This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/1195ab-ed41-452f-bc22-7fd0deae32c5/1/Gj73oXbGGECiTvgDwrqpczdzK-A.roa File: Gj73oXbGGECiTvgDwrqpczdzK-A.roa (raw, json) Hash identifier: Q8jWR9HfNKu/Ar669TZqmeK+l7VIycvfZkDQooqE+6w= Subject key identifier: 1A:3E:F7:A1:76:C6:18:40:A2:4E:F8:03:C2:BA:A9:73:37:73:2B:E0 Certificate issuer: /CN=97aaa555a329edd86606cc0e3e296bd478ac73de Certificate serial: 019B76EB1F0FD5262111345A4DFA1DC1CDC3 Authority key identifier: 97:AA:A5:55:A3:29:ED:D8:66:06:CC:0E:3E:29:6B:D4:78:AC:73:DE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l6qlVaMp7dhmBswOPilr1Hisc94.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/1195ab-ed41-452f-bc22-7fd0deae32c5/1/Gj73oXbGGECiTvgDwrqpczdzK-A.roa Signing time: Thu 01 Jan 2026 00:17:58 +0000 ROA not before: Thu 01 Jan 2026 00:17:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 30848 IP address blocks: 185.249.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/1195ab-ed41-452f-bc22-7fd0deae32c5/1/l6qlVaMp7dhmBswOPilr1Hisc94.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/1195ab-ed41-452f-bc22-7fd0deae32c5/1/l6qlVaMp7dhmBswOPilr1Hisc94.mft rsync://rpki.ripe.net/repository/DEFAULT/l6qlVaMp7dhmBswOPilr1Hisc94.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:1f:0f:d5:26:21:11:34:5a:4d:fa:1d:c1:cd:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97aaa555a329edd86606cc0e3e296bd478ac73de Validity Not Before: Jan 1 00:17:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1a3ef7a176c61840a24ef803c2baa97337732be0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:6e:53:0c:b0:64:3c:5e:b4:1c:52:ca:ec:a9: 1a:f4:88:e9:42:b3:7a:9f:5b:03:7e:ba:58:5d:0a: 02:73:a9:ef:14:61:3f:1d:16:1e:6d:47:16:4d:0e: 67:99:25:4a:a7:19:0d:fa:da:27:5c:6a:c7:a7:4a: 2b:2f:47:e8:74:d8:05:8a:f8:e2:3d:f4:fa:c4:d6: 45:9f:03:dc:a0:4c:63:dc:61:67:57:2b:1e:00:36: 09:73:45:97:d5:73:cb:19:68:60:d9:8c:f9:00:ec: 82:cf:97:52:90:72:6f:7c:96:cf:bd:67:42:6e:8b: 9e:a9:b4:24:c8:9a:55:1d:db:3d:78:9e:77:61:30: a7:a9:f5:d9:e2:21:f6:24:1f:07:fc:0d:8f:f5:12: 40:4f:2a:64:bb:1e:09:57:64:08:f5:e9:14:99:54: 03:73:03:81:9e:91:e5:f2:12:e5:5c:71:e2:0e:96: ea:fa:a2:b1:b9:c3:8e:73:b3:d4:ff:2a:9f:6d:0f: a2:0f:5f:4c:64:b2:87:67:92:9e:c6:7c:71:12:b6: c7:d1:30:4f:f5:30:90:f9:2c:a6:6b:59:bd:89:23: db:d4:de:9b:23:7b:47:ec:14:de:dd:00:50:3a:7e: 85:32:94:f9:da:5b:a1:41:d6:df:00:96:40:1b:35: 84:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:3E:F7:A1:76:C6:18:40:A2:4E:F8:03:C2:BA:A9:73:37:73:2B:E0 X509v3 Authority Key Identifier: keyid:97:AA:A5:55:A3:29:ED:D8:66:06:CC:0E:3E:29:6B:D4:78:AC:73:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l6qlVaMp7dhmBswOPilr1Hisc94.