This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/bd7f30-07ca-49ac-80c9-7eaff6b0f8cd/1/gCCPOIqrilObRY-20jJBuOKvlg4.roa File: gCCPOIqrilObRY-20jJBuOKvlg4.roa (raw, json) Hash identifier: SYvt+ifw0BqFAbOybuBVVwfG7PXUsxmnVp0Phqp9hmI= Subject key identifier: 80:20:8F:38:8A:AB:8A:53:9B:45:8F:B6:D2:32:41:B8:E2:AF:96:0E Certificate issuer: /CN=175a7290ec298c1b64d986306f1b24d3d3366986 Certificate serial: 019B7B35BDD445C78213CEDAFB44D76B2300 Authority key identifier: 17:5A:72:90:EC:29:8C:1B:64:D9:86:30:6F:1B:24:D3:D3:36:69:86 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F1pykOwpjBtk2YYwbxsk09M2aYY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/bd7f30-07ca-49ac-80c9-7eaff6b0f8cd/1/gCCPOIqrilObRY-20jJBuOKvlg4.roa Signing time: Thu 01 Jan 2026 20:17:58 +0000 ROA not before: Thu 01 Jan 2026 20:17:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 680 IP address blocks: 136.172.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/bd7f30-07ca-49ac-80c9-7eaff6b0f8cd/1/F1pykOwpjBtk2YYwbxsk09M2aYY.crl rsync://rpki.ripe.net/repository/DEFAULT/80/bd7f30-07ca-49ac-80c9-7eaff6b0f8cd/1/F1pykOwpjBtk2YYwbxsk09M2aYY.mft rsync://rpki.ripe.net/repository/DEFAULT/F1pykOwpjBtk2YYwbxsk09M2aYY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:bd:d4:45:c7:82:13:ce:da:fb:44:d7:6b:23:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=175a7290ec298c1b64d986306f1b24d3d3366986 Validity Not Before: Jan 1 20:17:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=80208f388aab8a539b458fb6d23241b8e2af960e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1e:95:7b:b8:74:fb:ee:b3:22:dc:95:88:5c: 1b:b9:e3:5c:b1:51:81:b1:11:b5:83:b1:74:74:b6: 5f:e3:4d:64:20:11:7c:76:1a:17:53:0b:a9:f7:09: 20:ce:cb:43:90:5f:27:f4:f8:39:3a:8e:d2:f5:2c: ea:b3:f1:c8:ce:fc:f2:c3:75:3f:9e:60:89:df:01: d1:12:b2:f8:02:95:d2:73:f5:77:e6:ed:4c:94:69: 2a:95:f6:4d:d0:fc:88:9f:27:a6:4e:f2:c8:b8:8e: dc:f1:d4:b5:64:5f:02:34:2f:24:df:fe:98:28:e1: f1:07:87:b9:5a:a7:0d:90:1e:8a:00:58:aa:26:67: c2:24:8b:b8:08:f9:fe:f9:4b:ae:cf:2e:3b:90:a6: 64:4b:3a:f0:c9:85:9d:29:8a:83:cd:1c:e4:51:7d: e3:56:1e:19:64:f2:e8:88:2e:c1:97:c3:e4:80:87: e6:a4:92:53:21:22:d3:d7:73:68:2b:9c:40:9c:11: ce:d5:a9:50:db:f5:89:06:be:8d:d3:7b:bd:95:60: df:2b:c7:75:8b:3b:24:57:75:ef:b6:7f:fd:33:46: 01:8b:40:37:f8:8e:bd:78:e6:75:64:41:93:6b:a2: 92:de:9d:0d:83:cf:ad:79:10:d9:44:f1:02:9f:45: b4:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:20:8F:38:8A:AB:8A:53:9B:45:8F:B6:D2:32:41:B8:E2:AF:96:0E X509v3 Authority Key Identifier: keyid:17:5A:72:90:EC:29:8C:1B:64:D9:86:30:6F:1B:24:D3:D3:36:69:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F1pykOwpjBtk2YYwbxsk09M2aYY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/bd7f30-07ca-49ac-80c9-7eaff6b0f8cd/1/gCCPOIqrilObRY-20jJBuOKvlg4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/bd7f30-07ca-49ac-80c9-7eaff6b0f8cd/1/F1pykOwpjBtk2YYwbxsk09M2aYY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.172.0.0/16 