This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/e2cdac-8901-4052-9554-bae9d2b29601/1/GAjXHoY_7fmDzbj9H9Uc6m8T6p8.roa File: GAjXHoY_7fmDzbj9H9Uc6m8T6p8.roa (raw, json) Hash identifier: EkPjSmD4j4Tlx7uZB0Hl4Pvd/i8ecVQc5MnBSe4X3KM= Subject key identifier: 18:08:D7:1E:86:3F:ED:F9:83:CD:B8:FD:1F:D5:1C:EA:6F:13:EA:9F Certificate issuer: /CN=797000d67c8deb6262e009a9aff422a1038f4489 Certificate serial: 019B7FF1EEE2417CBB063EA84D274D426E89 Authority key identifier: 79:70:00:D6:7C:8D:EB:62:62:E0:09:A9:AF:F4:22:A1:03:8F:44:89 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eXAA1nyN62Ji4Ampr_QioQOPRIk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/e2cdac-8901-4052-9554-bae9d2b29601/1/GAjXHoY_7fmDzbj9H9Uc6m8T6p8.roa Signing time: Fri 02 Jan 2026 18:22:00 +0000 ROA not before: Fri 02 Jan 2026 18:22:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208559 IP address blocks: 2.57.160.0/23 maxlen: 23 2a09:ce40::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/e2cdac-8901-4052-9554-bae9d2b29601/1/eXAA1nyN62Ji4Ampr_QioQOPRIk.crl rsync://rpki.ripe.net/repository/DEFAULT/86/e2cdac-8901-4052-9554-bae9d2b29601/1/eXAA1nyN62Ji4Ampr_QioQOPRIk.mft rsync://rpki.ripe.net/repository/DEFAULT/eXAA1nyN62Ji4Ampr_QioQOPRIk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f1:ee:e2:41:7c:bb:06:3e:a8:4d:27:4d:42:6e:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=797000d67c8deb6262e009a9aff422a1038f4489 Validity Not Before: Jan 2 18:22:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1808d71e863fedf983cdb8fd1fd51cea6f13ea9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:14:51:24:22:0e:aa:f3:55:3e:9d:1b:28:26: cf:85:c2:7f:fe:6b:6d:e6:6b:35:17:9e:e7:7e:7b: d9:8d:2d:bd:72:77:90:d5:81:24:e5:7b:1a:b8:14: 1b:cc:2f:bd:34:ba:d0:64:02:9e:2f:4a:4c:88:a9: 3b:af:ba:db:ac:01:a2:44:40:4b:9a:e7:90:95:31: be:43:5e:f4:fe:fd:80:11:61:0e:99:f7:fa:31:87: 50:6e:fb:9e:97:91:0d:98:7a:60:79:34:8d:08:ac: cd:53:46:30:15:8c:9c:59:40:b1:99:c7:79:a4:a2: df:c0:19:c6:41:2a:b5:0a:e1:e3:2e:6f:d0:d3:6d: 39:04:21:a1:f3:c5:67:25:ac:77:56:d1:14:2e:b4: e3:03:4d:f3:43:e0:00:a9:e4:73:bd:94:dc:98:1f: df:4f:c4:af:cd:76:e1:2b:8f:72:b4:7d:9b:97:35: 0d:4c:15:5a:5f:22:e9:58:4e:6b:1a:38:b4:d2:38: 76:c7:8c:4b:b8:ae:3b:93:ed:cb:1b:2a:d2:3f:03: 2b:5b:b2:72:56:21:b1:60:b9:5e:a0:83:ae:0c:63: 36:6a:32:64:5b:ef:28:46:f0:a0:b1:f0:34:0a:8b: f8:a9:c7:8c:d2:3b:24:6e:84:25:8c:4f:a2:7e:bd: 8c:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:08:D7:1E:86:3F:ED:F9:83:CD:B8:FD:1F:D5:1C:EA:6F:13:EA:9F X509v3 Authority Key Identifier: keyid:79:70:00:D6:7C:8D:EB:62:62:E0:09:A9:AF:F4:22:A1:03:8F:44:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eXAA1nyN62Ji4Ampr_QioQOPRIk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/e2cdac-8901-4052-9554-bae9d2b29601/1/GAjXHoY_7fmDzbj9H9Uc6m8T6p8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/e2cdac-8901-4052-9554-bae9d2b29601/1/eXAA1nyN62Ji4Ampr_QioQOPRIk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.57.160.0/23 