4:af:31:5b:e1:78:48:41:bb:2b:af: d3:9a:74:ad:ce:bd:65:d4:ff:40:54:b2:a0:36:5a: b7:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:C5:4D:52:E5:1D:A1:2A:37:53:7A:5A:90:9C:C3:20:F8:76:E1:CE X509v3 Authority Key Identifier: keyid:60:34:56:1C:03:9A:C6:45:0B:EC:8F:D5:95:C1:48:CC:77:0A:A0:36 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YDRWHAOaxkUL7I_VlcFIzHcKoDY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/0a206f-1acd-495d-a8b7-6494e20e2b05/1/gcVNUuUdoSo3U3pakJzDIPh24c4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/70/0a206f-1acd-495d-a8b7-6494e20e2b05/1/YDRWHAOaxkUL7I_VlcFIzHcKoDY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.233.65.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:5f:c1:ee:b4:5c:48:de:d1:1a:e8:ff:d7:33:ea:59:26:64: 14:1a:8f:80:db:90:47:30:60:db:d2:db:ae:e5:31:63:c7:11: 52:d4:94:53:e8:70:17:56:61:64:9f:c4:4e:76:4d:b8:1e:a9: cf:5a:99:c1:b7:41:d8:62:a6:a4:11:98:24:ee:15:20:e7:47: 2b:ce:ac:20:0e:1b:62:f0:75:e5:e6:3c:39:89:79:9c:c2:20: a8:1d:e4:e8:d0:3a:fa:42:12:9a:a6:c5:15:fc:4b:88:b0:a5: ed:c3:db:72:7b:9b:c8:54:59:20:f9:86:83:ed:e5:05:3b:7d: d0:aa:82:f2:b0:ef:88:62:86:6d:ce:57:03:94:2e:0b:47:81: e5:21:c5:a4:1d:66:30:fe:13:6f:96:a2:62:2a:df:bc:6b:ad: 18:f4:e5:3d:6c:9a:97:e7:9f:1d:bf:b5:e3:fb:6e:ec:10:42: cc:5f:b1:d6:33:18:3c:d6:35:6e:a7:9e:91:3f:03:6d:4f:b2: 34:f5:e0:3e:42:54:a6:1b:29:e3:26:75:77:47:17:c8:f2:dc: 2d:be:c3:b4:d1:e3:24:da:d7:0e:2c:1b:2e:29:e1:d0:65:e0: c9:c2:d7:8e:d3:5c:6e:55:20:55:2f:a9:bf:a4:ef:cb:38:b1: e1:4a:d7:98 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57Vteo2wdtlLNS87o13YTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwMzQ1NjFjMDM5YWM2NDUwYmVjOGZkNTk1YzE0OGNjNzcw YWEwMzYwHhcNMjYwMTAxMTQxOTE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MWM1NGQ1MmU1MWRhMTJhMzc1MzdhNWE5MDljYzMyMGY4NzZlMWNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt+Q3rLC3lv89EzQUCtzfLcMF8fKj wUjYkTLnfNOPNc5wApCzlo3WMFHTXooohto+vRhceMwrTaLGGx/LX5YuonekWoVR Nyeuh2kDEAKhfu1KEYeGnzfXbrCcLYeWz3vtt01y8zya0GQKsJ519ag2uzo+mL/f Vb4jYTPgHtteVfHyHgoEwSkz7uvCUa3XJh4CKu39CKksIruRWC86if3dJ1qPFPSu G8Nx8jeAyqB8TOu2B74T4NM83EVnGiVMGv5eaUdIUeScVsh0/eMqqMcjDf8nUHhU wjSUkngcS/8CK9KE7UOR1K8xW+F4SEG7K6/TmnStzr1l1P9AVLKgNlq3OQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIHFTVLlHaEqN1N6WpCcwyD4duHOMB8GA1UdIwQY MBaAFGA0VhwDmsZFC+yP1ZXBSMx3CqA2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWURSV0hBT2F4a1VMN0lfVmxjRkl6SGNLb0RZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC8wYTIwNmYtMWFjZC00OTVkLWE4Yjct NjQ5NGUyMGUyYjA1LzEvZ2NWTlV1VWRvU28zVTNwYWtKekRJUGgyNGM0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MC8wYTIwNmYtMWFjZC00OTVkLWE4YjctNjQ5NGUyMGUyYjA1 LzEvWURSV0hBT2F4a1VMN0lfVmxjRkl6SGNLb0RZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuelBMA0G CSqGSIb3DQEBCwUAA4IBAQBPX8HutFxI3tEa6P/XM+pZJmQUGo+A25BHMGDb0tuu 5TFjxxFS1JRT6HAXVmFkn8ROdk24HqnPWpnBt0HYYqakEZgk7hUg50crzqwgDhti 8HXl5jw5iXmcwiCoHeTo0Dr6QhKapsUV/EuIsKXtw9tye5vIVFkg+YaD7eUFO33Q qoLysO+IYoZtzlcDlC4LR4HlIcWkHWYw/hNvlqJiKt+8a60Y9OU9bJqX558dv7Xj +27sEELMX7HWMxg81jVup56RPwNtT7I09eA+QlSmGynjJnV3RxfI8twtvsO00eMk 2tcOLBsuKeHQZeDJwteO01xuVSBVL6m/pO/LOLHhSteY -----END CERTIFICATE-----Generated at Tue Feb 10 00:14:44 2026 by rpki-client