This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/68554b-4f97-406c-90a6-48d31c75f31e/1/gtVcGxf-voSW5XqnDUQ7MYNRTAY.roa File: gtVcGxf-voSW5XqnDUQ7MYNRTAY.roa (raw, json) Hash identifier: PsVwvaY9N3ZJ5GTX8n0UIrbBUucxtgpcHsGJfTfU0hQ= Subject key identifier: 82:D5:5C:1B:17:FE:BE:84:96:E5:7A:A7:0D:44:3B:31:83:51:4C:06 Certificate issuer: /CN=d41703db3020cc1ef2fd71091a468f4a649c238f Certificate serial: 019B797E8730F06B9BA806D47A2DE8691A14 Authority key identifier: D4:17:03:DB:30:20:CC:1E:F2:FD:71:09:1A:46:8F:4A:64:9C:23:8F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1BcD2zAgzB7y_XEJGkaPSmScI48.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/68554b-4f97-406c-90a6-48d31c75f31e/1/gtVcGxf-voSW5XqnDUQ7MYNRTAY.roa Signing time: Thu 01 Jan 2026 12:18:13 +0000 ROA not before: Thu 01 Jan 2026 12:18:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49544 IP address blocks: 5.180.216.0/23 maxlen: 23 5.180.218.0/23 maxlen: 23 5.200.0.0/19 maxlen: 24 31.204.128.0/19 maxlen: 24 31.204.132.0/22 maxlen: 22 31.204.136.0/23 maxlen: 23 31.204.140.0/22 maxlen: 22 31.204.144.0/24 maxlen: 24 31.204.156.0/23 maxlen: 23 89.104.168.0/23 maxlen: 23 89.104.170.0/23 maxlen: 23 89.104.172.0/22 maxlen: 22 89.104.176.0/23 maxlen: 23 89.104.178.0/23 maxlen: 23 89.104.180.0/24 maxlen: 24 91.195.234.0/23 maxlen: 23 91.198.152.0/24 maxlen: 24 91.216.207.0/24 maxlen: 24 104.153.84.0/22 maxlen: 22 109.200.192.0/19 maxlen: 24 109.200.194.0/23 maxlen: 23 109.200.208.0/22 maxlen: 22 138.128.136.0/22 maxlen: 22 138.128.140.0/22 maxlen: 22 146.247.76.0/22 maxlen: 22 162.244.52.0/22 maxlen: 23 162.245.204.0/22 maxlen: 22 185.41.140.0/22 maxlen: 22 185.50.104.0/22 maxlen: 22 185.52.12.0/22 maxlen: 24 185.179.200.0/23 maxlen: 24 185.179.202.0/23 maxlen: 24 185.197.24.0/22 maxlen: 23 188.122.64.0/19 maxlen: 24 193.43.218.0/23 maxlen: 23 193.43.218.0/24 maxlen: 24 212.19.224.0/22 maxlen: 22 213.163.64.0/19 maxlen: 24 213.179.192.0/19 maxlen: 19 213.179.192.0/22 maxlen: 22 213.179.196.0/22 maxlen: 22 213.179.200.0/22 maxlen: 22 213.179.204.0/22 maxlen: 22 213.179.209.0/24 maxlen: 24 213.179.210.0/23 maxlen: 23 213.179.212.0/22 maxlen: 22 213.179.216.0/22 maxlen: 22 213.179.220.0/23 maxlen: 23 2a00:1630::/29 maxlen: 32 2a00:1630::/32 maxlen: 48 2a00:1631::/32 maxlen: 32 2a00:1632::/32 maxlen: 32 2a00:1637::/32 maxlen: 32 2a00:1d20::/29 maxlen: 32 2a00:1d20::/34 maxlen: 34 2a00:1d20:4000::/34 maxlen: 34 2a00:1d20:8000::/34 maxlen: 34 2a00:1d26::/32 maxlen: 34 2a01:9580::/32 maxlen: 34 2a01:9580:c000::/34 maxlen: 34 2a04:c600::/29 maxlen: 34 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/68554b-4f97-406c-90a6-48d31c75f31e/1/1BcD2zAgzB7y_XEJGkaPSmScI48.crl rsync://rpki.ripe.net/repository/DEFAULT/78/68554b-4f97-406c-90a6-48d31c75f31e/1/1BcD2zAgzB7y_XEJGkaPSmScI48.mft rsync://rpki.ripe.net/repository/DEFAULT/1BcD2zAgzB7y_XEJGkaPSmScI48.