This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/cc02e1-8b36-42a3-b756-be3485706a7f/1/GNET8erU57mgyDh7ImpYc6fkvwM.roa File: GNET8erU57mgyDh7ImpYc6fkvwM.roa (raw, json) Hash identifier: DXXzixavqJF8Gp9K7MXm73N5IWVM9uhvEAJhF4isZ+w= Subject key identifier: 18:D1:13:F1:EA:D4:E7:B9:A0:C8:38:7B:22:6A:58:73:A7:E4:BF:03 Certificate issuer: /CN=c2f5fd3023055249f213d15cba000ca026bb6fa3 Certificate serial: 019B7CEDC368293DE7E8D3C52617CDBABF70 Authority key identifier: C2:F5:FD:30:23:05:52:49:F2:13:D1:5C:BA:00:0C:A0:26:BB:6F:A3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wvX9MCMFUknyE9FcugAMoCa7b6M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/cc02e1-8b36-42a3-b756-be3485706a7f/1/GNET8erU57mgyDh7ImpYc6fkvwM.roa Signing time: Fri 02 Jan 2026 04:18:35 +0000 ROA not before: Fri 02 Jan 2026 04:18:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29479 IP address blocks: 109.233.56.0/24 maxlen: 24 109.233.57.0/24 maxlen: 24 109.233.58.0/24 maxlen: 24 109.233.59.0/24 maxlen: 24 109.233.60.0/24 maxlen: 24 109.233.61.0/24 maxlen: 24 109.233.62.0/24 maxlen: 24 109.233.63.0/24 maxlen: 24 2a01:8dc0:109::/48 maxlen: 48 2a01:8dc0:110::/48 maxlen: 48 2a01:8dc0:112::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/cc02e1-8b36-42a3-b756-be3485706a7f/1/wvX9MCMFUknyE9FcugAMoCa7b6M.crl rsync://rpki.ripe.net/repository/DEFAULT/88/cc02e1-8b36-42a3-b756-be3485706a7f/1/wvX9MCMFUknyE9FcugAMoCa7b6M.mft rsync://rpki.ripe.net/repository/DEFAULT/wvX9MCMFUknyE9FcugAMoCa7b6M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:c3:68:29:3d:e7:e8:d3:c5:26:17:cd:ba:bf:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c2f5fd3023055249f213d15cba000ca026bb6fa3 Validity Not Before: Jan 2 04:18:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=18d113f1ead4e7b9a0c8387b226a5873a7e4bf03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0c:e8:04:cd:d2:d7:ec:5b:f5:7a:da:8b:28: 60:9a:5f:fd:8e:cd:2d:7f:dc:59:23:d7:03:7c:30: 10:83:15:e6:3a:29:00:ba:2f:a2:40:f9:5c:71:52: d8:8c:b0:f4:92:c9:44:c1:4f:c6:9b:c9:b7:3f:e7: fd:43:02:c4:a2:86:a1:ed:36:ce:aa:4c:f1:83:dc: 73:57:bf:9d:e6:88:46:43:50:ef:51:12:f5:3d:67: 9b:28:75:5d:24:34:31:4a:a0:48:17:6a:25:dd:78: 89:53:8d:50:a9:9f:f6:0f:2c:f3:d3:0f:ce:78:20: 99:74:7b:ac:e3:d8:93:f9:ea:da:5a:22:fd:18:03: dd:28:91:6d:98:de:e1:a7:49:dc:ad:41:54:e6:ca: f0:22:9d:34:bb:f6:39:99:03:3d:99:28:9c:f0:24: b5:b2:ec:ed:0b:b3:71:b4:c0:6c:15:5d:59:14:a6: a0:76:9d:be:ec:3a:ea:da:5d:b4:ef:8a:f2:d5:7c: df:03:b6:60:ac:72:39:ab:08:a7:3c:7c:6e:3b:a3: 6c:87:af:f1:3b:16:76:4e:ee:8f:54:1e:37:7f:f3: e1:b3:75:a9:56:08:c0:c4:7c:f1:4c:6b:40:bf:e0: a5:fc:ef:1e:13:67:c2:f6:fa:84:c9:eb:aa:8e:62: 5d:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:D1:13:F1:EA:D4:E7:B9:A0:C8:38:7B:22:6A:58:73:A7:E4:BF:03 X509v3 Authority Key Identifier: