This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/4a1111-8f3c-4edf-b77c-2fa2631bc31c/1/GX3AB64QskbUOjQSGuXwQocGhH4.roa File: GX3AB64QskbUOjQSGuXwQocGhH4.roa (raw, json) Hash identifier: MQhJE1eeGiBKPeJQc1Z6DyxcBxWQ3yiE6MW/PeUdUgY= Subject key identifier: 19:7D:C0:07:AE:10:B2:46:D4:3A:34:12:1A:E5:F0:42:87:06:84:7E Certificate issuer: /CN=7fe68b12234bd7034301bc96b138aae277860a3e Certificate serial: 019B78A2846D1BDB5F37391BB0ADF75C1176 Authority key identifier: 7F:E6:8B:12:23:4B:D7:03:43:01:BC:96:B1:38:AA:E2:77:86:0A:3E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f-aLEiNL1wNDAbyWsTiq4neGCj4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/4a1111-8f3c-4edf-b77c-2fa2631bc31c/1/GX3AB64QskbUOjQSGuXwQocGhH4.roa Signing time: Thu 01 Jan 2026 08:17:55 +0000 ROA not before: Thu 01 Jan 2026 08:17:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214867 IP address blocks: 194.56.152.0/23 maxlen: 24 2a14:5040::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/4a1111-8f3c-4edf-b77c-2fa2631bc31c/1/f-aLEiNL1wNDAbyWsTiq4neGCj4.crl rsync://rpki.ripe.net/repository/DEFAULT/8b/4a1111-8f3c-4edf-b77c-2fa2631bc31c/1/f-aLEiNL1wNDAbyWsTiq4neGCj4.mft rsync://rpki.ripe.net/repository/DEFAULT/f-aLEiNL1wNDAbyWsTiq4neGCj4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:84:6d:1b:db:5f:37:39:1b:b0:ad:f7:5c:11:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7fe68b12234bd7034301bc96b138aae277860a3e Validity Not Before: Jan 1 08:17:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=197dc007ae10b246d43a34121ae5f0428706847e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:5a:f7:02:8e:2b:6d:17:8c:d5:21:a6:5a:9a: 78:9f:16:fb:ca:57:8d:07:1c:9c:bb:e0:95:6d:e0: 87:a4:8a:fb:c5:18:e9:c2:e1:7a:5c:d1:d6:59:e5: a0:e9:5a:51:f9:9f:7c:6b:1f:c1:8e:94:4a:64:20: 1d:bf:d3:8d:f1:e7:3d:87:be:21:e1:b5:d2:38:fc: c5:12:69:97:65:1b:5f:c8:89:76:2f:ca:b7:01:26: b7:48:87:a3:66:95:52:59:c8:91:f9:65:86:ee:e1: 7d:f5:bf:91:04:fb:94:2d:85:61:6c:bf:3f:11:42: 3c:92:d7:65:ce:17:13:05:56:98:0d:61:57:7b:28: 4a:cc:27:06:fe:35:49:2f:10:e6:12:ed:16:10:71: db:c5:6d:0e:63:17:6e:01:27:29:7d:2c:f3:f7:26: 2b:c7:2e:8e:1f:ed:1c:1f:08:de:74:ae:0a:55:c1: 2c:f6:58:18:ef:27:a4:d7:ca:bd:a8:0a:20:42:de: 2a:04:44:fe:c8:d4:fe:bf:2a:ef:2f:a7:83:58:3e: 25:12:a5:bd:ff:ff:7c:b9:75:3c:4b:26:88:c1:6d: 3e:cd:e4:9f:4d:b4:e1:94:b8:77:93:85:f9:8a:c8: 95:90:e9:8f:a3:53:35:48:6b:29:65:4a:66:3a:12: 83:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:7D:C0:07:AE:10:B2:46:D4:3A:34:12:1A:E5:F0:42:87:06:84:7E X509v3 Authority Key Identifier: keyid:7F:E6:8B:12:23:4B:D7:03:43:01:BC:96:B1:38:AA:E2:77:86:0A:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f-aLEiNL1wNDAbyWsTiq4neGCj4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/4a1111-8f3c-4edf-b77c-2fa2631bc31c/1/GX3AB64QskbUOjQSGuXwQocGhH4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/4a1111-8f3c-4edf-b77c-2fa2631bc31c/1/f-aLEiNL1wNDAbyWsTiq4neGCj4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.56.152.0/23 