This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/GJeZ3Cbz4GRYhNw7NmJ5mIigcr0.roa File: GJeZ3Cbz4GRYhNw7NmJ5mIigcr0.roa (raw, json) Hash identifier: 9mZpxA+lRmudTmGyDLUm8PGv9jzaVf1A/j3Lnc9QbQY= Subject key identifier: 18:97:99:DC:26:F3:E0:64:58:84:DC:3B:36:62:79:98:88:A0:72:BD Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4 Certificate serial: 019B7BA55253BCBAF772FF0A62F3D606B482 Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/GJeZ3Cbz4GRYhNw7NmJ5mIigcr0.roa Signing time: Thu 01 Jan 2026 22:19:50 +0000 ROA not before: Thu 01 Jan 2026 22:19:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213833 IP address blocks: 213.16.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.mft rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 07:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:52:53:bc:ba:f7:72:ff:0a:62:f3:d6:06:b4:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4 Validity Not Before: Jan 1 22:19:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=189799dc26f3e0645884dc3b3662799888a072bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:d9:45:d6:42:81:03:ee:6b:75:76:55:ed:ba: 66:14:10:c1:2f:2e:fc:f9:3f:1f:1c:5a:a0:ad:e1: 86:06:cf:38:a8:f3:0d:c9:15:f8:43:37:d9:6b:36: 78:36:53:a8:46:6d:8b:6f:11:5f:d8:9c:10:20:30: 4a:ce:9c:5b:79:c1:8a:1a:d8:c0:7c:4f:df:2b:64: 00:7e:cf:82:8a:84:cf:66:c0:b6:59:53:af:b5:af: 92:64:05:56:1f:df:80:58:d9:6c:3d:f5:ad:1d:f4: 85:1d:59:1c:60:ad:e7:eb:25:7d:cf:30:b4:a7:e5: 6e:d7:39:47:6c:7b:ca:ca:fe:06:95:26:0a:13:ad: 0c:c1:5a:d9:1c:47:ee:f7:11:57:f6:7b:39:5e:5d: da:ca:d7:ac:f4:0d:3d:18:b8:69:14:4f:4a:0b:75: 71:cc:aa:66:57:cb:b6:27:92:f8:c5:f2:e1:63:15: d2:1a:88:f3:f0:b0:8b:9d:2b:69:be:d7:db:87:6f: d9:16:69:97:64:9b:15:b6:5e:43:18:b5:75:eb:bb: 07:cc:71:9f:c2:40:20:50:c6:78:51:f4:0a:53:99: 34:df:4c:81:d6:59:8d:04:90:6b:41:7d:65:47:a1: fb:40:ac:54:41:4b:4e:d5:60:88:a6:16:c9:ce:5f: dc:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:97:99:DC:26:F3:E0:64:58:84:DC:3B:36:62:79:98:88:A0:72:BD X509v3 Authority Key Identifier: keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/GJeZ3Cbz4GRYhNw7NmJ5mIigcr0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.16.60.0/24 Signature Algorithm: sha256WithRSAEncryption aa:d1:f7:c1:bb:99:22:0b:4e:3b:88:f9:cf:fb:81:3e:5e:7a: 3e:9a:7c:07:94:b0:b8:a4:bb:1c:98:cd:a6:54:d0:2b:af:a4: 04:16:e3:78:23:20:4c:58:d8:45:ee:b5:fe:3c:47:69:ab:47: 82:0a:b5:80:0e:69:8b:d3:f4:b0:bf:26:4a:7b:6e:26:41:de: 23:84:65:63:0b:5a:66:1e:fa:72:ae:26:9c:04:a6:e9:be:33: c9:ed:a9:a6:e4:1f:bb:5f:5b:26:74:1d:3b:81:1a:74:9b:9c: ed:21:8a:b4:fc:b5:89:aa:64:33:8d:28:2f:d6:74:e6:8d:1a: 21:a7:8d:4a:6e:f8:93:75:b0:5e:44:49:e4:36:bb:d0:4c:18: 1e:08:83:6f:b4:34:ca:77:74:f3:e1:27:ea:69:0a:ca:83:26: 78:18:42:9f:4b:8e:73:f4:be:74:61:02:24:43:73:26:cf:77: 45:c7:0b:36:7c:c0:82:f9:2f:41:56:13:4d:95:e2:b7:a8:4b: 10:7d:f0:ac:be:c2:fd:ef:39:10:dd:f4:af:7c:3e:5e:ba:e4: 8d:ba:2f:3b:4c:6f:2b:90:3b:02:1a:f5:9c:25:1c:cc:0d:9a: c3:53:d6:d8:4e:da:7c:58:58:37:85:a3:27:63:5d:94:29:d1: b7:10:3b:c7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7pVJTvLr3cv8KYvPWBrSCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0YjJmNGZhNTE2M2FmOTYxNjhlODhmYmY5Y2I0ZWQxZWQ4 ZmI0YzQwHhcNMjYwMTAxMjIxOTUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxODk3OTlkYzI2ZjNlMDY0NTg4NGRjM2IzNjYyNzk5ODg4YTA3MmJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA19lF1kKBA+5rdXZV7bpmFBDBLy78 +T8fHFqgreGGBs84qPMNyRX4QzfZazZ4NlOoRm2LbxFf2JwQIDBKzpxbecGKGtjA fE/fK2QAfs+CioTPZsC2WVOvta+SZAVWH9+AWNlsPfWtHfSFHVkcYK3n6yV9zzC0 p+Vu1zlHbHvKyv4GlSYKE60MwVrZHEfu9xFX9ns5Xl3aytes9A09GLhpFE9KC3Vx zKpmV8u2J5L4xfLhYxXSGojz8LCLnStpvtfbh2/ZFmmXZJsVtl5DGLV167sHzHGf wkAgUMZ4UfQKU5k030yB1lmNBJBrQX1lR6H7QKxUQUtO1WCIphbJzl/cHwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBiXmdwm8+BkWITcOzZieZiIoHK9MB8GA1UdIwQY MBaAFISy9PpRY6+WFo6I+/nLTtHtj7TEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDct ODcyYmEyZDlmNDRjLzEvR0plWjNDYno0R1JZaE53N05tSjVtSWlnY3IwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDctODcyYmEyZDlmNDRj LzEvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1RA8MA0G CSqGSIb3DQEBCwUAA4IBAQCq0ffBu5kiC047iPnP+4E+Xno+mnwHlLC4pLscmM2m VNArr6QEFuN4IyBMWNhF7rX+PEdpq0eCCrWADmmL0/SwvyZKe24mQd4jhGVjC1pm HvpyriacBKbpvjPJ7amm5B+7X1smdB07gRp0m5ztIYq0/LWJqmQzjSgv1nTmjRoh p41KbviTdbBeREnkNrvQTBgeCINvtDTKd3Tz4SfqaQrKgyZ4GEKfS45z9L50YQIk Q3Mmz3dFxws2fMCC+S9BVhNNleK3qEsQffCsvsL97zkQ3fSvfD5euuSNui87TG8r kDsCGvWcJRzMDZrDU9bYTtp8WFg3haMnY12UKdG3EDvH -----END CERTIFICATE-----Generated at Mon Jan 26 11:48:54 2026 by rpki-client