IPv6: 2a09:ce40::/29 Signature Algorithm: sha256WithRSAEncryption 4d:75:c6:6e:fb:15:bd:2c:2c:54:0e:e6:71:06:fc:dd:eb:1b: 23:9b:f7:b6:6b:7f:00:72:50:ca:ac:3a:7d:a5:3e:b5:35:a1: 30:ae:03:7f:22:ff:67:f5:76:ce:66:1a:af:83:59:29:cc:76: da:1a:a8:d4:e0:14:07:86:bc:0f:49:1e:53:76:47:a2:1b:2f: 0b:40:bd:3d:d9:bd:0f:40:32:10:e8:e0:30:a9:75:e9:d0:94: 5c:59:91:e8:28:da:b3:fb:15:f6:8c:ea:60:ca:5f:7b:bf:92: c3:8e:31:62:7e:74:d3:7e:dc:63:72:32:ff:de:f5:37:40:74: 37:f7:ef:a6:c3:ce:76:73:22:36:b8:17:17:d1:0a:1f:21:c4: f4:d6:30:3e:e7:b6:8f:fc:fc:3f:70:aa:e4:57:7f:15:04:43: 61:66:1a:a9:5f:3a:15:5f:45:b1:17:a1:ed:30:73:1d:27:08: 03:a8:ca:23:00:41:1f:d2:0a:dd:f2:d8:58:2f:78:4b:29:04: fa:1a:00:74:fe:4a:ef:18:69:85:48:92:bf:5f:22:b5:35:64: df:a6:20:d0:51:04:ef:ff:3d:6a:62:b0:09:79:f2:10:f8:65: be:57:9b:e5:d8:a0:c7:9b:58:fc:a1:3e:8b:56:d1:bf:e6:22: 84:ac:66:d3 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/8e7iQXy7Bj6oTSdNQm6JMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc5NzAwMGQ2N2M4ZGViNjI2MmUwMDlhOWFmZjQyMmExMDM4 ZjQ0ODkwHhcNMjYwMTAyMTgyMjAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxODA4ZDcxZTg2M2ZlZGY5ODNjZGI4ZmQxZmQ1MWNlYTZmMTNlYTlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuxRRJCIOqvNVPp0bKCbPhcJ//mtt 5ms1F57nfnvZjS29cneQ1YEk5XsauBQbzC+9NLrQZAKeL0pMiKk7r7rbrAGiREBL mueQlTG+Q170/v2AEWEOmff6MYdQbvuel5ENmHpgeTSNCKzNU0YwFYycWUCxmcd5 pKLfwBnGQSq1CuHjLm/Q0205BCGh88VnJax3VtEULrTjA03zQ+AAqeRzvZTcmB/f T8SvzXbhK49ytH2blzUNTBVaXyLpWE5rGji00jh2x4xLuK47k+3LGyrSPwMrW7Jy ViGxYLleoIOuDGM2ajJkW+8oRvCgsfA0Cov4qceM0jskboQljE+ifr2MOwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFBgI1x6GP+35g824/R/VHOpvE+qfMB8GA1UdIwQY MBaAFHlwANZ8jetiYuAJqa/0IqEDj0SJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZVhBQTFueU42MkppNEFtcHJfUWlvUU9QUklrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni9lMmNkYWMtODkwMS00MDUyLTk1NTQt YmFlOWQyYjI5NjAxLzEvR0FqWEhvWV83Zm1EemJqOUg5VWM2bThUNnA4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni9lMmNkYWMtODkwMS00MDUyLTk1NTQtYmFlOWQyYjI5NjAx LzEvZVhBQTFueU42MkppNEFtcHJfUWlvUU9QUklrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBAjmgMA0E AgACMAcDBQMqCc5AMA0GCSqGSIb3DQEBCwUAA4IBAQBNdcZu+xW9LCxUDuZxBvzd 6xsjm/e2a38AclDKrDp9pT61NaEwrgN/Iv9n9XbOZhqvg1kpzHbaGqjU4BQHhrwP SR5TdkeiGy8LQL092b0PQDIQ6OAwqXXp0JRcWZHoKNqz+xX2jOpgyl97v5LDjjFi fnTTftxjcjL/3vU3QHQ39++mw852cyI2uBcX0QofIcT01jA+57aP/Pw/cKrkV38V BENhZhqpXzoVX0WxF6HtMHMdJwgDqMojAEEf0grd8thYL3hLKQT6GgB0/krvGGmF SJK/XyK1NWTfpiDQUQTv/z1qYrAJefIQ+GW+V5vl2KDHm1j8oT6LVtG/5iKErGbT -----END CERTIFICATE-----Generated at Mon Feb 9 19:40:10 2026 by rpki-client