This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/855002-d823-41fe-8f9a-718fd195c5eb/1/GM95Gkx5v40txz6JbU4oknnskUg.roa File: GM95Gkx5v40txz6JbU4oknnskUg.roa (raw, json) Hash identifier: LMfCIqVoDwxmGh6lnvANNLlJl1/dvbPCyO8BYHqtVfU= Subject key identifier: 18:CF:79:1A:4C:79:BF:8D:2D:C7:3E:89:6D:4E:28:92:79:EC:91:48 Certificate issuer: /CN=f73cdc6751d7c59073e4b706402d3691af09086f Certificate serial: 019B7F83247ABFB7A26AAB88C02D53F0047A Authority key identifier: F7:3C:DC:67:51:D7:C5:90:73:E4:B7:06:40:2D:36:91:AF:09:08:6F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9zzcZ1HXxZBz5LcGQC02ka8JCG8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/855002-d823-41fe-8f9a-718fd195c5eb/1/GM95Gkx5v40txz6JbU4oknnskUg.roa Signing time: Fri 02 Jan 2026 16:20:59 +0000 ROA not before: Fri 02 Jan 2026 16:20:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39699 IP address blocks: 45.152.104.0/22 maxlen: 22 62.121.32.0/19 maxlen: 19 83.148.192.0/18 maxlen: 18 84.240.64.0/19 maxlen: 19 84.240.64.0/21 maxlen: 21 86.60.128.0/17 maxlen: 17 86.60.176.0/20 maxlen: 20 185.132.104.0/22 maxlen: 22 2a03:50a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/855002-d823-41fe-8f9a-718fd195c5eb/1/9zzcZ1HXxZBz5LcGQC02ka8JCG8.crl rsync://rpki.ripe.net/repository/DEFAULT/79/855002-d823-41fe-8f9a-718fd195c5eb/1/9zzcZ1HXxZBz5LcGQC02ka8JCG8.mft rsync://rpki.ripe.net/repository/DEFAULT/9zzcZ1HXxZBz5LcGQC02ka8JCG8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:24:7a:bf:b7:a2:6a:ab:88:c0:2d:53:f0:04:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f73cdc6751d7c59073e4b706402d3691af09086f Validity Not Before: Jan 2 16:20:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=18cf791a4c79bf8d2dc73e896d4e289279ec9148 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:9c:d8:27:df:67:9f:57:02:e4:9a:63:b4:0a: 3b:e6:58:b4:e1:1b:74:09:8e:fd:c0:64:30:38:6c: 70:17:2e:98:89:ba:45:c4:30:41:4f:5d:e5:c4:fa: 91:13:2c:e2:41:a1:22:8c:be:60:ee:34:be:23:f6: 16:08:76:15:ff:a4:42:77:e7:12:94:62:9c:a4:5b: 38:a9:4a:f1:6d:40:3c:75:6f:10:e3:21:6a:ff:70: 35:bd:c3:f4:50:52:42:7b:7e:aa:f8:5b:6d:34:62: dd:be:90:ce:6a:3e:b2:f6:ca:c3:01:97:a4:ba:a7: 20:dc:75:fa:8f:39:95:91:27:a1:ca:10:79:dd:77: 44:83:69:b1:bf:70:99:43:e3:eb:d5:18:a8:8b:0a: 2b:ce:7e:5a:d9:fa:e3:3f:11:7f:8e:c1:bb:27:7f: f8:9b:44:26:5f:36:92:43:f6:33:15:4f:41:37:a0: c8:b2:1e:13:2f:0f:15:b9:6a:4d:18:ce:e5:b5:74: 5c:31:16:0d:4b:2e:d1:aa:23:74:0a:6f:f7:d8:df: 2c:3c:b3:ae:e4:9a:40:3a:f8:f3:69:76:67:3b:e2: f6:fe:86:2e:38:06:25:c2:17:48:f0:27:90:0a:d4: 38:86:44:e4:c4:0e:da:dc:42:9b:06:d9:ee:5f:6f: 69:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:CF:79:1A:4C:79:BF:8D:2D:C7:3E:89:6D:4E:28:92:79:EC:91:48 X509v3 Authority Key Identifier: