This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/7c97cf-195c-4fc1-95a3-637fa14656de/1/gXHddRiNrKN7zjSp-aiQxBvxK2Q.roa File: gXHddRiNrKN7zjSp-aiQxBvxK2Q.roa (raw, json) Hash identifier: zkwsVo06oDWwHRS+sP6oB04zQIFU4FpZFrl3lEY5wwg= Subject key identifier: 81:71:DD:75:18:8D:AC:A3:7B:CE:34:A9:F9:A8:90:C4:1B:F1:2B:64 Certificate issuer: /CN=968a17e16196bb7a86718e6b2bd6a07e37b40c65 Certificate serial: 019B7834AFCB9FECB3814866A7E0AB1683F3 Authority key identifier: 96:8A:17:E1:61:96:BB:7A:86:71:8E:6B:2B:D6:A0:7E:37:B4:0C:65 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/looX4WGWu3qGcY5rK9agfje0DGU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/7c97cf-195c-4fc1-95a3-637fa14656de/1/gXHddRiNrKN7zjSp-aiQxBvxK2Q.roa Signing time: Thu 01 Jan 2026 06:17:57 +0000 ROA not before: Thu 01 Jan 2026 06:17:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8978 IP address blocks: 212.77.0.0/19 maxlen: 19 2a01:b8::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/7c97cf-195c-4fc1-95a3-637fa14656de/1/looX4WGWu3qGcY5rK9agfje0DGU.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/7c97cf-195c-4fc1-95a3-637fa14656de/1/looX4WGWu3qGcY5rK9agfje0DGU.mft rsync://rpki.ripe.net/repository/DEFAULT/looX4WGWu3qGcY5rK9agfje0DGU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:af:cb:9f:ec:b3:81:48:66:a7:e0:ab:16:83:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=968a17e16196bb7a86718e6b2bd6a07e37b40c65 Validity Not Before: Jan 1 06:17:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8171dd75188daca37bce34a9f9a890c41bf12b64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:a3:0d:c5:87:1b:1d:77:26:6f:e7:44:84:2c: 41:ea:29:02:77:19:8b:53:43:64:63:61:bb:a7:09: 8e:9e:47:32:71:1a:ed:db:7b:06:d2:06:68:19:25: 58:76:b4:fd:a5:6c:e0:04:a3:6d:43:d9:82:42:2f: a8:15:7e:1e:2b:ed:63:22:22:c0:ff:83:08:ce:8c: 03:bd:f9:45:52:2e:f1:bd:d3:e5:cf:72:9c:1f:44: d0:eb:b4:46:1a:65:25:1c:51:f6:57:87:fc:8a:ad: fb:7e:cf:be:e8:b0:e8:54:4d:37:75:20:df:5b:11: e6:8f:45:71:7a:71:80:b9:f3:24:e5:17:ec:3c:0c: 9f:6f:94:69:1a:92:cf:c2:0b:b9:1d:08:ba:7e:85: 41:ae:5b:32:fe:91:7d:01:50:34:09:ae:85:44:f3: 7b:76:d3:a3:bc:35:97:85:92:18:40:b2:79:76:80: a9:37:bb:9b:f0:f2:88:3e:f4:b1:0e:8b:99:97:2a: 0b:a3:3e:10:cb:3b:17:e3:ed:32:e5:d5:bc:a8:46: b7:85:8a:74:b2:85:3c:57:95:67:47:2f:b1:46:2a: 74:59:9a:3e:0e:b1:49:e3:61:dd:d3:2f:33:34:97: ad:c5:91:ce:a8:5e:d4:19:72:d6:c3:9b:c8:02:4f: ad:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:71:DD:75:18:8D:AC:A3:7B:CE:34:A9:F9:A8:90:C4:1B:F1:2B:64 X509v3 Authority Key Identifier: keyid:96:8A:17:E1:61:96:BB:7A:86:71:8E:6B:2B:D6:A0:7E:37:B4:0C:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/looX4WGWu3qGcY5rK9agfje0DGU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/7c97cf-195c-4fc1-95a3-637fa14656de/1/gXHddRiNrKN7zjSp-aiQxBvxK2Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/7c97cf-195c-4fc1-95a3-637fa14656de/1/looX4WGWu3qGcY5rK9agfje0DGU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.77.0.0/19 