This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/Gt2PGaPyybzldhRTEzthfG3AyDY.roa File: Gt2PGaPyybzldhRTEzthfG3AyDY.roa (raw, json) Hash identifier: xbp7dDF8ih2d3235bTh4eNL0Lk7MaLw5cvREki/A62U= Subject key identifier: 1A:DD:8F:19:A3:F2:C9:BC:E5:76:14:53:13:3B:61:7C:6D:C0:C8:36 Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e Certificate serial: 019B7F83A146803E11ED2A532F5B30C7707C Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/Gt2PGaPyybzldhRTEzthfG3AyDY.roa Signing time: Fri 02 Jan 2026 16:21:31 +0000 ROA not before: Fri 02 Jan 2026 16:21:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57489 IP address blocks: 141.101.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.mft rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:a1:46:80:3e:11:ed:2a:53:2f:5b:30:c7:70:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e Validity Not Before: Jan 2 16:21:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1add8f19a3f2c9bce5761453133b617c6dc0c836 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b1:18:63:e1:9a:a1:5e:6b:61:5f:8d:45:a2: 15:d9:f8:61:04:f2:f0:42:7e:91:3e:c7:df:ba:c0: 97:2c:82:56:ab:53:68:51:6a:0f:93:77:16:0b:5b: 13:ec:5d:9e:c2:37:63:31:79:14:3f:f2:42:22:80: ba:43:89:72:5d:3c:0a:35:07:de:7c:90:0e:0f:5f: a8:b8:88:96:2d:a9:b2:66:06:7d:32:81:ed:bd:2b: da:22:96:dc:84:41:1d:98:8c:21:a7:1f:f9:f1:7e: c8:b9:00:2d:9c:11:69:3e:3b:6f:a9:7e:8e:60:cd: fc:72:fb:ea:5e:44:0a:47:34:46:47:41:27:27:31: a5:7f:72:fe:98:b3:21:d2:ee:d2:78:45:e2:8d:3f: a1:e1:36:25:b8:df:32:4c:51:1f:89:f0:ef:94:90: 13:af:9e:2b:52:83:4a:b5:0c:f8:e6:e5:0c:73:26: 77:72:f6:94:16:b0:2d:bc:74:d8:40:86:17:59:00: 74:43:5f:25:c5:28:0c:1e:93:3a:67:34:db:4c:28: c4:e9:83:56:2f:d8:8c:13:1d:19:f6:86:6f:27:c2: a5:a6:37:5b:18:a1:ed:61:35:76:df:73:69:73:1b: 9c:0f:c0:32:da:59:02:df:6c:64:d2:50:3e:db:a7: 3a:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:DD:8F:19:A3:F2:C9:BC:E5:76:14:53:13:3B:61:7C:6D:C0:C8:36 X509v3 Authority Key Identifier: keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/Gt2PGaPyybzldhRTEzthfG3AyDY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 141.101.236.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:4f:3e:1a:9b:db:bc:69:46:2b:63:d5:44:ee:59:4c:90:99: 21:59:a5:5f:12:a2:e9:67:6c:29:a7:84:e3:ef:44:ca:7a:09: 3e:64:fc:f5:2c:2b:a9:a9:00:62:5c:c0:b0:26:5a:f4:0e:42: 08:7b:5e:f9:1c:1e:02:5f:b3:5d:63:e7:95:b7:24:70:dd:48: 7a:26:c3:dd:df:30:65:e4:04:79:80:97:7e:1c:b9:7a:5a:44: 22:e2:30:83:d1:fa:38:af:5d:cf:46:13:40:b9:33:d4:0e:23: ff:bf:dd:46:ee:14:65:6e:b6:40:6f:93:d1:49:ee:25:3b:63: d0:c2:87:09:6f:2c:f4:7c:45:a7:e7:8b:07:70:fd:99:6f:c5: 21:c5:f1:f7:cc:75:df:c7:66:e8:75:8b:3b:8c:a2:6f:6a:f4: 7e:49:48:ee:8a:67:76:bc:64:e1:77:42:46:14:c7:ba:db:c2: 5c:42:c4:5f:e8:9f:e8:7c:ec:be:02:0c:e9:42:3f:c0:ca:0a: f3:5e:8f:b5:59:ad:ed:e8:d7:70:62:10:00:79:27:10:15:fa: 60:1f:0a:cf:3a:18:3f:ee:0b:30:68:49:3e:71:f1:43:e3:d7: 18:43:dd:f1:c2:23:29:3b:ed:55:ca:9e:dc:d9:de:6e:6c:b8: d5:4a:9b:fc -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/g6FGgD4R7SpTL1swx3B8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4ODVlODg0YzJmYzdhNzVkMTJkZDFkZWE0OWNlMjM0OWM0 NzA2N2UwHhcNMjYwMTAyMTYyMTMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYWRkOGYxOWEzZjJjOWJjZTU3NjE0NTMxMzNiNjE3YzZkYzBjODM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwrEYY+GaoV5rYV+NRaIV2fhhBPLw Qn6RPsffusCXLIJWq1NoUWoPk3cWC1sT7F2ewjdjMXkUP/JCIoC6Q4lyXTwKNQfe fJAOD1+ouIiWLamyZgZ9MoHtvSvaIpbchEEdmIwhpx/58X7IuQAtnBFpPjtvqX6O YM38cvvqXkQKRzRGR0EnJzGlf3L+mLMh0u7SeEXijT+h4TYluN8yTFEfifDvlJAT r54rUoNKtQz45uUMcyZ3cvaUFrAtvHTYQIYXWQB0Q18lxSgMHpM6ZzTbTCjE6YNW L9iMEx0Z9oZvJ8KlpjdbGKHtYTV233NpcxucD8Ay2lkC32xk0lA+26c6nQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBrdjxmj8sm85XYUUxM7YXxtwMg2MB8GA1UdIwQY MBaAFFiF6ITC/Hp10S3R3qSc4jScRwZ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0lYb2hNTDhlblhSTGRIZXBKemlOSnhIQm40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni82YzBiZjctNWYxMy00NGEyLTk5ODkt OGM5NTgxZDk2ZDhmLzEvR3QyUEdhUHl5YnpsZGhSVEV6dGhmRzNBeURZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni82YzBiZjctNWYxMy00NGEyLTk5ODktOGM5NTgxZDk2ZDhm LzEvV0lYb2hNTDhlblhSTGRIZXBKemlOSnhIQm40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjWXsMA0G CSqGSIb3DQEBCwUAA4IBAQAeTz4am9u8aUYrY9VE7llMkJkhWaVfEqLpZ2wpp4Tj 70TKegk+ZPz1LCupqQBiXMCwJlr0DkIIe175HB4CX7NdY+eVtyRw3Uh6JsPd3zBl 5AR5gJd+HLl6WkQi4jCD0fo4r13PRhNAuTPUDiP/v91G7hRlbrZAb5PRSe4lO2PQ wocJbyz0fEWn54sHcP2Zb8UhxfH3zHXfx2bodYs7jKJvavR+SUjuimd2vGThd0JG FMe628JcQsRf6J/ofOy+AgzpQj/AygrzXo+1Wa3t6NdwYhAAeScQFfpgHwrPOhg/ 7gswaEk+cfFD49cYQ93xwiMpO+1Vyp7c2d5ubLjVSpv8 -----END CERTIFICATE-----Generated at Mon Jan 26 04:50:21 2026 by rpki-client