IPv6: 2a14:5040::/29 Signature Algorithm: sha256WithRSAEncryption 6d:1b:ed:bd:4d:48:69:85:83:fa:48:ca:eb:dd:bb:b0:98:08: e7:87:7e:8f:f4:59:1b:e4:bd:22:70:9f:10:15:c8:56:a7:d9: 42:bd:51:24:39:63:7f:b2:d0:d7:4c:2d:9c:7c:1e:1a:f6:21: 2f:28:f7:1b:43:f1:a5:7a:8f:49:8b:26:c8:10:ed:a5:49:c1: 52:cd:5b:90:cb:f7:03:21:e0:4e:ee:f4:f4:ee:bb:1f:35:f9: 58:5e:8a:5b:52:99:ea:da:bf:69:05:7e:55:be:f2:1f:a1:ab: f9:1f:12:45:53:89:7c:4c:e4:61:1a:75:6a:f7:11:77:ea:bb: 07:65:c7:ef:b5:c5:91:f4:fd:3e:e0:4c:12:e5:6b:ef:96:23: 79:e0:2f:bd:ac:a2:b5:28:0d:ed:a1:c2:bc:52:15:0e:6e:85: b9:29:0c:b9:45:2b:bf:ab:40:59:99:32:3d:24:37:a1:47:5a: 76:72:19:4a:0a:f4:ed:57:19:e1:21:72:1f:0a:6f:df:1f:bf: 7c:aa:ac:6f:79:a7:d4:c0:05:3f:19:b9:39:f6:76:e1:74:4d: c5:2c:e8:57:9b:99:21:55:c8:61:46:2c:5a:6b:ee:cd:d6:aa: 2d:5b:09:57:cf:5b:6f:22:5a:b2:85:f3:bb:31:17:b4:86:c6: 96:b7:72:a8 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4ooRtG9tfNzkbsK33XBF2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdmZTY4YjEyMjM0YmQ3MDM0MzAxYmM5NmIxMzhhYWUyNzc4 NjBhM2UwHhcNMjYwMTAxMDgxNzU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxOTdkYzAwN2FlMTBiMjQ2ZDQzYTM0MTIxYWU1ZjA0Mjg3MDY4NDdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy1r3Ao4rbReM1SGmWpp4nxb7yleN Bxycu+CVbeCHpIr7xRjpwuF6XNHWWeWg6VpR+Z98ax/BjpRKZCAdv9ON8ec9h74h 4bXSOPzFEmmXZRtfyIl2L8q3ASa3SIejZpVSWciR+WWG7uF99b+RBPuULYVhbL8/ EUI8ktdlzhcTBVaYDWFXeyhKzCcG/jVJLxDmEu0WEHHbxW0OYxduAScpfSzz9yYr xy6OH+0cHwjedK4KVcEs9lgY7yek18q9qAogQt4qBET+yNT+vyrvL6eDWD4lEqW9 //98uXU8SyaIwW0+zeSfTbThlLh3k4X5isiVkOmPo1M1SGspZUpmOhKDSwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFBl9wAeuELJG1Do0Ehrl8EKHBoR+MB8GA1UdIwQY MBaAFH/mixIjS9cDQwG8lrE4quJ3hgo+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZi1hTEVpTkwxd05EQWJ5V3NUaXE0bmVHQ2o0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi80YTExMTEtOGYzYy00ZWRmLWI3N2Mt MmZhMjYzMWJjMzFjLzEvR1gzQUI2NFFza2JVT2pRU0d1WHdRb2NHaEg0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yi80YTExMTEtOGYzYy00ZWRmLWI3N2MtMmZhMjYzMWJjMzFj LzEvZi1hTEVpTkwxd05EQWJ5V3NUaXE0bmVHQ2o0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBwjiYMA0E AgACMAcDBQMqFFBAMA0GCSqGSIb3DQEBCwUAA4IBAQBtG+29TUhphYP6SMrr3buw mAjnh36P9Fkb5L0icJ8QFchWp9lCvVEkOWN/stDXTC2cfB4a9iEvKPcbQ/Gleo9J iybIEO2lScFSzVuQy/cDIeBO7vT07rsfNflYXopbUpnq2r9pBX5VvvIfoav5HxJF U4l8TORhGnVq9xF36rsHZcfvtcWR9P0+4EwS5WvvliN54C+9rKK1KA3tocK8UhUO boW5KQy5RSu/q0BZmTI9JDehR1p2chlKCvTtVxnhIXIfCm/fH798qqxveafUwAU/ Gbk59nbhdE3FLOhXm5khVchhRixaa+7N1qotWwlXz1tvIlqyhfO7MRe0hsaWt3Ko -----END CERTIFICATE-----Generated at Mon Feb 9 22:35:41 2026 by rpki-client