IPv6: 2a01:b8::/32 Signature Algorithm: sha256WithRSAEncryption 46:5b:d5:aa:55:67:f9:e1:f3:62:d7:53:4c:8c:ea:46:3c:4e: 18:62:ea:13:6d:bb:6a:87:e3:f2:b3:cf:76:d7:85:e5:13:d0: f9:88:a5:75:18:ad:ce:f6:af:24:fd:ab:f8:50:e8:71:1a:84: 7a:b0:14:b0:4c:7c:73:6e:a5:9a:25:11:e1:f9:35:4f:99:7f: c9:b5:41:35:ca:3c:1a:85:c0:d2:38:8e:a3:6e:10:eb:e5:8c: 1e:42:e2:45:da:b3:7e:34:19:a8:0f:41:c9:c0:59:8e:ad:02: d3:26:31:ea:da:6e:f1:b2:cf:58:f4:73:f5:66:e8:04:76:cc: c7:31:3f:98:53:a7:a0:72:4a:00:34:53:12:f4:f8:1b:03:c0: 97:ae:5f:3b:d4:a0:5a:e9:08:7c:b4:7a:7f:8b:63:39:3b:f4: 2e:9e:a0:1a:63:d2:60:e2:82:89:28:ae:17:fe:cc:c4:5e:35: ea:77:61:44:e8:20:7c:70:17:f6:df:6d:35:db:4b:9a:1a:82: 61:95:16:24:39:36:72:d2:48:90:fa:89:57:cb:90:7b:4e:78: 50:4d:6c:93:a0:19:b1:ae:64:6c:33:94:7e:82:8a:6b:b4:90: 56:e8:72:de:02:90:e9:38:10:43:94:48:c8:38:ee:49:d0:97: b7:ec:47:30 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4NK/Ln+yzgUhmp+CrFoPzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2OGExN2UxNjE5NmJiN2E4NjcxOGU2YjJiZDZhMDdlMzdi NDBjNjUwHhcNMjYwMTAxMDYxNzU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MTcxZGQ3NTE4OGRhY2EzN2JjZTM0YTlmOWE4OTBjNDFiZjEyYjY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+aMNxYcbHXcmb+dEhCxB6ikCdxmL U0NkY2G7pwmOnkcycRrt23sG0gZoGSVYdrT9pWzgBKNtQ9mCQi+oFX4eK+1jIiLA /4MIzowDvflFUi7xvdPlz3KcH0TQ67RGGmUlHFH2V4f8iq37fs++6LDoVE03dSDf WxHmj0VxenGAufMk5RfsPAyfb5RpGpLPwgu5HQi6foVBrlsy/pF9AVA0Ca6FRPN7 dtOjvDWXhZIYQLJ5doCpN7ub8PKIPvSxDouZlyoLoz4QyzsX4+0y5dW8qEa3hYp0 soU8V5VnRy+xRip0WZo+DrFJ42Hd0y8zNJetxZHOqF7UGXLWw5vIAk+tCwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFIFx3XUYjayje840qfmokMQb8StkMB8GA1UdIwQY MBaAFJaKF+Fhlrt6hnGOayvWoH43tAxlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbG9vWDRXR1d1M3FHY1k1cks5YWdmamUwREdVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS83Yzk3Y2YtMTk1Yy00ZmMxLTk1YTMt NjM3ZmExNDY1NmRlLzEvZ1hIZGRSaU5yS043empTcC1haVF4QnZ4SzJRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS83Yzk3Y2YtMTk1Yy00ZmMxLTk1YTMtNjM3ZmExNDY1NmRl LzEvbG9vWDRXR1d1M3FHY1k1cks5YWdmamUwREdVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQF1E0AMA0E AgACMAcDBQAqAQC4MA0GCSqGSIb3DQEBCwUAA4IBAQBGW9WqVWf54fNi11NMjOpG PE4YYuoTbbtqh+Pys89214XlE9D5iKV1GK3O9q8k/av4UOhxGoR6sBSwTHxzbqWa JRHh+TVPmX/JtUE1yjwahcDSOI6jbhDr5YweQuJF2rN+NBmoD0HJwFmOrQLTJjHq 2m7xss9Y9HP1ZugEdszHMT+YU6egckoANFMS9PgbA8CXrl871KBa6Qh8tHp/i2M5 O/QunqAaY9Jg4oKJKK4X/szEXjXqd2FE6CB8cBf2320120uaGoJhlRYkOTZy0kiQ +olXy5B7TnhQTWyToBmxrmRsM5R+goprtJBW6HLeApDpOBBDlEjIOO5J0Je37Ecw -----END CERTIFICATE-----Generated at Tue Feb 10 00:03:28 2026 by rpki-client