Signature Algorithm: sha256WithRSAEncryption 99:73:03:fd:ab:33:a8:05:ad:a8:38:68:5a:3a:f3:a5:c2:e7: 4c:91:40:e8:ee:47:f0:29:25:59:ec:da:97:19:54:2a:9b:13: ce:25:14:d1:29:4c:79:c3:c0:da:2c:89:78:ad:f1:f2:c4:c2: e1:af:c2:f3:49:f6:70:26:94:62:fd:fa:da:a8:a2:19:53:cd: d0:b1:fe:f7:7c:26:a2:b8:30:fc:1a:05:af:92:10:6a:b1:0c: ed:ba:2b:66:b4:b7:1b:90:a0:62:6e:eb:5b:12:95:5f:5c:b7: bd:4d:f9:8c:76:fd:b3:a0:46:6e:d9:9c:f7:22:05:9e:2d:9a: 0d:72:c2:51:45:30:59:d0:22:f3:f2:af:4e:a7:30:ef:38:5d: 47:3d:96:a5:aa:35:01:a1:e6:f3:2e:f9:96:b1:3f:f6:a3:80: 74:c5:b0:56:39:e8:52:39:3a:d9:ef:1d:15:a4:e6:dd:91:4f: 94:b3:b7:20:79:eb:8a:78:35:c5:70:cb:9c:50:2c:8f:a9:74: 35:10:33:5c:3c:b5:48:18:27:79:4f:23:a5:7a:4b:5f:55:d1: a5:25:b9:fa:ac:b5:22:b6:c4:b9:54:8d:79:c2:67:40:fc:ae: d5:65:08:0a:78:cf:67:f8:e0:92:ba:c5:52:ce:b2:c4:86:ff: e6:3c:ff:f9 -----BEGIN CERTIFICATE----- MIIE/DCCA+SgAwIBAgISAZt7Nb3URceCE87a+0TXayMAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE3NWE3MjkwZWMyOThjMWI2NGQ5ODYzMDZmMWIyNGQzZDMz NjY5ODYwHhcNMjYwMTAxMjAxNzU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MDIwOGYzODhhYWI4YTUzOWI0NThmYjZkMjMyNDFiOGUyYWY5NjBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAux6Ve7h0++6zItyViFwbueNcsVGB sRG1g7F0dLZf401kIBF8dhoXUwup9wkgzstDkF8n9Pg5Oo7S9Szqs/HIzvzyw3U/ nmCJ3wHRErL4ApXSc/V35u1MlGkqlfZN0PyInyemTvLIuI7c8dS1ZF8CNC8k3/6Y KOHxB4e5WqcNkB6KAFiqJmfCJIu4CPn++Uuuzy47kKZkSzrwyYWdKYqDzRzkUX3j Vh4ZZPLoiC7Bl8PkgIfmpJJTISLT13NoK5xAnBHO1alQ2/WJBr6N03u9lWDfK8d1 izskV3Xvtn/9M0YBi0A3+I69eOZ1ZEGTa6KS3p0Ng8+teRDZRPECn0W09wIDAQAB o4ICCDCCAgQwHQYDVR0OBBYEFIAgjziKq4pTm0WPttIyQbjir5YOMB8GA1UdIwQY MBaAFBdacpDsKYwbZNmGMG8bJNPTNmmGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRjFweWtPd3BqQnRrMllZd2J4c2swOU0yYVlZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC9iZDdmMzAtMDdjYS00OWFjLTgwYzkt N2VhZmY2YjBmOGNkLzEvZ0NDUE9JcXJpbE9iUlktMjBqSkJ1T0t2bGc0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC9iZDdmMzAtMDdjYS00OWFjLTgwYzktN2VhZmY2YjBmOGNk LzEvRjFweWtPd3BqQnRrMllZd2J4c2swOU0yYVlZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAiKwwDQYJ KoZIhvcNAQELBQADggEBAJlzA/2rM6gFrag4aFo686XC50yRQOjuR/ApJVns2pcZ VCqbE84lFNEpTHnDwNosiXit8fLEwuGvwvNJ9nAmlGL9+tqoohlTzdCx/vd8JqK4 MPwaBa+SEGqxDO26K2a0txuQoGJu61sSlV9ct71N+Yx2/bOgRm7ZnPciBZ4tmg1y wlFFMFnQIvPyr06nMO84XUc9lqWqNQGh5vMu+ZaxP/ajgHTFsFY56FI5OtnvHRWk 5t2RT5SztyB564p4NcVwy5xQLI+pdDUQM1w8tUgYJ3lPI6V6S19V0aUlufqstSK2 xLlUjXnCZ0D8rtVlCAp4z2f44JK6xVLOssSG/+Y8//k= -----END CERTIFICATE-----Generated at Tue Jan 27 11:26:45 2026 by rpki-client