keyid:F7:3C:DC:67:51:D7:C5:90:73:E4:B7:06:40:2D:36:91:AF:09:08:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9zzcZ1HXxZBz5LcGQC02ka8JCG8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/855002-d823-41fe-8f9a-718fd195c5eb/1/GM95Gkx5v40txz6JbU4oknnskUg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/79/855002-d823-41fe-8f9a-718fd195c5eb/1/9zzcZ1HXxZBz5LcGQC02ka8JCG8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.152.104.0/22 62.121.32.0/19 83.148.192.0/18 84.240.64.0/19 86.60.128.0/17 185.132.104.0/22 IPv6: 2a03:50a0::/32 Signature Algorithm: sha256WithRSAEncryption 09:c8:f7:ed:4d:e6:b2:d8:0a:5e:b3:2f:ef:d7:55:fe:97:02: ae:17:9c:0d:4f:1e:5e:de:36:10:78:1e:b8:ac:92:bb:a3:83: 47:06:14:d4:d2:1d:22:c3:3b:6e:4a:d1:46:f0:65:42:70:14: 24:30:03:fd:09:02:51:bb:59:43:6b:d4:68:f0:12:ce:38:96: 82:26:0b:47:29:94:97:ed:73:99:31:5b:f2:33:13:27:0a:bc: 00:00:5d:15:7f:4f:27:97:2e:6f:d1:a0:23:3f:8b:ab:61:1f: fc:f8:51:03:ef:7e:95:b1:ee:72:a9:a9:96:33:63:5f:85:57: 1b:c1:e7:c2:1f:d9:88:aa:d7:79:88:11:60:8a:80:d0:c7:8b: 0d:1f:de:f6:e9:8c:e4:ee:70:a0:fd:03:b6:70:00:1d:a3:2d: 6f:29:a0:94:df:52:cd:84:82:48:3a:45:0c:02:0a:1f:39:84: 5f:fe:3e:4b:8d:9c:b3:81:c2:8f:6c:f6:c8:87:fd:c9:ea:1b: d4:0e:81:8a:73:ff:7c:91:50:81:fb:8d:2d:b5:71:0f:e6:95: b3:ad:bd:8b:16:aa:13:0e:13:85:25:3a:e6:a2:68:27:a0:de: 64:a8:38:af:6d:5f:41:d9:22:e8:69:ab:69:df:89:82:9d:e0: b1:dc:48:39 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgISAZt/gyR6v7eiaquIwC1T8AR6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3M2NkYzY3NTFkN2M1OTA3M2U0YjcwNjQwMmQzNjkxYWYw OTA4NmYwHhcNMjYwMTAyMTYyMDU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxOGNmNzkxYTRjNzliZjhkMmRjNzNlODk2ZDRlMjg5Mjc5ZWM5MTQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7ZzYJ99nn1cC5JpjtAo75li04Rt0 CY79wGQwOGxwFy6YibpFxDBBT13lxPqREyziQaEijL5g7jS+I/YWCHYV/6RCd+cS lGKcpFs4qUrxbUA8dW8Q4yFq/3A1vcP0UFJCe36q+FttNGLdvpDOaj6y9srDAZek uqcg3HX6jzmVkSehyhB53XdEg2mxv3CZQ+Pr1Rioiworzn5a2frjPxF/jsG7J3/4 m0QmXzaSQ/YzFU9BN6DIsh4TLw8VuWpNGM7ltXRcMRYNSy7RqiN0Cm/32N8sPLOu 5JpAOvjzaXZnO+L2/oYuOAYlwhdI8CeQCtQ4hkTkxA7a3EKbBtnuX29pqQIDAQAB o4ICNjCCAjIwHQYDVR0OBBYEFBjPeRpMeb+NLcc+iW1OKJJ57JFIMB8GA1UdIwQY MBaAFPc83GdR18WQc+S3BkAtNpGvCQhvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOXp6Y1oxSFh4WkJ6NUxjR1FDMDJrYThKQ0c4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS84NTUwMDItZDgyMy00MWZlLThmOWEt NzE4ZmQxOTVjNWViLzEvR005NUdreDV2NDB0eHo2SmJVNG9rbm5za1VnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OS84NTUwMDItZDgyMy00MWZlLThmOWEtNzE4ZmQxOTVjNWVi LzEvOXp6Y1oxSFh4WkJ6NUxjR1FDMDJrYThKQ0c4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAqBAIAATAkAwQCLZhoAwQF PnkgAwQGU5TAAwQFVPBAAwQHVjyAAwQCuYRoMA0EAgACMAcDBQAqA1CgMA0GCSqG SIb3DQEBCwUAA4IBAQAJyPftTeay2Apesy/v11X+lwKuF5wNTx5e3jYQeB64rJK7 o4NHBhTU0h0iwztuStFG8GVCcBQkMAP9CQJRu1lDa9Ro8BLOOJaCJgtHKZSX7XOZ MVvyMxMnCrwAAF0Vf08nly5v0aAjP4urYR/8+FED736Vse5yqamWM2NfhVcbwefC H9mIqtd5iBFgioDQx4sNH9726Yzk7nCg/QO2cAAdoy1vKaCU31LNhIJIOkUMAgof OYRf/j5LjZyzgcKPbPbIh/3J6hvUDoGKc/98kVCB+40ttXEP5pWzrb2LFqoTDhOF JTrmomgnoN5kqDivbV9B2SLoaatp34mCneCx3Eg5 -----END CERTIFICATE-----Generated at Mon Feb 9 23:56:53 2026 by rpki-client