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:87:30:f0:6b:9b:a8:06:d4:7a:2d:e8:69:1a:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d41703db3020cc1ef2fd71091a468f4a649c238f Validity Not Before: Jan 1 12:18:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=82d55c1b17febe8496e57aa70d443b3183514c06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:5a:00:18:d1:60:cf:9f:3f:4d:b4:f4:30:54: bb:b3:ba:0b:cc:0e:28:4f:68:56:de:66:d8:3c:ad: 6c:00:c7:4a:73:c8:e0:cc:ff:4d:89:74:c8:7d:c7: aa:51:e6:54:89:6a:98:87:84:6a:df:3b:0b:72:be: a7:00:fe:d4:a4:94:78:8e:cb:9a:cb:00:2a:e3:9b: 9c:d4:a5:cf:2d:35:ad:01:1a:a6:d2:85:0f:60:6f: f6:4f:f7:ae:b8:a2:f3:21:6b:47:12:fb:16:34:31: 8f:3a:c3:9b:4d:6c:94:03:1b:6b:b4:43:29:38:18: 89:22:c4:69:51:79:de:da:3b:e1:1b:00:4f:a2:63: 11:07:1c:c6:cf:7b:14:91:f9:80:08:b3:a8:14:4f: de:21:71:8b:8f:93:b0:71:96:83:68:1a:d2:87:c5: 55:1d:b8:69:ae:78:46:79:5e:c8:98:27:45:6c:e6: 68:91:87:90:37:95:42:38:54:29:28:9b:aa:82:93: 03:d2:22:f1:44:76:6f:93:b5:1d:6b:1f:7e:3a:bf: 9a:8c:d3:72:f6:3f:80:31:5c:95:17:45:cc:92:83: d8:f1:93:1b:cd:f9:8e:36:de:06:37:84:59:09:22: 58:47:93:42:21:36:1a:2e:6d:2e:1a:44:28:5b:5e: 3b:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:D5:5C:1B:17:FE:BE:84:96:E5:7A:A7:0D:44:3B:31:83:51:4C:06 X509v3 Authority Key Identifier: keyid:D4:17:03:DB:30:20:CC:1E:F2:FD:71:09:1A:46:8F:4A:64:9C:23:8F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1BcD2zAgzB7y_XEJGkaPSmScI48.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/68554b-4f97-406c-90a6-48d31c75f31e/1/gtVcGxf-voSW5XqnDUQ7MYNRTAY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/78/68554b-4f97-406c-90a6-48d31c75f31e/1/1BcD2zAgzB7y_XEJGkaPSmScI48.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.180.216.0/22 5.200.0.0/19 31.204.128.0/19 89.104.168.0-89.104.180.255 91.195.234.0/23 91.198.152.0/24 91.216.207.0/24 104.153.84.0/22 109.200.192.0/19 138.128.136.0/21 146.247.76.0/22 162.244.52.0/22 162.245.204.0/22 185.41.140.0/22 185.50.104.0/22 185.52.12.0/22 185.179.200.0/22 185.197.24.0/22 188.122.64.0/19 193.43.218.0/23 212.19.224.0/22 213.163.64.0/19 213.179.192.0/19 IPv6: 2a00:1630::/29 2a00:1d20::/29 2a01:9580::/32 2a04:c600::/29 Signature Algorithm: sha256WithRSAEncryption 53:21:4c:d7:44:d5:7c:59:8c:bf:d3:a9:e1:5c:73:54:33:8f: fc:9c:02:e2:d9:f2:db:0a:c2:36:b5:ae:ef:8c:8d:6b:5b:b3: 0f:03:26:2d:c1:64:e9:42:6d:6e:5a:44:f8:cd:71:f1:dd:ac: 