This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/df52a0-5824-42ad-9b4d-d9a1fa90810f/1/rGAms1z6A-9ECUjJ26qD00dFB5M.roa File: rGAms1z6A-9ECUjJ26qD00dFB5M.roa (raw, json) Hash identifier: TneAOJ5ow61DGzqx3O0Ri/mEpaW4EBKjztqT5e9vxSU= Subject key identifier: AC:60:26:B3:5C:FA:03:EF:44:09:48:C9:DB:AA:83:D3:47:45:07:93 Certificate issuer: /CN=2f246475d7c9ba399f07f843621f6e081372d757 Certificate serial: 019B7DCAE6B2C6BE6B44729FA24699ABE462 Authority key identifier: 2F:24:64:75:D7:C9:BA:39:9F:07:F8:43:62:1F:6E:08:13:72:D7:57 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LyRkddfJujmfB_hDYh9uCBNy11c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/df52a0-5824-42ad-9b4d-d9a1fa90810f/1/rGAms1z6A-9ECUjJ26qD00dFB5M.roa Signing time: Fri 02 Jan 2026 08:20:07 +0000 ROA not before: Fri 02 Jan 2026 08:20:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215746 IP address blocks: 217.20.252.0/24 maxlen: 24 2a12:fec0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/df52a0-5824-42ad-9b4d-d9a1fa90810f/1/LyRkddfJujmfB_hDYh9uCBNy11c.crl rsync://rpki.ripe.net/repository/DEFAULT/72/df52a0-5824-42ad-9b4d-d9a1fa90810f/1/LyRkddfJujmfB_hDYh9uCBNy11c.mft rsync://rpki.ripe.net/repository/DEFAULT/LyRkddfJujmfB_hDYh9uCBNy11c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:e6:b2:c6:be:6b:44:72:9f:a2:46:99:ab:e4:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2f246475d7c9ba399f07f843621f6e081372d757 Validity Not Before: Jan 2 08:20:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ac6026b35cfa03ef440948c9dbaa83d347450793 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d8:50:86:e2:c2:3d:26:43:58:88:57:bb:61: c5:0d:80:5e:52:13:8f:b1:6f:b0:6b:4f:8c:6f:03: b8:c6:2b:6f:9b:38:d4:87:fb:dc:ee:de:04:3b:29: 81:f2:5c:42:14:75:b8:ec:a2:69:53:ed:4e:8e:5c: c8:87:cf:52:8a:91:cd:00:eb:b9:f9:78:be:81:84: 57:71:ad:48:fa:30:b7:70:09:1b:81:5a:0d:24:27: 71:16:bc:9f:41:af:bc:00:81:f1:de:1f:c3:83:a6: 20:94:72:01:e7:dd:b5:10:8d:c0:57:ad:60:19:34: 5a:0c:c6:37:02:1b:16:7d:16:65:32:16:ee:3f:bb: 75:1e:6d:08:4f:e5:97:9e:dd:31:32:d3:a5:44:3c: bb:20:74:4d:c8:86:af:9b:5f:db:4f:d4:a0:ce:d6: 42:b8:95:3a:ea:45:4a:ab:b2:e1:70:7e:76:f1:4d: 6f:06:65:c4:75:d8:05:e0:67:94:37:75:f7:27:25: 53:ce:db:90:d8:91:2e:8d:e4:52:41:06:1f:59:01: f3:c0:13:fc:d6:de:02:bd:37:2c:7c:4f:25:89:67: b7:35:b1:07:b0:32:96:b3:cb:48:5a:2c:c6:88:12: 0c:cd:b2:db:03:10:e9:a8:9a:bc:7c:26:ad:93:4c: 01:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:60:26:B3:5C:FA:03:EF:44:09:48:C9:DB:AA:83:D3:47:45:07:93 X509v3 Authority Key Identifier: keyid:2F:24:64:75:D7:C9:BA:39:9F:07:F8:43:62:1F:6E:08:13:72:D7:57 