This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/GLahilX0yWeJRkFXQL6I_dbUpNA.roa File: GLahilX0yWeJRkFXQL6I_dbUpNA.roa (raw, json) Hash identifier: 3yjBb46dbA4HsJFj665j1XWaxic5AqWY6/S4GSjdYrM= Subject key identifier: 18:B6:A1:8A:55:F4:C9:67:89:46:41:57:40:BE:88:FD:D6:D4:A4:D0 Certificate issuer: /CN=7e20b034e2c497b1884488def106972704765029 Certificate serial: 019B78A24571CE278455BC5B3EC7C15A9D44 Authority key identifier: 7E:20:B0:34:E2:C4:97:B1:88:44:88:DE:F1:06:97:27:04:76:50:29 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/GLahilX0yWeJRkFXQL6I_dbUpNA.roa Signing time: Thu 01 Jan 2026 08:17:39 +0000 ROA not before: Thu 01 Jan 2026 08:17:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20648 IP address blocks: 212.135.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.crl rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.mft rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 23:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:45:71:ce:27:84:55:bc:5b:3e:c7:c1:5a:9d:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7e20b034e2c497b1884488def106972704765029 Validity Not Before: Jan 1 08:17:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=18b6a18a55f4c9678946415740be88fdd6d4a4d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:df:97:36:1b:a0:55:5f:12:d5:bb:63:78:5a: 35:de:aa:c2:71:16:50:e8:ae:eb:d5:d9:3f:18:59: d1:02:b8:87:cd:3d:7c:11:37:36:e3:e9:1b:7c:66: 31:01:23:7a:52:79:31:54:fe:92:bc:0b:ff:fb:1f: 3f:5d:9a:61:28:a1:a5:cd:2c:c3:b2:f7:bc:22:6c: e8:0e:9d:0d:a8:13:57:b3:94:6e:50:aa:de:d4:dd: 1a:9e:ab:5e:3d:bd:2a:cd:7c:6f:60:d7:1c:1d:13: f1:67:bb:c3:de:15:69:3c:9a:ee:0a:70:62:c4:8c: 3e:c2:73:1a:ee:cb:e6:ff:93:d5:7a:10:04:2d:6d: 23:e2:8c:34:b0:69:94:0e:a3:36:e5:54:5f:3f:54: 40:59:5e:0c:15:e9:55:be:15:24:eb:e7:97:27:db: dc:3b:49:0f:c2:14:c8:85:0e:51:1f:11:fd:13:dd: ad:73:ab:e5:7f:a9:85:ee:19:6d:38:ea:e3:c0:9f: e9:3a:2a:15:67:ff:ca:c3:23:15:ae:98:95:fb:3e: 3d:9e:40:46:44:68:2e:80:eb:6d:01:c0:65:8a:0c: 14:f3:6f:74:91:30:14:50:b0:b0:d9:ab:de:82:c7: eb:31:8b:27:46:52:c9:dc:0c:e1:db:9a:c5:c8:99: a2:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:B6:A1:8A:55:F4:C9:67:89:46:41:57:40:BE:88:FD:D6:D4:A4:D0 X509v3 Authority Key Identifier: keyid:7E:20:B0:34:E2:C4:97:B1:88:44:88:DE:F1:06:97:27:04:76:50:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/GLahilX0yWeJRkFXQL6I_dbUpNA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.135.163.