34:80:02:6a:77:09:7d:d1:15:62:ee:94:2a:08:4b:ca:d7:92: ba:3d:9d:dd:13:6f:78:d6:78:7e:11:8b:e2:e0:ba:d8:8c:5a: dc:bb:27:80:05:51:64:11:6f:a7:69:41:68:15:9d:46:1a:4c: c1:c6:f8:4f:11:43:60:16:e3:c9:98:41:ba:24:36:6f:bc:09: 18:99:45:ce:7f:3c:6a:66:eb:d8:64:4b:fe:68:8d:37:4f:b6: 39:fb:3b:9d:77:f4:87:51:57:ed:03:87:a6:c1:83:db:b4:c7: 95:c7:31:ff:2b:32:1c:b4:75:42:ae:24:d4:1f:81:34:2d:ae: 8e:ff:55:11:db:fd:59:2b:00:a0:c6:62:62:70:d4:5f:f7:3c: e9:83:c2:53:17:42:dc:27:b4:00:9a:83:23:04:dc:c1:76:a8: 84:2c:cd:03:aa:f7:ee:dd:a6:a1:c3:b6:3e:1c:60:78:c0:1e: 63:ea:a4:85:0c:4b:83:2d:e2:d4:c9:fd:b9:d0:99:a5:18:5f: 79:33:c7:ca -----BEGIN CERTIFICATE----- MIIFsjCCBJqgAwIBAgISAZt5focw8GubqAbUei3oaRoUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0MTcwM2RiMzAyMGNjMWVmMmZkNzEwOTFhNDY4ZjRhNjQ5 YzIzOGYwHhcNMjYwMTAxMTIxODEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MmQ1NWMxYjE3ZmViZTg0OTZlNTdhYTcwZDQ0M2IzMTgzNTE0YzA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlloAGNFgz58/TbT0MFS7s7oLzA4o T2hW3mbYPK1sAMdKc8jgzP9NiXTIfceqUeZUiWqYh4Rq3zsLcr6nAP7UpJR4jsua ywAq45uc1KXPLTWtARqm0oUPYG/2T/euuKLzIWtHEvsWNDGPOsObTWyUAxtrtEMp OBiJIsRpUXne2jvhGwBPomMRBxzGz3sUkfmACLOoFE/eIXGLj5OwcZaDaBrSh8VV HbhprnhGeV7ImCdFbOZokYeQN5VCOFQpKJuqgpMD0iLxRHZvk7Udax9+Or+ajNNy 9j+AMVyVF0XMkoPY8ZMbzfmONt4GN4RZCSJYR5NCITYaLm0uGkQoW147DwIDAQAB o4ICvjCCArowHQYDVR0OBBYEFILVXBsX/r6EluV6pw1EOzGDUUwGMB8GA1UdIwQY MBaAFNQXA9swIMwe8v1xCRpGj0pknCOPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUJjRDJ6QWd6Qjd5X1hFSkdrYVBTbVNjSTQ4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82ODU1NGItNGY5Ny00MDZjLTkwYTYt NDhkMzFjNzVmMzFlLzEvZ3RWY0d4Zi12b1NXNVhxbkRVUTdNWU5SVEFZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OC82ODU1NGItNGY5Ny00MDZjLTkwYTYtNDhkMzFjNzVmMzFl LzEvMUJjRDJ6QWd6Qjd5X1hFSkdrYVBTbVNjSTQ4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIHTBggrBgEFBQcBBwEB/wSBwzCBwDCBmQQCAAEwgZIDBAIF tNgDBAUFyAADBAUfzIAwDAMEA1loqAMEAFlotAMEAVvD6gMEAFvGmAMEAFvYzwME AmiZVAMEBW3IwAMEA4qAiAMEApL3TAMEAqL0NAMEAqL1zAMEArkpjAMEArkyaAME Ark0DAMEArmzyAMEArnFGAMEBbx6QAMEAcEr2gMEAtQT4AMEBdWjQAMEBdWzwDAi BAIAAjAcAwUDKgAWMAMFAyoAHSADBQAqAZWAAwUDKgTGADANBgkqhkiG9w0BAQsF AAOCAQEAUyFM10TVfFmMv9Op4VxzVDOP/JwC4tny2wrCNrWu74yNa1uzDwMmLcFk 6UJtblpE+M1x8d2sNIACancJfdEVYu6UKghLyteSuj2d3RNveNZ4fhGL4uC62Ixa 3LsngAVRZBFvp2lBaBWdRhpMwcb4TxFDYBbjyZhBuiQ2b7wJGJlFzn88ambr2GRL /miNN0+2Ofs7nXf0h1FX7QOHpsGD27THlccx/ysyHLR1Qq4k1B+BNC2ujv9VEdv9 WSsAoMZiYnDUX/c86YPCUxdC3Ce0AJqDIwTcwXaohCzNA6r37t2mocO2PhxgeMAe Y+qkhQxLgy3i1Mn9udCZpRhfeTPHyg== -----END CERTIFICATE-----Generated at Tue Jan 20 01:22:10 2026 by rpki-client