keyid:C2:F5:FD:30:23:05:52:49:F2:13:D1:5C:BA:00:0C:A0:26:BB:6F:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wvX9MCMFUknyE9FcugAMoCa7b6M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/cc02e1-8b36-42a3-b756-be3485706a7f/1/GNET8erU57mgyDh7ImpYc6fkvwM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/88/cc02e1-8b36-42a3-b756-be3485706a7f/1/wvX9MCMFUknyE9FcugAMoCa7b6M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.233.56.0/21 IPv6: 2a01:8dc0:109::/48 2a01:8dc0:110::/48 2a01:8dc0:112::/48 Signature Algorithm: sha256WithRSAEncryption ad:63:34:b2:c1:39:07:77:ce:6b:0b:0f:e0:4d:e5:84:a9:51: 34:e8:f8:7c:eb:28:0e:2f:2c:4d:e8:2d:b8:41:12:d0:ac:b6: 8d:bf:ab:ea:00:4c:5c:3a:e8:6f:23:cf:db:ab:54:23:42:f9: 7d:88:e8:65:df:7b:b1:a6:9a:85:64:a0:0a:0d:d4:21:94:a2: 2f:01:e2:1c:fc:eb:7e:1c:e8:a4:f2:98:fc:b3:73:b8:8b:ea: e4:4f:75:5f:2a:47:8a:65:e1:2d:40:19:5f:2f:59:31:a5:42: 17:8b:3d:39:5b:e0:99:54:c6:f9:d6:c4:70:c1:49:09:be:b3: 60:5d:21:f2:2a:f5:58:2d:d2:85:67:70:bf:65:02:32:38:ef: fd:ee:f3:83:41:9f:4a:19:23:86:ce:ec:e4:c8:39:de:f8:cc: c4:51:5f:5a:ab:ca:c1:62:47:88:6f:63:e4:ad:1a:c3:aa:fa: cf:d0:84:f9:e9:c0:b1:9c:2a:8d:2c:a8:04:ec:91:4d:11:83: 51:f0:19:d4:2a:17:f7:3e:11:68:ca:18:a4:7d:31:d3:7d:9e: 0d:78:60:26:3b:de:f7:da:b9:d8:1c:1c:f1:2b:85:cc:15:aa: 50:98:79:cf:9d:19:b2:e2:64:e5:e2:ab:53:ce:f1:e5:92:75: ce:3e:cf:d6 -----BEGIN CERTIFICATE----- MIIFIDCCBAigAwIBAgISAZt87cNoKT3n6NPFJhfNur9wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMyZjVmZDMwMjMwNTUyNDlmMjEzZDE1Y2JhMDAwY2EwMjZi YjZmYTMwHhcNMjYwMTAyMDQxODM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxOGQxMTNmMWVhZDRlN2I5YTBjODM4N2IyMjZhNTg3M2E3ZTRiZjAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuwzoBM3S1+xb9Xraiyhgml/9js0t f9xZI9cDfDAQgxXmOikAui+iQPlccVLYjLD0kslEwU/Gm8m3P+f9QwLEooah7TbO qkzxg9xzV7+d5ohGQ1DvURL1PWebKHVdJDQxSqBIF2ol3XiJU41QqZ/2Dyzz0w/O eCCZdHus49iT+eraWiL9GAPdKJFtmN7hp0ncrUFU5srwIp00u/Y5mQM9mSic8CS1 suztC7NxtMBsFV1ZFKagdp2+7Drq2l2074ry1XzfA7ZgrHI5qwinPHxuO6Nsh6/x OxZ2Tu6PVB43f/Phs3WpVgjAxHzxTGtAv+Cl/O8eE2fC9vqEyeuqjmJdjQIDAQAB o4ICLDCCAigwHQYDVR0OBBYEFBjRE/Hq1Oe5oMg4eyJqWHOn5L8DMB8GA1UdIwQY MBaAFML1/TAjBVJJ8hPRXLoADKAmu2+jMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd3ZYOU1DTUZVa255RTlGY3VnQU1vQ2E3YjZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC9jYzAyZTEtOGIzNi00MmEzLWI3NTYt YmUzNDg1NzA2YTdmLzEvR05FVDhlclU1N21neURoN0ltcFljNmZrdndNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OC9jYzAyZTEtOGIzNi00MmEzLWI3NTYtYmUzNDg1NzA2YTdm LzEvd3ZYOU1DTUZVa255RTlGY3VnQU1vQ2E3YjZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEIGCCsGAQUFBwEHAQH/BDMwMTAMBAIAATAGAwQDbek4MCEE AgACMBsDBwAqAY3AAQkDBwAqAY3AARADBwAqAY3AARIwDQYJKoZIhvcNAQELBQAD ggEBAK1jNLLBOQd3zmsLD+BN5YSpUTTo+HzrKA4vLE3oLbhBEtCsto2/q+oATFw6 6G8jz9urVCNC+X2I6GXfe7GmmoVkoAoN1CGUoi8B4hz8634c6KTymPyzc7iL6uRP dV8qR4pl4S1AGV8vWTGlQheLPTlb4JlUxvnWxHDBSQm+s2BdIfIq9Vgt0oVncL9l AjI47/3u84NBn0oZI4bO7OTIOd74zMRRX1qrysFiR4hvY+StGsOq+s/QhPnpwLGc Ko0sqATskU0Rg1HwGdQqF/c+EWjKGKR9MdN9ng14YCY73vfaudgcHPErhcwVqlCY ec+dGbLiZOXiq1PO8eWSdc4+z9Y= -----END CERTIFICATE-----Generated at Tue Jan 27 08:34:47 2026 by rpki-client