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:ea:6c:79:f9:6d:a2:98:36:14:a7:e8:db:db:40:e3:d4:4e: 2b:b0:cd:ee:3b:21:fa:28:6b:0b:76:38:bd:cb:5e:3d:cc:5d: 9b:c5:c7:19:1c:05:b4:92:e6:5c:84:8f:3b:05:7f:00:f3:77: a9:23:57:6d:a6:5d:78:d3:6a:62:87:b2:63:c5:8f:cc:d4:bc: 93:b9:db:04:96:ab:09:4f:6b:1d:b3:52:b2:c3:c1:1c:12:96: 52:7f:21:36:18:51:3e:cd:e8:f4:9f:30:4d:8d:e8:53:53:79: 5e:b7:23:6f:6a:14:30:f3:3c:f8:46:b5:bc:59:21:72:bb:5c: 22:69:f2:9a:0b:c2:d8:91:30:d4:d4:45:4a:05:6c:f3:b2:9c: dc:85:e4:9e:24:08:59:46:29:42:69:17:ef:59:88:30:2f:6b: 3b:90:15:4f:d9:8f:6a:74:fd:ce:73:6c:74:63:c1:76:69:01: 93:4b:99:0d:5b:7f:86:4b:5c:53:4b:6a:f3:f4:44:67:ed:b4: 57:8c:59:72:b6:eb:79:fb:77:55:50:a4:8d:19:d7:f3:99:64: e2:ae:3f:07:57:4b:c3:11:02:2f:f7:21:ea:8c:8a:f5:97:81: 57:06:31:fb:e1:aa:95:41:44:20:a3:6b:73:fe:52:fc:10:7d: ea:d9:6f:92 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4okVxzieEVbxbPsfBWp1EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdlMjBiMDM0ZTJjNDk3YjE4ODQ0ODhkZWYxMDY5NzI3MDQ3 NjUwMjkwHhcNMjYwMTAxMDgxNzM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxOGI2YTE4YTU1ZjRjOTY3ODk0NjQxNTc0MGJlODhmZGQ2ZDRhNGQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv9+XNhugVV8S1btjeFo13qrCcRZQ 6K7r1dk/GFnRAriHzT18ETc24+kbfGYxASN6UnkxVP6SvAv/+x8/XZphKKGlzSzD sve8ImzoDp0NqBNXs5RuUKre1N0anqtePb0qzXxvYNccHRPxZ7vD3hVpPJruCnBi xIw+wnMa7svm/5PVehAELW0j4ow0sGmUDqM25VRfP1RAWV4MFelVvhUk6+eXJ9vc O0kPwhTIhQ5RHxH9E92tc6vlf6mF7hltOOrjwJ/pOioVZ//KwyMVrpiV+z49nkBG RGgugOttAcBligwU8290kTAUULCw2avegsfrMYsnRlLJ3Azh25rFyJmiywIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBi2oYpV9MlniUZBV0C+iP3W1KTQMB8GA1UdIwQY MBaAFH4gsDTixJexiESI3vEGlycEdlApMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZmlDd05PTEVsN0dJUklqZThRYVhKd1IyVUNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC82YjY2MmQtMDJhMS00NmU3LWI5Y2Qt MDM1ZDk3N2Y0MjE2LzEvR0xhaGlsWDB5V2VKUmtGWFFMNklfZGJVcE5BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC82YjY2MmQtMDJhMS00NmU3LWI5Y2QtMDM1ZDk3N2Y0MjE2 LzEvZmlDd05PTEVsN0dJUklqZThRYVhKd1IyVUNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1IejMA0G CSqGSIb3DQEBCwUAA4IBAQCM6mx5+W2imDYUp+jb20Dj1E4rsM3uOyH6KGsLdji9 y149zF2bxccZHAW0kuZchI87BX8A83epI1dtpl1402pih7JjxY/M1LyTudsElqsJ T2sds1Kyw8EcEpZSfyE2GFE+zej0nzBNjehTU3letyNvahQw8zz4RrW8WSFyu1wi afKaC8LYkTDU1EVKBWzzspzcheSeJAhZRilCaRfvWYgwL2s7kBVP2Y9qdP3Oc2x0 Y8F2aQGTS5kNW3+GS1xTS2rz9ERn7bRXjFlytut5+3dVUKSNGdfzmWTirj8HV0vD EQIv9yHqjIr1l4FXBjH74aqVQUQgo2tz/lL8EH3q2W+S -----END CERTIFICATE-----Generated at Thu Jan 8 08:55:12 2026 by rpki-client