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LyRkddfJujmfB_hDYh9uCBNy11c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/df52a0-5824-42ad-9b4d-d9a1fa90810f/1/rGAms1z6A-9ECUjJ26qD00dFB5M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/72/df52a0-5824-42ad-9b4d-d9a1fa90810f/1/LyRkddfJujmfB_hDYh9uCBNy11c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.20.252.0/24 IPv6: 2a12:fec0::/29 Signature Algorithm: sha256WithRSAEncryption 97:73:73:2d:c1:79:3f:1c:15:78:46:86:2e:6e:b9:41:0b:0c: 2b:0b:45:73:12:c4:23:9a:f4:de:0f:77:ea:28:4f:15:9b:1a: 58:4b:8b:fc:f3:f3:fb:bd:21:20:a3:28:b4:a8:6a:26:37:ce: 75:c0:a9:d8:11:44:24:1b:28:e1:78:37:99:a2:c5:ff:57:06: e0:b6:16:53:49:70:2a:a9:bc:67:be:ef:96:b1:3b:96:9d:bc: 9f:c5:72:38:ba:6e:b3:10:74:05:67:c1:b6:01:04:60:8e:13: e8:76:15:46:54:9c:13:42:da:33:72:95:3c:db:3f:3d:47:14: 7e:5b:0a:48:92:ec:10:e5:c7:79:d0:30:41:73:34:5f:b8:83: c7:09:e3:f2:5b:77:1c:42:35:c8:de:a4:fb:d4:88:de:57:9b: f2:6a:a6:17:60:a1:1e:1c:2f:eb:5c:13:a1:9b:6c:3d:28:2e: 6c:c7:b5:b4:84:b2:c6:30:73:86:ee:41:9d:9b:d7:5d:41:02: 4f:77:71:97:0f:6a:a3:ac:da:4e:bc:33:e2:0f:df:64:78:7a: 6f:89:7f:3c:53:82:2e:70:37:67:dc:ac:df:2e:59:91:ff:1a: 47:cd:7a:fe:65:71:46:3a:3f:62:0d:3c:f9:9e:b1:69:df:bf: be:c4:1c:35 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt9yuayxr5rRHKfokaZq+RiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJmMjQ2NDc1ZDdjOWJhMzk5ZjA3Zjg0MzYyMWY2ZTA4MTM3 MmQ3NTcwHhcNMjYwMTAyMDgyMDA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYzYwMjZiMzVjZmEwM2VmNDQwOTQ4YzlkYmFhODNkMzQ3NDUwNzkzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArthQhuLCPSZDWIhXu2HFDYBeUhOP sW+wa0+MbwO4xitvmzjUh/vc7t4EOymB8lxCFHW47KJpU+1OjlzIh89SipHNAOu5 +Xi+gYRXca1I+jC3cAkbgVoNJCdxFryfQa+8AIHx3h/Dg6YglHIB5921EI3AV61g GTRaDMY3AhsWfRZlMhbuP7t1Hm0IT+WXnt0xMtOlRDy7IHRNyIavm1/bT9SgztZC uJU66kVKq7LhcH528U1vBmXEddgF4GeUN3X3JyVTztuQ2JEujeRSQQYfWQHzwBP8 1t4CvTcsfE8liWe3NbEHsDKWs8tIWizGiBIMzbLbAxDpqJq8fCatk0wBhwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFKxgJrNc+gPvRAlIyduqg9NHRQeTMB8GA1UdIwQY MBaAFC8kZHXXybo5nwf4Q2IfbggTctdXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTHlSa2RkZkp1am1mQl9oRFloOXVDQk55MTFjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi9kZjUyYTAtNTgyNC00MmFkLTliNGQt ZDlhMWZhOTA4MTBmLzEvckdBbXMxejZBLTlFQ1VqSjI2cUQwMGRGQjVNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Mi9kZjUyYTAtNTgyNC00MmFkLTliNGQtZDlhMWZhOTA4MTBm LzEvTHlSa2RkZkp1am1mQl9oRFloOXVDQk55MTFjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQA2RT8MA0E AgACMAcDBQMqEv7AMA0GCSqGSIb3DQEBCwUAA4IBAQCXc3MtwXk/HBV4RoYubrlB CwwrC0VzEsQjmvTeD3fqKE8VmxpYS4v88/P7vSEgoyi0qGomN851wKnYEUQkGyjh eDeZosX/VwbgthZTSXAqqbxnvu+WsTuWnbyfxXI4um6zEHQFZ8G2AQRgjhPodhVG VJwTQtozcpU82z89RxR+WwpIkuwQ5cd50DBBczRfuIPHCePyW3ccQjXI3qT71Ije V5vyaqYXYKEeHC/rXBOhm2w9KC5sx7W0hLLGMHOG7kGdm9ddQQJPd3GXD2qjrNpO vDPiD99keHpviX88U4IucDdn3KzfLlmR/xpHzXr+ZXFGOj9iDTz5nrFp37++xBw1 -----END CERTIFICATE-----Generated at Mon Feb 9 19:40:15 2026 by rpki-client