This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/db97d0-28f2-4329-b856-4a348e7be441/1/GfWSqsa-wFE-GuXZlVrnJRLuIxQ.roa File: GfWSqsa-wFE-GuXZlVrnJRLuIxQ.roa (raw, json) Hash identifier: 5KRlaDr+PjUe8aUFBQfVPIsNCZaFpUY9S1IAEN3e5Dc= Subject key identifier: 19:F5:92:AA:C6:BE:C0:51:3E:1A:E5:D9:95:5A:E7:25:12:EE:23:14 Certificate issuer: /CN=914aa557c3d3d1e6b7f0525c34cc1d488a5a9294 Certificate serial: 019C2976975837C874377523DF91016667FB Authority key identifier: 91:4A:A5:57:C3:D3:D1:E6:B7:F0:52:5C:34:CC:1D:48:8A:5A:92:94 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kUqlV8PT0ea38FJcNMwdSIpakpQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/db97d0-28f2-4329-b856-4a348e7be441/1/GfWSqsa-wFE-GuXZlVrnJRLuIxQ.roa Signing time: Wed 04 Feb 2026 16:22:43 +0000 ROA not before: Wed 04 Feb 2026 16:22:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 398993 IP address blocks: 222.167.210.0/24 maxlen: 24 222.167.217.0/24 maxlen: 24 222.167.218.0/24 maxlen: 24 222.167.219.0/24 maxlen: 24 222.167.221.0/24 maxlen: 24 222.167.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/db97d0-28f2-4329-b856-4a348e7be441/1/kUqlV8PT0ea38FJcNMwdSIpakpQ.crl rsync://rpki.ripe.net/repository/DEFAULT/99/db97d0-28f2-4329-b856-4a348e7be441/1/kUqlV8PT0ea38FJcNMwdSIpakpQ.mft rsync://rpki.ripe.net/repository/DEFAULT/kUqlV8PT0ea38FJcNMwdSIpakpQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:29:76:97:58:37:c8:74:37:75:23:df:91:01:66:67:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=914aa557c3d3d1e6b7f0525c34cc1d488a5a9294 Validity Not Before: Feb 4 16:22:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=19f592aac6bec0513e1ae5d9955ae72512ee2314 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:13:0a:71:93:b7:8d:78:97:e1:d8:22:f9:ad: 70:af:96:f4:d6:17:ca:8a:00:da:9d:f4:ac:62:19: 13:06:3e:40:8c:00:6d:2a:32:b9:1f:b1:aa:41:b9: 7b:34:5b:3e:b8:5d:b9:a7:23:4f:22:19:91:66:f0: 41:9b:2f:16:13:25:cd:c2:17:ec:ed:f1:a9:bb:44: f9:06:ad:b8:89:c4:4d:dd:14:47:28:70:85:e8:c3: 02:6f:1f:17:d6:60:24:c9:b0:44:20:17:c3:0a:48: 77:79:da:1a:2f:9a:81:f7:05:47:b8:c7:db:bd:92: e0:83:54:6a:66:c4:b7:55:21:93:df:c2:1f:7c:51: 0d:1b:b4:fd:f0:9b:88:89:e4:30:5e:9d:b3:1d:1e: c2:bb:ac:e5:da:bc:a1:9c:0a:af:0e:8c:45:e1:e7: 0d:66:d4:40:85:25:4a:61:80:fc:1d:9d:fb:fe:a3: b7:80:7f:5d:95:00:33:f3:72:7e:1b:83:de:0e:32: d4:7a:62:b7:ff:96:aa:e5:e4:28:5d:ba:bc:38:bb: 61:c0:52:45:a6:47:87:54:43:eb:8f:68:83:65:4e: 78:3c:3d:00:d7:92:83:64:76:4a:a3:5c:cb:96:ef: ec:1f:f4:bf:2c:ce:25:3c:d5:b9:24:3d:2f:ee:e2: 83:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:F5:92:AA:C6:BE:C0:51:3E:1A:E5:D9:95:5A:E7:25:12:EE:23:14 X509v3 Authority Key Identifier: keyid:91:4A:A5:57:C3:D3:D1:E6:B7:F0:52:5C:34:CC:1D:48:8A:5A:92:94 