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/1195ab-ed41-452f-bc22-7fd0deae32c5/1/Gj73oXbGGECiTvgDwrqpczdzK-A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/1195ab-ed41-452f-bc22-7fd0deae32c5/1/l6qlVaMp7dhmBswOPilr1Hisc94.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.249.17.0/24 Signature Algorithm: sha256WithRSAEncryption 04:d3:c9:d5:9a:cb:90:e1:d2:ae:bb:96:21:f2:fc:a1:26:03: 51:c6:3c:81:1f:bd:9b:d6:95:97:1a:cc:73:2c:f8:5e:61:9a: c7:60:24:12:54:69:31:d5:de:c1:f2:57:3a:85:06:92:54:85: 69:18:29:0d:5f:69:56:de:57:0c:6c:b0:f2:42:ff:75:ca:09: 25:49:05:c9:cb:33:4e:ef:14:08:03:e9:0d:60:3a:ef:e4:0d: 8a:33:eb:d9:33:65:05:b0:f8:1e:5b:1e:da:d3:09:05:bd:f6: 4a:5f:44:4d:88:8a:28:ae:a7:2d:2b:37:0b:df:f3:fd:62:e6: 57:48:fd:10:9b:4e:70:4f:7d:e9:08:55:b6:46:53:2b:23:41: 3a:9a:14:9a:22:1a:d0:60:d0:36:18:b8:94:de:15:d5:52:7e: ef:f8:f7:ab:22:e4:89:a4:8a:35:45:a3:78:fb:4b:e1:08:34: fd:58:83:32:bc:b9:ce:0a:cb:2f:80:1f:e0:1e:5d:bd:af:0a: 16:06:09:e1:2d:be:7c:f8:8f:4d:76:85:c6:3f:89:42:b7:a5: ba:87:f4:b8:b0:c4:a0:4f:56:da:51:3b:5b:03:6e:c9:d6:cc: a1:7d:d9:71:34:11:aa:be:05:98:cc:c7:67:6a:a5:23:ad:69: 23:39:81:49 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt26x8P1SYhETRaTfodwc3DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk3YWFhNTU1YTMyOWVkZDg2NjA2Y2MwZTNlMjk2YmQ0Nzhh YzczZGUwHhcNMjYwMTAxMDAxNzU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYTNlZjdhMTc2YzYxODQwYTI0ZWY4MDNjMmJhYTk3MzM3NzMyYmUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlW5TDLBkPF60HFLK7Kka9IjpQrN6 n1sDfrpYXQoCc6nvFGE/HRYebUcWTQ5nmSVKpxkN+tonXGrHp0orL0fodNgFivji PfT6xNZFnwPcoExj3GFnVyseADYJc0WX1XPLGWhg2Yz5AOyCz5dSkHJvfJbPvWdC boueqbQkyJpVHds9eJ53YTCnqfXZ4iH2JB8H/A2P9RJATypkux4JV2QI9ekUmVQD cwOBnpHl8hLlXHHiDpbq+qKxucOOc7PU/yqfbQ+iD19MZLKHZ5KexnxxErbH0TBP 9TCQ+Syma1m9iSPb1N6bI3tH7BTe3QBQOn6FMpT52luhQdbfAJZAGzWECwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBo+96F2xhhAok74A8K6qXM3cyvgMB8GA1UdIwQY MBaAFJeqpVWjKe3YZgbMDj4pa9R4rHPeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbDZxbFZhTXA3ZGhtQnN3T1BpbHIxSGlzYzk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS8xMTk1YWItZWQ0MS00NTJmLWJjMjIt N2ZkMGRlYWUzMmM1LzEvR2o3M29YYkdHRUNpVHZnRHdycXBjemR6Sy1BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS8xMTk1YWItZWQ0MS00NTJmLWJjMjItN2ZkMGRlYWUzMmM1 LzEvbDZxbFZhTXA3ZGhtQnN3T1BpbHIxSGlzYzk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufkRMA0G CSqGSIb3DQEBCwUAA4IBAQAE08nVmsuQ4dKuu5Yh8vyhJgNRxjyBH72b1pWXGsxz LPheYZrHYCQSVGkx1d7B8lc6hQaSVIVpGCkNX2lW3lcMbLDyQv91ygklSQXJyzNO 7xQIA+kNYDrv5A2KM+vZM2UFsPgeWx7a0wkFvfZKX0RNiIoorqctKzcL3/P9YuZX SP0Qm05wT33pCFW2RlMrI0E6mhSaIhrQYNA2GLiU3hXVUn7v+PerIuSJpIo1RaN4 +0vhCDT9WIMyvLnOCssvgB/gHl29rwoWBgnhLb58+I9NdoXGP4lCt6W6h/S4sMSg T1baUTtbA27J1syhfdlxNBGqvgWYzMdnaqUjrWkjOYFJ -----END CERTIFICATE-----Generated at Tue Jan 27 08:30:43 2026 by rpki-client