This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/gDEGqIkg38-dzsiHm3zAHsQQZTw.roa File: gDEGqIkg38-dzsiHm3zAHsQQZTw.roa (raw, json) Hash identifier: ACJ8DMUNoGXs8Oo3E8680tTdUSOkIFVjRrdPu2qhJjs= Subject key identifier: 80:31:06:A8:89:20:DF:CF:9D:CE:C8:87:9B:7C:C0:1E:C4:10:65:3C Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e Certificate serial: 019B7F83B041607B25689C406B98F57503D0 Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/gDEGqIkg38-dzsiHm3zAHsQQZTw.roa Signing time: Fri 02 Jan 2026 16:21:35 +0000 ROA not before: Fri 02 Jan 2026 16:21:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202700 IP address blocks: 178.170.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.mft rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:b0:41:60:7b:25:68:9c:40:6b:98:f5:75:03:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e Validity Not Before: Jan 2 16:21:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=803106a88920dfcf9dcec8879b7cc01ec410653c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d1:51:ec:72:1b:fd:bb:73:19:2a:8e:8c:2f: 02:89:ac:24:ed:c5:e2:21:0e:ac:54:03:6e:c0:af: 9b:30:f6:de:b9:94:f0:74:f5:32:40:09:4f:ea:5f: c7:73:01:ce:09:7e:85:59:ce:9c:03:da:68:e8:17: 10:ad:66:4f:77:4b:b6:7d:47:01:0a:4c:12:cb:87: 95:5d:56:cb:14:5c:c2:5a:e9:72:c2:3f:16:cc:6a: 32:97:5a:ac:f2:94:98:6a:5b:c1:4e:99:3c:a0:9d: 7b:53:94:4c:1e:6e:4a:ea:f7:73:90:6e:9b:6d:3b: 1f:a7:31:31:c9:11:f8:9a:23:7f:70:e0:83:7e:f8: 69:39:9b:9a:42:4f:fd:1d:55:00:e9:3a:94:a5:95: 9c:62:ef:d4:bc:04:94:5c:01:c2:0f:33:f9:9b:9b: b0:45:04:26:06:f7:5b:6c:7b:bd:57:77:ee:33:be: e7:4b:23:c1:2a:45:01:d7:24:07:15:1d:82:7f:2e: 2f:99:24:fe:26:da:36:fb:d6:64:37:87:55:90:84: ae:d0:98:b9:30:5d:83:cb:4a:26:fa:c5:12:28:19: c9:b0:23:1c:1d:5f:74:53:6f:d3:ea:57:ca:5d:3b: 11:3f:82:61:aa:0b:40:60:da:8e:d2:79:3b:7a:e8: 19:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:31:06:A8:89:20:DF:CF:9D:CE:C8:87:9B:7C:C0:1E:C4:10:65:3C X509v3 Authority Key Identifier: keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/gDEGqIkg38-dzsiHm3zAHsQQZTw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.170.247.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:e0:53:56:4c:4e:65:61:77:d1:50:ce:79:8d:c4:34:aa:e8: 1d:0e:e8:f9:ff:c6:bc:53:a4:c8:89:69:ff:bd:a3:e4:e0:22: 98:ff:4f:62:27:03:98:a4:01:e1:46:de:53:59:c2:7a:b4:99: ad:51:2d:bc:2f:0a:4d:7e:5e:f7:b6:2a:b0:77:d8:22:81:57: 86:d5:c4:d5:ed:7b:53:e0:6a:cd:78:c5:33:3e:15:06:68:34: ec:66:01:d2:77:56:f1:c9:6b:d0:03:be:93:9a:26:9b:7e:ff: 5b:7a:a1:71:d8:20:e9:12:1d:e2:0b:e3:44:35:8e:a2:8e:d4: a8:51:54:90:35:1f:6b:ae:73:60:07:18:2c:42:b8:cc:ff:98: 2d:4e:ac:82:dd:85:a1:28:37:93:bd:43:42:17:c6:57:e9:37: d5:18:48:0b:cd:04:c5:af:fe:3a:ed:0f:f4:3e:45:47:db:3b: c2:f7:88:52:38:ce:fc:fc:47:6c:0a:e3:55:bb:a9:99:7f:23: 70:26:33:38:90:8a:3c:3d:a2:cb:85:d6:24:f8:78:24:e6:af: cc:c1:f8:e7:52:2d:c9:eb:8c:6b:92:cc:71:91:50:9a:eb:a7: 76:06:74:0a:51:c8:39:78:97:45:e6:9f:5e:46:98:3b:0c:b0: b3:ad:f9:cd -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/g7BBYHslaJxAa5j1dQPQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4ODVlODg0YzJmYzdhNzVkMTJkZDFkZWE0OWNlMjM0OWM0 NzA2N2UwHhcNMjYwMTAyMTYyMTM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MDMxMDZhODg5MjBkZmNmOWRjZWM4ODc5YjdjYzAxZWM0MTA2NTNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtdFR7HIb/btzGSqOjC8Ciawk7cXi IQ6sVANuwK+bMPbeuZTwdPUyQAlP6l/HcwHOCX6FWc6cA9po6BcQrWZPd0u2fUcB CkwSy4eVXVbLFFzCWulywj8WzGoyl1qs8pSYalvBTpk8oJ17U5RMHm5K6vdzkG6b bTsfpzExyRH4miN/cOCDfvhpOZuaQk/9HVUA6TqUpZWcYu/UvASUXAHCDzP5m5uw RQQmBvdbbHu9V3fuM77nSyPBKkUB1yQHFR2Cfy4vmST+Jto2+9ZkN4dVkISu0Ji5 MF2Dy0om+sUSKBnJsCMcHV90U2/T6lfKXTsRP4JhqgtAYNqO0nk7eugZkQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIAxBqiJIN/Pnc7Ih5t8wB7EEGU8MB8GA1UdIwQY MBaAFFiF6ITC/Hp10S3R3qSc4jScRwZ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0lYb2hNTDhlblhSTGRIZXBKemlOSnhIQm40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni82YzBiZjctNWYxMy00NGEyLTk5ODkt OGM5NTgxZDk2ZDhmLzEvZ0RFR3FJa2czOC1kenNpSG0zekFIc1FRWlR3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni82YzBiZjctNWYxMy00NGEyLTk5ODktOGM5NTgxZDk2ZDhm LzEvV0lYb2hNTDhlblhSTGRIZXBKemlOSnhIQm40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsqr3MA0G CSqGSIb3DQEBCwUAA4IBAQAt4FNWTE5lYXfRUM55jcQ0qugdDuj5/8a8U6TIiWn/ vaPk4CKY/09iJwOYpAHhRt5TWcJ6tJmtUS28LwpNfl73tiqwd9gigVeG1cTV7XtT 4GrNeMUzPhUGaDTsZgHSd1bxyWvQA76Tmiabfv9beqFx2CDpEh3iC+NENY6ijtSo UVSQNR9rrnNgBxgsQrjM/5gtTqyC3YWhKDeTvUNCF8ZX6TfVGEgLzQTFr/467Q/0 PkVH2zvC94hSOM78/EdsCuNVu6mZfyNwJjM4kIo8PaLLhdYk+Hgk5q/MwfjnUi3J 64xrksxxkVCa66d2BnQKUcg5eJdF5p9eRpg7DLCzrfnN -----END CERTIFICATE-----Generated at Mon Jan 26 04:51:38 2026 by rpki-client