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kUqlV8PT0ea38FJcNMwdSIpakpQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/db97d0-28f2-4329-b856-4a348e7be441/1/GfWSqsa-wFE-GuXZlVrnJRLuIxQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/db97d0-28f2-4329-b856-4a348e7be441/1/kUqlV8PT0ea38FJcNMwdSIpakpQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 222.167.210.0/24 222.167.217.0-222.167.219.255 222.167.221.0-222.167.222.255 Signature Algorithm: sha256WithRSAEncryption 7d:f3:d1:92:c8:b3:18:e1:3c:85:76:55:5e:4e:b7:d9:8c:fd: a4:9c:e3:91:75:d0:3b:3a:16:22:5f:c8:4a:0c:93:27:4e:3f: be:16:9e:ab:cd:27:88:03:58:d9:6c:f2:64:8a:5b:aa:e0:8f: ec:72:18:3d:7e:49:c4:73:88:c9:b9:97:77:6d:cc:cd:ec:e9: 47:c1:43:cc:3e:60:04:ab:59:44:df:38:39:7a:75:48:29:c2: 2a:10:82:d3:de:92:dc:04:86:40:a7:eb:72:56:d6:38:b4:4b: 2e:86:0d:c3:ec:7b:b6:d2:65:a5:5d:27:ea:c9:17:19:a7:a0: aa:1c:d1:74:0c:73:40:51:7f:65:92:0d:8e:8e:19:58:9b:52: dd:4e:4e:d5:c5:0c:3c:2f:6d:e5:17:d1:f1:1b:5d:65:db:61: 5d:ab:7b:67:61:fb:9e:bc:5b:38:f5:53:da:4f:9f:02:e9:72: 33:a1:89:f2:9f:d4:4d:be:47:e8:90:3c:87:72:9d:0f:5a:c2: a9:90:b8:d6:ca:00:af:71:03:e8:b7:d9:6e:f4:b8:f1:d1:1e: bc:d2:1a:67:7e:a7:d2:d6:dc:92:d0:08:1c:cc:ff:5f:91:31: 51:41:84:5c:5d:8c:02:71:95:29:41:6f:ba:39:44:f7:7e:d4: eb:40:7c:ee -----BEGIN CERTIFICATE----- MIIFGTCCBAGgAwIBAgISAZwpdpdYN8h0N3Uj35EBZmf7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxNGFhNTU3YzNkM2QxZTZiN2YwNTI1YzM0Y2MxZDQ4OGE1 YTkyOTQwHhcNMjYwMjA0MTYyMjQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxOWY1OTJhYWM2YmVjMDUxM2UxYWU1ZDk5NTVhZTcyNTEyZWUyMzE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzxMKcZO3jXiX4dgi+a1wr5b01hfK igDanfSsYhkTBj5AjABtKjK5H7GqQbl7NFs+uF25pyNPIhmRZvBBmy8WEyXNwhfs 7fGpu0T5Bq24icRN3RRHKHCF6MMCbx8X1mAkybBEIBfDCkh3edoaL5qB9wVHuMfb vZLgg1RqZsS3VSGT38IffFENG7T98JuIieQwXp2zHR7Cu6zl2ryhnAqvDoxF4ecN ZtRAhSVKYYD8HZ37/qO3gH9dlQAz83J+G4PeDjLUemK3/5aq5eQoXbq8OLthwFJF pkeHVEPrj2iDZU54PD0A15KDZHZKo1zLlu/sH/S/LM4lPNW5JD0v7uKDFQIDAQAB o4ICJTCCAiEwHQYDVR0OBBYEFBn1kqrGvsBRPhrl2ZVa5yUS7iMUMB8GA1UdIwQY MBaAFJFKpVfD09Hmt/BSXDTMHUiKWpKUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1VxbFY4UFQwZWEzOEZKY05Nd2RTSXBha3BRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9kYjk3ZDAtMjhmMi00MzI5LWI4NTYt NGEzNDhlN2JlNDQxLzEvR2ZXU3FzYS13RkUtR3VYWmxWcm5KUkx1SXhRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OS9kYjk3ZDAtMjhmMi00MzI5LWI4NTYtNGEzNDhlN2JlNDQx LzEva1VxbFY4UFQwZWEzOEZKY05Nd2RTSXBha3BRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDsGCCsGAQUFBwEHAQH/BCwwKjAoBAIAATAiAwQA3qfSMAwD BADep9kDBALep9gwDAMEAN6n3QMEAN6n3jANBgkqhkiG9w0BAQsFAAOCAQEAffPR ksizGOE8hXZVXk632Yz9pJzjkXXQOzoWIl/ISgyTJ04/vhaeq80niANY2WzyZIpb quCP7HIYPX5JxHOIybmXd23MzezpR8FDzD5gBKtZRN84OXp1SCnCKhCC096S3ASG QKfrclbWOLRLLoYNw+x7ttJlpV0n6skXGaegqhzRdAxzQFF/ZZINjo4ZWJtS3U5O 1cUMPC9t5RfR8RtdZdthXat7Z2H7nrxbOPVT2k+fAulyM6GJ8p/UTb5H6JA8h3Kd D1rCqZC41soAr3ED6LfZbvS48dEevNIaZ36n0tbcktAIHMz/X5ExUUGEXF2MAnGV KUFvujlE937U60B87g== -----END CERTIFICATE-----Generated at Tue Feb 10 01:29:04 2026 by rpki-client